Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Google Chrome öffnet Taps

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 24.10.2016, 12:07   #1
ItalyWoman78
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Guten Tag,

habe seit einiger Zeit Probleme mit meinem Laptop.

Mit Chrome kann ich kaum ins Internet gehen.
Anstatt Google kommt "Search".
Es kommen häufig andere Taps.
Weiss nicht weiter.

Alt 24.10.2016, 12:11   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Hallo und

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!




Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 24.10.2016, 12:18   #3
ItalyWoman78
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Habe schon mal Farbar Recovery Scan Tool laufen lassen.


Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17-10-2016
durchgeführt von XXXXX (Administrator) auf IDEA-PC (24-10-2016 12:08:35)
Gestartet von C:\Users\XXXXX\Desktop
Geladene Profile: XXXXX &  (Verfügbare Profile: XXXXX)
Platform: Windows 8 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 10 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\splwow64.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12921488 2012-07-02] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1212560 2012-06-13] (Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [366720 2012-06-26] (Alcor Micro Corp.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2864016 2012-08-09] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2012-11-16] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2012-11-16] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508256 2012-04-23] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [332BigDog] => C:\Program Files (x86)\USB Camera2\VM332STI.EXE [548864 2012-03-20] (Vimicro)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [917584 2016-10-11] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [60136 2016-08-19] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2768397689-4292562880-697418737-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILHE.EXE [297024 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2768397689-4292562880-697418737-1001\...\Run: [EPLTarget\P0000000000000002] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILHE.EXE [297024 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2768397689-4292562880-697418737-1001\...\Run: [GoogleChromeAutoLaunch_84AA60764E3AD6F516E758F934BD9E3B] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1083496 2016-10-20] (Google Inc.)
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILHE.EXE [297024 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EPLTarget\P0000000000000002] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILHE.EXE [297024 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GoogleChromeAutoLaunch_84AA60764E3AD6F516E758F934BD9E3B] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1083496 2016-10-20] (Google Inc.)
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILHE.EXE [297024 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [EPLTarget\P0000000000000002] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILHE.EXE [297024 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [GoogleChromeAutoLaunch_84AA60764E3AD6F516E758F934BD9E3B] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1083496 2016-10-20] (Google Inc.)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{25177335-5810-47A2-90DC-871EA82D5210}: [DhcpNameServer] 172.168.141.2
Tcpip\..\Interfaces\{2E030430-B6D9-4DBC-BC74-E9211CB75416}: [DhcpNameServer] 192.168.2.1
ManualProxies: 

Internet Explorer:
==================
HKU\S-1-5-21-2768397689-4292562880-697418737-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-2768397689-4292562880-697418737-1001 -> DefaultScope {B26F8B18-C048-4244-A267-D0DFA2FDA7AD} URL = 
SearchScopes: HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {B26F8B18-C048-4244-A267-D0DFA2FDA7AD} URL = 
SearchScopes: HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> DefaultScope {B26F8B18-C048-4244-A267-D0DFA2FDA7AD} URL = 
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

FireFox:
========
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.icon-formazione.it/#"
CHR Profile: C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default [2016-10-24]
CHR Extension: (Presentazioni Google) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-10-17]
CHR Extension: (Documenti Google) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-17]
CHR Extension: (Google Drive) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-17]
CHR Extension: (YouTube) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-17]
CHR Extension: (Fogli Google) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-10-17]
CHR Extension: (Google Documenti offline) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-10-17]
CHR Extension: (Reload All Tabs) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpeeciigchcadkcnjcipnohdlajnel [2016-10-20]
CHR Extension: (Chrome notes plus) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijflgieaoapgdopcikhbkbgncahibahh [2016-10-23]
CHR Extension: (Chrome notes plus) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\laafnjboccdlcgofapkodcibeaacbfbb [2016-10-22]
CHR Extension: (Chrome notes plus) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\llhpegpoejfhipephapcogeomedclnji [2016-10-21]
CHR Extension: (Pagamenti Chrome Web Store) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-10-17]
CHR Extension: (Wiley.com CBI) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmnmepmmllijgcbbgkilgfdgippdinio [2016-10-22]
CHR Extension: (Gmail) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-17]
CHR Extension: (Chrome Media Router) - C:\Users\XXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-23]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1086040 2016-10-11] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [475232 2016-10-11] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [475232 2016-10-11] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1489240 2016-10-11] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [324304 2016-08-19] (Avira Operations GmbH & Co. KG)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-17] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S3 vmicvss; C:\WINDOWS\System32\ICSvc.dll [336384 2012-07-26] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [149832 2016-10-11] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [153392 2016-10-11] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [35488 2016-10-09] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [78208 2016-10-09] (Avira Operations GmbH & Co. KG)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [6822984 2012-11-16] (Broadcom Corporation)
S0 ebdrv; C:\WINDOWS\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-24 12:08 - 2016-10-24 12:08 - 00000000 ____D C:\Users\XXXXX\Desktop\FRST-OlderVersion
2016-10-23 09:49 - 2016-10-23 09:49 - 00000000 ____D C:\Users\Public\CyberLink
2016-10-20 22:33 - 2016-10-20 22:33 - 00012304 _____ C:\Users\XXXXX\Downloads\Anmeldeformular.pdf
2016-10-20 21:57 - 2016-10-24 11:51 - 00038912 ___SH C:\Users\XXXXX\Downloads\Thumbs.db
2016-10-20 21:53 - 2016-10-20 21:57 - 00000000 ____D C:\Users\XXXXX\Downloads\(15) Facebook_files
2016-10-20 21:53 - 2016-10-20 21:53 - 00757648 _____ C:\Users\XXXXX\Downloads\(15) Facebook.html
2016-10-20 11:36 - 2016-10-20 11:37 - 00240776 _____ C:\Users\XXXXX\Downloads\giallo-s1-i_forum_della_tua_classe.pdf
2016-10-20 11:29 - 2016-10-20 11:29 - 00237817 _____ C:\Users\XXXXX\Downloads\giallo-s1-il_forum.pdf
2016-10-19 20:53 - 2016-10-19 20:53 - 05909618 _____ C:\Users\XXXXX\Downloads\phrasebook_mosalingua_it (3).zip
2016-10-19 20:53 - 2016-10-19 20:53 - 05909618 _____ C:\Users\XXXXX\Downloads\phrasebook_mosalingua_it (2).zip
2016-10-19 18:16 - 2016-10-19 18:16 - 05909618 _____ C:\Users\XXXXX\Downloads\phrasebook_mosalingua_it (1).zip
2016-10-17 22:47 - 2016-10-17 22:47 - 23601803 _____ C:\Users\XXXXX\Downloads\tpr-a-mastromarco.pdf
2016-10-17 22:27 - 2016-10-17 22:27 - 00012547 _____ C:\Users\XXXXX\Downloads\prova_ingresso_2_media.zip
2016-10-17 22:27 - 2016-10-17 22:27 - 00000022 _____ C:\Users\XXXXX\Downloads\prova_ingresso_2_media (1).zip
2016-10-17 22:26 - 2016-10-17 22:26 - 00029260 _____ C:\Users\XXXXX\Downloads\prova_ingresso_1_media.zip
2016-10-17 16:18 - 2016-10-17 16:20 - 02363222 _____ C:\Users\XXXXX\Downloads\phrasebook_mosalingua_it.zip
2016-10-17 11:42 - 2016-10-17 11:43 - 00025476 _____ C:\Users\XXXXX\Desktop\Addition.txt
2016-10-17 11:41 - 2016-10-24 12:09 - 00017788 _____ C:\Users\XXXXX\Desktop\FRST.txt
2016-10-17 11:40 - 2016-10-24 12:08 - 00000000 ____D C:\FRST
2016-10-17 11:40 - 2016-10-24 11:55 - 00002017 _____ C:\Users\XXXXX\Desktop\JRT.txt
2016-10-17 11:29 - 2016-10-17 11:32 - 00000000 ____D C:\AdwCleaner
2016-10-17 11:29 - 2016-10-17 11:29 - 00004006 _____ C:\Users\XXXXX\Desktop\mbat.txt
2016-10-17 10:53 - 2016-10-24 10:36 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-10-17 10:52 - 2016-10-17 10:52 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-10-17 10:52 - 2016-10-17 10:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-10-17 10:52 - 2016-10-17 10:52 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-17 10:52 - 2016-10-17 10:52 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-10-17 10:52 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-10-17 10:52 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-10-17 10:52 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-10-17 10:50 - 2016-10-24 12:08 - 02407424 _____ (Farbar) C:\Users\XXXXX\Desktop\FRST64.exe
2016-10-17 10:50 - 2016-10-17 10:50 - 22851472 _____ (Malwarebytes ) C:\Users\XXXXX\Downloads\mbam-setup-2.2.1.1043.exe
2016-10-17 10:50 - 2016-10-17 10:50 - 01631928 _____ (Malwarebytes) C:\Users\XXXXX\Desktop\JRT.exe
2016-10-17 10:48 - 2016-10-17 10:48 - 16563352 _____ (Malwarebytes Corp.) C:\Users\XXXXX\Downloads\mbar-1.09.3.1001.exe
2016-10-15 11:15 - 2016-10-15 11:16 - 00430720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-11 21:26 - 2016-10-11 21:24 - 00023640 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2016-10-09 21:31 - 2016-10-09 21:31 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2016-10-09 21:31 - 2016-10-09 21:31 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-07 20:33 - 2014-07-12 06:41 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRUM.DLL
2016-10-07 20:33 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDYAK.DLL
2016-10-07 20:33 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTAT.DLL
2016-10-07 20:33 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU1.DLL
2016-10-07 20:33 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU.DLL
2016-10-07 20:33 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDBASH.DLL
2016-10-07 20:33 - 2014-07-12 06:16 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRUM.DLL
2016-10-07 20:33 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDYAK.DLL
2016-10-07 20:33 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTAT.DLL
2016-10-07 20:33 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU1.DLL
2016-10-07 20:33 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU.DLL
2016-10-07 20:33 - 2014-07-12 06:15 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDBASH.DLL
2016-10-07 20:33 - 2014-07-09 00:33 - 00181248 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2016-10-07 20:33 - 2014-07-09 00:32 - 01539584 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-10-07 20:33 - 2014-07-09 00:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2016-10-07 20:33 - 2014-07-09 00:30 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-10-07 20:33 - 2014-07-07 07:52 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-10-07 20:33 - 2014-07-07 07:52 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-10-07 20:33 - 2014-07-04 12:52 - 00328000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-10-07 20:33 - 2014-06-28 09:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2016-10-07 20:33 - 2014-06-28 08:56 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-10-07 20:33 - 2014-06-18 01:27 - 02032640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-10-07 20:33 - 2014-06-18 01:23 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-10-06 18:27 - 2014-10-09 06:00 - 01519104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-10-06 18:27 - 2014-10-09 06:00 - 01484288 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-10-06 18:27 - 2014-10-09 06:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-10-06 18:27 - 2014-10-09 05:59 - 01195520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-10-06 18:27 - 2014-10-09 05:59 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-10-06 18:27 - 2012-09-20 08:31 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-10-06 18:27 - 2012-09-20 07:53 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-10-06 18:07 - 2015-01-09 08:43 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-10-06 18:07 - 2015-01-09 07:03 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-10-06 17:59 - 2016-10-14 18:45 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-10-06 17:59 - 2016-10-14 18:38 - 143495576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-10-06 17:49 - 2014-04-16 20:20 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-10-06 17:49 - 2014-04-16 20:20 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-10-06 17:38 - 2016-07-02 06:32 - 00827864 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-06 17:38 - 2016-07-02 06:32 - 00176096 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-06 17:30 - 2016-10-06 17:30 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2016-10-06 10:22 - 2016-10-06 10:22 - 00000000 ____D C:\Users\XXXXX\AppData\Local\CEF
2016-10-06 10:21 - 2016-10-16 09:15 - 00004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-10-06 10:21 - 2016-10-06 10:21 - 00000000 ____D C:\Users\XXXXX\AppData\LocalLow\Adobe
2016-10-06 10:20 - 2016-10-16 09:14 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-06 10:20 - 2016-10-06 10:20 - 00002058 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-10-06 10:12 - 2016-10-06 10:18 - 00297078 _____ C:\Users\XXXXX\Downloads\BoardingPass (1).pdf
2016-10-06 10:10 - 2016-10-06 10:10 - 00297078 _____ C:\Users\XXXXX\Downloads\BoardingPass.pdf
2016-10-06 10:06 - 2016-10-06 10:06 - 00000000 ____D C:\Users\XXXXX\AppData\Roaming\Epson
2016-10-06 10:04 - 2016-10-06 10:14 - 00297078 _____ C:\Users\XXXXX\Documents\BoardingPass.pdf
2016-10-05 19:05 - 2016-10-24 12:05 - 00000935 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}.job
2016-10-05 19:05 - 2016-10-24 12:05 - 00000749 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}.job
2016-10-05 19:05 - 2016-10-05 19:05 - 00003966 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Update {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}
2016-10-05 19:05 - 2016-10-05 19:05 - 00003780 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Invitation {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}
2016-10-05 18:57 - 2016-10-24 11:57 - 00000935 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}.job
2016-10-05 18:57 - 2016-10-24 11:57 - 00000749 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}.job
2016-10-05 18:57 - 2016-10-05 18:57 - 00003966 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Update {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}
2016-10-05 18:57 - 2016-10-05 18:57 - 00003780 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Invitation {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}
2016-10-05 18:51 - 2016-10-05 18:51 - 00000000 ____D C:\Program Files\EpsonNet
2016-10-05 18:51 - 2012-11-12 20:41 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll
2016-10-05 18:51 - 2012-11-12 20:41 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll
2016-10-05 18:51 - 2012-11-12 15:15 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll
2016-10-05 18:51 - 2012-11-12 15:15 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll
2016-10-05 18:51 - 2012-10-22 17:19 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enspres.dll
2016-10-05 18:51 - 2012-10-22 17:19 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enpres.dll
2016-10-05 18:49 - 2016-10-06 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2016-10-05 18:49 - 2016-10-06 10:02 - 00000000 ____D C:\Program Files (x86)\EPSON Software
2016-10-05 18:49 - 2016-10-05 18:49 - 00001024 _____ C:\Users\Public\Desktop\Manuali Epson.lnk
2016-10-05 18:49 - 2016-10-05 18:49 - 00000941 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2016-10-05 18:49 - 2016-10-05 18:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2016-10-05 18:49 - 2012-07-24 00:00 - 00466432 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxw2ud.dll
2016-10-05 18:49 - 2012-05-17 00:00 - 00144560 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\escsvc64.exe
2016-10-05 18:48 - 2016-10-06 10:02 - 00000000 ____D C:\Program Files (x86)\epson
2016-10-05 18:47 - 2016-10-24 11:47 - 00000935 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {CB93876F-27CF-4D16-839E-2A739141CFD9}.job
2016-10-05 18:47 - 2016-10-24 11:47 - 00000749 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {CB93876F-27CF-4D16-839E-2A739141CFD9}.job
2016-10-05 18:47 - 2016-10-05 18:47 - 00003966 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Update {CB93876F-27CF-4D16-839E-2A739141CFD9}
2016-10-05 18:47 - 2016-10-05 18:47 - 00003780 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Invitation {CB93876F-27CF-4D16-839E-2A739141CFD9}
2016-10-05 18:47 - 2016-10-05 18:47 - 00000000 ____D C:\Program Files\Common Files\EPSON
2016-10-05 18:47 - 2013-10-22 04:04 - 00179712 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMBLHE.DLL
2016-10-05 18:47 - 2011-03-15 03:03 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BLHE.DLL
2016-10-05 18:47 - 2007-04-10 01:06 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL
2016-10-05 18:45 - 2016-10-05 18:45 - 00000000 ____D C:\Users\XXXXX\AppData\Roaming\WebApp
2016-10-05 18:44 - 2016-10-05 18:44 - 00000000 ____D C:\Users\XXXXX\AppData\Local\Cyberlink
2016-10-05 18:43 - 2016-10-05 19:10 - 00000000 ____D C:\ProgramData\Epson
2016-10-05 18:42 - 2016-10-23 09:49 - 00000000 ____D C:\Users\XXXXX\AppData\Roaming\CyberLink
2016-10-05 18:42 - 2016-10-05 18:43 - 00000000 ____D C:\Users\XXXXX\Documents\CyberLink
2016-10-05 18:42 - 2016-10-05 18:42 - 00000000 ____D C:\Users\XXXXX\Documents\Lenovo
2016-10-05 18:42 - 2016-10-05 18:42 - 00000000 ____D C:\ProgramData\Lenovo
2016-10-05 07:40 - 2014-07-16 00:51 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2016-10-02 09:36 - 2015-10-01 15:10 - 00869568 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-10-02 09:36 - 2015-10-01 15:09 - 00875720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-10-02 09:34 - 2016-10-02 09:34 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-10-02 09:34 - 2016-10-02 09:34 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-10-02 09:08 - 2014-06-11 00:44 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-10-02 09:08 - 2014-06-11 00:43 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-10-01 18:47 - 2016-10-01 18:47 - 00001145 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-09-30 21:46 - 2016-10-01 18:47 - 00000000 ____D C:\ProgramData\Package Cache
2016-09-30 19:00 - 2015-07-06 18:16 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2016-09-30 19:00 - 2015-07-06 16:32 - 00281944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2016-09-30 19:00 - 2015-03-27 10:07 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2016-09-30 18:59 - 2016-06-25 20:28 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-09-30 18:59 - 2016-06-25 17:55 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-09-30 18:59 - 2016-06-17 15:09 - 01208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-09-30 18:59 - 2016-06-04 11:42 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00984448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-eventing-provider-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-09-30 18:59 - 2015-04-30 15:44 - 00478296 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-09-30 18:59 - 2015-04-30 15:44 - 00478296 _____ C:\WINDOWS\system32\locale.nls
2016-09-30 18:59 - 2015-04-21 15:53 - 01174528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-09-30 18:59 - 2015-04-06 07:36 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-09-30 18:59 - 2015-04-06 06:08 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2016-09-30 18:59 - 2015-03-14 10:07 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-09-30 18:59 - 2015-03-14 08:33 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-09-30 18:59 - 2015-03-12 07:31 - 02048000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-09-30 18:59 - 2015-03-12 07:31 - 01688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-09-30 18:59 - 2015-03-12 07:31 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll
2016-09-30 18:59 - 2015-03-12 05:52 - 01933312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2016-09-30 18:59 - 2013-12-05 01:43 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2016-09-30 18:59 - 2013-12-05 01:37 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2016-09-30 18:59 - 2013-11-01 07:38 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2016-09-30 18:59 - 2013-11-01 05:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2016-09-30 18:59 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2016-09-30 18:59 - 2013-03-02 04:44 - 01011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-09-30 18:59 - 2012-12-15 06:55 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2016-09-30 18:59 - 2012-11-03 07:26 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysreset.exe
2016-09-30 18:59 - 2012-11-03 07:25 - 00945152 _____ (Microsoft Corporation) C:\WINDOWS\system32\resetengmig.dll
2016-09-30 18:59 - 2012-10-25 05:27 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2016-09-30 18:59 - 2012-10-25 05:26 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2016-09-30 18:59 - 2012-10-25 05:04 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2016-09-30 18:58 - 2015-09-12 15:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-09-30 18:58 - 2015-09-12 15:29 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll
2016-09-30 18:58 - 2015-09-12 15:29 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appserverai.dll
2016-09-30 18:58 - 2015-09-12 15:29 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDWebAI.dll
2016-09-30 18:58 - 2015-09-12 15:29 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmHostAI.dll
2016-09-30 18:58 - 2015-09-02 15:49 - 02341376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-09-30 18:58 - 2015-09-02 15:49 - 01850880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-09-30 18:58 - 2015-09-02 15:38 - 01744384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-09-30 18:58 - 2015-09-02 15:38 - 01422336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-09-30 18:58 - 2015-03-04 08:41 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2016-09-30 18:58 - 2015-03-04 08:39 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-09-30 18:58 - 2015-03-04 08:39 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll
2016-09-30 18:58 - 2015-03-04 06:53 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2016-09-30 18:58 - 2015-03-04 06:52 - 00676864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2016-09-30 18:58 - 2014-11-26 08:43 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-09-30 18:58 - 2014-11-26 06:50 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-09-30 18:58 - 2013-08-23 09:22 - 02062848 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-09-30 18:58 - 2013-08-23 03:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-09-30 18:58 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdlg.dll
2016-09-30 18:58 - 2013-04-03 01:12 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll
2016-09-30 18:58 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-09-30 18:58 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-09-30 18:58 - 2012-10-24 05:25 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2016-09-30 18:58 - 2012-10-24 04:48 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2016-09-30 18:58 - 2012-09-20 08:32 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2016-09-30 18:58 - 2012-09-20 07:54 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shimeng.dll
2016-09-30 18:57 - 2014-10-30 09:20 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-09-30 18:57 - 2014-10-30 07:22 - 01569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-09-29 22:53 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-09-29 22:53 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-09-29 22:53 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-09-29 22:53 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-09-29 22:53 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-09-29 22:53 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-09-29 22:52 - 2015-07-01 15:00 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-09-29 22:52 - 2015-07-01 14:58 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-09-29 22:52 - 2015-07-01 13:42 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-09-29 22:52 - 2015-07-01 13:41 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-09-29 22:52 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-09-29 22:52 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-09-29 22:52 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2016-09-29 22:52 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2016-09-29 22:52 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2016-09-29 22:52 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2016-09-29 22:52 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-09-29 22:52 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-09-29 22:52 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2016-09-29 22:52 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2016-09-29 22:52 - 2013-06-01 05:08 - 00037632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2016-09-29 22:51 - 2015-11-16 18:10 - 01821192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-09-29 22:51 - 2015-11-16 16:55 - 01410000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-09-29 22:51 - 2015-11-16 16:28 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-09-29 22:51 - 2015-11-16 16:28 - 00384512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-09-29 22:51 - 2015-11-16 16:26 - 01637376 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-09-29 22:51 - 2015-11-16 16:26 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-09-29 22:51 - 2014-01-27 05:39 - 01939288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-09-29 22:50 - 2014-02-04 01:56 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-09-29 22:50 - 2014-02-04 01:56 - 00278872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2016-09-29 22:50 - 2014-01-31 02:48 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-09-29 22:50 - 2014-01-31 02:06 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-09-29 22:50 - 2014-01-16 01:42 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-09-29 22:50 - 2014-01-03 01:35 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2016-09-29 22:50 - 2014-01-03 01:32 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2016-09-29 22:48 - 2013-01-10 03:53 - 00028904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2016-09-29 22:48 - 2013-01-10 03:29 - 00091880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-09-29 22:48 - 2013-01-10 01:26 - 01752064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2016-09-29 22:48 - 2013-01-10 01:26 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2016-09-29 22:48 - 2013-01-10 01:26 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaacmgr.exe
2016-09-29 22:48 - 2013-01-10 01:23 - 02094592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2016-09-29 22:48 - 2013-01-10 01:23 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-09-29 22:48 - 2013-01-10 01:23 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-09-29 22:48 - 2013-01-10 01:23 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-09-29 22:48 - 2013-01-10 01:23 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaacmgr.exe
2016-09-29 22:48 - 2013-01-10 01:22 - 00894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-09-29 22:48 - 2013-01-10 01:22 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-09-29 22:48 - 2012-11-02 07:19 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-09-29 22:48 - 2012-11-02 07:18 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-09-29 22:48 - 2012-11-02 07:18 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-09-29 22:48 - 2012-11-02 07:18 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhapi.dll
2016-09-29 22:48 - 2012-11-02 07:18 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-09-29 22:48 - 2012-11-02 07:18 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2016-09-29 22:47 - 2012-09-20 11:08 - 00027280 _____ (Microsoft Corporation) C:\WINDOWS\system32\avrt.dll
2016-09-29 22:47 - 2012-09-20 10:40 - 00389360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2016-09-29 22:47 - 2012-09-20 10:31 - 00425192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-09-29 22:47 - 2012-09-20 09:55 - 03265256 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\evbda.sys
2016-09-29 22:47 - 2012-09-20 09:55 - 00533224 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\bxvbda.sys
2016-09-29 22:47 - 2012-09-20 08:47 - 00307192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 03964416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 01304064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00866304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSATAPI.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpnpmgr.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\svchost.exe
2016-09-29 22:47 - 2012-09-20 08:32 - 01739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 01400832 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provcore.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2016-09-29 22:47 - 2012-09-20 08:31 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevPropMgr.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcss.dll
2016-09-29 22:47 - 2012-09-20 08:30 - 02016256 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
2016-09-29 22:47 - 2012-09-20 08:30 - 01743872 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-09-29 22:47 - 2012-09-20 08:30 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-09-29 22:47 - 2012-09-20 08:30 - 00180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdsrv.dll
2016-09-29 22:47 - 2012-09-20 08:13 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2016-09-29 22:47 - 2012-09-20 08:13 - 00023656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\avrt.dll
2016-09-29 22:47 - 2012-09-20 07:55 - 00995328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-09-29 22:47 - 2012-09-20 07:55 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-09-29 22:47 - 2012-09-20 07:55 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-09-29 22:47 - 2012-09-20 07:55 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSATAPI.dll
2016-09-29 22:47 - 2012-09-20 07:55 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2016-09-29 22:47 - 2012-09-20 07:55 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2016-09-29 22:47 - 2012-09-20 07:55 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-09-29 22:47 - 2012-09-20 07:55 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvinst.exe
2016-09-29 22:47 - 2012-09-20 07:55 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\svchost.exe
2016-09-29 22:47 - 2012-09-20 07:54 - 01369600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RacEngn.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00709632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provcore.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2016-09-29 22:47 - 2012-09-20 07:53 - 02007040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\batmeter.dll
2016-09-29 22:47 - 2012-09-20 07:53 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-09-29 22:47 - 2012-09-20 07:53 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-09-29 22:47 - 2012-09-20 07:53 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2016-09-29 22:46 - 2015-06-27 15:46 - 01314816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-09-29 22:46 - 2015-06-27 15:23 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-09-29 22:46 - 2012-09-20 08:33 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-09-29 22:46 - 2012-09-20 08:33 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2016-09-29 22:46 - 2012-09-20 08:33 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2016-09-29 22:46 - 2012-09-20 08:32 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2016-09-29 22:46 - 2012-09-20 08:32 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll
2016-09-29 22:46 - 2012-09-20 08:32 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2016-09-29 22:46 - 2012-09-20 08:32 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2016-09-29 22:46 - 2012-09-20 08:32 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MUILanguageCleanup.dll
2016-09-29 22:46 - 2012-09-20 08:31 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-09-29 22:46 - 2012-09-20 08:31 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2016-09-29 22:46 - 2012-09-20 08:31 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2016-09-29 22:46 - 2012-09-20 08:30 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-09-29 22:46 - 2012-09-20 08:09 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2016-09-29 22:46 - 2012-09-20 07:55 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-09-29 22:46 - 2012-09-20 07:54 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2016-09-29 22:46 - 2012-09-20 07:54 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2016-09-29 22:46 - 2012-09-20 07:54 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2016-09-29 22:46 - 2012-09-20 07:54 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2016-09-29 22:46 - 2012-09-20 07:53 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-09-29 22:43 - 2015-01-24 08:42 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-09-29 22:43 - 2015-01-24 07:00 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll
2016-09-29 22:43 - 2014-09-03 04:48 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-09-29 22:43 - 2014-09-03 04:21 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-09-29 22:43 - 2014-06-13 03:57 - 01453400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-09-29 22:43 - 2014-06-13 03:55 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-09-29 22:43 - 2014-03-25 01:42 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2016-09-29 22:43 - 2014-03-25 00:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2016-09-29 22:42 - 2015-07-13 23:05 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-09-29 22:42 - 2015-07-13 23:05 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-09-29 22:41 - 2013-10-19 07:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2016-09-29 22:41 - 2013-10-19 06:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2016-09-29 22:40 - 2014-11-15 08:06 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-09-29 22:40 - 2014-11-15 07:13 - 03286016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 01623552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-09-29 22:40 - 2014-11-15 07:12 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-09-29 22:40 - 2014-11-15 05:54 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-09-29 22:40 - 2014-11-15 05:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-09-29 22:40 - 2014-11-15 05:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-09-29 22:40 - 2014-11-15 05:53 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-09-29 22:40 - 2012-09-27 09:17 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.exe
2016-09-29 22:40 - 2012-09-27 09:17 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ndadmin.exe
2016-09-29 22:40 - 2012-09-27 09:15 - 00301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2016-09-29 22:40 - 2012-09-27 08:35 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.exe
2016-09-29 22:40 - 2012-09-27 08:35 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndadmin.exe
2016-09-29 22:40 - 2012-09-27 08:34 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2016-09-29 22:32 - 2014-11-05 08:40 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-09-29 22:32 - 2014-11-05 08:39 - 01024512 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-09-29 22:32 - 2014-10-29 16:21 - 00499008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-09-29 22:32 - 2014-08-28 08:01 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2016-09-29 22:30 - 2014-06-18 01:27 - 01440256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2016-09-29 22:30 - 2014-06-18 01:24 - 01557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2016-09-29 22:29 - 2015-08-01 18:21 - 00073352 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2016-09-29 22:29 - 2015-08-01 17:22 - 00063992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2016-09-29 22:29 - 2015-08-01 15:56 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2016-09-29 22:29 - 2015-08-01 15:56 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2016-09-29 22:29 - 2015-08-01 15:56 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2016-09-29 22:28 - 2015-07-30 15:11 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-09-29 22:28 - 2015-07-30 15:10 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-09-29 22:28 - 2014-06-05 03:12 - 00678600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-09-29 22:28 - 2014-06-04 01:12 - 00536776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2016-09-29 22:27 - 2014-12-11 08:51 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2016-09-29 22:26 - 2015-07-09 23:46 - 05982208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-09-29 22:26 - 2015-07-09 23:44 - 00322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2016-09-29 22:26 - 2015-07-09 22:17 - 05095424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-09-29 22:26 - 2015-07-09 22:16 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aaclient.dll
2016-09-29 22:26 - 2015-06-17 16:13 - 01150264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-09-29 22:26 - 2015-06-17 15:44 - 01567560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-09-29 22:26 - 2015-04-13 07:32 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-09-29 22:25 - 2013-10-05 08:10 - 00285016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-09-29 22:25 - 2013-08-30 07:19 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-09-29 22:25 - 2013-08-30 07:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-09-29 22:25 - 2013-08-30 01:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-09-29 22:25 - 2013-08-30 01:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-09-29 22:24 - 2015-08-05 15:52 - 01287680 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-09-29 22:23 - 2014-09-13 08:24 - 02233152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-09-29 22:23 - 2014-09-03 04:48 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2016-09-29 22:23 - 2014-09-03 04:22 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2016-09-29 22:23 - 2014-08-29 06:17 - 02043392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-09-29 22:23 - 2014-08-29 06:17 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2016-09-29 22:23 - 2014-08-29 06:04 - 02837504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-09-29 22:23 - 2014-08-29 06:04 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-09-29 22:23 - 2014-08-28 08:04 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2016-09-29 22:23 - 2014-08-28 08:04 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2016-09-29 22:23 - 2014-08-28 07:59 - 00616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2016-09-29 22:23 - 2014-08-28 07:59 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2016-09-29 22:23 - 2014-08-28 07:59 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSTIFF.dll
2016-09-29 22:23 - 2014-08-28 07:59 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXST30.dll
2016-09-29 22:23 - 2014-07-24 15:12 - 00328512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-09-29 22:22 - 2012-08-31 02:53 - 00017888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2016-09-29 22:22 - 2012-08-31 02:52 - 00017888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2016-09-29 22:18 - 2013-08-30 07:43 - 00061784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-09-29 22:18 - 2013-08-30 07:20 - 01173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-09-29 22:18 - 2013-08-30 01:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-09-29 22:18 - 2013-08-21 08:39 - 00465240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-09-29 22:18 - 2013-08-10 08:30 - 00151896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-09-29 22:18 - 2013-07-25 01:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-09-29 22:18 - 2013-07-25 01:07 - 13661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-29 22:18 - 2012-09-20 08:48 - 00062488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2016-09-29 22:17 - 2015-08-04 16:42 - 01229824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-09-29 22:17 - 2015-08-04 16:42 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-09-29 22:17 - 2015-08-04 16:42 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncInfo.dll
2016-09-29 22:17 - 2015-08-04 15:54 - 01399808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-29 22:17 - 2015-08-04 15:53 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-09-29 22:17 - 2015-08-04 15:53 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll
2016-09-29 22:17 - 2015-01-29 10:05 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-29 22:17 - 2015-01-29 08:19 - 01339392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-09-29 22:17 - 2013-06-22 07:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2016-09-29 22:17 - 2013-06-22 07:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2016-09-29 22:16 - 2013-07-06 00:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys
2016-09-29 22:16 - 2013-07-06 00:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-09-29 22:16 - 2013-07-02 00:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbscan.sys
2016-09-29 22:16 - 2013-07-02 00:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2016-09-29 22:16 - 2013-06-29 05:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-09-29 22:16 - 2012-10-11 07:19 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSDScan.sys
2016-09-29 22:15 - 2014-10-09 05:59 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-09-29 22:15 - 2014-10-09 05:59 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-09-29 22:15 - 2014-10-09 05:58 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-09-29 22:15 - 2014-09-22 07:38 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-09-29 22:15 - 2014-09-22 05:56 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-09-29 22:10 - 2013-03-02 12:57 - 00077544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-09-29 22:10 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-09-29 22:10 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2016-09-29 22:10 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-09-29 22:10 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2016-09-29 22:10 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL
2016-09-29 22:10 - 2013-03-02 04:44 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-09-29 22:10 - 2013-03-02 04:44 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-09-29 22:10 - 2013-03-02 04:44 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-09-29 22:10 - 2013-03-02 04:44 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll
2016-09-29 22:10 - 2013-03-02 04:44 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2016-09-29 22:10 - 2013-03-02 04:43 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2016-09-29 22:10 - 2013-03-02 04:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2016-09-29 22:10 - 2013-03-01 06:56 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2016-09-29 22:08 - 2013-07-09 10:04 - 00120144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2016-09-29 22:08 - 2013-07-09 05:57 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2016-09-29 22:08 - 2013-07-09 00:46 - 00543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-09-29 22:08 - 2013-07-09 00:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-09-29 22:08 - 2013-07-09 00:46 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanadvui.dll
2016-09-29 22:08 - 2013-07-09 00:45 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2016-09-29 22:08 - 2013-07-03 02:23 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-29 22:08 - 2013-07-03 02:22 - 02839552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-09-29 22:08 - 2013-07-03 02:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-29 22:08 - 2013-07-03 02:10 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-09-29 22:08 - 2013-07-01 00:30 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\openfiles.exe
2016-09-29 22:08 - 2013-07-01 00:29 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe
2016-09-29 22:08 - 2013-06-29 08:15 - 00195416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-09-29 22:08 - 2013-06-29 08:15 - 00125784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-09-29 22:08 - 2013-06-26 05:01 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2016-09-29 22:08 - 2013-06-26 04:59 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2016-09-29 22:08 - 2013-06-25 00:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-09-29 22:08 - 2013-06-19 07:36 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll
2016-09-29 22:08 - 2013-06-19 07:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll
2016-09-29 22:08 - 2013-06-19 00:38 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll
2016-09-29 22:08 - 2013-06-19 00:38 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll
2016-09-29 22:08 - 2013-06-12 01:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-09-29 22:08 - 2013-06-12 01:26 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-09-29 22:08 - 2013-06-06 10:03 - 00119040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-09-29 22:08 - 2012-10-24 06:54 - 00396008 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-09-29 22:08 - 2012-10-02 09:34 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-09-29 22:06 - 2015-02-24 09:58 - 00861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-09-29 22:05 - 2014-12-19 08:48 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-09-29 22:03 - 2015-12-08 17:16 - 01303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-09-29 22:03 - 2015-12-05 20:48 - 01024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-09-29 22:03 - 2014-07-07 07:53 - 01125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-09-29 22:03 - 2014-07-07 07:52 - 00724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2016-09-29 22:03 - 2014-07-07 07:52 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2016-09-29 22:03 - 2014-07-07 06:01 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-09-29 22:03 - 2014-07-07 06:01 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2016-09-29 22:00 - 2012-10-11 09:25 - 00056552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2016-09-29 22:00 - 2012-10-11 09:23 - 00441576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2016-09-29 22:00 - 2012-10-11 09:13 - 00033512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\battc.sys
2016-09-29 22:00 - 2012-10-11 07:46 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Compression.dll
2016-09-29 22:00 - 2012-10-11 07:46 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2016-09-29 22:00 - 2012-10-11 07:45 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-09-29 22:00 - 2012-10-11 07:45 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2016-09-29 22:00 - 2012-10-11 07:45 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-09-29 22:00 - 2012-10-11 07:44 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-09-29 22:00 - 2012-10-11 07:44 - 00264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-09-29 22:00 - 2012-10-11 07:44 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2016-09-29 22:00 - 2012-10-11 07:23 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-pdc.dll
2016-09-29 22:00 - 2012-10-11 07:23 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdhebl3.dll
2016-09-29 22:00 - 2012-10-11 07:07 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-09-29 22:00 - 2012-10-11 07:07 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Compression.dll
2016-09-29 22:00 - 2012-10-11 07:07 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2016-09-29 22:00 - 2012-10-11 07:05 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2016-09-29 22:00 - 2012-10-11 06:42 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdhebl3.dll
2016-09-29 21:59 - 2012-10-12 08:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dskquota.dll
2016-09-29 21:59 - 2012-10-12 07:39 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dskquota.dll
2016-09-29 21:58 - 2015-12-15 02:01 - 14269440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-09-29 21:58 - 2015-12-15 02:00 - 19349504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-09-29 21:58 - 2015-10-31 10:14 - 02038784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-09-29 21:58 - 2015-10-31 09:33 - 02308096 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-09-29 21:58 - 2015-08-04 16:42 - 08858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-09-29 21:58 - 2015-08-04 15:54 - 10116608 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-09-29 21:58 - 2015-06-09 15:57 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-09-29 21:58 - 2015-03-04 09:29 - 00361280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-09-29 21:58 - 2015-03-04 08:39 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2016-09-29 21:58 - 2015-03-04 06:52 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2016-09-29 21:58 - 2015-01-24 06:31 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-09-29 21:58 - 2014-12-08 08:48 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2016-09-29 21:58 - 2014-12-08 07:04 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 02240000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 01763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 15422976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 13723648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 03805696 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 02793984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 02658304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 02057216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 01409536 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-09-29 21:57 - 2015-12-15 01:59 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-09-29 21:57 - 2015-11-07 14:46 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2016-09-29 21:57 - 2015-11-07 14:46 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2016-09-29 21:57 - 2015-11-07 11:34 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2016-09-29 21:57 - 2015-11-07 07:29 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2016-09-29 21:57 - 2015-09-18 15:32 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2016-09-29 21:57 - 2015-08-13 12:49 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-09-29 21:57 - 2015-08-13 12:44 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-09-29 21:57 - 2015-05-28 04:04 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-09-29 21:57 - 2015-05-28 04:02 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2016-09-29 21:57 - 2015-05-28 04:01 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2016-09-29 21:57 - 2015-05-28 04:01 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2016-09-29 21:57 - 2015-05-28 04:01 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-09-29 21:57 - 2015-05-28 04:01 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-09-29 21:57 - 2015-05-28 04:01 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-09-29 21:57 - 2015-05-28 02:44 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2016-09-29 21:57 - 2015-05-28 02:43 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-09-29 21:57 - 2015-05-28 02:43 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2016-09-29 21:57 - 2015-05-28 02:43 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-09-29 21:57 - 2015-05-28 02:43 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-09-29 21:57 - 2015-05-28 02:43 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-09-29 21:57 - 2015-05-28 02:22 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll
2016-09-29 21:57 - 2015-05-28 02:20 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll
2016-09-29 21:57 - 2015-05-28 02:00 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2016-09-29 21:57 - 2015-05-28 01:55 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2016-09-29 21:53 - 2016-09-29 21:53 - 00001687 _____ C:\Users\XXXXX\Desktop\COGNOME-NOME-REGISTRO-RELAZIONE-INIZIALE-2016-17 (1) - Verknüpfung.lnk
2016-09-29 21:53 - 2016-06-25 20:09 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\EOSNotify.exe
2016-09-29 21:52 - 2015-06-15 17:22 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-09-29 21:52 - 2015-06-15 17:22 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2016-09-29 21:52 - 2015-06-15 17:21 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2016-09-29 21:52 - 2015-06-15 17:20 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-09-29 21:52 - 2015-05-09 01:39 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-09-29 21:52 - 2015-05-08 22:05 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-09-29 21:52 - 2014-10-11 09:44 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2016-09-29 21:52 - 2014-10-11 07:57 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2016-09-29 21:52 - 2014-06-13 01:34 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-09-29 21:52 - 2014-06-13 01:29 - 02146304 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-09-29 21:52 - 2014-06-05 19:56 - 00112984 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-09-29 21:51 - 2014-12-06 09:52 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-09-29 21:51 - 2014-12-06 09:52 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-09-29 21:51 - 2014-12-06 09:52 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2016-09-29 21:51 - 2014-12-06 08:09 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2016-09-29 21:51 - 2012-11-27 08:39 - 01122768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2016-09-29 21:51 - 2012-11-27 06:49 - 01027152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2016-09-29 21:51 - 2012-11-27 06:20 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-09-29 21:51 - 2012-11-27 06:20 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2016-09-29 21:51 - 2012-11-27 06:20 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2016-09-29 21:51 - 2012-11-27 06:20 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vds_ps.dll
2016-09-29 21:51 - 2012-11-27 06:19 - 00955904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-09-29 21:51 - 2012-11-27 06:19 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-09-29 21:51 - 2012-11-27 06:19 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-09-29 21:51 - 2012-11-20 07:24 - 01164800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2016-09-29 21:51 - 2012-11-20 07:17 - 01184256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-09-29 21:51 - 2012-11-20 07:02 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKURD.DLL
2016-09-29 21:51 - 2012-11-20 06:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDKURD.DLL
2016-09-29 21:51 - 2012-09-11 07:28 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsldr.exe
2016-09-29 21:51 - 2012-09-11 07:27 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds_ps.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2016-09-29 21:50 - 2012-11-06 06:20 - 00516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2016-09-29 21:50 - 2012-11-06 06:20 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 08552448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 01386496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapPeerProxy.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapAuthProxy.dll
2016-09-29 21:50 - 2012-11-06 06:18 - 11459584 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-09-29 21:50 - 2012-11-06 06:18 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2016-09-29 21:50 - 2012-11-06 06:18 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-29 21:50 - 2012-11-06 06:18 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2016-09-29 21:50 - 2012-11-06 06:18 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2016-09-29 21:50 - 2012-11-06 06:17 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2016-09-29 21:50 - 2012-11-06 06:17 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2016-09-29 21:50 - 2012-11-06 06:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll
2016-09-29 21:50 - 2012-11-06 05:58 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-09-29 21:50 - 2012-11-06 05:56 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-09-29 21:50 - 2012-11-06 05:55 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2016-09-29 21:50 - 2012-11-06 05:55 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2016-09-29 21:50 - 2012-11-06 05:55 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2016-09-29 21:50 - 2012-11-06 05:55 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2016-09-29 21:50 - 2012-11-06 05:55 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fxppm.sys
2016-09-29 21:49 - 2013-08-02 08:28 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-09-29 21:49 - 2013-08-02 07:08 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2016-09-29 21:49 - 2013-07-25 01:10 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-09-29 21:49 - 2013-07-25 01:06 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-09-29 21:48 - 2015-09-02 15:48 - 00046080 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-09-29 21:48 - 2015-09-02 15:38 - 00035328 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-09-29 21:48 - 2015-08-28 23:59 - 00304128 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-09-29 21:48 - 2015-08-27 20:41 - 00366592 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-09-29 21:48 - 2014-04-30 00:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2016-09-29 21:48 - 2014-04-30 00:32 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2016-09-29 21:48 - 2013-08-03 08:40 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2016-09-29 21:48 - 2013-08-03 08:40 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2016-09-29 21:48 - 2013-08-03 08:40 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2016-09-29 21:48 - 2013-08-03 07:14 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2016-09-29 21:48 - 2013-08-03 07:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2016-09-29 21:48 - 2013-08-03 07:13 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2016-09-29 21:48 - 2013-07-02 03:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-09-29 21:48 - 2013-07-02 03:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2016-09-29 21:48 - 2013-07-01 03:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2016-09-29 21:48 - 2013-07-01 03:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-09-29 21:48 - 2013-07-01 03:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-09-29 21:48 - 2013-07-01 03:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-09-29 21:48 - 2013-06-29 05:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-09-29 21:48 - 2013-06-29 05:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2016-09-29 21:48 - 2012-10-12 10:08 - 00027880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2016-09-29 21:48 - 2012-10-12 08:14 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2016-09-29 21:47 - 2015-12-04 18:29 - 01636784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-09-29 21:47 - 2015-12-04 18:12 - 00793312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-09-29 21:47 - 2015-12-04 18:12 - 00522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-09-29 21:47 - 2015-12-04 18:12 - 00446872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-09-29 21:47 - 2015-12-04 18:12 - 00253624 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-09-29 21:47 - 2015-12-04 16:55 - 00612528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-09-29 21:47 - 2015-12-04 16:55 - 00463880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-09-29 21:47 - 2015-12-04 16:55 - 00324456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-09-29 21:47 - 2015-12-04 16:52 - 02842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 02615808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 01770496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 01350656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 01150464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-09-29 21:47 - 2015-12-04 16:52 - 01100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-09-29 21:47 - 2015-12-04 16:52 - 01073664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 00577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 02893824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 01527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 01208832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 01174016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 01138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-09-29 21:47 - 2015-12-04 16:51 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-09-29 21:47 - 2015-12-04 16:46 - 02620928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 02312704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-09-29 21:47 - 2015-12-04 16:46 - 00904192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-09-29 21:47 - 2015-12-04 16:46 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 00487936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-09-29 21:47 - 2015-12-04 16:46 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 02400256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 01453568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00946688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-09-29 21:47 - 2015-12-04 16:45 - 00929792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-09-29 21:47 - 2015-10-11 08:45 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-09-29 21:47 - 2015-10-11 08:45 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-09-29 21:47 - 2015-09-23 15:10 - 00377552 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-09-29 21:47 - 2015-09-23 15:10 - 00332576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-09-29 21:47 - 2015-09-12 15:09 - 00414559 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-09-29 21:47 - 2014-12-18 10:51 - 00096576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2016-09-29 21:47 - 2014-12-18 08:52 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-09-29 21:47 - 2014-12-18 08:20 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-09-29 21:47 - 2014-12-06 09:51 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-09-29 21:47 - 2013-11-20 02:15 - 03842560 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-09-29 21:47 - 2013-11-20 01:57 - 03288576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-09-29 21:47 - 2013-09-28 05:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-09-29 21:47 - 2013-06-10 21:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-09-29 21:47 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-09-29 21:46 - 2015-12-06 00:20 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-09-29 21:46 - 2015-12-06 00:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-09-29 21:46 - 2015-12-06 00:19 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-09-29 21:46 - 2015-12-05 16:49 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-09-29 21:46 - 2015-12-05 16:49 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-09-29 21:46 - 2015-12-05 16:49 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-09-29 21:46 - 2015-12-04 16:51 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-09-29 21:46 - 2015-12-04 16:46 - 01468928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-09-29 21:46 - 2015-12-04 16:46 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-09-29 21:46 - 2015-12-04 16:46 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-09-29 21:46 - 2015-12-04 16:46 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2016-09-29 21:46 - 2015-12-04 16:46 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-09-29 21:46 - 2015-12-04 16:45 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-09-29 21:46 - 2015-12-04 16:45 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-09-29 21:46 - 2015-12-04 16:45 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-09-29 21:46 - 2015-12-03 21:57 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2016-09-29 21:46 - 2015-11-05 11:55 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-09-29 21:46 - 2015-10-13 15:16 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-09-29 21:46 - 2015-10-13 15:16 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-09-29 21:46 - 2014-12-06 09:53 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-09-29 21:46 - 2014-12-06 09:53 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2016-09-29 21:46 - 2014-12-06 09:51 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2016-09-29 21:46 - 2014-12-06 08:10 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-09-29 21:46 - 2014-12-06 08:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2016-09-29 21:46 - 2014-12-06 08:09 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2016-09-29 21:46 - 2013-10-31 07:56 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-09-29 21:46 - 2013-10-31 07:56 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-09-29 21:46 - 2013-10-31 06:01 - 00550400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-09-29 21:46 - 2013-10-31 05:42 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2016-09-29 21:46 - 2013-10-13 22:49 - 00100696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2016-09-29 21:46 - 2013-10-10 11:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2016-09-29 21:46 - 2013-10-10 11:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2016-09-29 21:46 - 2013-10-10 11:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2016-09-29 21:46 - 2013-10-10 11:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2016-09-29 21:46 - 2013-10-10 11:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2016-09-29 21:46 - 2013-10-10 11:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2016-09-29 21:46 - 2013-10-10 11:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2016-09-29 21:46 - 2013-07-09 08:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2016-09-29 21:46 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2016-09-29 21:46 - 2012-10-11 07:46 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-09-29 21:46 - 2012-10-11 07:45 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-09-29 21:46 - 2012-10-11 07:44 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2016-09-29 21:46 - 2012-10-11 07:19 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2016-09-29 21:46 - 2012-10-11 07:07 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-09-29 21:45 - 2016-10-24 09:09 - 04039168 _____ C:\Users\XXXXX\Downloads\COGNOME-NOME-REGISTRO-RELAZIONE-INIZIALE-2016-17 (1).xls
2016-09-29 21:44 - 2015-11-07 14:46 - 01341952 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-09-29 21:44 - 2015-11-07 14:44 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-09-29 21:44 - 2015-11-07 14:44 - 01280000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-09-29 21:44 - 2015-11-07 11:32 - 01412608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-09-29 21:44 - 2015-11-07 09:52 - 04063232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-09-29 21:44 - 2015-11-07 07:53 - 01126912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-09-29 21:44 - 2015-11-07 07:52 - 01680384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-09-29 21:44 - 2015-11-07 07:46 - 01426944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-09-29 21:44 - 2014-03-11 02:41 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2016-09-29 21:44 - 2014-03-11 02:41 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dimsroam.dll
2016-09-29 21:44 - 2014-03-11 02:38 - 00684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2016-09-29 21:44 - 2014-03-11 02:38 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-09-29 21:44 - 2014-03-11 02:38 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2016-09-29 21:39 - 2015-07-15 18:09 - 00095064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-09-29 21:39 - 2015-07-15 15:29 - 01333248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2016-09-29 21:36 - 2016-09-29 21:36 - 03939328 _____ C:\Users\XXXXX\Downloads\COGNOME-NOME-REGISTRO-RELAZIONE-INIZIALE-2016-17.xls
2016-09-29 21:35 - 2014-07-24 15:50 - 00447296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-09-29 21:35 - 2014-07-17 01:28 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2016-09-29 21:35 - 2014-07-17 00:59 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2016-09-29 21:35 - 2014-07-17 00:59 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2016-09-29 21:35 - 2014-07-12 08:45 - 01549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-09-29 21:35 - 2014-07-12 06:36 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-09-29 21:35 - 2014-07-12 06:34 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-09-29 21:33 - 2015-01-24 08:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-09-29 21:33 - 2015-01-24 07:00 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-09-29 21:31 - 2015-07-09 23:47 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-09-29 21:31 - 2015-07-09 23:47 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
         
__________________

Alt 24.10.2016, 12:21   #4
ItalyWoman78
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



zweiter teil von Farbar...

Code:
ATTFilter
2016-09-29 21:31 - 2015-07-09 22:18 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-09-29 21:30 - 2014-12-19 06:35 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-09-29 21:29 - 2015-03-04 09:26 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AutoUpdate.exe
2016-09-29 21:29 - 2015-03-04 09:26 - 00467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe
2016-09-29 21:29 - 2015-03-04 09:26 - 00011105 _____ C:\WINDOWS\system32\AutoconfigV2.cab
2016-09-29 21:29 - 2015-03-04 08:41 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-09-29 21:29 - 2015-03-04 08:41 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-29 21:29 - 2015-03-04 06:53 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-09-29 21:29 - 2015-03-04 06:53 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-29 21:29 - 2014-10-22 03:01 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-09-29 21:29 - 2014-10-22 03:00 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2016-09-29 21:29 - 2014-01-31 02:48 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-09-29 21:27 - 2014-11-08 13:22 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2016-09-29 21:27 - 2014-11-08 08:57 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2016-09-29 21:27 - 2014-10-23 14:47 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2016-09-29 21:27 - 2014-10-23 13:04 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2016-09-29 21:26 - 2015-12-08 17:43 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-09-29 21:26 - 2015-12-08 17:16 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-09-29 21:26 - 2015-12-04 02:55 - 00595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-09-29 21:26 - 2015-12-03 23:47 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-09-29 21:26 - 2015-08-01 16:50 - 17562112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-09-29 21:26 - 2015-08-01 15:56 - 19778048 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-09-29 21:26 - 2015-04-25 05:41 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-09-29 21:26 - 2015-04-25 01:13 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-09-29 21:26 - 2014-06-03 00:33 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2016-09-29 21:26 - 2014-03-01 11:47 - 01258496 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2016-09-29 21:26 - 2014-03-01 11:47 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2016-09-29 21:26 - 2014-03-01 10:07 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2016-09-29 21:26 - 2014-03-01 08:59 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2016-09-29 21:26 - 2014-02-15 06:15 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2016-09-29 21:26 - 2013-11-26 01:17 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-09-29 21:25 - 2015-12-31 01:29 - 06972760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-09-29 21:25 - 2015-11-16 16:42 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-09-29 21:25 - 2015-11-16 16:29 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-09-29 21:25 - 2015-11-16 16:29 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-09-29 21:25 - 2015-11-16 16:29 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-09-29 21:25 - 2015-11-16 16:29 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2016-09-29 21:25 - 2015-11-16 16:29 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-09-29 21:25 - 2015-11-16 16:28 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-09-29 21:25 - 2015-11-16 16:28 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2016-09-29 21:25 - 2015-11-16 16:27 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-09-29 21:25 - 2015-11-16 16:26 - 01282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2016-09-29 21:25 - 2015-09-23 15:10 - 00570256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-09-29 21:25 - 2015-09-22 19:53 - 01405408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-09-29 21:25 - 2015-09-22 19:53 - 01273184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-09-29 21:25 - 2015-06-25 20:29 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-09-29 21:25 - 2015-06-25 20:27 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-09-29 21:25 - 2015-05-02 08:28 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-09-29 21:25 - 2015-01-15 11:38 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2016-09-29 21:25 - 2015-01-15 11:09 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2016-09-29 21:25 - 2015-01-07 06:25 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-09-29 21:25 - 2014-10-11 07:41 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2016-09-29 21:25 - 2014-10-11 07:05 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2016-09-29 21:25 - 2014-04-12 08:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\workerdd.dll
2016-09-29 21:25 - 2014-03-11 02:39 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-09-29 21:25 - 2014-03-11 02:38 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2016-09-29 21:25 - 2014-03-10 03:27 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-09-29 21:25 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-09-29 21:25 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-09-29 14:04 - 2016-10-21 21:10 - 00002204 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-29 14:04 - 2016-10-21 21:10 - 00002192 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-29 14:03 - 2016-10-24 12:08 - 00001170 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-29 14:03 - 2016-10-17 15:22 - 00001166 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-29 14:03 - 2016-10-02 17:05 - 00000000 ____D C:\Users\XXXXX\AppData\Local\Google
2016-09-29 14:03 - 2016-09-29 14:04 - 00000000 ____D C:\Program Files (x86)\Google
2016-09-29 14:03 - 2016-09-29 14:03 - 00004142 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-09-29 14:03 - 2016-09-29 14:03 - 00003906 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-09-29 14:02 - 2016-09-29 14:03 - 00000000 ____D C:\Users\XXXXX\AppData\Local\Deployment
2016-09-29 14:02 - 2016-09-29 14:03 - 00000000 ____D C:\Users\XXXXX\AppData\Local\Apps\2.0
2016-09-29 13:45 - 2016-09-29 13:45 - 00000000 ____D C:\Users\XXXXX\AppData\Roaming\Mozilla
2016-09-29 13:45 - 2016-09-29 13:45 - 00000000 ____D C:\Users\XXXXX\AppData\Local\Amazon_Services_LLC

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-24 09:13 - 2012-07-26 07:37 - 00000000 ____D C:\WINDOWS\Inf
2016-10-23 09:49 - 2013-09-16 16:48 - 00001133 _____ C:\Users\XXXXX\Desktop\Cyberlink Power2Go.lnk
2016-10-17 11:51 - 2013-09-18 18:43 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2768397689-4292562880-697418737-1001
2016-10-17 11:33 - 2012-07-26 09:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-17 11:31 - 2012-11-16 02:13 - 00000000 ____D C:\Program Files (x86)\Amazon
2016-10-17 11:20 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-17 11:19 - 2012-07-26 07:26 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-10-17 10:38 - 2013-09-18 20:03 - 00000000 ____D C:\Users\XXXXX\AppData\Roaming\Avira
2016-10-15 12:27 - 2012-11-16 10:43 - 00741800 _____ C:\WINDOWS\system32\perfh007.dat
2016-10-15 12:27 - 2012-11-16 10:43 - 00155360 _____ C:\WINDOWS\system32\perfc007.dat
2016-10-15 12:27 - 2012-07-26 09:28 - 01745416 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-11 21:27 - 2013-09-18 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-10-11 21:24 - 2013-09-18 19:44 - 00153392 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2016-10-11 21:24 - 2013-09-18 19:44 - 00149832 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2016-10-10 14:19 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AppCompat
2016-10-09 22:46 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\rescache
2016-10-09 21:33 - 2012-07-26 10:12 - 00000000 ___RD C:\WINDOWS\ToastData
2016-10-09 21:32 - 2012-07-26 10:12 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-09 21:32 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-10-09 21:32 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Defender
2016-10-09 21:32 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-10-09 21:32 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-09 21:32 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-10-09 21:31 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-10-09 21:30 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\WinStore
2016-10-09 11:31 - 2013-09-18 19:44 - 00000000 ____D C:\ProgramData\Avira
2016-10-09 11:30 - 2013-09-18 19:44 - 00078208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2016-10-09 11:30 - 2013-09-18 19:44 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2016-10-08 10:54 - 2012-07-26 07:26 - 00000191 _____ C:\WINDOWS\win.ini
2016-10-06 17:29 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-10-06 17:25 - 2012-07-26 09:52 - 00000000 ____D C:\Program Files\Windows Journal
2016-10-06 10:23 - 2012-11-16 02:12 - 00000000 ____D C:\ProgramData\Adobe
2016-10-06 10:22 - 2013-09-18 18:56 - 00000000 ____D C:\Users\XXXXX\AppData\Local\Adobe
2016-10-06 10:21 - 2013-09-16 16:49 - 00000000 ____D C:\Users\XXXXX\AppData\Roaming\Adobe
2016-10-06 10:20 - 2012-11-16 02:12 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-10-06 10:06 - 2013-09-16 16:48 - 00000000 ____D C:\Users\XXXXX
2016-10-06 10:02 - 2012-11-16 01:54 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-05 21:06 - 2012-07-26 10:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-05 21:06 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2016-10-05 18:45 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-10-05 18:43 - 2013-09-16 16:50 - 00000000 ____D C:\Users\XXXXX\AppData\Roaming\Lenovo
2016-10-05 18:43 - 2012-11-16 02:12 - 00000000 ____D C:\ProgramData\CyberLink
2016-10-01 18:47 - 2013-09-18 19:44 - 00000000 ____D C:\Program Files (x86)\Avira
2016-09-29 13:46 - 2013-09-16 16:48 - 00000000 ____D C:\Users\XXXXX\AppData\Local\VirtualStore

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2012-11-16 01:59 - 2012-11-16 01:59 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\XXXXX\AppData\Local\Temp\avgnt.exe
C:\Users\XXXXX\AppData\Local\Temp\libeay32.dll
C:\Users\XXXXX\AppData\Local\Temp\msvcr120.dll
C:\Users\XXXXX\AppData\Local\Temp\ose00000.exe
C:\Users\XXXXX\AppData\Local\Temp\sqlite3.dll
C:\Users\XXXXX\AppData\Local\Temp\sqlite3.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-10-19 11:25

==================== Ende von FRST.txt ============================
         
Auch andere Log-Datei von Farbar hier:

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 17-10-2016
durchgeführt von XXXXX (24-10-2016 12:09:52)
Gestartet von C:\Users\XXXXX\Desktop
Windows 8 (X64) (2013-09-16 14:48:23)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2768397689-4292562880-697418737-500 - Administrator - Disabled)
XXXXX (S-1-5-21-2768397689-4292562880-697418737-1001 - Administrator - Enabled) => C:\Users\XXXXX
Gast (S-1-5-21-2768397689-4292562880-697418737-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2768397689-4292562880-697418737-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.020.20039 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.8.0.1430 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.8.42.71502 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.8.42.71502 - Alcor Micro Corp.) Hidden
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.4 - Atheros Communications Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.22.54 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{82dc2ab6-088f-4e0a-8e27-bb829481d3bc}) (Version: 1.2.70.16079 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.2.70.16079 - Avira Operations GmbH & Co. KG) Hidden
Benutzerhandbuch (x32 Version: 1.0.0.9 - Lenovo) Hidden
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.59.20 - Broadcom Corporation)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.13 - Dolby Laboratories Inc)
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.3 - Lenovo)
Energy Management (x32 Version: 8.0.2.3 - Lenovo) Hidden
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{B4F0E794-11F5-4971-85EC-6D7F2E4DAC68}) (Version: 4.4.3 - SEIKO EPSON CORPORATION)
EPSON XP-212 213 Series Printer Uninstall (HKLM\...\EPSON XP-212 213 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
ETDWare PS/2-X64 11.4.4.2_WHQL (HKLM\...\Elantech) (Version: 11.4.4.2 - ELAN Microelectronic Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ECC-B6BD-9C31E51D0333}) (Version: 1.12.824.1 - Vimicro)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.0710 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.0710 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4310.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.4310.52 - CyberLink Corp.) Hidden
Lenovo Solution Center (HKLM\...\{1E939186-B443-4262-A278-3C82949EA7AC}) (Version: 1.1.009.00 - Lenovo Group Limited)
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3127 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3127 - CyberLink Corp.) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manuali EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.52.0.0 - SEIKO EPSON CORPORATION)
Microsoft Office Standard 2010 (HKLM-x32\...\Office14.STANDARD) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.9109 - CyberLink Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6675 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
Windows-Treiberpaket - Lenovo (ACPIVPC) System  (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0131D189-DBE3-426F-89D4-135F543868D6} - System32\Tasks\EPSON XP-212 213 Series Invitation {CB93876F-27CF-4D16-839E-2A739141CFD9} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {23FBAB1B-5585-4356-A433-DCEB996FFE04} - System32\Tasks\EPSON XP-212 213 Series Invitation {7E19FBB4-F756-44BB-AE6A-7243E1C049BE} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {2A2473EC-A81D-479B-9ABC-C3554C84B686} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-29] (Google Inc.)
Task: {2CB5B566-699D-48D3-9936-61B6DFAFCDF5} - System32\Tasks\EPSON XP-212 213 Series Update {6D2C54C6-D69C-455D-9BE6-2A89C97826B8} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {4508B67C-A68E-493C-8FD9-A76F235F523D} - System32\Tasks\EPSON XP-212 213 Series Update {CB93876F-27CF-4D16-839E-2A739141CFD9} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {4EC6C285-1D47-4919-8467-7E55ACA6A5D0} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\lsc.exe [2012-08-08] ()
Task: {A105837E-25CA-4534-960B-247870334278} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27] (CyberLink)
Task: {A6F2680A-DAD9-4116-B2A5-36CB3DB1B9D1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-29] (Google Inc.)
Task: {AA2EE2D6-7F64-45A7-B91F-9CE216155E17} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2012-08-08] ()
Task: {AA379178-DBCE-4C93-ADD1-33AE85698E61} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2012-08-08] ()
Task: {AF29C1FB-A4A2-4FAF-BED4-5B6ECC8C39D5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {B9DBB8E9-F8C3-4681-9894-9079C4B1B769} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {D5E0748F-C2B9-4803-9864-A1C80320DA0B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2012-08-08] (Lenovo)
Task: {DB2B9361-AC4F-4603-84DC-A500CBB97BF7} - System32\Tasks\EPSON XP-212 213 Series Invitation {6D2C54C6-D69C-455D-9BE6-2A89C97826B8} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {E37179E0-2EA5-447A-8C84-569669F3D1FD} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2012-08-08] ()
Task: {E68509C9-2FC8-495C-B1B6-FC4DAFA4D081} - System32\Tasks\EPSON XP-212 213 Series Update {7E19FBB4-F756-44BB-AE6A-7243E1C049BE} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {CB93876F-27CF-4D16-839E-2A739141CFD9}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE:/EXE:{6D2C54C6-D69C-455D-9BE6-2A89C97826B8} /F:Update WORKGROUP\IDEA-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE:/EXE:{7E19FBB4-F756-44BB-AE6A-7243E1C049BE} /F:Update WORKGROUP\IDEA-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {CB93876F-27CF-4D16-839E-2A739141CFD9}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE:/EXE:{CB93876F-27CF-4D16-839E-2A739141CFD9} /F:Update WORKGROUP\IDEA-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2012-11-16 02:01 - 2011-08-11 16:30 - 01069056 _____ () C:\WINDOWS\SYSTEM32\332prx64.ax
2016-10-21 21:10 - 2016-10-20 10:56 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libglesv2.dll
2016-10-21 21:10 - 2016-10-20 10:56 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libegl.dll
2012-11-16 01:55 - 2012-06-25 04:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2768397689-4292562880-697418737-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
HKU\S-1-5-21-2768397689-4292562880-697418737-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [TCP Query User{7DF4AADF-0BC2-4D44-9B28-B7AB7D94DF90}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{5E2ABACE-F7ED-46F8-B0B2-571C4584A8D3}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [TCP Query User{4A46442C-E65D-429A-B35A-1DD2FCC2E392}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{37912805-8B48-4331-AD73-1AF9C4425E49}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{AB4F4B9B-D485-47DE-A9D9-757679B9B997}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{7075C55C-FF86-4ABA-8DD2-84011A9F3973}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{3934943D-A879-49CD-BFCC-9B50AB561D21}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

03-10-2016 21:52:06 Windows Update
05-10-2016 18:50:32 Installed EpsonNet Print
09-10-2016 20:31:36 Windows Update
13-10-2016 22:30:41 Windows Update
17-10-2016 11:37:36 JRT Pre-Junkware Removal
24-10-2016 11:53:25 JRT Pre-Junkware Removal

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (10/24/2016 08:23:44 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 10.0.9200.17568 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1094

Startzeit: 01d22d40197fccfa

Endzeit: 0

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID: 616a4363-99b2-11e6-be7c-3c970e4c5bcc

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/23/2016 08:33:55 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80070005).

Error: (10/23/2016 05:14:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm IEXPLORE.EXE, Version 10.0.9200.17568 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 778

Startzeit: 01d22d401986f3ba

Endzeit: 16

Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Berichts-ID: 651ceb77-9933-11e6-be7c-3c970e4c5bcc

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/23/2016 09:40:24 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80070005).

Error: (10/21/2016 11:17:45 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80070005).

Error: (10/20/2016 05:09:25 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80070005).

Error: (10/19/2016 10:38:54 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: idea-PC)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/19/2016 10:38:54 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: idea-PC)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/19/2016 10:38:43 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: idea-PC)
Description: Die App „winstore_cw5n1h2txyewy!Windows.Store“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.

Error: (10/19/2016 07:36:06 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80070005).


Systemfehler:
=============
Error: (10/23/2016 09:50:39 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung vom Remoteendpunkt empfangen. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40.

Error: (10/23/2016 09:50:39 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung vom Remoteendpunkt empfangen. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40.

Error: (10/21/2016 11:12:01 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.

Error: (10/21/2016 11:11:31 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.

Error: (10/17/2016 11:32:54 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (10/17/2016 11:32:54 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (10/17/2016 11:32:54 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Der Dienst Gruppenrichtlinienclient konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.

Error: (10/17/2016 11:32:21 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (10/17/2016 11:32:19 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
Es wird bereits eine Instanz des Dienstes ausgeführt.

Error: (10/17/2016 11:31:49 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i3-2328M CPU @ 2.20GHz
Prozentuale Nutzung des RAM: 36%
Installierter physikalischer RAM: 3941.41 MB
Verfügbarer physikalischer RAM: 2496.13 MB
Summe virtueller Speicher: 6501.41 MB
Verfügbarer virtueller Speicher: 4574.29 MB

==================== Laufwerke ================================

Drive c: (Windows8_OS) (Fixed) (Total:418.43 GB) (Free:367.4 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.93 GB) NTFS
Drive e: (INTENSO) (Removable) (Total:7.49 GB) (Free:7.49 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 2E4C86E9)

Partition: GPT.

========================================================
Disk: 1 (Size: 7.5 GB) (Disk ID: 95E46E6C)
Partition 1: (Not Active) - (Size=7.5 GB) - (Type=0B)

==================== Ende von Addition.txt ============================
         

Alt 24.10.2016, 13:34   #5
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Bitte Avira deinstallieren. Das Teil empfehlen wir schon seit Jahren aus mehreren Gründen nicht mehr. Ein Grund ist ne rel. hohe Fehlalarmquote, der zweite Hauptgrund ist, dass die immer noch mit ASK zusammenarbeiten (Avira Suchfunktion geht über ASK). Auch andere Freewareanbieter wie AVG, Avast oder Panda sprangen auf diesen Zug auf; so was ist bei Sicherheitssoftware einfach inakzeptabel. Vgl. Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog

Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!


Alt 24.10.2016, 17:27   #6
ItalyWoman78
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Geht in Ordnung, spätestens morgen ist Antivir weg.
Was mache ich dann?

Alt 24.10.2016, 20:59   #7
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



erstmal nur Bescheid geben

Alt 25.10.2016, 11:40   #8
ItalyWoman78
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Habe AntiVir-Programm vollständig deinstalliert. Und nun?

Alt 25.10.2016, 11:52   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



1. Schritt: Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers




2. Schritt: Kaspersky TDSS-Killer

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Alt 25.10.2016, 12:20   #10
ItalyWoman78
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Nix gefunden!!

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2016.10.25.07
  rootkit: v2016.09.26.02

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.17607
XXXXXXXX :: IDEA-PC [administrator]

25/10/2016 11.56.14
mbar-log-2016-10-25 (11-56-14).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 300210
Time elapsed: 18 minute(s), 53 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
Code:
ATTFilter
12:16:26.0410 0x07e4  TDSS rootkit removing tool 3.1.0.11 Aug  5 2016 12:13:31
12:16:26.0410 0x07e4  UEFI system
12:16:30.0020 0x07e4  ============================================================
12:16:30.0020 0x07e4  Current date / time: 2016/10/25 12:16:30.0020
12:16:30.0020 0x07e4  SystemInfo:
12:16:30.0020 0x07e4  
12:16:30.0020 0x07e4  OS Version: 6.2.9200 ServicePack: 0.0
12:16:30.0020 0x07e4  Product type: Workstation
12:16:30.0020 0x07e4  ComputerName: IDEA-PC
12:16:30.0020 0x07e4  UserName: XXXXX
12:16:30.0020 0x07e4  Windows directory: C:\WINDOWS
12:16:30.0020 0x07e4  System windows directory: C:\WINDOWS
12:16:30.0020 0x07e4  Running under WOW64
12:16:30.0020 0x07e4  Processor architecture: Intel x64
12:16:30.0020 0x07e4  Number of processors: 4
12:16:30.0020 0x07e4  Page size: 0x1000
12:16:30.0020 0x07e4  Boot type: Normal boot
12:16:30.0020 0x07e4  CodeIntegrityOptions = 0x00000001
12:16:30.0020 0x07e4  ============================================================
12:16:31.0291 0x07e4  KLMD registered as C:\WINDOWS\system32\drivers\51947838.sys
12:16:31.0291 0x07e4  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 9200.17617, osProperties = 0x19
12:16:32.0419 0x07e4  System UUID: {1A611CF1-B736-8336-0604-6B0FBEA6A393}
12:16:33.0372 0x07e4  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:16:33.0372 0x07e4  Drive \Device\Harddisk1\DR1 - Size: 0x1E0000000 ( 7.50 Gb ), SectorSize: 0x200, Cylinders: 0x3D3, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:16:33.0372 0x07e4  ============================================================
12:16:33.0372 0x07e4  \Device\Harddisk0\DR0:
12:16:33.0388 0x07e4  GPT partitions:
12:16:33.0388 0x07e4  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {51462966-C345-4F38-BD63-3082E10DA5CA}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1F4000
12:16:33.0388 0x07e4  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {59525121-71E5-4332-9252-6627AB27F2B7}, Name: EFI system partition, StartLBA 0x1F4800, BlocksNum 0x82000
12:16:33.0388 0x07e4  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {BFBFAFE7-A34F-448A-9A5B-6213EB736C22}, UniqueGUID: {9CEA1082-F01A-4FEC-8382-45486A75FE5F}, Name: Basic data partition, StartLBA 0x276800, BlocksNum 0x1F4000
12:16:33.0388 0x07e4  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {CA45B96D-3159-4A5E-9B0F-089DE7BD1A18}, Name: Microsoft reserved partition, StartLBA 0x46A800, BlocksNum 0x40000
12:16:33.0388 0x07e4  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {86083B57-D3CF-46DD-BAAB-82C751A704C3}, Name: Basic data partition, StartLBA 0x4AA800, BlocksNum 0x344DB800
12:16:33.0388 0x07e4  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {A5163190-9A5E-4C1D-B19E-D60B93331B8B}, Name: Basic data partition, StartLBA 0x34986000, BlocksNum 0x3200000
12:16:33.0388 0x07e4  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {2ACF0B73-A557-46F0-BA31-AE38792473DE}, Name: Basic data partition, StartLBA 0x37B86000, BlocksNum 0x2800000
12:16:33.0388 0x07e4  MBR partitions:
12:16:33.0388 0x07e4  \Device\Harddisk1\DR1:
12:16:33.0388 0x07e4  MBR partitions:
12:16:33.0388 0x07e4  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x800, BlocksNum 0xEFF800
12:16:33.0388 0x07e4  ============================================================
12:16:33.0419 0x07e4  C: <-> \Device\Harddisk0\DR0\Partition5
12:16:33.0622 0x07e4  D: <-> \Device\Harddisk0\DR0\Partition6
12:16:33.0622 0x07e4  ============================================================
12:16:33.0622 0x07e4  Initialize success
12:16:33.0622 0x07e4  ============================================================
12:16:46.0935 0x07dc  ============================================================
12:16:46.0935 0x07dc  Scan started
12:16:46.0935 0x07dc  Mode: Manual; 
12:16:46.0935 0x07dc  ============================================================
12:16:46.0935 0x07dc  KSN ping started
12:16:49.0298 0x07dc  KSN ping finished: true
12:16:50.0533 0x07dc  ================ Scan system memory ========================
12:16:50.0533 0x07dc  System memory - ok
12:16:50.0533 0x07dc  ================ Scan services =============================
12:16:51.0033 0x07dc  [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
12:16:51.0064 0x07dc  1394ohci - ok
12:16:51.0095 0x07dc  [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
12:16:51.0095 0x07dc  3ware - ok
12:16:51.0173 0x07dc  [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
12:16:51.0189 0x07dc  ACPI - ok
12:16:51.0205 0x07dc  [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
12:16:51.0205 0x07dc  acpiex - ok
12:16:51.0220 0x07dc  [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
12:16:51.0236 0x07dc  acpipagr - ok
12:16:51.0236 0x07dc  [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
12:16:51.0236 0x07dc  AcpiPmi - ok
12:16:51.0236 0x07dc  [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
12:16:51.0236 0x07dc  acpitime - ok
12:16:51.0267 0x07dc  [ 3B42D95D20CD2AACDB0564471AE43ED7, BF49568D7060159F61D5F6DE7ECDECCCD1F920A2881544BA83CF420C822F6653 ] ACPIVPC         C:\WINDOWS\System32\drivers\AcpiVpc.sys
12:16:51.0283 0x07dc  ACPIVPC - ok
12:16:51.0392 0x07dc  [ DC00FD73505DAEDD99CAF4533B0C05BD, 2863D1F0587B79254FBE093C191C73892768CF2AC59BEF97745EE66CEE3473AF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:16:51.0408 0x07dc  AdobeARMservice - ok
12:16:51.0455 0x07dc  [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx         C:\WINDOWS\system32\drivers\adp94xx.sys
12:16:51.0470 0x07dc  adp94xx - ok
12:16:51.0502 0x07dc  [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci         C:\WINDOWS\system32\drivers\adpahci.sys
12:16:51.0517 0x07dc  adpahci - ok
12:16:51.0517 0x07dc  [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320         C:\WINDOWS\system32\drivers\adpu320.sys
12:16:51.0533 0x07dc  adpu320 - ok
12:16:51.0564 0x07dc  [ 480C020D9B58E881A5349F5F1189A418, 8AE8ED9CD8F239DF47853FBCE45DB34652CE94E3FD296FDF3897AC6DD5F9B143 ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
12:16:51.0564 0x07dc  AeLookupSvc - ok
12:16:51.0611 0x07dc  [ 8252EE6D7F87846EA409D0DA602FB1D9, 2A89C654B2C92B8E2445A35A1B6ACA4926AFDC2C875142E0A21D339B8FC8D474 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
12:16:51.0627 0x07dc  AFD - ok
12:16:51.0642 0x07dc  [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
12:16:51.0642 0x07dc  agp440 - ok
12:16:51.0658 0x07dc  [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG             C:\WINDOWS\System32\alg.exe
12:16:51.0674 0x07dc  ALG - ok
12:16:51.0689 0x07dc  [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\WINDOWS\system32\AUInstallAgent.dll
12:16:51.0689 0x07dc  AllUserInstallAgent - ok
12:16:51.0720 0x07dc  [ 5A81054B824004B1ECC04F0034A1CDF9, 73A1986A4B346C425157216EBF16CC90EFFC642EDF6109E6364CF0552E3388FD ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
12:16:51.0720 0x07dc  AmdK8 - ok
12:16:51.0736 0x07dc  [ B849D453E644FAB9BC8EF6DC8CA9C4C6, B803CDA478D3385937C44CBB05A0E65ABACEFEBA682975787C44E2904FB89D2D ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
12:16:51.0736 0x07dc  AmdPPM - ok
12:16:51.0752 0x07dc  [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
12:16:51.0752 0x07dc  amdsata - ok
12:16:51.0767 0x07dc  [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
12:16:51.0783 0x07dc  amdsbs - ok
12:16:51.0783 0x07dc  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
12:16:51.0783 0x07dc  amdxata - ok
12:16:51.0814 0x07dc  [ C7BE7FBB9B6BDE11E12A0F204384C1D6, 36A6387B90DFB2488ABF135198F0F9E19EE29F7A521818DF92E64B36A0BE0245 ] AmUStor         C:\WINDOWS\system32\drivers\AmUStor.SYS
12:16:51.0814 0x07dc  AmUStor - ok
12:16:51.0814 0x07dc  [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
12:16:51.0830 0x07dc  AppID - ok
12:16:51.0845 0x07dc  [ A33B59C8DF9012E7B129D0A1D2F50E81, 50F1E05AA808600B49595CD9FDDDB4327272CC09647E3D94D3FD1B426381F839 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
12:16:51.0845 0x07dc  AppIDSvc - ok
12:16:51.0877 0x07dc  [ 4F750B7EFCB6520AE01E01D082D7D476, AD2A67D727A1D4DD0BBACC6B4BB432FA9A14D50D8BA292B95A4747CEC9F85728 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
12:16:51.0877 0x07dc  Appinfo - ok
12:16:51.0908 0x07dc  [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc             C:\WINDOWS\system32\drivers\arc.sys
12:16:51.0908 0x07dc  arc - ok
12:16:51.0923 0x07dc  [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
12:16:51.0923 0x07dc  arcsas - ok
12:16:51.0923 0x07dc  [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:16:51.0939 0x07dc  AsyncMac - ok
12:16:51.0939 0x07dc  [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
12:16:51.0939 0x07dc  atapi - ok
12:16:51.0970 0x07dc  [ AAC582DE6409BE3B4F791A71A399F2F2, A5CA9924D9FA53694046F4F240D864571754F77397B7F758F2F9781C33A0348B ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
12:16:51.0970 0x07dc  AudioEndpointBuilder - ok
12:16:52.0017 0x07dc  [ C227B4488C8E911DE18FF2BD3D65B163, D162E9426EF738EE4BA9B03AB2053D75BCFCC37623A87290B23C771AB3283F9E ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
12:16:52.0033 0x07dc  Audiosrv - ok
12:16:52.0064 0x07dc  [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
12:16:52.0064 0x07dc  AxInstSV - ok
12:16:52.0095 0x07dc  [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
12:16:52.0111 0x07dc  b06bdrv - ok
12:16:52.0127 0x07dc  [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
12:16:52.0127 0x07dc  BasicDisplay - ok
12:16:52.0142 0x07dc  [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
12:16:52.0142 0x07dc  BasicRender - ok
12:16:52.0486 0x07dc  [ BE60B451147D027809368FBCD5F1BC3C, E5A2A1428A20ED8C88F0B78A555AD22C98C4A05C221B377D6883B7C29D4D9F69 ] BCM43XX         C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys
12:16:52.0736 0x07dc  BCM43XX - ok
12:16:52.0767 0x07dc  [ 89143A7BA7850F5C7E61B43BB44B6418, 00BB781DF87D4FF1BAFD318AFE237296B4F5925023BA4486405EC0A384C88D8F ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
12:16:52.0783 0x07dc  BDESVC - ok
12:16:52.0799 0x07dc  [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
12:16:52.0799 0x07dc  Beep - ok
12:16:52.0845 0x07dc  [ 431320C07A4073BD77AF7E32DB241FA8, 9285D8CE161291751A037C19ABA744A74B41EA6F9805F5A1101198C6E519F444 ] BFE             C:\WINDOWS\System32\bfe.dll
12:16:52.0877 0x07dc  BFE - ok
12:16:52.0923 0x07dc  [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS            C:\WINDOWS\System32\qmgr.dll
12:16:52.0955 0x07dc  BITS - ok
12:16:52.0986 0x07dc  [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
12:16:53.0002 0x07dc  bowser - ok
12:16:53.0017 0x07dc  [ 038FA1B55531E7020DB705B42FCCE373, 023E87E3204D64890D6FEA78E762E5BC5BD0A59325EBC264834727779EEEDBC5 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
12:16:53.0033 0x07dc  BrokerInfrastructure - ok
12:16:53.0049 0x07dc  [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser         C:\WINDOWS\System32\browser.dll
12:16:53.0064 0x07dc  Browser - ok
12:16:53.0095 0x07dc  [ 6695200F455E251F0BCC9CE4D0978D59, 4DB2F967E449581A9330EF43E794B45B93581564B20C5B991FC1EC665A640D69 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
12:16:53.0111 0x07dc  BthAvrcpTg - ok
12:16:53.0127 0x07dc  [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
12:16:53.0142 0x07dc  BthHFEnum - ok
12:16:53.0174 0x07dc  [ DCB4EBD928A6FB368BE6CAE522412DE1, 9E1345F29467054689B9F48B5CCB567760D36610A4EA9AF41B829EAD60347269 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
12:16:53.0174 0x07dc  bthhfhid - ok
12:16:53.0189 0x07dc  [ 033916CE8784A848B9A3D686B7F66D97, B4D0514D59646CF6B70D4FA488CF95C38EA38CC5C509329CC8753E897C640AFA ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
12:16:53.0189 0x07dc  BTHMODEM - ok
12:16:53.0205 0x07dc  [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv         C:\WINDOWS\system32\bthserv.dll
12:16:53.0205 0x07dc  bthserv - ok
12:16:53.0220 0x07dc  [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
12:16:53.0220 0x07dc  cdfs - ok
12:16:53.0236 0x07dc  [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
12:16:53.0236 0x07dc  cdrom - ok
12:16:53.0267 0x07dc  [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
12:16:53.0267 0x07dc  CertPropSvc - ok
12:16:53.0283 0x07dc  [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
12:16:53.0283 0x07dc  circlass - ok
12:16:53.0314 0x07dc  [ 94250D5AE3E7269DB29BCF96E07F21A6, 538C6CDCD193AABDE40CC25220528F8F80AEF828C46D8660234CB0E592B607CB ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
12:16:53.0330 0x07dc  CLFS - ok
12:16:53.0345 0x07dc  [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
12:16:53.0345 0x07dc  CmBatt - ok
12:16:53.0392 0x07dc  [ 1824F120E8390BC47B1C3013C9E84D84, CEC0D3F32410A33FD2CAE3533F0361615037FC20A4229262CB2ED555732EDBFC ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
12:16:53.0408 0x07dc  CNG - ok
12:16:53.0424 0x07dc  [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
12:16:53.0424 0x07dc  CompositeBus - ok
12:16:53.0424 0x07dc  COMSysApp - ok
12:16:53.0439 0x07dc  [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
12:16:53.0439 0x07dc  condrv - ok
12:16:53.0549 0x07dc  [ 812F0775A29FD72B86742B9279BBD355, 91022420A172E838CC421D180C1BB0D75A70148FD81CE34633E1AD07D31B6E38 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
12:16:53.0580 0x07dc  cphs - ok
12:16:53.0595 0x07dc  [ 5CE2742F063731EC10C1B2EE386A2C08, 309919BDDD4649AFB95A99DCF8AFC3BAE10F9BC1E2819C0794CFD0F80682C223 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
12:16:53.0611 0x07dc  CryptSvc - ok
12:16:53.0627 0x07dc  [ FAEF4C245BE832DB41B15DAAC336AFB7, 1F8C98AB0DF4327FCB01FE0356025488E19B48A45FFFA50576B49A8587FAC42B ] dam             C:\WINDOWS\system32\drivers\dam.sys
12:16:53.0627 0x07dc  dam - ok
12:16:53.0674 0x07dc  [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
12:16:53.0705 0x07dc  DcomLaunch - ok
12:16:53.0799 0x07dc  [ FC1569B5705887D74FE7C8A39BE1C71C, 7DEB8FE472C72C439A2F54B6277C0A87AC2083869BD9AF8226071B7AA33B09FF ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
12:16:53.0830 0x07dc  defragsvc - ok
12:16:53.0877 0x07dc  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\WINDOWS\system32\das.dll
12:16:53.0892 0x07dc  DeviceAssociationService - ok
12:16:53.0924 0x07dc  [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
12:16:53.0924 0x07dc  DeviceInstall - ok
12:16:53.0970 0x07dc  [ 431141C6859990824D17F71C30A78728, 448B3DC20C8FDD5B66217E0E01DBCC4904F94BDA0826F109D139DDD2C2D7FBF2 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
12:16:53.0986 0x07dc  Dfsc - ok
12:16:54.0017 0x07dc  [ 9E0E72222264745ADEB0E5AC680B0ED6, 576AFC8741695396A3B8E9DBDD3703E9D70370437D09D162262E47A140D101B4 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
12:16:54.0049 0x07dc  Dhcp - ok
12:16:54.0064 0x07dc  [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache        C:\WINDOWS\system32\drivers\discache.sys
12:16:54.0080 0x07dc  discache - ok
12:16:54.0111 0x07dc  [ AE3786294CC246A5403783E1B86A0168, 29A7B4B490CBB16DAEF5D67D0A58A2577CF3FEE8F889484DB867F6913D9D2A28 ] disk            C:\WINDOWS\system32\drivers\disk.sys
12:16:54.0111 0x07dc  disk - ok
12:16:54.0111 0x07dc  [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
12:16:54.0127 0x07dc  dmvsc - ok
12:16:54.0158 0x07dc  [ B9450BC3F1820A99D010D7426BCA60E9, FC7C35A0C522E5DA52B0616CF99F4903EAC14946180A18A8D8A0FF555BAA87C5 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
12:16:54.0158 0x07dc  Dnscache - ok
12:16:54.0205 0x07dc  [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
12:16:54.0205 0x07dc  dot3svc - ok
12:16:54.0220 0x07dc  [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS             C:\WINDOWS\system32\dps.dll
12:16:54.0220 0x07dc  DPS - ok
12:16:54.0252 0x07dc  [ 9C7C183F937951AE17C5B8B3259CF3FF, 8ED607139F15D08B4835ACF864421BA4C08C88FE90B9AAF707F5D8514D7731B1 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
12:16:54.0252 0x07dc  drmkaud - ok
12:16:54.0283 0x07dc  [ F87F4AAAF6664906248D11D5E579A53B, F283932F68ED93891EEF00C18724359AB7057E922A3CDC8BC6F33F84D2B0BEE5 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
12:16:54.0283 0x07dc  DsmSvc - ok
12:16:54.0361 0x07dc  [ 2BB5627EB587FA995086C3D8C21B6D3F, 871E35BBE66180781324D38823B74263B660CF9254EE348A15421FAC5667F294 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
12:16:54.0392 0x07dc  DXGKrnl - ok
12:16:54.0486 0x07dc  [ 651FBD69A9713D623D456A240F96179C, 22A1F306B454EF9C84D25EF266F3ED0E1D896B1F5BE60170E79F37F2DBCA59F4 ] e1iexpress      C:\WINDOWS\system32\DRIVERS\e1i63x64.sys
12:16:54.0502 0x07dc  e1iexpress - ok
12:16:54.0533 0x07dc  [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
12:16:54.0549 0x07dc  Eaphost - ok
12:16:55.0127 0x07dc  [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
12:16:55.0283 0x07dc  ebdrv - ok
12:16:55.0346 0x07dc  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] EFS             C:\WINDOWS\System32\lsass.exe
12:16:55.0346 0x07dc  EFS - ok
12:16:55.0377 0x07dc  [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
12:16:55.0392 0x07dc  EhStorClass - ok
12:16:55.0424 0x07dc  [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
12:16:55.0439 0x07dc  EhStorTcgDrv - ok
12:16:55.0486 0x07dc  [ D315FF43E23DF424ECEC2F6C930203E4, 68940EDA34DC4945CDD0D8018D96A0DA8F99F16A930946D14E4FECEE033FCB80 ] EpsonScanSvc    C:\WINDOWS\system32\EscSvc64.exe
12:16:55.0502 0x07dc  EpsonScanSvc - ok
12:16:55.0502 0x07dc  [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
12:16:55.0502 0x07dc  ErrDev - ok
12:16:55.0580 0x07dc  [ 56801939DB4ACBE6DFFF1F5D203DA757, 52E2E4EE4C45CE4B001CA25FD442058BF7479F2E42AE93C3B5B168DD47A24A5B ] ETD             C:\WINDOWS\system32\DRIVERS\ETD.sys
12:16:55.0596 0x07dc  ETD - ok
12:16:55.0642 0x07dc  [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem     C:\WINDOWS\system32\es.dll
12:16:55.0658 0x07dc  EventSystem - ok
12:16:55.0721 0x07dc  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
12:16:55.0736 0x07dc  exfat - ok
12:16:55.0799 0x07dc  [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
12:16:55.0814 0x07dc  fastfat - ok
12:16:55.0955 0x07dc  [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax             C:\WINDOWS\system32\fxssvc.exe
12:16:55.0986 0x07dc  Fax - ok
12:16:55.0986 0x07dc  [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
12:16:56.0002 0x07dc  fdc - ok
12:16:56.0017 0x07dc  [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
12:16:56.0017 0x07dc  fdPHost - ok
12:16:56.0017 0x07dc  [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
12:16:56.0017 0x07dc  FDResPub - ok
12:16:56.0049 0x07dc  [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
12:16:56.0064 0x07dc  fhsvc - ok
12:16:56.0080 0x07dc  [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
12:16:56.0080 0x07dc  FileInfo - ok
12:16:56.0080 0x07dc  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
12:16:56.0080 0x07dc  Filetrace - ok
12:16:56.0080 0x07dc  [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
12:16:56.0096 0x07dc  flpydisk - ok
12:16:56.0096 0x07dc  [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
12:16:56.0111 0x07dc  FltMgr - ok
12:16:56.0174 0x07dc  [ B4814D041FBC1AABD19178052A466D0A, 887823E37EC4891F2CC6462F156E5F1A100E35D7AD2EB2F2E7D6AA7C160615E2 ] FontCache       C:\WINDOWS\system32\FntCache.dll
12:16:56.0221 0x07dc  FontCache - ok
12:16:56.0330 0x07dc  [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:16:56.0346 0x07dc  FontCache3.0.0.0 - ok
12:16:56.0392 0x07dc  [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
12:16:56.0392 0x07dc  FsDepends - ok
12:16:56.0408 0x07dc  [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:16:56.0408 0x07dc  Fs_Rec - ok
12:16:56.0471 0x07dc  [ C1646A95EAC515F60CDB2A7A8A013C1E, F559B83C02B17265EDE95DD497C1A94E402F07EC251FC47449F789907AFFED14 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
12:16:56.0486 0x07dc  fvevol - ok
12:16:56.0533 0x07dc  [ A969D92973DFA895E7776B4BFE36DBB2, 7528E6983ECC59291A7A386E4E459B19D1593ABDDFFD276E2F01B0EA21693E20 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
12:16:56.0533 0x07dc  FxPPM - ok
12:16:56.0549 0x07dc  [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
12:16:56.0549 0x07dc  gagp30kx - ok
12:16:56.0580 0x07dc  [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
12:16:56.0580 0x07dc  gencounter - ok
12:16:56.0611 0x07dc  [ FC2B8B06BDBD3B6457F5A3DA9AD2410E, 4BF196E1CAC94E9265EBEB68F41C3E29F0C709ECFF9420B5B1C9C82680D5D6A8 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
12:16:56.0611 0x07dc  GPIOClx0101 - ok
12:16:56.0674 0x07dc  [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
12:16:56.0721 0x07dc  gpsvc - ok
12:16:56.0814 0x07dc  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:16:56.0830 0x07dc  gupdate - ok
12:16:56.0830 0x07dc  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:16:56.0830 0x07dc  gupdatem - ok
12:16:56.0892 0x07dc  [ 630555943E5A3FE21010CE91EC7FC84F, 20D7247A4363EE9E851501D89A466564ADCAEC304DE42280E4E09AD8499436A9 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
12:16:56.0924 0x07dc  HdAudAddService - ok
12:16:56.0955 0x07dc  [ 58CC013EFA9893057160EDA018D8ADCE, BE8AA220CFBD90202C1B130DF349C3198E3447F3C2DC7BC5FC8816F57F78BA00 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
12:16:56.0955 0x07dc  HDAudBus - ok
12:16:56.0986 0x07dc  [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
12:16:56.0986 0x07dc  HidBatt - ok
12:16:57.0033 0x07dc  [ 085F150D002B7F0153D3C06DDF33A143, 41847FD02608ECFE3A6B4B38CBDE8416B0EF17491868511FD704B0BCC280338E ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
12:16:57.0033 0x07dc  HidBth - ok
12:16:57.0049 0x07dc  [ CC4A07E51D89575CAB6F4EB590D87CD4, DFB4EAF0923EF9FF6C42EDD1EA5E4025F243C9BE2D03D5423FE8A897DC01D657 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
12:16:57.0064 0x07dc  hidi2c - ok
12:16:57.0080 0x07dc  [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
12:16:57.0080 0x07dc  HidIr - ok
12:16:57.0111 0x07dc  [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv         C:\WINDOWS\system32\hidserv.dll
12:16:57.0111 0x07dc  hidserv - ok
12:16:57.0142 0x07dc  [ 012C354B4AB48E9A7A657DF39E3A2073, B15D0089CE509FF1CF73DFE095425C1C99FC3971622DCAAD9CAEB989A12A4FDB ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
12:16:57.0142 0x07dc  HidUsb - ok
12:16:57.0174 0x07dc  [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
12:16:57.0189 0x07dc  hkmsvc - ok
12:16:57.0221 0x07dc  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF, E6967F3F465C6E903221BC0FCBAE7D05FD18C0BF110D929335F5935364B3C1BC ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
12:16:57.0236 0x07dc  HomeGroupListener - ok
12:16:57.0267 0x07dc  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
12:16:57.0283 0x07dc  HomeGroupProvider - ok
12:16:57.0283 0x07dc  [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
12:16:57.0283 0x07dc  HpSAMD - ok
12:16:57.0361 0x07dc  [ 258A9103842E36CD27D07D5A1F6D2A23, 883E797263DB0A971C5FDDB588AAE041DD1021F079A891E8AA4525799C795B04 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
12:16:57.0408 0x07dc  HTTP - ok
12:16:57.0424 0x07dc  [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
12:16:57.0424 0x07dc  hwpolicy - ok
12:16:57.0439 0x07dc  [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
12:16:57.0439 0x07dc  hyperkbd - ok
12:16:57.0455 0x07dc  [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
12:16:57.0455 0x07dc  HyperVideo - ok
12:16:57.0471 0x07dc  [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
12:16:57.0471 0x07dc  i8042prt - ok
12:16:57.0533 0x07dc  [ 0FE66A51D81A25AACEAAE4C26308121D, C5553F7ABA74A8EB71A4ED0E8F2A6AA2892F871D164F2D4FADB035BE7D1A8C44 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
12:16:57.0549 0x07dc  iaStorA - ok
12:16:57.0627 0x07dc  [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
12:16:57.0658 0x07dc  iaStorV - ok
12:16:58.0408 0x07dc  [ B9857625DF8B539ABCB90E15B5716568, 99393C74D6C5BB1D3B7399C628DEF47641563A3A1118988597091B0735805F06 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
12:16:58.0736 0x07dc  igfx - ok
12:16:58.0799 0x07dc  [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp           C:\WINDOWS\system32\drivers\iirsp.sys
12:16:58.0814 0x07dc  iirsp - ok
12:16:58.0893 0x07dc  [ 6F3037196ED82BA5ABA3135C49A1BAB4, 3862C6A27E78A279E974A5B97A1648CFD4FEF824CBEF6493F52812ECEA688D93 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
12:16:58.0924 0x07dc  IKEEXT - ok
12:16:59.0158 0x07dc  [ 60E17BAF7A93E1BFC37971C0A3AB1B5E, E25F3535523B992ACC11B22EE9123B88A68D135DB19CCDCB4317894EC6135C65 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
12:16:59.0314 0x07dc  IntcAzAudAddService - ok
12:16:59.0455 0x07dc  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
12:16:59.0471 0x07dc  Intel(R) Capability Licensing Service Interface - ok
12:16:59.0596 0x07dc  [ 30E9FAC23E2537D82F2836CB81AEE186, 03E5072D43ECED70EF004D2E6E654B4CCCE059825CC3C641C0534E4C0BC0C7E8 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
12:16:59.0611 0x07dc  Intel(R) ME Service - ok
12:16:59.0627 0x07dc  [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
12:16:59.0643 0x07dc  intelide - ok
12:16:59.0674 0x07dc  [ E15CDF68DD73423F15D4AC404793AF0D, E2D0136AF68D1A73EB3A63C83284B4661222CB0A4AFACCF276CB57CBD4850287 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
12:16:59.0674 0x07dc  intelppm - ok
12:16:59.0689 0x07dc  [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:16:59.0705 0x07dc  IpFilterDriver - ok
12:16:59.0768 0x07dc  [ C217B8D2E58C57A319B16125C3D4B69C, 905BB858E1782BD08FF080A4A604CE662440A15601B178FBD30269C306C04CCF ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
12:16:59.0799 0x07dc  iphlpsvc - ok
12:16:59.0814 0x07dc  [ A4071DA3AE419F9694BFCB267C7DB8D7, 392DEE1DA51606C29418A98D2861F115E9F67C688B4281C53E87BA73A98809FB ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
12:16:59.0814 0x07dc  IPMIDRV - ok
12:16:59.0830 0x07dc  [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
12:16:59.0830 0x07dc  IPNAT - ok
12:16:59.0846 0x07dc  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
12:16:59.0846 0x07dc  IRENUM - ok
12:16:59.0861 0x07dc  [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
12:16:59.0861 0x07dc  isapnp - ok
12:16:59.0893 0x07dc  [ E6530FD4F61B40F338BF4355A21B9A09, FE9BF039B9901BEC260A69F7C49ACFA9881AD470DCCBA70C7EC36F518DA71702 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
12:16:59.0908 0x07dc  iScsiPrt - ok
12:16:59.0955 0x07dc  [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
12:16:59.0955 0x07dc  jhi_service - ok
12:16:59.0986 0x07dc  [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
12:17:00.0002 0x07dc  kbdclass - ok
12:17:00.0018 0x07dc  [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
12:17:00.0018 0x07dc  kbdhid - ok
12:17:00.0033 0x07dc  [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
12:17:00.0033 0x07dc  kdnic - ok
12:17:00.0049 0x07dc  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] KeyIso          C:\WINDOWS\system32\lsass.exe
12:17:00.0064 0x07dc  KeyIso - ok
12:17:00.0096 0x07dc  [ 559A933F5647A7A2783C8A0C6CB0514C, B4CF12D409F14E21DE081A5D7FC935719582FADA1505D03301B444B6B027F1EB ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
12:17:00.0111 0x07dc  KSecDD - ok
12:17:00.0143 0x07dc  [ 526F8A5EF20BC3633E8C4769BCBF60D0, EC736E1495018B7FD41273F05BA701370E86C24B95FBECC1402AA1EC2C1EAF68 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
12:17:00.0158 0x07dc  KSecPkg - ok
12:17:00.0158 0x07dc  [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
12:17:00.0158 0x07dc  ksthunk - ok
12:17:00.0205 0x07dc  [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
12:17:00.0205 0x07dc  KtmRm - ok
12:17:00.0236 0x07dc  [ E8394F7CA5107A61A60729CEA7A21FF6, 52BAEDC65CD22BA6D125103BEBAC114F4D63E82F339FBA05016679AB51BA7D50 ] L1C             C:\WINDOWS\system32\DRIVERS\L1C63x64.sys
12:17:00.0236 0x07dc  L1C - ok
12:17:00.0268 0x07dc  [ 05A5B36592BB5F371B6AB020A2691E42, 384230A10EA0394E260282509B7D8EFCBFF8814611F6EFAB2DD346B97963EC55 ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
12:17:00.0283 0x07dc  LanmanServer - ok
12:17:00.0330 0x07dc  [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
12:17:00.0346 0x07dc  LanmanWorkstation - ok
12:17:00.0377 0x07dc  [ BE166935083F9C38EDFDC21B9A7A679B, 89C64DBE58E1B974208AAAA5CC757C599B1439C205C3C48BF16BA054A06DBC94 ] LHDmgr          C:\WINDOWS\system32\DRIVERS\LhdX64.sys
12:17:00.0377 0x07dc  LHDmgr - ok
12:17:00.0393 0x07dc  [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
12:17:00.0393 0x07dc  lltdio - ok
12:17:00.0424 0x07dc  [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
12:17:00.0424 0x07dc  lltdsvc - ok
12:17:00.0440 0x07dc  [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
12:17:00.0440 0x07dc  lmhosts - ok
12:17:00.0471 0x07dc  [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
12:17:00.0471 0x07dc  LMS - ok
12:17:00.0486 0x07dc  [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
12:17:00.0486 0x07dc  LSI_SAS - ok
12:17:00.0502 0x07dc  [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
12:17:00.0502 0x07dc  LSI_SAS2 - ok
12:17:00.0518 0x07dc  [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI        C:\WINDOWS\system32\drivers\lsi_scsi.sys
12:17:00.0518 0x07dc  LSI_SCSI - ok
12:17:00.0549 0x07dc  [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
12:17:00.0549 0x07dc  LSI_SSS - ok
12:17:00.0596 0x07dc  [ 483B06BDD893D88A64887441910D9E51, 222CD4099DDF34E8AC05FC1099DF1C9E7E3905162B51D6820601BE097991F397 ] LSM             C:\WINDOWS\System32\lsm.dll
12:17:00.0611 0x07dc  LSM - ok
12:17:00.0627 0x07dc  [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
12:17:00.0627 0x07dc  luafv - ok
12:17:00.0643 0x07dc  [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
12:17:00.0643 0x07dc  megasas - ok
12:17:00.0658 0x07dc  [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR          C:\WINDOWS\system32\drivers\MegaSR.sys
12:17:00.0674 0x07dc  MegaSR - ok
12:17:00.0690 0x07dc  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
12:17:00.0690 0x07dc  MEIx64 - ok
12:17:00.0736 0x07dc  [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
12:17:00.0736 0x07dc  MMCSS - ok
12:17:00.0736 0x07dc  [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
12:17:00.0736 0x07dc  Modem - ok
12:17:00.0783 0x07dc  [ EA8EAD3F5B762F889CC7F3966625B48B, B701A42E5E08B7BC6601560446146803182E5DC631AB73E9408F19CB6432F121 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
12:17:00.0783 0x07dc  monitor - ok
12:17:00.0799 0x07dc  [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
12:17:00.0799 0x07dc  mouclass - ok
12:17:00.0815 0x07dc  [ C0ADEBED913295803B579ED288936CBB, 58F71541166D1DA07C18FBD27458D55E3F8AD7291CB7496B3A2F01372A5B0CAE ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
12:17:00.0815 0x07dc  mouhid - ok
12:17:00.0846 0x07dc  [ A1825437F11C4FD9778F293A08DE65F3, 8AD337363F6BDEB816770EFDA7C3F1AAFA88BA7E265ED168ACBC03001669B902 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
12:17:00.0846 0x07dc  mountmgr - ok
12:17:00.0893 0x07dc  [ 4CCBBD4944777CA100B9A6C2F149A46F, 7FC172FAF8266BFBBBBAD94FD67EA3C1872F5927DC3900A9A54DB2DFE34E7415 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
12:17:00.0893 0x07dc  mpsdrv - ok
12:17:00.0940 0x07dc  [ 9DE3341BD4E14BC5FADFCAD3019F2D0D, 37E0531EADABC6D4BCC496826651D4D14CF0D10156FF13C11BDE466084B44FF4 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
12:17:00.0971 0x07dc  MpsSvc - ok
12:17:01.0002 0x07dc  [ 25560C1656DC7F0723A0CC0B0E1C6BED, 17E8565B833ED58CCB6F85B90A42553464C4408C54006E019AA5641EDB682E31 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
12:17:01.0002 0x07dc  MRxDAV - ok
12:17:01.0033 0x07dc  [ 6BA2A5D1C74E7CB3AFAF301A7E5D9E44, 92CACD154D3D7E738C6D2492186270762B1888E89F505EE00C3CAE58F71650ED ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:17:01.0049 0x07dc  mrxsmb - ok
12:17:01.0065 0x07dc  [ 7E86B45D5F84E0F96AE18BEAC7A51EE4, 2B4DC0B017FD90D7D2F6A35342F5A17B20E79D077D3DFC4AD2455C0D814B7B5E ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
12:17:01.0080 0x07dc  mrxsmb10 - ok
12:17:01.0096 0x07dc  [ 1BB4582396718EDEFF8A4493AEF67D66, 62AA83190CA041131E43B2031175D9F0F8ACD9A0EB0EC8B8F66C2951F15420E4 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
12:17:01.0111 0x07dc  mrxsmb20 - ok
12:17:01.0143 0x07dc  [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
12:17:01.0143 0x07dc  MsBridge - ok
12:17:01.0158 0x07dc  [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC           C:\WINDOWS\System32\msdtc.exe
12:17:01.0158 0x07dc  MSDTC - ok
12:17:01.0190 0x07dc  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
12:17:01.0190 0x07dc  Msfs - ok
12:17:01.0205 0x07dc  [ C32A7A39B960A42BA9D4FBE47213CA03, 4DA48587138972DA5E95AEDBBBE73BA8CCADC8172C6654427ABEAC8047B27E95 ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
12:17:01.0205 0x07dc  msgpiowin32 - ok
12:17:01.0221 0x07dc  [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
12:17:01.0221 0x07dc  mshidkmdf - ok
12:17:01.0236 0x07dc  [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
12:17:01.0236 0x07dc  mshidumdf - ok
12:17:01.0252 0x07dc  [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
12:17:01.0252 0x07dc  msisadrv - ok
12:17:01.0283 0x07dc  [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
12:17:01.0283 0x07dc  MSiSCSI - ok
12:17:01.0283 0x07dc  msiserver - ok
12:17:01.0299 0x07dc  [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:17:01.0315 0x07dc  MSKSSRV - ok
12:17:01.0315 0x07dc  [ 63145201D6458E4958E572E7D6FC2604, EDD4A8A3BBE94B983554B1117734E66A2647B867269C5F0567C47EDE6F3FACCB ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
12:17:01.0315 0x07dc  MsLldp - ok
12:17:01.0315 0x07dc  [ 99D526E803DB6D7FF290FD98B6204641, 4AFAA3B1186621AEAD19E12D3DBE104DD8FCD5C106F9EC3ADA4AD1BC7093E61F ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:17:01.0315 0x07dc  MSPCLOCK - ok
12:17:01.0330 0x07dc  [ 06FA77C3E2A491ADCD704C5E73006269, 465A7EE5387E6C11398A554F73437278F5BF110356E7F49F315905C1F2459278 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
12:17:01.0330 0x07dc  MSPQM - ok
12:17:01.0361 0x07dc  [ E134EC4DE11CF78CB01432D180710D84, BB111F97AEEFDCA5866B157E9957599CD7A4952B5BCCA0B0BCA9EDFCD17E61FE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
12:17:01.0361 0x07dc  MsRPC - ok
12:17:01.0377 0x07dc  [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
12:17:01.0377 0x07dc  mssmbios - ok
12:17:01.0393 0x07dc  [ 72D66A05E0F99F2528F6C6204FD22AA1, B14D433BC5795F1DC4C672302285E665DC012693E75574F60664AAD8874DE562 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
12:17:01.0393 0x07dc  MSTEE - ok
12:17:01.0393 0x07dc  [ 8AAAE399FC255FA105D4158CBA289001, 2F55C02605B4A3406B289FF9D46C76260B9138E3DE96AFAEA0E0522E5A2A746C ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
12:17:01.0393 0x07dc  MTConfig - ok
12:17:01.0408 0x07dc  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A, 00D33A4AB3E7C5F65F59C63F8E2FD27EF38D5484595F785D5632E9414E29352C ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
12:17:01.0408 0x07dc  Mup - ok
12:17:01.0408 0x07dc  [ 3A1E095277BBD406CEA8EA6B76950664, 47838F307A6354E77C19A7B1F3F3E22726EF60403B611F358AD6FFE81D7214E7 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
12:17:01.0424 0x07dc  mvumis - ok
12:17:01.0455 0x07dc  [ 4B18840511D720BA118D3017E8165875, 724458A69269A5AE57E8DAB74FF3C198A79B6F7A9602BF38A70B4A40543ED167 ] napagent        C:\WINDOWS\system32\qagentRT.dll
12:17:01.0471 0x07dc  napagent - ok
12:17:01.0502 0x07dc  [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
12:17:01.0518 0x07dc  NativeWifiP - ok
12:17:01.0549 0x07dc  [ 6A0C3996DA7DAE6D6939676D786EEEC4, 6E8A4C6234FD3040BC889E92016A4D5AC7BCAF5059521E50C733966163A546A0 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
12:17:01.0549 0x07dc  NcaSvc - ok
12:17:01.0565 0x07dc  [ C982FE4CC91DECE2259F494FCEB4030F, 4C285407E6F9FBBA92180F4063AEFB736ED142D802F0151002F0CC20AB7BB4E5 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
12:17:01.0565 0x07dc  NcdAutoSetup - ok
12:17:01.0627 0x07dc  [ A10E176F3B2BF83EDE7B5C4658C93B66, 42F2FAEB4A29BBC6727D7E159D3E7E2E66D33785E5C98496EEB44D281601A23E ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
12:17:01.0674 0x07dc  NDIS - ok
12:17:01.0690 0x07dc  [ 39C8A1D9D46F5E83A016BCAB72455284, 80DBED610E0818C2C7122FBC5BC8C15BCE981538AE48DC48F464A86389AF3F68 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
12:17:01.0690 0x07dc  NdisCap - ok
12:17:01.0705 0x07dc  [ 762941932B7E4C588E48A577BA9D6440, 71FA1870E398CB848D8294FEF6C60E0499CAB9A16EC3F487564C41072590E4F3 ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
12:17:01.0705 0x07dc  NdisImPlatform - ok
12:17:01.0721 0x07dc  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:17:01.0721 0x07dc  NdisTapi - ok
12:17:01.0736 0x07dc  [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:17:01.0736 0x07dc  Ndisuio - ok
12:17:01.0752 0x07dc  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:17:01.0768 0x07dc  NdisWan - ok
12:17:01.0768 0x07dc  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NDISWANLEGACY   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:17:01.0768 0x07dc  NDISWANLEGACY - ok
12:17:01.0799 0x07dc  [ 3730942D7DB2F8BB5F84542B7FF6F650, 89C9D7D7305205BDB304CE6DA7D1A57EDE86A9D77429698802A39D75EB78CAAB ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
12:17:01.0799 0x07dc  NDProxy - ok
12:17:01.0799 0x07dc  [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
12:17:01.0815 0x07dc  Ndu - ok
12:17:01.0830 0x07dc  [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
12:17:01.0830 0x07dc  NetBIOS - ok
12:17:01.0846 0x07dc  [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
12:17:01.0861 0x07dc  NetBT - ok
12:17:01.0877 0x07dc  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] Netlogon        C:\WINDOWS\system32\lsass.exe
12:17:01.0877 0x07dc  Netlogon - ok
12:17:01.0955 0x07dc  [ 89519D29CBEC2121CA65CC29C4D345E0, F3BA7BCAFEC8DD8B29837458D1B2B1DEE748AEAAAE0575FD3AAE65CFC72A04CD ] Netman          C:\WINDOWS\System32\netman.dll
12:17:01.0986 0x07dc  Netman - ok
12:17:02.0033 0x07dc  [ 79FA9393C67EBBF92A56923592CF7A7C, A8AB8A6346B97B68810CC632F425085BE9E63ACAED0F119A7BFD03F2DA4AA5F6 ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
12:17:02.0049 0x07dc  netprofm - ok
12:17:02.0111 0x07dc  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:17:02.0143 0x07dc  NetTcpPortSharing - ok
12:17:02.0621 0x07dc  [ 57B9C04D673F236D41FAB03842C8640B, 898DCBBBF94875059CD328B0FC75BE36A4E3DD471C6E28BFAE064BCF84349518 ] NETwNs64        C:\WINDOWS\system32\DRIVERS\NETwNs64.sys
12:17:02.0933 0x07dc  NETwNs64 - ok
12:17:02.0996 0x07dc  [ 12DD2800E4EEA37DC9AE256AD62423B4, 34740469EEA8740CBACD881CB232C9ABB9AB180DE5F45336BC6DBE154259F29B ] nfrd960         C:\WINDOWS\system32\drivers\nfrd960.sys
12:17:03.0011 0x07dc  nfrd960 - ok
12:17:03.0074 0x07dc  [ 5177E35B186D2DED6F1EFF57BA61B975, B48C2E0FE2E95C37697107BDB8E0843D3E56200D2E242BF02E205C53978655D9 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
12:17:03.0089 0x07dc  NlaSvc - ok
12:17:03.0105 0x07dc  [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
12:17:03.0105 0x07dc  Npfs - ok
12:17:03.0121 0x07dc  [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
12:17:03.0121 0x07dc  npsvctrig - ok
12:17:03.0152 0x07dc  [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] nsi             C:\WINDOWS\system32\nsisvc.dll
12:17:03.0167 0x07dc  nsi - ok
12:17:03.0183 0x07dc  [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
12:17:03.0199 0x07dc  nsiproxy - ok
12:17:03.0574 0x07dc  [ 7BE3EDFFA3216F989A6BDCB14795DD08, 19A2D0120C46CA9BCFBC16DC3E65687ACDDCBA33B79128188652BA2AFAA2EE2F ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
12:17:03.0636 0x07dc  Ntfs - ok
12:17:03.0683 0x07dc  [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] Null            C:\WINDOWS\system32\drivers\Null.sys
12:17:03.0683 0x07dc  Null - ok
12:17:03.0733 0x07dc  [ D6D34118263412D3AAA8348A9572B7F2, 66106A25BC5A4CA7697A23ED67CEDB5C0BF678EA70FD967A405D2DF76F4CA3A4 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
12:17:03.0749 0x07dc  nvraid - ok
12:17:03.0765 0x07dc  [ 27AFC428D1D32ABD04A86763A4EDDEA9, 0920866013A8C8CFEE00E6AECDD41736F5501C49837E2D785998734F087F6B98 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
12:17:03.0765 0x07dc  nvstor - ok
12:17:03.0780 0x07dc  [ 051CFB5107BAAE510419BDC41F8C4036, 9990906F17A3886EF301D2AA6556263B52A1C0554C6BD18331AF44ECECAEE4B5 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
12:17:03.0780 0x07dc  nv_agp - ok
12:17:03.0827 0x07dc  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:17:03.0827 0x07dc  ose - ok
12:17:04.0343 0x07dc  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:17:04.0452 0x07dc  osppsvc - ok
12:17:04.0546 0x07dc  [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
12:17:04.0562 0x07dc  p2pimsvc - ok
12:17:04.0608 0x07dc  [ 4319FD931DCD796435ECB5DB4A04FBA5, 20185B2F359EEC202B37019A4E4F5B914ADCF78B97AF0CBD91EECED2259FC6DE ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
12:17:04.0624 0x07dc  p2psvc - ok
12:17:04.0655 0x07dc  [ 4563DAF8C6A740AD7F501E219BD10766, 7A1212DDAE2D66A9C2041262796904E36036CDC4C5B75C2F66B8DF9D89F7C25D ] Parport         C:\WINDOWS\System32\drivers\parport.sys
12:17:04.0655 0x07dc  Parport - ok
12:17:04.0687 0x07dc  [ D6ACCF9F2EEEEA711C14EFD976E573F3, 60D2A81832A8D24F91C3EF134440D5026354917F59462BACBCE7A01D84767D91 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
12:17:04.0702 0x07dc  partmgr - ok
12:17:04.0733 0x07dc  [ 0534DE881C38BDF3AC2CA7472209799E, C3AE809CCD3A98E6F96E4AF99FF25429E784E46C141BEFBA7CB3223376DFA5BF ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
12:17:04.0749 0x07dc  PcaSvc - ok
12:17:04.0765 0x07dc  [ 4A003E8F718C1E6A2050CA98CD53E3E2, BCC3BE1EC3FA4967353371D85094D096940A7B5944A6FFCA31E8FBE83D92CC6C ] pci             C:\WINDOWS\system32\drivers\pci.sys
12:17:04.0765 0x07dc  pci - ok
12:17:04.0780 0x07dc  [ F9908D274D458220F91E89B54D78D837, 1E89ABFA6B375383E0297CEE5AF66E37F90E16DD21ABA5C91777A86CDF013B4D ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
12:17:04.0780 0x07dc  pciide - ok
12:17:04.0812 0x07dc  [ 84D19CB6102627932DCB5DFDF89FE269, 2F9C47E076645B35877D9ACA77968EFFCDA8794D76265CD9A4AAA239C4B33C5F ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
12:17:04.0812 0x07dc  pcmcia - ok
12:17:04.0827 0x07dc  [ CEBBAD5391C2644560C55628A40BFD27, 8AAA6EBD8D89FC91AECCCF1452F53C5650A1A17027FF4E64D224371404CE4C8B ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
12:17:04.0827 0x07dc  pcw - ok
12:17:04.0858 0x07dc  [ 0698DEDEAD6A00AD0D468C687D830FBF, B9DCA1A61F2EF80DB26380F390F2E9A17114D33129D61CF465B949B6A7916CAA ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
12:17:04.0858 0x07dc  pdc - ok
12:17:04.0952 0x07dc  [ 61FE70659CD43E07F94DA4DC31DEC493, 3739B6670B440173FD81DE3D47B0B90FAF296802AD4F57C05BF5CF191BF16022 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
12:17:04.0968 0x07dc  PEAUTH - ok
12:17:05.0155 0x07dc  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A, 459CF99D5243C4ACAA38C7B426ADC52F1044C759D06A925D475DF6213AEB85CD ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
12:17:05.0171 0x07dc  PerfHost - ok
12:17:05.0280 0x07dc  [ 6E84BFF58F7643499277F29DFA2F8C8D, 401CCF137F35D9690C7B56B2BFEDB2DB72709EBE38626D787904B67640EF6F14 ] pla             C:\WINDOWS\system32\pla.dll
12:17:05.0327 0x07dc  pla - ok
12:17:05.0343 0x07dc  [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
12:17:05.0358 0x07dc  PlugPlay - ok
12:17:05.0374 0x07dc  [ 8E2414E818C26C4A9C70CB2B8567F04F, A16B22AE143BA070C562FBE5DEF32F7E228F50B302B66E46B46C44C0F50A4461 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
12:17:05.0390 0x07dc  PNRPAutoReg - ok
12:17:05.0405 0x07dc  [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
12:17:05.0421 0x07dc  PNRPsvc - ok
12:17:05.0546 0x07dc  [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
12:17:05.0562 0x07dc  PolicyAgent - ok
12:17:05.0593 0x07dc  [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] Power           C:\WINDOWS\system32\umpo.dll
12:17:05.0593 0x07dc  Power - ok
12:17:05.0624 0x07dc  [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:17:05.0624 0x07dc  PptpMiniport - ok
12:17:06.0046 0x07dc  [ CA5DBCC1FA3C9673A487EBC529B2F368, D87A11F5C74697E9F1DE39C997E71A8FAED6B4B88A0BE2CA4C5E64518029B440 ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
12:17:06.0155 0x07dc  PrintNotify - ok
12:17:06.0187 0x07dc  [ DD979EB6A7212F60E4AFBE96EDC7AE6D, BC681D64C5B8F08FD4613D71111853FCD5B05E4BD127D2C6258BAED7627105BE ] Processor       C:\WINDOWS\System32\drivers\processr.sys
12:17:06.0187 0x07dc  Processor - ok
12:17:06.0234 0x07dc  [ 1D7127048413309629233B50BF2DD9A6, 918322AFDD576D9966961B111F5E38BDDB4278F9456E7AA1A3453EC8CAF4B8A8 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
12:17:06.0234 0x07dc  ProfSvc - ok
12:17:06.0249 0x07dc  [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
12:17:06.0249 0x07dc  Psched - ok
12:17:06.0280 0x07dc  [ 0AFBF333B6F87A2F598EAB379AF100B8, D11F3A4D7E4463B62E2DBDE5FC61425B1FDFB07DD1A19BC001D479CA1F554510 ] QWAVE           C:\WINDOWS\system32\qwave.dll
12:17:06.0296 0x07dc  QWAVE - ok
12:17:06.0327 0x07dc  [ 13D47BB0CCA2FC51BD15F8E85C6A078E, EA832A9511007C9E8599C3066E1FA66BE869E8A27886D9A9AC590BD4DFBD1A15 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
12:17:06.0327 0x07dc  QWAVEdrv - ok
12:17:06.0343 0x07dc  [ 873C60F8178100557740A832FCE10B5F, 400EF60CB2C98E2AFE122AF3D01CCE56A1548AF865345EE2194AB74DBCBF4C48 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:17:06.0343 0x07dc  RasAcd - ok
12:17:06.0374 0x07dc  [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] RasAgileVpn     C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
12:17:06.0374 0x07dc  RasAgileVpn - ok
12:17:06.0374 0x07dc  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0, 2F3C90A04964D4D906238BD557D90F7AC05DF86FE9729C4378B39431F54DDAE3 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
12:17:06.0390 0x07dc  RasAuto - ok
12:17:06.0421 0x07dc  [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:17:06.0421 0x07dc  Rasl2tp - ok
12:17:06.0452 0x07dc  [ C923C785A2DE0B396AD6D13ACAFF2DE9, 4F950DA776FBABEC7D546983D6F3018733F61268A4BF95C01D4836AD000BD073 ] RasMan          C:\WINDOWS\System32\rasmans.dll
12:17:06.0468 0x07dc  RasMan - ok
12:17:06.0468 0x07dc  [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:17:06.0468 0x07dc  RasPppoe - ok
12:17:06.0484 0x07dc  [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] RasSstp         C:\WINDOWS\system32\DRIVERS\rassstp.sys
12:17:06.0484 0x07dc  RasSstp - ok
12:17:06.0515 0x07dc  [ CA03D642ACE58E1BA54E4B383F91CD69, 39BB942603801CF11FBEA28E24F8C8D1EF2AF615D1FABF951683A015D6A6EF37 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:17:06.0530 0x07dc  rdbss - ok
12:17:06.0546 0x07dc  [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
12:17:06.0562 0x07dc  rdpbus - ok
12:17:06.0577 0x07dc  [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
12:17:06.0577 0x07dc  RDPDR - ok
12:17:06.0609 0x07dc  [ 57F4787E4602A3FCA719C0A33137C6DA, D03AE59A184EB5D126F8EAB9D36EE406ABB8B9ED834F2D2496DDB1349FF56F89 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
12:17:06.0609 0x07dc  RdpVideoMiniport - ok
12:17:06.0624 0x07dc  [ B3CB0721E81E30419CE7D837EF4EA151, EC9410818661BF77E4A19694E3A3030E1D983B36F49C72E27F92A1424E0729C2 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
12:17:06.0624 0x07dc  RDPWD - ok
12:17:06.0640 0x07dc  [ 62C1F8A0685FE07E998AA296C4F697C4, C636AB2D0F139003A6AD7A12E9DC13EE4485A62F30DA59AF842FF02FE07442EE ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
12:17:06.0640 0x07dc  rdyboost - ok
12:17:06.0671 0x07dc  [ 3663CCF243EE0C04E9F6F91ED1737273, 31D06445996F99A7F6B32004D1BA63A21C61DE125373F860BA9A9DE5278E8293 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
12:17:06.0671 0x07dc  RemoteAccess - ok
12:17:06.0702 0x07dc  [ E80DD61E52EDFFF9DA1ED7260A68855B, 97909F42AE35E28B8F98C01A1D8BAD80A949CDCA0C88FB4ACF0A655DC7C10E45 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
12:17:06.0718 0x07dc  RemoteRegistry - ok
12:17:06.0749 0x07dc  [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
12:17:06.0749 0x07dc  RpcEptMapper - ok
12:17:06.0780 0x07dc  [ 10B21284B3D964AB3DC45490E57D422E, 12D5E3A7785F21C99C5EAD14A88EB7A86A058E26C091991339356D99D196CC13 ] RpcLocator      C:\WINDOWS\system32\locator.exe
12:17:06.0780 0x07dc  RpcLocator - ok
12:17:06.0827 0x07dc  [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
12:17:06.0843 0x07dc  RpcSs - ok
12:17:06.0874 0x07dc  [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
12:17:06.0890 0x07dc  rspndr - ok
12:17:06.0921 0x07dc  [ 752EC7DCD2F96871A3857EEE6AFE965A, 1D0640966B9147A06ED0E733711773E6B4AB8AC6D962D5B369ECB04170D18AD8 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
12:17:06.0921 0x07dc  s3cap - ok
12:17:06.0968 0x07dc  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] SamSs           C:\WINDOWS\system32\lsass.exe
12:17:06.0968 0x07dc  SamSs - ok
12:17:06.0984 0x07dc  [ 9C7B28CE0D136DB226E24DB3BC817F92, E9DE55D6432ADD08EC75F99F2B5D2BD1F553F4EE55991B1767B1578351EE0BF2 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
12:17:06.0999 0x07dc  sbp2port - ok
12:17:07.0030 0x07dc  [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
12:17:07.0046 0x07dc  SCardSvr - ok
12:17:07.0062 0x07dc  [ 5D7733A12756B267FCA021672B26BC9E, 01CE5B5F49914B9E099BD909A66296F3A40644AE47BA1D5EBFFB30CD33C70A4A ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
12:17:07.0062 0x07dc  scfilter - ok
12:17:07.0124 0x07dc  [ C67ACB63A860E041995414148B3DC840, 54883B7ECE8921B2CA0A0FE35B0E3B4B7D8CA8890F0CA7EACD54E706F04880C5 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
12:17:07.0155 0x07dc  Schedule - ok
12:17:07.0234 0x07dc  [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
12:17:07.0249 0x07dc  SCPolicySvc - ok
12:17:07.0312 0x07dc  [ F58B030A0664385C707B8C1C63682041, E46AADAA2CD687B9A4B564DC5B002493C8480542588E660BC3DF89EAF9DB0427 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
12:17:07.0343 0x07dc  sdbus - ok
12:17:07.0374 0x07dc  [ 92968277ED491E4B3DDA361E3952361E, 71C50853BB2126A34C7CD014EE44D4B8B39F589E2E8E8E8F4C982E07498E3899 ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
12:17:07.0390 0x07dc  SDRSVC - ok
12:17:07.0421 0x07dc  [ BB107AA9980B0DA4E19A3A90C3BD4460, BCB4CF0FFF1FD57302557B68044A88C8EEAAE57C2FEAE8EAD1F410F960298B6D ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
12:17:07.0421 0x07dc  sdstor - ok
12:17:07.0452 0x07dc  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
12:17:07.0452 0x07dc  secdrv - ok
12:17:07.0468 0x07dc  [ CD282626738B6BC92B6E7CD0AAE95B63, 1A56567C781786C85C63E24E79186EE5C82D3EB2679061B21BA0571A3A6CB7F5 ] seclogon        C:\WINDOWS\system32\seclogon.dll
12:17:07.0468 0x07dc  seclogon - ok
12:17:07.0484 0x07dc  [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] SENS            C:\WINDOWS\System32\sens.dll
12:17:07.0484 0x07dc  SENS - ok
12:17:07.0499 0x07dc  [ 0D50B4B860DAB65241628D04CD33ACAE, 2AA897C3F9ED076AB9244A32745D18489B076F3ED28A35B868C472131C5B5B46 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
12:17:07.0515 0x07dc  SensrSvc - ok
12:17:07.0530 0x07dc  [ 87C46B239A7EEF30FDFDD5E9BD46130C, F36FB5B20AC58FBD31F7E636059D2D865B751E178E51A03B94ABE0BBD1AB1EC9 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
12:17:07.0530 0x07dc  SerCx - ok
12:17:07.0530 0x07dc  [ 7A1F9347C85FD55E39B8A76B3A25C5AD, 03AF3B23285278A38F4CBEAB7FD326A48FA1EC7F8D044C059CE5403C6D225639 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
12:17:07.0546 0x07dc  Serenum - ok
12:17:07.0546 0x07dc  [ F640A0A218BBF857F1D04A15D7D939F6, 948C13886281FE7947E10FB7B34D5CCFE512FB632F1132B6062AC85149F79950 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
12:17:07.0546 0x07dc  Serial - ok
12:17:07.0562 0x07dc  [ F1A5F56B2620B862CC28FF96A0A6DAAB, E5367212B2CADF3820D657CFC27CD961547E28DAB950C68E1380CF97FB68F3F4 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
12:17:07.0562 0x07dc  sermouse - ok
12:17:07.0577 0x07dc  [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
12:17:07.0593 0x07dc  SessionEnv - ok
12:17:07.0593 0x07dc  [ 7EE65419B29302C795714FF8073969A1, E28D89A5423E3A5062030EB2418E9435DD5D8B9D16570046E782D3FCFDA2E79A ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
12:17:07.0593 0x07dc  sfloppy - ok
12:17:07.0640 0x07dc  [ 090AE16F79C8EAD04E6031F863DA85F3, 3F27BE46DF602B53940414A6E9FEB23B36CFFB8E9A7F41440C3315B8E27D0029 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
12:17:07.0655 0x07dc  SharedAccess - ok
12:17:07.0718 0x07dc  [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
12:17:07.0734 0x07dc  ShellHWDetection - ok
12:17:07.0734 0x07dc  [ 2560721D6F16D5B611C36A3A9D28C1B2, 15C30404902654ABA5DB5367FC5BD31343B12A3FC22B4BC5A26B09016447B5ED ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
12:17:07.0734 0x07dc  SiSRaid2 - ok
12:17:07.0749 0x07dc  [ 3AA8FDE1DBF65BB8B88B053529554A0D, 8060D946344D043D336F4735363C23C37C91A6DB3F81E575C267B2EC2BECB0EC ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
12:17:07.0749 0x07dc  SiSRaid4 - ok
12:17:07.0765 0x07dc  [ E660156A4588A84305CB772FD2C0DB21, 9492EB6578D4A689945E1FC2440EFA77D461049CDB2D00A645969A71B7DA68E1 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
12:17:07.0765 0x07dc  SNMPTRAP - ok
12:17:07.0812 0x07dc  [ 9110193D93960E38B8692E4519C75D72, 789381B4CCC056EE431E78E2339AC9802264A1CE4B378DDA9769649664C9A7A0 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
12:17:07.0812 0x07dc  spaceport - ok
12:17:07.0843 0x07dc  [ 3D8679C8DF52EB26EB7583A4E0A29202, DCD9B69299275857712AB200C014AE820C8A9F7E53C4A335A84518FBE4BB56BB ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
12:17:07.0843 0x07dc  SpbCx - ok
12:17:07.0905 0x07dc  [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] Spooler         C:\WINDOWS\System32\spoolsv.exe
12:17:07.0921 0x07dc  Spooler - ok
12:17:08.0359 0x07dc  [ 061A977C920FBE4BF71FF47C966DDDCA, 746516396B72E4ADB05D978C819CD45FE44EE194756F6DA50121D755439CA590 ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
12:17:08.0562 0x07dc  sppsvc - ok
12:17:08.0593 0x07dc  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
12:17:08.0609 0x07dc  srv - ok
12:17:08.0734 0x07dc  [ B56A855B23676CCE05B626C6037FD02F, 3C0DCB16A96BD6A002A4FAF1AF939AF470D95137CB745F5DAD039B5D8C956E30 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
12:17:08.0749 0x07dc  srv2 - ok
12:17:08.0765 0x07dc  [ 78E9665C8DC59106D133CBEF0F0C3DE3, 380FD51EE00CEF3FFEF9BFB5E14538E084F1DDF8D8F8BCDF4EC23CB8C3A40D2F ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
12:17:08.0781 0x07dc  srvnet - ok
12:17:08.0812 0x07dc  [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
12:17:08.0827 0x07dc  SSDPSRV - ok
12:17:08.0827 0x07dc  [ D233B16999A8E626F6004BD7814C57EC, 5BBFE5DDF1269617ABD1BDBED85A79D99BB52EA29C2BB3A8F4A1827BFAA1A747 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
12:17:08.0827 0x07dc  SstpSvc - ok
12:17:08.0843 0x07dc  [ 4E85355B94CFCB67C135F6521A4895A7, AC4FC65C1E62A54B3834E7FE0A2B1ECC48A2AA563AE5BD508326EE68FFFBBEEE ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
12:17:08.0843 0x07dc  stexstor - ok
12:17:08.0890 0x07dc  [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
12:17:08.0906 0x07dc  stisvc - ok
12:17:08.0952 0x07dc  [ B240874B2CA0CD02E8CD11E140B14C57, 0FDBEE3DB644175A30065CAF020F375703ADC45A33221788C010F3111707FC25 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
12:17:08.0952 0x07dc  storahci - ok
12:17:08.0968 0x07dc  [ F74DBC95A57B1EE866D3732EB5F79BE2, E4FE9D5CD0A385ACB60D5D5E8D969F26C3A6BC0C08FF0838DBE9CA106229C8DE ] storflt         C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
12:17:08.0984 0x07dc  storflt - ok
12:17:08.0999 0x07dc  [ 5337E138B49ED1F44CCBA4073BC35C20, 2B296973215E3865A56C46DC3D27F1460D96BC321558CE7A911B05B0E7BF397F ] StorSvc         C:\WINDOWS\system32\storsvc.dll
12:17:08.0999 0x07dc  StorSvc - ok
12:17:09.0031 0x07dc  [ 543CD3CC0E05B8D8815E0D4F040B6F59, 4B57C9534E94A0A67FC82DBD4FAECACA180BEC281FB477550A37C0A04777E09E ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
12:17:09.0031 0x07dc  storvsc - ok
12:17:09.0062 0x07dc  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] svsvc           C:\WINDOWS\system32\svsvc.dll
12:17:09.0062 0x07dc  svsvc - ok
12:17:09.0077 0x07dc  [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
12:17:09.0077 0x07dc  swenum - ok
12:17:09.0109 0x07dc  [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] swprv           C:\WINDOWS\System32\swprv.dll
12:17:09.0140 0x07dc  swprv - ok
12:17:09.0234 0x07dc  [ DC695DCF6C9A4A2B23C2FA284BBF19F8, 0D0357874CCC3AA9E76340ACFDB8FCF79DD79A3B333CC36A836B40ECFC61E4A1 ] SysMain         C:\WINDOWS\system32\sysmain.dll
12:17:09.0281 0x07dc  SysMain - ok
12:17:09.0296 0x07dc  [ 6FB88606C4A71E1BFAF97D63A676C673, D72F93A482E989ACA50F9647B7AD699A4656AEAACF377BB2B8CEBB094B748852 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
12:17:09.0327 0x07dc  SystemEventsBroker - ok
12:17:09.0359 0x07dc  [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
12:17:09.0359 0x07dc  TabletInputService - ok
12:17:09.0374 0x07dc  [ 88B7721AB551C4325036B25A34A2BF7B, 2817CC6294542524EC373A674535F913440736BEBE81233CA91D5ECD93620B02 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
12:17:09.0390 0x07dc  TapiSrv - ok
12:17:09.0671 0x07dc  [ 2AE9136724568DB4F08BC04F131CFC54, 11AA017AE39D0A63233D01A8AE33FD53D5302683E037D29B73366D6233764080 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
12:17:09.0718 0x07dc  Tcpip - ok
12:17:09.0874 0x07dc  [ 2AE9136724568DB4F08BC04F131CFC54, 11AA017AE39D0A63233D01A8AE33FD53D5302683E037D29B73366D6233764080 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:17:09.0937 0x07dc  TCPIP6 - ok
12:17:09.0984 0x07dc  [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
12:17:09.0999 0x07dc  tcpipreg - ok
12:17:10.0031 0x07dc  [ 217AEE5DAE1BEF81A1E9A184C4C0BF6A, E554EBE85EE27186C1BD3005E757F356D76574EAFD3E5E03A490C9B8DF19F21A ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
12:17:10.0046 0x07dc  tdx - ok
12:17:10.0062 0x07dc  [ F7C8AB5D8AFFAA318D6A21093D139BF4, 0A35052EF7DC8615783A23897358D8C579BE694363615C9563FF629E7B719991 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
12:17:10.0062 0x07dc  terminpt - ok
12:17:10.0140 0x07dc  [ 2B3D2FDF50EDABEBE0A9E6F741C81858, F0C3A1DC968C5D28EF68BE4352577B4F8D4B4FB6274268DCCCD8A5C132DEC2F9 ] TermService     C:\WINDOWS\System32\termsrv.dll
12:17:10.0156 0x07dc  TermService - ok
12:17:10.0218 0x07dc  [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] Themes          C:\WINDOWS\system32\themeservice.dll
12:17:10.0234 0x07dc  Themes - ok
12:17:10.0281 0x07dc  [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
12:17:10.0281 0x07dc  THREADORDER - ok
12:17:10.0327 0x07dc  [ 4515B9E4140F04FB3907692DF89FCA87, F68EC56524BDA877646E987BE7414C1D622BD9FF05A5AEADCA39030FDC2B0115 ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
12:17:10.0343 0x07dc  TimeBroker - ok
12:17:10.0374 0x07dc  [ E94F7A7B48C7638D1F3F8089344C97B7, 276CDE59614D563A52529BCC4BFC726E5F5BE131C9C4142558A644D79328C810 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
12:17:10.0390 0x07dc  TPM - ok
12:17:10.0406 0x07dc  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
12:17:10.0406 0x07dc  TrkWks - ok
12:17:10.0499 0x07dc  [ 8ABBB5CE0C62E0A6D28F32F44B7F865C, 4C78FE2A4A25A758D5191C4EDB2A6FE691FF82E7C16C0F146DC96DAD87D4F64E ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
12:17:10.0499 0x07dc  TrustedInstaller - ok
12:17:10.0562 0x07dc  [ 4E7C5FB10A50435523DE0CAA37DE2BD3, D6206DF61950F2541FB754E57C4D9EF9FA0CC1EDD6F6FA4E45F02B47958493F7 ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
12:17:10.0578 0x07dc  TsUsbFlt - ok
12:17:10.0609 0x07dc  [ 16D684A820872EE54F6370703AC0B513, 795E20484358424CE9FA766937DD99413025A8AF967D03490392E8E02A382D0B ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
12:17:10.0609 0x07dc  TsUsbGD - ok
12:17:10.0640 0x07dc  [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
12:17:10.0640 0x07dc  tunnel - ok
12:17:10.0656 0x07dc  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A, AA7DA2207C0236F47859A4791F9D7301E7ADB50A59D831DC859ECC7CA70D3E1D ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
12:17:10.0656 0x07dc  uagp35 - ok
12:17:10.0671 0x07dc  [ 6FD6D03B7752C78712E5CFF29A305026, F09C5188AAFCF4C77B05BA1E604F9912782A9F1371F72F959288EBC2725407ED ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
12:17:10.0671 0x07dc  UASPStor - ok
12:17:10.0703 0x07dc  [ 061BA3EE0D2BE17944990544008CF190, C9236D368EC2281B545E8C008BC2801F21A9716ED3D4DAEDB0751A5008346E81 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
12:17:10.0703 0x07dc  UCX01000 - ok
12:17:10.0765 0x07dc  [ 25C50F4EDF70D0A831E0566BD181CCF2, F2F9E86FB5617C16077D2073EC0AA747F76F1EB5148BA110347A84F3C3569F83 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
12:17:10.0781 0x07dc  udfs - ok
12:17:10.0812 0x07dc  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D, 16DE6E0894C356A58AF12BEC2FE9B188F147DD4B16CB2414DE600CE4127F929D ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
12:17:10.0812 0x07dc  UI0Detect - ok
12:17:10.0828 0x07dc  [ 07FEBCDF24FABA0D47B635D85A0FFB7A, 452C04B14681EBCE8B1B25B75A1B7CC978722B7DDE54D624E17841B14ACCF65D ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
12:17:10.0828 0x07dc  uliagpkx - ok
12:17:10.0843 0x07dc  [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
12:17:10.0843 0x07dc  umbus - ok
12:17:10.0859 0x07dc  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09, 30AAD7D18FF5962CEC7180359D148EED5A1BF193DDB2B34508897FC3EBA692C3 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
12:17:10.0859 0x07dc  UmPass - ok
12:17:10.0874 0x07dc  [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
12:17:10.0890 0x07dc  UmRdpService - ok
12:17:11.0078 0x07dc  [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
12:17:11.0109 0x07dc  UNS - ok
12:17:11.0156 0x07dc  [ 14D22C411854AA2560AFC94CD2D5E61F, BB376734733671C02319E6DB1800D41212694446FD65465498C92D4ECBFE7458 ] upnphost        C:\WINDOWS\System32\upnphost.dll
12:17:11.0171 0x07dc  upnphost - ok
12:17:11.0203 0x07dc  [ C976C4306F9AE133D6BBD47FDFC3BF92, 820413D92D6A89055A7F26523BF5CC4B668610C4A06E8B0D163FBF929B1DFA9A ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
12:17:11.0218 0x07dc  usbccgp - ok
12:17:11.0234 0x07dc  [ 427B6DB8C05A5A977E8C3525370A2595, C67222CA9123AE12D953995326B3B582C146CEA89594B7209DB0B1F628A0118D ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
12:17:11.0234 0x07dc  usbcir - ok
12:17:11.0249 0x07dc  [ B24FDEB1B18496F1B463782235AA3AF1, 3F5036F36987C8007D03DAFC3EC30615515BE96D9A1DF879BCD4EB0E66CD50B1 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
12:17:11.0249 0x07dc  usbehci - ok
12:17:11.0281 0x07dc  [ F8C2A832DF9403F5EA8080CBDBDA95FB, 50E9455465672BC13EB945BEC132D2F30BA2EB25C68928D2B4C256F2DB292A83 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
12:17:11.0312 0x07dc  usbhub - ok
12:17:11.0343 0x07dc  [ FAAB461D5AEB21EE5FC5C0DBD6648223, 187EB7AC6CDE39621C587EB1551DBC358DE2BC7C8A4265DB817C9D6F5ADE54A3 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
12:17:11.0359 0x07dc  USBHUB3 - ok
12:17:11.0390 0x07dc  [ 325F6179009B5A7F6118951A5BA422AB, 756CB2893530485E8C3ACFF5A40F4C6EB446E72B2296E8772058E407A5E066DE ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
12:17:11.0390 0x07dc  usbohci - ok
12:17:11.0406 0x07dc  [ 9FDBA6982582A6F2354144980F641E7B, 054A65412CB22C5BE970FD3A266E140110D869B614B9F9894628D553CE82C991 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
12:17:11.0406 0x07dc  usbprint - ok
12:17:11.0421 0x07dc  [ AD91D1BBE5D3CF4501887DC1C09384FD, ED9E27CD1D52401087427EC20E389FBE2497193483C2E53E8DE5D70DACF5D928 ] usbscan         C:\WINDOWS\System32\drivers\usbscan.sys
12:17:11.0421 0x07dc  usbscan - ok
12:17:11.0453 0x07dc  [ BFC7FE4AAEB61317A921871B4085EF4B, CBC3FBAEAD6C82A437CC87A97007EF807C64053AB8FA5C3233C2A0CF6FC8D019 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
12:17:11.0453 0x07dc  USBSTOR - ok
12:17:11.0468 0x07dc  [ 1ABF657259DB57F7E5558E4DF1357C0C, 34EAF5DEA3293CFA96BA81B036305FD90ABAE05B9CB73D4F54FB236448C1978C ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
12:17:11.0468 0x07dc  usbuhci - ok
12:17:11.0515 0x07dc  [ 9EF7C01D3ACCBC243B5CB1A95865B2FF, 367A7640B4992E68EB3E1BBD78D3014742F4CC4056750E389048C653251DAD33 ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
12:17:11.0531 0x07dc  usbvideo - ok
12:17:11.0578 0x07dc  [ 8DC398D7B8E02C929A2096E74A170970, 87B3CE84D05F50C33935B28F0AFF1CB15DAA4530768BA1FB25C311609CD4B0A5 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
12:17:11.0593 0x07dc  USBXHCI - ok
12:17:11.0609 0x07dc  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] VaultSvc        C:\WINDOWS\system32\lsass.exe
12:17:11.0609 0x07dc  VaultSvc - ok
12:17:11.0671 0x07dc  [ BACECBFF9C97F7627A60B0E0F1FE7EE8, DC82F767D066B93A48A090DC7146EBCCDC54B43C6CD9DF29A160E09E3A531DC8 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
12:17:11.0671 0x07dc  vdrvroot - ok
12:17:11.0734 0x07dc  [ 1B4488988E5E7512E6C5CD1255E9E973, B82C26E767A8895CFFD76C11D07D5C945C38E1BD32CC27D20A6C0FA7F6064FC5 ] vds             C:\WINDOWS\System32\vds.exe
12:17:11.0765 0x07dc  vds - ok
12:17:11.0781 0x07dc  [ 74FA2D4368DE6F6CE14393EDF1F342BE, C5CE4164B2C3D583A7FB8687ADEADCDB08D36A5AB1965E5FC6949AEED15881C8 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
12:17:11.0781 0x07dc  VerifierExt - ok
12:17:11.0828 0x07dc  [ D4051AA2ACD38AABF9DEC24B8A331EB1, 377D5DD98E4E09F3CCC330852F9FD9E4CC2069AE1A1C1AFBC90002FE3101708B ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
12:17:11.0843 0x07dc  vhdmp - ok
12:17:11.0859 0x07dc  [ F5B4A14B00E89250C50982AC762DDD1D, 581CD97DD42E74A82F06BFB827DFC82618B4A8667ACA7E93C628BB0D056CE8F0 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
12:17:11.0859 0x07dc  viaide - ok
12:17:11.0921 0x07dc  [ 71B51CF0B12E216D1FA8262B3B8E7DB4, E392CE09E02519AD2E31FB42ECEEDA5D252A9F3F1F9E137AA0726784EF7DFB71 ] vm332avs        C:\WINDOWS\System32\Drivers\vm332avs.sys
12:17:11.0953 0x07dc  vm332avs - ok
12:17:11.0984 0x07dc  [ 78DB50F7329F6D1311658DABFFFC8BE0, 8CB0C831608033C4BC1D2DA7FAA7D429333A3654E76A989F7AF85BFC5F086BE9 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
12:17:11.0984 0x07dc  vmbus - ok
12:17:11.0984 0x07dc  [ ECFEE2F2BA3932C7880D1A8F67D68F91, 57DCD55A518A9FBDEF72B511C643B1062C3F7BD339F4B0FC19E9D84C615B968D ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
12:17:11.0984 0x07dc  VMBusHID - ok
12:17:12.0031 0x07dc  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
12:17:12.0031 0x07dc  vmicheartbeat - ok
12:17:12.0046 0x07dc  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
12:17:12.0062 0x07dc  vmickvpexchange - ok
12:17:12.0062 0x07dc  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
12:17:12.0078 0x07dc  vmicrdv - ok
12:17:12.0093 0x07dc  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
12:17:12.0093 0x07dc  vmicshutdown - ok
12:17:12.0109 0x07dc  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
12:17:12.0124 0x07dc  vmictimesync - ok
12:17:12.0156 0x07dc  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
12:17:12.0171 0x07dc  vmicvss - ok
12:17:12.0203 0x07dc  [ CB60FAAED8B49B812EBBF77EB87D9B18, ADA7C68D4C4981555ED48981E8B7ACBEEF5C39F902EB98782FC3DFF495FE0C33 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
12:17:12.0203 0x07dc  volmgr - ok
12:17:12.0218 0x07dc  [ A74101DA9809251BCD0E5A26BAE0F824, 15A3A7CC31A13C5882812C344D0937A8A4503D12DB07B9F7F2A8191B739CDBF7 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
12:17:12.0234 0x07dc  volmgrx - ok
12:17:12.0296 0x07dc  [ AA37946941ED3805AB3A924965907147, 11BD8FA585F193EED050458E93679D730FC2C09D19237DA40B0190132D328CB2 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
12:17:12.0328 0x07dc  volsnap - ok
12:17:12.0343 0x07dc  [ A8DA1C1B52ECEA3726DEBED4FF1B700D, 75C024EC3858DF24FB82FE105BDD1E37900D53EFE9D72F42CDDFFD0742525586 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
12:17:12.0359 0x07dc  vpci - ok
12:17:12.0359 0x07dc  [ 38A60CD9C009C55C6D3B5586F8E6A353, 7F7E2AE39F1A0A5245650911E310E0948BC22A18262A16FA76B44A042D66312D ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
12:17:12.0374 0x07dc  vsmraid - ok
12:17:12.0468 0x07dc  [ FE37051171F3B90B18037FDBAC5B9D76, F220D71512E059F298F3CD958D69BE7225A8E8D492387347E75A0E615159782A ] VSS             C:\WINDOWS\system32\vssvc.exe
12:17:12.0515 0x07dc  VSS - ok
12:17:12.0546 0x07dc  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC, AC2F3C70EDCA0AFBB2606267DFE6D3E8E7B0772140153BAD6B0A9EDE6A1D2F29 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
12:17:12.0546 0x07dc  VSTXRAID - ok
12:17:12.0562 0x07dc  [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
12:17:12.0562 0x07dc  vwifibus - ok
12:17:12.0578 0x07dc  [ 095E943D27025E4D588AF0A72CC2318F, 3CE406A202F93EF8C4BC7317621A672670D734C69166393CA7256D5E5E667041 ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
12:17:12.0578 0x07dc  vwififlt - ok
12:17:12.0593 0x07dc  [ 73FA1A41A97A5C34ADC03B3577FF1A86, CBA4BC0DA837C163587BBB4BF2AC1549C72440307C984D3CDF8995023718136C ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
12:17:12.0593 0x07dc  vwifimp - ok
12:17:12.0624 0x07dc  [ F690B6EEAA94576727B24376D7ED3601, A61EE96024C8FC4058481DFB1E7F0AD746565368672FA3B6BA8F9E23D0F47E4C ] W32Time         C:\WINDOWS\system32\w32time.dll
12:17:12.0640 0x07dc  W32Time - ok
12:17:12.0656 0x07dc  [ 6B806E893714019969E2B50D7EF6A4D9, 38FE2B01082DC4C2A0C11A292016A727F48C3DF1293DC3A0216B2254A452263F ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
12:17:12.0656 0x07dc  WacomPen - ok
12:17:12.0687 0x07dc  [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:17:12.0687 0x07dc  Wanarp - ok
12:17:12.0703 0x07dc  [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:17:12.0703 0x07dc  Wanarpv6 - ok
12:17:12.0781 0x07dc  [ 42DF22F8C448E7CD219F6D63743505E2, 063F4280C7BD20CE1360436B76A17DFE17FF611F75337A47373D098CC6C263BF ] wbengine        C:\WINDOWS\system32\wbengine.exe
12:17:12.0828 0x07dc  wbengine - ok
12:17:12.0906 0x07dc  [ 31D37B2F6069C631EF0557D322924812, 6E18A1060F3C8F4BF220E286C44327866A8F9109E74928AA2D8C2DA9C452038B ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
12:17:12.0937 0x07dc  WbioSrvc - ok
12:17:12.0968 0x07dc  [ F43314B83101DEBF7D7CCD42493CFC60, F4B70372559F2FD9A74FB87422EC6EF024F925AE4D838473E04E6B48AB7255AF ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
12:17:12.0984 0x07dc  Wcmsvc - ok
12:17:13.0046 0x07dc  [ 5B5FEAB51172F5513C2CF7B39CFA6A01, 4FDAC5168E00D44781C6F5D98ECD4977A12663C5CE6FFDFF9DBC89A28D6212D8 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
12:17:13.0062 0x07dc  wcncsvc - ok
12:17:13.0078 0x07dc  [ E19556D414332E2BEBA1F368229006B4, AB3454EC85D7B6E62D44C4510C1547AE7F736558588E54B0E265F7B3A5810E15 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
12:17:13.0078 0x07dc  WcsPlugInService - ok
12:17:13.0109 0x07dc  [ B3A4D918DAB90505B6BC7B70632913CB, ECC19DCD7902C29D0682C70B9546CF8B82477A32147EE30EB6750D8499605B46 ] Wd              C:\WINDOWS\system32\drivers\wd.sys
12:17:13.0109 0x07dc  Wd - ok
12:17:13.0140 0x07dc  [ 413935CA0DB07EB40002B4384187821F, 223B26B233B308CA311E970EBF6E159268EB93D61DD0D863CE11A7F54D746A18 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
12:17:13.0140 0x07dc  WdBoot - ok
12:17:13.0187 0x07dc  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
12:17:13.0234 0x07dc  Wdf01000 - ok
12:17:13.0265 0x07dc  [ 4E69BE2A5DB2B01B3D6F6A07C62953B2, D2C9FCE14EF4E333101623D8C2E27A292880FB8F2F7EDFC6481E6E88E2C7A845 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
12:17:13.0281 0x07dc  WdFilter - ok
12:17:13.0281 0x07dc  [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
12:17:13.0296 0x07dc  WdiServiceHost - ok
12:17:13.0296 0x07dc  [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
12:17:13.0296 0x07dc  WdiSystemHost - ok
12:17:13.0328 0x07dc  [ E8CC1297B90D9DB8288200EB29A96021, CE097E703D1C41A84F582F9FE356A9EF0DAB4705A1209649E5A4772FC9553116 ] WebClient       C:\WINDOWS\System32\webclnt.dll
12:17:13.0343 0x07dc  WebClient - ok
12:17:13.0359 0x07dc  [ 35FD720943D4FCD75C3275BF062FF140, 9D8345E6DE1AE23F93AD0B52D27D1CCFD69EF7EE50654F92CA999BEC4570A773 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
12:17:13.0359 0x07dc  Wecsvc - ok
12:17:13.0375 0x07dc  [ 4D2612E3C462B68F499D840B1133263E, 4DDAEB4480AEC31A8184838588E0D3DFA31CE6D2FA6E906926860C75F52DC7B7 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
12:17:13.0390 0x07dc  wercplsupport - ok
12:17:13.0421 0x07dc  [ 5F70EBFC1F75B487DE79501E3CCBDB54, 2FCA57BF60A43B03BB42FBF22BBFC19AD2266FBBD818494AD114125E6E433321 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
12:17:13.0421 0x07dc  WerSvc - ok
12:17:13.0468 0x07dc  [ 8FDA12E934C7BB7CC317F90FC70DC4FC, AA0DA063BCE5692DFD46F0AAE07727B38D4AA87A9BAEBAFF137F9CAAF2808EC0 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
12:17:13.0468 0x07dc  WFPLWFS - ok
12:17:13.0500 0x07dc  [ 60E0C220593DA4F7C289CB909D2DBAE0, 057CA7727F748600CC155043081AB9E3244763CF4913F317D13226A515F6FDB6 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
12:17:13.0500 0x07dc  WiaRpc - ok
12:17:13.0546 0x07dc  [ A3C7624A42A3447EF5EDD1ED37FE4E60, BD8BDF0A571873FA8277878AF7AED11196CFF1B4DF1EA6BA13BD4887D7B63B94 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
12:17:13.0546 0x07dc  WIMMount - ok
12:17:13.0578 0x07dc  WinDefend - ok
12:17:13.0750 0x07dc  [ 7911470B6018059A880469A63B65700A, 4B6131491A028FBCA54AC261112D183EFD42E98160545C8E8DFBDA01C87B3FB5 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
12:17:13.0781 0x07dc  WinHttpAutoProxySvc - ok
12:17:13.0875 0x07dc  [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
12:17:13.0890 0x07dc  Winmgmt - ok
12:17:14.0140 0x07dc  [ 89DA335401D956F2696E35A38817BE19, D5A8D5C0BE285564AB0DF1B4594FE612359C72BE3B64063C3460BB73AA34F413 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
12:17:14.0234 0x07dc  WinRM - ok
12:17:14.0343 0x07dc  [ 6351724B8FA0255C2DBD970297F00B93, A02F274479F9F32E30C75A5BD991B008B3CCB47D380D5870563EF918DAC5730E ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
12:17:14.0390 0x07dc  WlanSvc - ok
12:17:14.0593 0x07dc  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B, B76226808406D8B38DE2D3A8CCE633BB507022C8BAAA6C3DAD34204CC6CE1284 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
12:17:14.0656 0x07dc  wlidsvc - ok
12:17:14.0687 0x07dc  [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
12:17:14.0703 0x07dc  WmiAcpi - ok
12:17:14.0734 0x07dc  [ D113499052C5E541906B727779F0F959, 05FB51086C0A0CE3812A7E6098C5A454ECCFE8553669CFA715153564F2226DB0 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
12:17:14.0734 0x07dc  wmiApSrv - ok
12:17:14.0750 0x07dc  WMPNetworkSvc - ok
12:17:14.0781 0x07dc  [ C6FF953D5D6F2EAE3B8883474D5076B3, 001CBB7FBC30209C892869258E5ABD3F0932886E156ECB10DCA599F6D32648BE ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
12:17:14.0781 0x07dc  wpcfltr - ok
12:17:14.0812 0x07dc  [ A6ED163169876BFD2437E872FE2F1509, C13E8676800EEEF690F51C4DEA660B36C8734AE2CCAAC48054E10D74B98949B8 ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
12:17:14.0812 0x07dc  WPCSvc - ok
12:17:14.0828 0x07dc  [ 3013658A4D327854BEEC4A08D9655194, C4CF5AA6A47CC55E7037B0BFE20AE0A6442ADDC5DEB89D6861C98C61851FA821 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
12:17:14.0843 0x07dc  WPDBusEnum - ok
12:17:14.0859 0x07dc  [ 0346CAFC181C91C6E2330332EB332ED6, D46F44C339399CAAE13CD71C53A169E95065208E07E5420DE00A4509D6CB056F ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
12:17:14.0859 0x07dc  WpdUpFltr - ok
12:17:14.0890 0x07dc  [ BC8B5CB336E63BB25EAD1CE8EDD34B81, A42759956EDCCC6D0688240AA4F833FB9CA132D42D2D901CDCBB24DCE1788C1D ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
12:17:14.0890 0x07dc  ws2ifsl - ok
12:17:14.0922 0x07dc  [ 012CFE7F0F95266F554EE3B91EE2128A, 866312F6BF7369BE686F1BA9F01311C99E95E268C6E63BE37C841F54F5AA0DB8 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
12:17:14.0922 0x07dc  wscsvc - ok
12:17:14.0953 0x07dc  [ 74EFDA0526862C3D8D01A776182798EA, 7C9AD6118CB344C63B60A8BA5FA8C85ADED30933821ABD1427857E826EFC2952 ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
12:17:14.0953 0x07dc  WSDPrintDevice - ok
12:17:14.0968 0x07dc  [ FA07DF46070F0826139709EF4D31FB71, 8F46A55D5C4336536E7974C9CEAFED55E7E9E9BF133D2AD0F6A55174F70B2F03 ] WSDScan         C:\WINDOWS\System32\drivers\WSDScan.sys
12:17:14.0968 0x07dc  WSDScan - ok
12:17:14.0984 0x07dc  WSearch - ok
12:17:15.0093 0x07dc  [ D4D04839F3DFAF09D94BAB1016F7A297, 944A41D251F522EE87189C1D01CF7EEE2C70BF4353BA4005C44F03DB485F843F ] WSService       C:\WINDOWS\System32\WSService.dll
12:17:15.0187 0x07dc  WSService - ok
12:17:15.0218 0x07dc  [ 72B4E9DF6456C43C42A1419B09486045, 536BA7377B5BEA7EA46864453933111DB88DB8FB689C68915ACD7261A996E61D ] wsvd            C:\WINDOWS\system32\DRIVERS\wsvd.sys
12:17:15.0234 0x07dc  wsvd - ok
12:17:15.0390 0x07dc  [ C5B45464B98F211FE58AEE62CFF21F05, A0AB6142F35707102B75C9C29A749C7EB12CB6F5E85E6BA67C5B961AF7EB3BE8 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
12:17:15.0468 0x07dc  wuauserv - ok
12:17:15.0500 0x07dc  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
12:17:15.0500 0x07dc  WudfPf - ok
12:17:15.0531 0x07dc  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
12:17:15.0531 0x07dc  WUDFRd - ok
12:17:15.0562 0x07dc  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
12:17:15.0562 0x07dc  wudfsvc - ok
12:17:15.0578 0x07dc  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:17:15.0578 0x07dc  WUDFWpdFs - ok
12:17:15.0718 0x07dc  [ 6D9E07436B6646EC8F7EFFD39B6BA288, 82C1CEA93ECEF17D221AD0F87C5BD96F3FD8143841C16BD9608BD4D58D90B8E0 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
12:17:15.0734 0x07dc  WwanSvc - ok
12:17:15.0750 0x07dc  ================ Scan global ===============================
12:17:15.0797 0x07dc  [ B31E908A78791A4B61DF39F4271CAF2F, 663F940E68A8C1839AD0133DEB13FCF9F45041EA0DCF9E91B67288CA0E0D3326 ] C:\WINDOWS\system32\basesrv.dll
12:17:15.0828 0x07dc  [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\WINDOWS\system32\winsrv.dll
12:17:15.0859 0x07dc  [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\WINDOWS\system32\sxssrv.dll
12:17:15.0906 0x07dc  [ 590A2B4198DD35AA42893BA04F66FD3F, BDD9609F43275E895AE3A685DF921B19F11E4D8617F7BD3D4BA21A230EB9A060 ] C:\WINDOWS\system32\services.exe
12:17:15.0922 0x07dc  [ Global ] - ok
12:17:15.0922 0x07dc  ================ Scan MBR ==================================
12:17:15.0937 0x07dc  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
12:17:15.0984 0x07dc  \Device\Harddisk0\DR0 - ok
12:17:15.0984 0x07dc  [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk1\DR1
12:17:15.0984 0x07dc  \Device\Harddisk1\DR1 - ok
12:17:15.0984 0x07dc  ================ Scan VBR ==================================
12:17:16.0000 0x07dc  [ 0DCFE5094B1923D7C99C82BE689E24F8 ] \Device\Harddisk0\DR0\Partition1
12:17:16.0015 0x07dc  \Device\Harddisk0\DR0\Partition1 - ok
12:17:16.0031 0x07dc  [ 8B7DE554F2104BAFB1AE1E93964B4156 ] \Device\Harddisk0\DR0\Partition2
12:17:16.0047 0x07dc  \Device\Harddisk0\DR0\Partition2 - ok
12:17:16.0078 0x07dc  [ FEA9BFEC006B7596BDBDFA8642920060 ] \Device\Harddisk0\DR0\Partition3
12:17:16.0093 0x07dc  \Device\Harddisk0\DR0\Partition3 - ok
12:17:16.0109 0x07dc  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition4
12:17:16.0109 0x07dc  \Device\Harddisk0\DR0\Partition4 - ok
12:17:16.0125 0x07dc  [ 5799092E7257035D94B73AE28B9AD6A7 ] \Device\Harddisk0\DR0\Partition5
12:17:16.0125 0x07dc  \Device\Harddisk0\DR0\Partition5 - ok
12:17:16.0172 0x07dc  [ 1D40BD069B67A77442BD7C229A2C2431 ] \Device\Harddisk0\DR0\Partition6
12:17:16.0203 0x07dc  \Device\Harddisk0\DR0\Partition6 - ok
12:17:16.0234 0x07dc  [ BB0B115BD2FAF94DEED4A55526FB5259 ] \Device\Harddisk0\DR0\Partition7
12:17:16.0265 0x07dc  \Device\Harddisk0\DR0\Partition7 - ok
12:17:16.0265 0x07dc  [ 456AED275DA4C1C774BD7F4419E3D11A ] \Device\Harddisk1\DR1\Partition1
12:17:16.0265 0x07dc  \Device\Harddisk1\DR1\Partition1 - ok
12:17:16.0281 0x07dc  ================ Scan generic autorun ======================
12:17:16.0343 0x07dc  [ BCBB35E6310A517543AE6A464A5F5A5A, 3995B761F7C37776359CF161F6F799A846AFC090F4254DD08ECD7D9A9BF6238D ] C:\WINDOWS\system32\igfxtray.exe
12:17:16.0343 0x07dc  IgfxTray - ok
12:17:16.0390 0x07dc  [ DFCD1B8BCB3369BB4233362B3CE4181D, 687FB366A5709DF675C15395274BAE3AB564F1E90C602F6D53E286F34DF2CEC1 ] C:\WINDOWS\system32\hkcmd.exe
12:17:16.0406 0x07dc  HotKeysCmds - ok
12:17:16.0500 0x07dc  [ BB26684BB57DB5C229D5FFFDB4DDBAD5, 2EFF91A999DB2825A5395A7B72B5A02CA68E3CA4824BF9D29446E55812AACBCE ] C:\WINDOWS\system32\igfxpers.exe
12:17:16.0515 0x07dc  Persistence - ok
12:17:18.0047 0x07dc  [ 9CE8442B63A1E45E317E1B55A00FF441, 580517A62B41FB69F52A725895E25538A0FCA527D9ABC376EF56AEAE5BCC2DB9 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
12:17:18.0344 0x07dc  RtHDVCpl - ok
12:17:18.0406 0x07dc  [ 5890F875035DBF84037CD3502AAA96CD, C3CA9040E1761C3C78A467208FC5B52075E7954AABC6FF7FB5A20AC6CF456FA1 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
12:17:18.0437 0x07dc  RtHDVBg_Dolby - ok
12:17:18.0547 0x07dc  [ 11446040CF8064AF540F40F371148819, 051543782393ACDD02C4BC67F4CC44E4CAD572BFDBE4FE4A33F84EBF13B6AF25 ] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
12:17:18.0547 0x07dc  AmIcoSinglun64 - ok
12:17:18.0547 0x07dc  ETDCtrl - ok
12:17:19.0469 0x07dc  [ 65EE16AACAEBAF3D8EDEA422177B2DA0, D15F841043D04ACE2F3D376F0EA2A3F42B4FAAE78C82913529EB8576608D0B22 ] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
12:17:19.0875 0x07dc  Energy Management - ok
12:17:19.0969 0x07dc  [ 5EAF38FC08B9DE07AE8A3D814A3CF959, F9F1844F20106EE77664B848A056D6E06105647C61FC2F2B64BDFD05F76E7E3D ] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe
12:17:19.0969 0x07dc  EnergyUtility - ok
12:17:20.0169 0x07dc  [ 51B22E0B6BEDD384FD13446A670E2011, F22B0D1479B1C6AA41677F2F1CF265B9BB9F7D25D0055EBCA2537C5E9B6EB60E ] C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
12:17:20.0185 0x07dc  Dolby Advanced Audio v2 - ok
12:17:20.0310 0x07dc  [ 3A5D0E1BF0D7B954FD3A8BE474FCAABA, 2B41DF59122496519C8B68518AD566F3B7F28BECD089BF15B50D3D78C7369760 ] C:\Program Files (x86)\USB Camera2\VM332STI.EXE
12:17:20.0325 0x07dc  332BigDog - ok
12:17:20.0372 0x07dc  [ A1741C3B79F9DF8895E05EF43579E74B, 446094FDBA93518ABE1CDEC50E24AB60BC7CA78022A289AF5C21461778FD8001 ] C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
12:17:20.0388 0x07dc  YouCam Mirage - ok
12:17:20.0404 0x07dc  [ 79EDDBCBFFC23585BC1495AFC03CC4D7, 325A6C067A52BAD7070C1C758EA69645FD8083AC6D0ABA8340BDBE1A712E005F ] C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
12:17:20.0404 0x07dc  YouCam Tray - ok
12:17:20.0560 0x07dc  [ 16D807D8B07A868298A8044E576BE419, 148399752A497E7FEA07C59C89834E266652AC1C0793B5C9C429FDBB37AB7617 ] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe
12:17:20.0575 0x07dc  UpdateP2GShortCut - ok
12:17:20.0607 0x07dc  [ B7995C675014EEBE77A0BEB7AFCCFC08, 41D186C63273301CF0A1C1EE7B6EB0BB75A251DD441532C5CEB7A4095FB103CD ] C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
12:17:20.0607 0x07dc  RemoteControl10 - ok
12:17:20.0825 0x07dc  [ 43E946AAD268FEAFB1E286677E70CB5D, 7798926B3CF11D1CF7DFF9B3D67AD3DC67010A62F3132CAEA273EB299A61B176 ] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
12:17:20.0825 0x07dc  Intel AppUp(SM) center - ok
12:17:21.0185 0x07dc  [ F17FFAF69E1AF3D0A010FD4749148981, 7486A1EFE378BFCEE30D169BD0189CABD6935EBEE556BF0328330B120975EA03 ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
12:17:21.0201 0x07dc  EEventManager - ok
12:17:21.0513 0x07dc  [ EFC73875D6A2DECAD030633A9A75F00A, AA7B65649B37FFC68A6FFB23CBBE73E1BB873C840B9EA0049421D2B4C0EC364F ] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILHE.EXE
12:17:21.0513 0x07dc  EPLTarget\P0000000000000001 - ok
12:17:21.0544 0x07dc  [ EFC73875D6A2DECAD030633A9A75F00A, AA7B65649B37FFC68A6FFB23CBBE73E1BB873C840B9EA0049421D2B4C0EC364F ] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILHE.EXE
12:17:21.0544 0x07dc  EPLTarget\P0000000000000002 - ok
12:17:21.0779 0x07dc  [ 387BD2B4C3F3D954AE904CBE055AE78A, 5481CC195910F12BE66B9A0A0F20DD9576D61237EDF95B050411F68D3C8D7038 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
12:17:21.0794 0x07dc  GoogleChromeAutoLaunch_84AA60764E3AD6F516E758F934BD9E3B - ok
12:17:21.0794 0x07dc  Waiting for KSN requests completion. In queue: 86
12:17:22.0810 0x07dc  Waiting for KSN requests completion. In queue: 86
12:17:23.0826 0x07dc  Waiting for KSN requests completion. In queue: 86
12:17:24.0857 0x07dc  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x61100 ( enabled : updated )
12:17:24.0888 0x07dc  Win FW state via NFP2: enabled ( trusted )
12:17:27.0310 0x07dc  ============================================================
12:17:27.0310 0x07dc  Scan finished
12:17:27.0310 0x07dc  ============================================================
12:17:27.0326 0x0824  Detected object count: 0
12:17:27.0326 0x0824  Actual detected object count: 0
         

Alt 25.10.2016, 12:35   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!


1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).




2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


Alt 25.10.2016, 15:03   #12
ItalyWoman78
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Code:
ATTFilter
# AdwCleaner v6.030 - Bericht erstellt am 25/10/2016 um 14:32:03
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-10-23.2 [Server]
# Betriebssystem : Windows 8  (X64)
# Benutzername : XXXXXX - IDEA-PC
# Gestartet von : C:\Users\XXXXXX\Desktop\AdwCleaner_6.030.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****

Keine schädlichen Dienste gefunden.


***** [ Ordner ] *****

Keine schädlichen Ordner gefunden.


***** [ Dateien ] *****

Keine schädlichen Dateien gefunden.


***** [ DLL ] *****

Keine infizierten DLLs gefunden.


***** [ WMI ] *****

Keine schädlichen Schlüssel gefunden.


***** [ Verknüpfungen ] *****

Keine infizierten Verknüpfungen gefunden.


***** [ Aufgabenplanung ] *****

Keine schädlichen Aufgaben gefunden.


***** [ Registrierungsdatenbank ] *****

Keine schädlichen Elemente in der Registrierungsdatenbank gefunden.


***** [ Internetbrowser ] *****

Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Keine schädlichen Elemente in Chrome basierten Browsern gefunden.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [6785 Bytes] - [17/10/2016 11:32:15]
C:\AdwCleaner\AdwCleaner[S0].txt - [6361 Bytes] - [17/10/2016 11:31:16]
C:\AdwCleaner\AdwCleaner[S1].txt - [1332 Bytes] - [25/10/2016 14:32:03]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1405 Bytes] ##########
         
Code:
ATTFilter
# AdwCleaner v6.030 - Bericht erstellt am 25/10/2016 um 14:33:53
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-10-23.2 [Server]
# Betriebssystem : Windows 8  (X64)
# Benutzername : XXXXX - IDEA-PC
# Gestartet von : C:\Users\XXXXX\Desktop\AdwCleaner_6.030.exe
# Modus: Löschen
# Unterstützung : hxxps://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****



***** [ Dateien ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****



***** [ Browser ] *****



*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [6785 Bytes] - [17/10/2016 11:32:15]
C:\AdwCleaner\AdwCleaner[C2].txt - [998 Bytes] - [25/10/2016 14:33:53]
C:\AdwCleaner\AdwCleaner[S0].txt - [6361 Bytes] - [17/10/2016 11:31:16]
C:\AdwCleaner\AdwCleaner[S1].txt - [1484 Bytes] - [25/10/2016 14:32:03]

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1216 Bytes] ##########
         
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 8 x64 
Ran by XXXXXX (Administrator) on 25/10/2016 at 14.36.14,05
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 8 

Successfully deleted: C:\Users\XXXXXX\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1K64A4G9 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\XXXXXX\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZNFFMS4 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\XXXXXX\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M3CKMX1B (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\XXXXXX\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X51UJEOU (Temporary Internet Files Folder) 
Successfully deleted: C:\WINDOWS\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1K64A4G9 (Temporary Internet Files Folder) 
Successfully deleted: C:\WINDOWS\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZNFFMS4 (Temporary Internet Files Folder) 
Successfully deleted: C:\WINDOWS\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M3CKMX1B (Temporary Internet Files Folder) 
Successfully deleted: C:\WINDOWS\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X51UJEOU (Temporary Internet Files Folder) 



Registry: 1 

Successfully deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_84AA60764E3AD6F516E758F934BD9E3B (Registry Value) 




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 25/10/2016 at 14.40.03,18
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

Alt 25.10.2016, 15:21   #13
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken


Alt 25.10.2016, 15:48   #14
ItalyWoman78
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17-10-2016
durchgeführt von XXXXXX (Administrator) auf IDEA-PC (25-10-2016 15:45:07)
Gestartet von C:\Users\XXXXXX\Desktop
Geladene Profile: XXXXXX (Verfügbare Profile: XXXXXX)
Platform: Windows 8 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 10 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.17516_none_6276a5b950d43361\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12921488 2012-07-02] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1212560 2012-06-13] (Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [366720 2012-06-26] (Alcor Micro Corp.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2864016 2012-08-09] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2012-11-16] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2012-11-16] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508256 2012-04-23] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [332BigDog] => C:\Program Files (x86)\USB Camera2\VM332STI.EXE [548864 2012-03-20] (Vimicro)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{25177335-5810-47A2-90DC-871EA82D5210}: [DhcpNameServer] 172.168.141.2
Tcpip\..\Interfaces\{2E030430-B6D9-4DBC-BC74-E9211CB75416}: [DhcpNameServer] 192.168.2.1
ManualProxies: 

Internet Explorer:
==================
HKU\S-1-5-21-2768397689-4292562880-697418737-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-2768397689-4292562880-697418737-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-2768397689-4292562880-697418737-1001 -> DefaultScope {B26F8B18-C048-4244-A267-D0DFA2FDA7AD} URL = 
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

FireFox:
========
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.icon-formazione.it/#"
CHR Profile: C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default [2016-10-25]
CHR Extension: (Presentazioni Google) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-10-17]
CHR Extension: (Documenti Google) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-17]
CHR Extension: (Google Drive) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-17]
CHR Extension: (Digg.com CBI) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfakhamjfdaafigbddpkenkkdgldagim [2016-10-24]
CHR Extension: (YouTube) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-17]
CHR Extension: (Fogli Google) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-10-17]
CHR Extension: (Google Documenti offline) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-10-17]
CHR Extension: (Reload All Tabs) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpeeciigchcadkcnjcipnohdlajnel [2016-10-20]
CHR Extension: (Chrome notes plus) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijflgieaoapgdopcikhbkbgncahibahh [2016-10-23]
CHR Extension: (Chrome notes plus) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\laafnjboccdlcgofapkodcibeaacbfbb [2016-10-22]
CHR Extension: (Chrome notes plus) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\llhpegpoejfhipephapcogeomedclnji [2016-10-21]
CHR Extension: (Pagamenti Chrome Web Store) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-10-17]
CHR Extension: (Wiley.com CBI) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmnmepmmllijgcbbgkilgfdgippdinio [2016-10-22]
CHR Extension: (Gmail) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-17]
CHR Extension: (Chrome Media Router) - C:\Users\XXXXXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-23]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-17] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S3 vmicvss; C:\WINDOWS\System32\ICSvc.dll [336384 2012-07-26] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [6822984 2012-11-16] (Broadcom Corporation)
S0 ebdrv; C:\WINDOWS\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
R3 GeneStor; C:\WINDOWS\system32\DRIVERS\GeneStor.sys [130648 2016-08-22] (GenesysLogic)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-25 15:45 - 2016-10-25 15:45 - 00012388 _____ C:\Users\XXXXXX\Desktop\FRST.txt
2016-10-25 14:40 - 2016-10-25 14:40 - 00002017 _____ C:\Users\XXXXXX\Desktop\JRT.txt
2016-10-25 14:29 - 2016-10-25 12:55 - 03910208 _____ C:\Users\XXXXXX\Desktop\AdwCleaner_6.030.exe
2016-10-25 14:15 - 2016-10-25 14:15 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-10-25 14:15 - 2016-10-25 14:15 - 00000000 ____D C:\Program Files (x86)\Genesys Logic
2016-10-25 12:16 - 2016-10-25 12:18 - 00211798 _____ C:\TDSSKiller.3.1.0.11_25.10.2016_12.16.26_log.txt
2016-10-25 11:56 - 2016-10-25 12:15 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-10-25 11:55 - 2016-10-25 12:15 - 00000000 ____D C:\Users\XXXXXX\Desktop\mbar
2016-10-25 11:55 - 2016-10-25 11:54 - 04747704 _____ (AO Kaspersky Lab) C:\Users\XXXXXX\Desktop\tdsskiller.exe
2016-10-25 11:55 - 2016-10-25 11:53 - 16563352 _____ (Malwarebytes Corp.) C:\Users\XXXXXX\Desktop\mbar-1.09.3.1001.exe
2016-10-25 11:45 - 2016-07-27 21:25 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-10-25 11:29 - 2016-10-25 11:29 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2016-10-24 12:08 - 2016-10-24 12:08 - 00000000 ____D C:\Users\XXXXXX\Desktop\FRST-OlderVersion
2016-10-23 09:49 - 2016-10-23 09:49 - 00000000 ____D C:\Users\Public\CyberLink
2016-10-20 22:33 - 2016-10-20 22:33 - 00012304 _____ C:\Users\XXXXXX\Downloads\Anmeldeformular.pdf
2016-10-20 21:57 - 2016-10-24 11:51 - 00038912 ___SH C:\Users\XXXXXX\Downloads\Thumbs.db
2016-10-20 21:53 - 2016-10-20 21:57 - 00000000 ____D C:\Users\XXXXXX\Downloads\(15) Facebook_files
2016-10-20 21:53 - 2016-10-20 21:53 - 00757648 _____ C:\Users\XXXXXX\Downloads\(15) Facebook.html
2016-10-20 11:36 - 2016-10-20 11:37 - 00240776 _____ C:\Users\XXXXXX\Downloads\giallo-s1-i_forum_della_tua_classe.pdf
2016-10-20 11:29 - 2016-10-20 11:29 - 00237817 _____ C:\Users\XXXXXX\Downloads\giallo-s1-il_forum.pdf
2016-10-19 20:53 - 2016-10-19 20:53 - 05909618 _____ C:\Users\XXXXXX\Downloads\phrasebook_mosalingua_it (3).zip
2016-10-19 20:53 - 2016-10-19 20:53 - 05909618 _____ C:\Users\XXXXXX\Downloads\phrasebook_mosalingua_it (2).zip
2016-10-19 18:16 - 2016-10-19 18:16 - 05909618 _____ C:\Users\XXXXXX\Downloads\phrasebook_mosalingua_it (1).zip
2016-10-17 22:47 - 2016-10-17 22:47 - 23601803 _____ C:\Users\XXXXXX\Downloads\tpr-a-mastromarco.pdf
2016-10-17 22:27 - 2016-10-17 22:27 - 00012547 _____ C:\Users\XXXXXX\Downloads\prova_ingresso_2_media.zip
2016-10-17 22:27 - 2016-10-17 22:27 - 00000022 _____ C:\Users\XXXXXX\Downloads\prova_ingresso_2_media (1).zip
2016-10-17 22:26 - 2016-10-17 22:26 - 00029260 _____ C:\Users\XXXXXX\Downloads\prova_ingresso_1_media.zip
2016-10-17 16:18 - 2016-10-17 16:20 - 02363222 _____ C:\Users\XXXXXX\Downloads\phrasebook_mosalingua_it.zip
2016-10-17 11:40 - 2016-10-25 15:45 - 00000000 ____D C:\FRST
2016-10-17 11:29 - 2016-10-25 14:33 - 00000000 ____D C:\AdwCleaner
2016-10-17 10:53 - 2016-10-25 11:56 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-10-17 10:52 - 2016-10-25 11:55 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-10-17 10:52 - 2016-10-17 10:52 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-10-17 10:52 - 2016-10-17 10:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-10-17 10:52 - 2016-10-17 10:52 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-17 10:52 - 2016-10-17 10:52 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-10-17 10:52 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-10-17 10:52 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-10-17 10:50 - 2016-10-25 12:55 - 01631928 _____ (Malwarebytes) C:\Users\XXXXXX\Desktop\JRT.exe
2016-10-17 10:50 - 2016-10-24 12:08 - 02407424 _____ (Farbar) C:\Users\XXXXXX\Desktop\FRST64.exe
2016-10-17 10:50 - 2016-10-17 10:50 - 22851472 _____ (Malwarebytes ) C:\Users\XXXXXX\Downloads\mbam-setup-2.2.1.1043.exe
2016-10-17 10:48 - 2016-10-17 10:48 - 16563352 _____ (Malwarebytes Corp.) C:\Users\XXXXXX\Downloads\mbar-1.09.3.1001.exe
2016-10-15 11:15 - 2016-10-15 11:16 - 00430720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-09 21:31 - 2016-10-09 21:31 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2016-10-09 21:31 - 2016-10-09 21:31 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-07 20:33 - 2014-07-12 06:41 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRUM.DLL
2016-10-07 20:33 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDYAK.DLL
2016-10-07 20:33 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTAT.DLL
2016-10-07 20:33 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU1.DLL
2016-10-07 20:33 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU.DLL
2016-10-07 20:33 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDBASH.DLL
2016-10-07 20:33 - 2014-07-12 06:16 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRUM.DLL
2016-10-07 20:33 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDYAK.DLL
2016-10-07 20:33 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTAT.DLL
2016-10-07 20:33 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU1.DLL
2016-10-07 20:33 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU.DLL
2016-10-07 20:33 - 2014-07-12 06:15 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDBASH.DLL
2016-10-07 20:33 - 2014-07-09 00:33 - 00181248 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2016-10-07 20:33 - 2014-07-09 00:32 - 01539584 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-10-07 20:33 - 2014-07-09 00:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2016-10-07 20:33 - 2014-07-09 00:30 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-10-07 20:33 - 2014-07-07 07:52 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-10-07 20:33 - 2014-07-07 07:52 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-10-07 20:33 - 2014-07-04 12:52 - 00328000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-10-07 20:33 - 2014-06-28 09:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2016-10-07 20:33 - 2014-06-28 08:56 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-10-07 20:33 - 2014-06-18 01:27 - 02032640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-10-07 20:33 - 2014-06-18 01:23 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-10-06 18:27 - 2014-10-09 06:00 - 01519104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-10-06 18:27 - 2014-10-09 06:00 - 01484288 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-10-06 18:27 - 2014-10-09 06:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-10-06 18:27 - 2014-10-09 05:59 - 01195520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-10-06 18:27 - 2014-10-09 05:59 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-10-06 18:27 - 2012-09-20 08:31 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-10-06 18:27 - 2012-09-20 07:53 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-10-06 18:07 - 2015-01-09 08:43 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-10-06 18:07 - 2015-01-09 07:03 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-10-06 17:59 - 2016-10-14 18:45 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-10-06 17:59 - 2016-10-14 18:38 - 143495576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-10-06 17:49 - 2014-04-16 20:20 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-10-06 17:49 - 2014-04-16 20:20 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-10-06 17:38 - 2016-07-02 06:32 - 00827864 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-06 17:38 - 2016-07-02 06:32 - 00176096 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-06 17:30 - 2016-10-06 17:30 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2016-10-06 10:22 - 2016-10-06 10:22 - 00000000 ____D C:\Users\XXXXXX\AppData\Local\CEF
2016-10-06 10:21 - 2016-10-16 09:15 - 00004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-10-06 10:21 - 2016-10-06 10:21 - 00000000 ____D C:\Users\XXXXXX\AppData\LocalLow\Adobe
2016-10-06 10:20 - 2016-10-16 09:14 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-06 10:20 - 2016-10-06 10:20 - 00002058 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-10-06 10:12 - 2016-10-06 10:18 - 00297078 _____ C:\Users\XXXXXX\Downloads\BoardingPass (1).pdf
2016-10-06 10:10 - 2016-10-06 10:10 - 00297078 _____ C:\Users\XXXXXX\Downloads\BoardingPass.pdf
2016-10-06 10:06 - 2016-10-06 10:06 - 00000000 ____D C:\Users\XXXXXX\AppData\Roaming\Epson
2016-10-06 10:04 - 2016-10-06 10:14 - 00297078 _____ C:\Users\XXXXXX\Documents\BoardingPass.pdf
2016-10-05 19:05 - 2016-10-25 15:05 - 00000935 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}.job
2016-10-05 19:05 - 2016-10-25 15:05 - 00000749 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}.job
2016-10-05 19:05 - 2016-10-05 19:05 - 00003966 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Update {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}
2016-10-05 19:05 - 2016-10-05 19:05 - 00003780 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Invitation {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}
2016-10-05 18:57 - 2016-10-25 12:57 - 00000935 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}.job
2016-10-05 18:57 - 2016-10-25 12:57 - 00000749 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}.job
2016-10-05 18:57 - 2016-10-05 18:57 - 00003966 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Update {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}
2016-10-05 18:57 - 2016-10-05 18:57 - 00003780 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Invitation {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}
2016-10-05 18:51 - 2016-10-05 18:51 - 00000000 ____D C:\Program Files\EpsonNet
2016-10-05 18:51 - 2012-11-12 20:41 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll
2016-10-05 18:51 - 2012-11-12 20:41 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll
2016-10-05 18:51 - 2012-11-12 15:15 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll
2016-10-05 18:51 - 2012-11-12 15:15 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll
2016-10-05 18:51 - 2012-10-22 17:19 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enspres.dll
2016-10-05 18:51 - 2012-10-22 17:19 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enpres.dll
2016-10-05 18:49 - 2016-10-06 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2016-10-05 18:49 - 2016-10-06 10:02 - 00000000 ____D C:\Program Files (x86)\EPSON Software
2016-10-05 18:49 - 2016-10-05 18:49 - 00001024 _____ C:\Users\Public\Desktop\Manuali Epson.lnk
2016-10-05 18:49 - 2016-10-05 18:49 - 00000941 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2016-10-05 18:49 - 2016-10-05 18:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2016-10-05 18:49 - 2012-07-24 00:00 - 00466432 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxw2ud.dll
2016-10-05 18:49 - 2012-05-17 00:00 - 00144560 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\escsvc64.exe
2016-10-05 18:48 - 2016-10-06 10:02 - 00000000 ____D C:\Program Files (x86)\epson
2016-10-05 18:47 - 2016-10-25 12:47 - 00000935 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {CB93876F-27CF-4D16-839E-2A739141CFD9}.job
2016-10-05 18:47 - 2016-10-25 12:47 - 00000749 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {CB93876F-27CF-4D16-839E-2A739141CFD9}.job
2016-10-05 18:47 - 2016-10-05 18:47 - 00003966 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Update {CB93876F-27CF-4D16-839E-2A739141CFD9}
2016-10-05 18:47 - 2016-10-05 18:47 - 00003780 _____ C:\WINDOWS\System32\Tasks\EPSON XP-212 213 Series Invitation {CB93876F-27CF-4D16-839E-2A739141CFD9}
2016-10-05 18:47 - 2016-10-05 18:47 - 00000000 ____D C:\Program Files\Common Files\EPSON
2016-10-05 18:47 - 2013-10-22 04:04 - 00179712 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMBLHE.DLL
2016-10-05 18:47 - 2011-03-15 03:03 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BLHE.DLL
2016-10-05 18:47 - 2007-04-10 01:06 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL
2016-10-05 18:45 - 2016-10-05 18:45 - 00000000 ____D C:\Users\XXXXXX\AppData\Roaming\WebApp
2016-10-05 18:44 - 2016-10-05 18:44 - 00000000 ____D C:\Users\XXXXXX\AppData\Local\Cyberlink
2016-10-05 18:43 - 2016-10-05 19:10 - 00000000 ____D C:\ProgramData\Epson
2016-10-05 18:42 - 2016-10-23 09:49 - 00000000 ____D C:\Users\XXXXXX\AppData\Roaming\CyberLink
2016-10-05 18:42 - 2016-10-05 18:43 - 00000000 ____D C:\Users\XXXXXX\Documents\CyberLink
2016-10-05 18:42 - 2016-10-05 18:42 - 00000000 ____D C:\Users\XXXXXX\Documents\Lenovo
2016-10-05 18:42 - 2016-10-05 18:42 - 00000000 ____D C:\ProgramData\Lenovo
2016-10-05 07:40 - 2014-07-16 00:51 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2016-10-02 09:36 - 2015-10-01 15:10 - 00869568 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-10-02 09:36 - 2015-10-01 15:09 - 00875720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-10-02 09:34 - 2016-10-02 09:34 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-10-02 09:34 - 2016-10-02 09:34 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-10-02 09:08 - 2014-06-11 00:44 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-10-02 09:08 - 2014-06-11 00:43 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-09-30 19:00 - 2015-07-06 18:16 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2016-09-30 19:00 - 2015-07-06 16:32 - 00281944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2016-09-30 19:00 - 2015-03-27 10:07 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2016-09-30 18:59 - 2016-06-25 20:28 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-09-30 18:59 - 2016-06-25 17:55 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-09-30 18:59 - 2016-06-25 17:55 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-09-30 18:59 - 2016-06-17 15:09 - 01208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-09-30 18:59 - 2016-06-04 11:42 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00984448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-eventing-provider-l1-1-0.dll
2016-09-30 18:59 - 2015-07-23 00:09 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-09-30 18:59 - 2015-04-30 15:44 - 00478296 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-09-30 18:59 - 2015-04-30 15:44 - 00478296 _____ C:\WINDOWS\system32\locale.nls
2016-09-30 18:59 - 2015-04-21 15:53 - 01174528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-09-30 18:59 - 2015-04-06 07:36 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-09-30 18:59 - 2015-04-06 06:08 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2016-09-30 18:59 - 2015-03-14 10:07 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-09-30 18:59 - 2015-03-14 08:33 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-09-30 18:59 - 2015-03-12 07:31 - 02048000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-09-30 18:59 - 2015-03-12 07:31 - 01688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-09-30 18:59 - 2015-03-12 07:31 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll
2016-09-30 18:59 - 2015-03-12 05:52 - 01933312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2016-09-30 18:59 - 2013-12-05 01:43 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2016-09-30 18:59 - 2013-12-05 01:37 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2016-09-30 18:59 - 2013-11-01 07:38 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2016-09-30 18:59 - 2013-11-01 05:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2016-09-30 18:59 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2016-09-30 18:59 - 2013-03-02 04:44 - 01011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-09-30 18:59 - 2012-12-15 06:55 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2016-09-30 18:59 - 2012-11-03 07:26 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysreset.exe
2016-09-30 18:59 - 2012-11-03 07:25 - 00945152 _____ (Microsoft Corporation) C:\WINDOWS\system32\resetengmig.dll
2016-09-30 18:59 - 2012-10-25 05:27 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2016-09-30 18:59 - 2012-10-25 05:26 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2016-09-30 18:59 - 2012-10-25 05:04 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2016-09-30 18:58 - 2015-09-12 15:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-09-30 18:58 - 2015-09-12 15:29 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll
2016-09-30 18:58 - 2015-09-12 15:29 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appserverai.dll
2016-09-30 18:58 - 2015-09-12 15:29 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDWebAI.dll
2016-09-30 18:58 - 2015-09-12 15:29 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmHostAI.dll
2016-09-30 18:58 - 2015-09-02 15:49 - 02341376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-09-30 18:58 - 2015-09-02 15:49 - 01850880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-09-30 18:58 - 2015-09-02 15:38 - 01744384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-09-30 18:58 - 2015-09-02 15:38 - 01422336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-09-30 18:58 - 2015-03-04 08:41 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2016-09-30 18:58 - 2015-03-04 08:39 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-09-30 18:58 - 2015-03-04 08:39 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll
2016-09-30 18:58 - 2015-03-04 06:53 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2016-09-30 18:58 - 2015-03-04 06:52 - 00676864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2016-09-30 18:58 - 2014-11-26 08:43 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-09-30 18:58 - 2014-11-26 06:50 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-09-30 18:58 - 2013-08-23 09:22 - 02062848 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-09-30 18:58 - 2013-08-23 03:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-09-30 18:58 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdlg.dll
2016-09-30 18:58 - 2013-04-03 01:12 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll
2016-09-30 18:58 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-09-30 18:58 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-09-30 18:58 - 2012-10-24 05:25 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2016-09-30 18:58 - 2012-10-24 04:48 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2016-09-30 18:58 - 2012-09-20 08:32 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2016-09-30 18:58 - 2012-09-20 07:54 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shimeng.dll
2016-09-30 18:57 - 2014-10-30 09:20 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-09-30 18:57 - 2014-10-30 07:22 - 01569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-09-29 22:53 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-09-29 22:53 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-09-29 22:53 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-09-29 22:53 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-09-29 22:53 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-09-29 22:53 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-09-29 22:52 - 2015-07-01 15:00 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-09-29 22:52 - 2015-07-01 14:58 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-09-29 22:52 - 2015-07-01 13:42 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-09-29 22:52 - 2015-07-01 13:41 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-09-29 22:52 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-09-29 22:52 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-09-29 22:52 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2016-09-29 22:52 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2016-09-29 22:52 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2016-09-29 22:52 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2016-09-29 22:52 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-09-29 22:52 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-09-29 22:52 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2016-09-29 22:52 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2016-09-29 22:52 - 2013-06-01 05:08 - 00037632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2016-09-29 22:51 - 2015-11-16 18:10 - 01821192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-09-29 22:51 - 2015-11-16 16:55 - 01410000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-09-29 22:51 - 2015-11-16 16:28 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-09-29 22:51 - 2015-11-16 16:28 - 00384512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-09-29 22:51 - 2015-11-16 16:26 - 01637376 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-09-29 22:51 - 2015-11-16 16:26 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-09-29 22:51 - 2014-01-27 05:39 - 01939288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-09-29 22:50 - 2014-02-04 01:56 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-09-29 22:50 - 2014-02-04 01:56 - 00278872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2016-09-29 22:50 - 2014-01-31 02:48 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-09-29 22:50 - 2014-01-31 02:06 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-09-29 22:50 - 2014-01-16 01:42 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-09-29 22:50 - 2014-01-03 01:35 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2016-09-29 22:50 - 2014-01-03 01:32 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2016-09-29 22:48 - 2013-01-10 03:53 - 00028904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2016-09-29 22:48 - 2013-01-10 03:29 - 00091880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-09-29 22:48 - 2013-01-10 01:26 - 01752064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2016-09-29 22:48 - 2013-01-10 01:26 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2016-09-29 22:48 - 2013-01-10 01:26 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaacmgr.exe
2016-09-29 22:48 - 2013-01-10 01:23 - 02094592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2016-09-29 22:48 - 2013-01-10 01:23 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-09-29 22:48 - 2013-01-10 01:23 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-09-29 22:48 - 2013-01-10 01:23 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-09-29 22:48 - 2013-01-10 01:23 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaacmgr.exe
2016-09-29 22:48 - 2013-01-10 01:22 - 00894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-09-29 22:48 - 2013-01-10 01:22 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-09-29 22:48 - 2012-11-02 07:19 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-09-29 22:48 - 2012-11-02 07:18 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-09-29 22:48 - 2012-11-02 07:18 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-09-29 22:48 - 2012-11-02 07:18 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhapi.dll
2016-09-29 22:48 - 2012-11-02 07:18 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-09-29 22:48 - 2012-11-02 07:18 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2016-09-29 22:47 - 2012-09-20 11:08 - 00027280 _____ (Microsoft Corporation) C:\WINDOWS\system32\avrt.dll
2016-09-29 22:47 - 2012-09-20 10:40 - 00389360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2016-09-29 22:47 - 2012-09-20 10:31 - 00425192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-09-29 22:47 - 2012-09-20 09:55 - 03265256 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\evbda.sys
2016-09-29 22:47 - 2012-09-20 09:55 - 00533224 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\bxvbda.sys
2016-09-29 22:47 - 2012-09-20 08:47 - 00307192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 03964416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 01304064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00866304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSATAPI.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpnpmgr.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2016-09-29 22:47 - 2012-09-20 08:33 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-09-29 22:47 - 2012-09-20 08:33 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\svchost.exe
2016-09-29 22:47 - 2012-09-20 08:32 - 01739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 01400832 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provcore.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2016-09-29 22:47 - 2012-09-20 08:32 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2016-09-29 22:47 - 2012-09-20 08:31 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevPropMgr.dll
2016-09-29 22:47 - 2012-09-20 08:31 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcss.dll
2016-09-29 22:47 - 2012-09-20 08:30 - 02016256 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
2016-09-29 22:47 - 2012-09-20 08:30 - 01743872 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-09-29 22:47 - 2012-09-20 08:30 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-09-29 22:47 - 2012-09-20 08:30 - 00180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdsrv.dll
2016-09-29 22:47 - 2012-09-20 08:13 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2016-09-29 22:47 - 2012-09-20 08:13 - 00023656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\avrt.dll
2016-09-29 22:47 - 2012-09-20 07:55 - 00995328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-09-29 22:47 - 2012-09-20 07:55 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-09-29 22:47 - 2012-09-20 07:55 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-09-29 22:47 - 2012-09-20 07:55 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSATAPI.dll
2016-09-29 22:47 - 2012-09-20 07:55 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2016-09-29 22:47 - 2012-09-20 07:55 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2016-09-29 22:47 - 2012-09-20 07:55 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-09-29 22:47 - 2012-09-20 07:55 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvinst.exe
2016-09-29 22:47 - 2012-09-20 07:55 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\svchost.exe
2016-09-29 22:47 - 2012-09-20 07:54 - 01369600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RacEngn.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00709632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provcore.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2016-09-29 22:47 - 2012-09-20 07:54 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2016-09-29 22:47 - 2012-09-20 07:53 - 02007040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\batmeter.dll
2016-09-29 22:47 - 2012-09-20 07:53 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-09-29 22:47 - 2012-09-20 07:53 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-09-29 22:47 - 2012-09-20 07:53 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2016-09-29 22:46 - 2015-06-27 15:46 - 01314816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-09-29 22:46 - 2015-06-27 15:23 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-09-29 22:46 - 2012-09-20 08:33 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-09-29 22:46 - 2012-09-20 08:33 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2016-09-29 22:46 - 2012-09-20 08:33 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2016-09-29 22:46 - 2012-09-20 08:32 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2016-09-29 22:46 - 2012-09-20 08:32 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll
2016-09-29 22:46 - 2012-09-20 08:32 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2016-09-29 22:46 - 2012-09-20 08:32 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2016-09-29 22:46 - 2012-09-20 08:32 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MUILanguageCleanup.dll
2016-09-29 22:46 - 2012-09-20 08:31 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-09-29 22:46 - 2012-09-20 08:31 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2016-09-29 22:46 - 2012-09-20 08:31 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2016-09-29 22:46 - 2012-09-20 08:30 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-09-29 22:46 - 2012-09-20 08:09 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2016-09-29 22:46 - 2012-09-20 07:55 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-09-29 22:46 - 2012-09-20 07:54 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2016-09-29 22:46 - 2012-09-20 07:54 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2016-09-29 22:46 - 2012-09-20 07:54 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2016-09-29 22:46 - 2012-09-20 07:54 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2016-09-29 22:46 - 2012-09-20 07:53 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-09-29 22:43 - 2015-01-24 08:42 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-09-29 22:43 - 2015-01-24 07:00 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll
2016-09-29 22:43 - 2014-09-03 04:48 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-09-29 22:43 - 2014-09-03 04:21 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-09-29 22:43 - 2014-06-13 03:57 - 01453400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-09-29 22:43 - 2014-06-13 03:55 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-09-29 22:43 - 2014-03-25 01:42 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2016-09-29 22:43 - 2014-03-25 00:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2016-09-29 22:42 - 2015-07-13 23:05 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-09-29 22:42 - 2015-07-13 23:05 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-09-29 22:41 - 2013-10-19 07:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2016-09-29 22:41 - 2013-10-19 06:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2016-09-29 22:40 - 2014-11-15 08:06 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-09-29 22:40 - 2014-11-15 07:13 - 03286016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 01623552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-09-29 22:40 - 2014-11-15 07:13 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-09-29 22:40 - 2014-11-15 07:12 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-09-29 22:40 - 2014-11-15 05:54 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-09-29 22:40 - 2014-11-15 05:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-09-29 22:40 - 2014-11-15 05:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-09-29 22:40 - 2014-11-15 05:53 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-09-29 22:40 - 2012-09-27 09:17 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.exe
2016-09-29 22:40 - 2012-09-27 09:17 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ndadmin.exe
2016-09-29 22:40 - 2012-09-27 09:15 - 00301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2016-09-29 22:40 - 2012-09-27 08:35 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.exe
2016-09-29 22:40 - 2012-09-27 08:35 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndadmin.exe
2016-09-29 22:40 - 2012-09-27 08:34 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2016-09-29 22:32 - 2014-11-05 08:40 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-09-29 22:32 - 2014-11-05 08:39 - 01024512 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-09-29 22:32 - 2014-10-29 16:21 - 00499008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-09-29 22:32 - 2014-08-28 08:01 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2016-09-29 22:30 - 2014-06-18 01:27 - 01440256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2016-09-29 22:30 - 2014-06-18 01:24 - 01557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2016-09-29 22:29 - 2015-08-01 18:21 - 00073352 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2016-09-29 22:29 - 2015-08-01 17:22 - 00063992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2016-09-29 22:29 - 2015-08-01 15:56 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2016-09-29 22:29 - 2015-08-01 15:56 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2016-09-29 22:29 - 2015-08-01 15:56 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2016-09-29 22:28 - 2015-07-30 15:11 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-09-29 22:28 - 2015-07-30 15:10 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-09-29 22:28 - 2014-06-05 03:12 - 00678600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-09-29 22:28 - 2014-06-04 01:12 - 00536776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2016-09-29 22:27 - 2014-12-11 08:51 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2016-09-29 22:26 - 2015-07-09 23:46 - 05982208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-09-29 22:26 - 2015-07-09 23:44 - 00322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2016-09-29 22:26 - 2015-07-09 22:17 - 05095424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-09-29 22:26 - 2015-07-09 22:16 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aaclient.dll
2016-09-29 22:26 - 2015-06-17 16:13 - 01150264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-09-29 22:26 - 2015-06-17 15:44 - 01567560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-09-29 22:26 - 2015-04-13 07:32 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-09-29 22:25 - 2013-10-05 08:10 - 00285016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-09-29 22:25 - 2013-08-30 07:19 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-09-29 22:25 - 2013-08-30 07:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-09-29 22:25 - 2013-08-30 01:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-09-29 22:25 - 2013-08-30 01:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-09-29 22:24 - 2015-08-05 15:52 - 01287680 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-09-29 22:23 - 2014-09-13 08:24 - 02233152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-09-29 22:23 - 2014-09-03 04:48 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2016-09-29 22:23 - 2014-09-03 04:22 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2016-09-29 22:23 - 2014-08-29 06:17 - 02043392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-09-29 22:23 - 2014-08-29 06:17 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2016-09-29 22:23 - 2014-08-29 06:04 - 02837504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-09-29 22:23 - 2014-08-29 06:04 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-09-29 22:23 - 2014-08-28 08:04 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2016-09-29 22:23 - 2014-08-28 08:04 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2016-09-29 22:23 - 2014-08-28 07:59 - 00616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2016-09-29 22:23 - 2014-08-28 07:59 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2016-09-29 22:23 - 2014-08-28 07:59 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSTIFF.dll
2016-09-29 22:23 - 2014-08-28 07:59 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXST30.dll
2016-09-29 22:23 - 2014-07-24 15:12 - 00328512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-09-29 22:22 - 2012-08-31 02:53 - 00017888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2016-09-29 22:22 - 2012-08-31 02:52 - 00017888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2016-09-29 22:18 - 2013-08-30 07:43 - 00061784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-09-29 22:18 - 2013-08-30 07:20 - 01173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-09-29 22:18 - 2013-08-30 01:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-09-29 22:18 - 2013-08-21 08:39 - 00465240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-09-29 22:18 - 2013-08-10 08:30 - 00151896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-09-29 22:18 - 2013-07-25 01:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-09-29 22:18 - 2013-07-25 01:07 - 13661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-29 22:18 - 2012-09-20 08:48 - 00062488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2016-09-29 22:17 - 2015-08-04 16:42 - 01229824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-09-29 22:17 - 2015-08-04 16:42 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-09-29 22:17 - 2015-08-04 16:42 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncInfo.dll
2016-09-29 22:17 - 2015-08-04 15:54 - 01399808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-29 22:17 - 2015-08-04 15:53 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-09-29 22:17 - 2015-08-04 15:53 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll
2016-09-29 22:17 - 2015-01-29 10:05 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-29 22:17 - 2015-01-29 08:19 - 01339392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-09-29 22:17 - 2013-06-22 07:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2016-09-29 22:17 - 2013-06-22 07:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2016-09-29 22:16 - 2013-07-06 00:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys
2016-09-29 22:16 - 2013-07-06 00:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-09-29 22:16 - 2013-07-02 00:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbscan.sys
2016-09-29 22:16 - 2013-07-02 00:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2016-09-29 22:16 - 2013-06-29 05:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-09-29 22:16 - 2012-10-11 07:19 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSDScan.sys
2016-09-29 22:15 - 2014-10-09 05:59 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-09-29 22:15 - 2014-10-09 05:59 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-09-29 22:15 - 2014-10-09 05:58 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-09-29 22:15 - 2014-09-22 07:38 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-09-29 22:15 - 2014-09-22 05:56 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-09-29 22:10 - 2013-03-02 12:57 - 00077544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-09-29 22:10 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-09-29 22:10 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2016-09-29 22:10 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-09-29 22:10 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2016-09-29 22:10 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-09-29 22:10 - 2013-03-02 04:45 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL
2016-09-29 22:10 - 2013-03-02 04:44 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-09-29 22:10 - 2013-03-02 04:44 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-09-29 22:10 - 2013-03-02 04:44 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-09-29 22:10 - 2013-03-02 04:44 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll
2016-09-29 22:10 - 2013-03-02 04:44 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2016-09-29 22:10 - 2013-03-02 04:43 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2016-09-29 22:10 - 2013-03-02 04:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2016-09-29 22:10 - 2013-03-01 06:56 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2016-09-29 22:08 - 2013-07-09 10:04 - 00120144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2016-09-29 22:08 - 2013-07-09 05:57 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2016-09-29 22:08 - 2013-07-09 00:46 - 00543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-09-29 22:08 - 2013-07-09 00:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-09-29 22:08 - 2013-07-09 00:46 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanadvui.dll
2016-09-29 22:08 - 2013-07-09 00:45 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2016-09-29 22:08 - 2013-07-03 02:23 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-29 22:08 - 2013-07-03 02:22 - 02839552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-09-29 22:08 - 2013-07-03 02:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-29 22:08 - 2013-07-03 02:10 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-09-29 22:08 - 2013-07-01 00:30 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\openfiles.exe
2016-09-29 22:08 - 2013-07-01 00:29 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe
2016-09-29 22:08 - 2013-06-29 08:15 - 00195416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-09-29 22:08 - 2013-06-29 08:15 - 00125784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-09-29 22:08 - 2013-06-26 05:01 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2016-09-29 22:08 - 2013-06-26 04:59 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2016-09-29 22:08 - 2013-06-25 00:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-09-29 22:08 - 2013-06-19 07:36 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll
2016-09-29 22:08 - 2013-06-19 07:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll
2016-09-29 22:08 - 2013-06-19 00:38 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll
2016-09-29 22:08 - 2013-06-19 00:38 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll
2016-09-29 22:08 - 2013-06-12 01:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-09-29 22:08 - 2013-06-12 01:26 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-09-29 22:08 - 2013-06-06 10:03 - 00119040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-09-29 22:08 - 2012-10-24 06:54 - 00396008 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-09-29 22:08 - 2012-10-02 09:34 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-09-29 22:06 - 2015-02-24 09:58 - 00861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-09-29 22:05 - 2014-12-19 08:48 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-09-29 22:03 - 2015-12-08 17:16 - 01303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-09-29 22:03 - 2015-12-05 20:48 - 01024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-09-29 22:03 - 2014-07-07 07:53 - 01125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-09-29 22:03 - 2014-07-07 07:52 - 00724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2016-09-29 22:03 - 2014-07-07 07:52 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2016-09-29 22:03 - 2014-07-07 06:01 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-09-29 22:03 - 2014-07-07 06:01 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2016-09-29 22:00 - 2012-10-11 09:25 - 00056552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2016-09-29 22:00 - 2012-10-11 09:23 - 00441576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2016-09-29 22:00 - 2012-10-11 09:13 - 00033512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\battc.sys
2016-09-29 22:00 - 2012-10-11 07:46 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Compression.dll
2016-09-29 22:00 - 2012-10-11 07:46 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2016-09-29 22:00 - 2012-10-11 07:45 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-09-29 22:00 - 2012-10-11 07:45 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2016-09-29 22:00 - 2012-10-11 07:45 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-09-29 22:00 - 2012-10-11 07:44 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-09-29 22:00 - 2012-10-11 07:44 - 00264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-09-29 22:00 - 2012-10-11 07:44 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-09-29 22:00 - 2012-10-11 07:43 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2016-09-29 22:00 - 2012-10-11 07:23 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-pdc.dll
2016-09-29 22:00 - 2012-10-11 07:23 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdhebl3.dll
2016-09-29 22:00 - 2012-10-11 07:07 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-09-29 22:00 - 2012-10-11 07:07 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Compression.dll
2016-09-29 22:00 - 2012-10-11 07:07 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2016-09-29 22:00 - 2012-10-11 07:06 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2016-09-29 22:00 - 2012-10-11 07:05 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2016-09-29 22:00 - 2012-10-11 06:42 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdhebl3.dll
2016-09-29 21:59 - 2012-10-12 08:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dskquota.dll
2016-09-29 21:59 - 2012-10-12 07:39 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dskquota.dll
2016-09-29 21:58 - 2015-12-15 02:01 - 14269440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-09-29 21:58 - 2015-12-15 02:00 - 19349504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-09-29 21:58 - 2015-10-31 10:14 - 02038784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-09-29 21:58 - 2015-10-31 09:33 - 02308096 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-09-29 21:58 - 2015-08-04 16:42 - 08858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-09-29 21:58 - 2015-08-04 15:54 - 10116608 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-09-29 21:58 - 2015-06-09 15:57 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-09-29 21:58 - 2015-03-04 09:29 - 00361280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-09-29 21:58 - 2015-03-04 08:39 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2016-09-29 21:58 - 2015-03-04 06:52 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2016-09-29 21:58 - 2015-01-24 06:31 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-09-29 21:58 - 2014-12-08 08:48 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2016-09-29 21:58 - 2014-12-08 07:04 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 02240000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 01763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-09-29 21:57 - 2015-12-15 02:01 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 15422976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 13723648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 03805696 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 02793984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 02658304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 02057216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 01409536 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-09-29 21:57 - 2015-12-15 02:00 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-09-29 21:57 - 2015-12-15 01:59 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-09-29 21:57 - 2015-11-07 14:46 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2016-09-29 21:57 - 2015-11-07 14:46 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2016-09-29 21:57 - 2015-11-07 11:34 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2016-09-29 21:57 - 2015-11-07 07:29 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2016-09-29 21:57 - 2015-09-18 15:32 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2016-09-29 21:57 - 2015-08-13 12:49 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-09-29 21:57 - 2015-08-13 12:44 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-09-29 21:57 - 2015-05-28 04:04 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-09-29 21:57 - 2015-05-28 04:02 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2016-09-29 21:57 - 2015-05-28 04:01 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2016-09-29 21:57 - 2015-05-28 04:01 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2016-09-29 21:57 - 2015-05-28 04:01 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-09-29 21:57 - 2015-05-28 04:01 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-09-29 21:57 - 2015-05-28 04:01 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-09-29 21:57 - 2015-05-28 02:44 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2016-09-29 21:57 - 2015-05-28 02:43 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-09-29 21:57 - 2015-05-28 02:43 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2016-09-29 21:57 - 2015-05-28 02:43 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-09-29 21:57 - 2015-05-28 02:43 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-09-29 21:57 - 2015-05-28 02:43 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-09-29 21:57 - 2015-05-28 02:22 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll
2016-09-29 21:57 - 2015-05-28 02:20 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll
2016-09-29 21:57 - 2015-05-28 02:00 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2016-09-29 21:57 - 2015-05-28 01:55 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2016-09-29 21:53 - 2016-09-29 21:53 - 00001687 _____ C:\Users\XXXXXX\Desktop\COGNOME-NOME-REGISTRO-RELAZIONE-INIZIALE-2016-17 (1) - Verknüpfung.lnk
2016-09-29 21:53 - 2016-06-25 20:09 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\EOSNotify.exe
2016-09-29 21:52 - 2015-06-15 17:22 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-09-29 21:52 - 2015-06-15 17:22 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2016-09-29 21:52 - 2015-06-15 17:21 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2016-09-29 21:52 - 2015-06-15 17:20 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-09-29 21:52 - 2015-05-09 01:39 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-09-29 21:52 - 2015-05-08 22:05 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-09-29 21:52 - 2014-10-11 09:44 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2016-09-29 21:52 - 2014-10-11 07:57 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2016-09-29 21:52 - 2014-06-13 01:34 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-09-29 21:52 - 2014-06-13 01:29 - 02146304 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-09-29 21:52 - 2014-06-05 19:56 - 00112984 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-09-29 21:51 - 2014-12-06 09:52 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-09-29 21:51 - 2014-12-06 09:52 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-09-29 21:51 - 2014-12-06 09:52 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2016-09-29 21:51 - 2014-12-06 08:09 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2016-09-29 21:51 - 2012-11-27 08:39 - 01122768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2016-09-29 21:51 - 2012-11-27 06:49 - 01027152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2016-09-29 21:51 - 2012-11-27 06:20 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-09-29 21:51 - 2012-11-27 06:20 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2016-09-29 21:51 - 2012-11-27 06:20 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2016-09-29 21:51 - 2012-11-27 06:20 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vds_ps.dll
2016-09-29 21:51 - 2012-11-27 06:19 - 00955904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-09-29 21:51 - 2012-11-27 06:19 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-09-29 21:51 - 2012-11-27 06:19 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-09-29 21:51 - 2012-11-20 07:24 - 01164800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2016-09-29 21:51 - 2012-11-20 07:17 - 01184256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-09-29 21:51 - 2012-11-20 07:02 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKURD.DLL
2016-09-29 21:51 - 2012-11-20 06:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDKURD.DLL
2016-09-29 21:51 - 2012-09-11 07:28 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsldr.exe
2016-09-29 21:51 - 2012-09-11 07:27 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds_ps.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2016-09-29 21:50 - 2012-11-06 06:20 - 00516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2016-09-29 21:50 - 2012-11-06 06:20 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2016-09-29 21:50 - 2012-11-06 06:20 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 08552448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 01386496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapPeerProxy.dll
2016-09-29 21:50 - 2012-11-06 06:19 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapAuthProxy.dll
2016-09-29 21:50 - 2012-11-06 06:18 - 11459584 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-09-29 21:50 - 2012-11-06 06:18 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2016-09-29 21:50 - 2012-11-06 06:18 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-29 21:50 - 2012-11-06 06:18 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2016-09-29 21:50 - 2012-11-06 06:18 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2016-09-29 21:50 - 2012-11-06 06:17 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2016-09-29 21:50 - 2012-11-06 06:17 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2016-09-29 21:50 - 2012-11-06 06:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll
2016-09-29 21:50 - 2012-11-06 05:58 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-09-29 21:50 - 2012-11-06 05:56 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-09-29 21:50 - 2012-11-06 05:55 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2016-09-29 21:50 - 2012-11-06 05:55 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2016-09-29 21:50 - 2012-11-06 05:55 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2016-09-29 21:50 - 2012-11-06 05:55 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2016-09-29 21:50 - 2012-11-06 05:55 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fxppm.sys
2016-09-29 21:49 - 2013-08-02 08:28 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-09-29 21:49 - 2013-08-02 07:08 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2016-09-29 21:49 - 2013-07-25 01:10 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-09-29 21:49 - 2013-07-25 01:06 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-09-29 21:48 - 2015-09-02 15:48 - 00046080 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-09-29 21:48 - 2015-09-02 15:38 - 00035328 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-09-29 21:48 - 2015-08-28 23:59 - 00304128 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-09-29 21:48 - 2015-08-27 20:41 - 00366592 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-09-29 21:48 - 2014-04-30 00:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2016-09-29 21:48 - 2014-04-30 00:32 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2016-09-29 21:48 - 2013-08-03 08:40 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2016-09-29 21:48 - 2013-08-03 08:40 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2016-09-29 21:48 - 2013-08-03 08:40 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2016-09-29 21:48 - 2013-08-03 07:14 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2016-09-29 21:48 - 2013-08-03 07:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2016-09-29 21:48 - 2013-08-03 07:13 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2016-09-29 21:48 - 2013-07-02 03:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-09-29 21:48 - 2013-07-02 03:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2016-09-29 21:48 - 2013-07-01 03:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2016-09-29 21:48 - 2013-07-01 03:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-09-29 21:48 - 2013-07-01 03:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-09-29 21:48 - 2013-07-01 03:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-09-29 21:48 - 2013-06-29 05:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-09-29 21:48 - 2013-06-29 05:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2016-09-29 21:48 - 2012-10-12 10:08 - 00027880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2016-09-29 21:48 - 2012-10-12 08:14 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2016-09-29 21:47 - 2015-12-04 18:29 - 01636784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-09-29 21:47 - 2015-12-04 18:12 - 00793312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-09-29 21:47 - 2015-12-04 18:12 - 00522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-09-29 21:47 - 2015-12-04 18:12 - 00446872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-09-29 21:47 - 2015-12-04 18:12 - 00253624 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-09-29 21:47 - 2015-12-04 16:55 - 00612528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-09-29 21:47 - 2015-12-04 16:55 - 00463880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-09-29 21:47 - 2015-12-04 16:55 - 00324456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-09-29 21:47 - 2015-12-04 16:52 - 02842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 02615808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 01770496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 01350656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 01150464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-09-29 21:47 - 2015-12-04 16:52 - 01100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-09-29 21:47 - 2015-12-04 16:52 - 01073664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 00577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-09-29 21:47 - 2015-12-04 16:52 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 02893824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 01527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 01208832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 01174016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 01138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-09-29 21:47 - 2015-12-04 16:51 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-09-29 21:47 - 2015-12-04 16:51 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-09-29 21:47 - 2015-12-04 16:51 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-09-29 21:47 - 2015-12-04 16:46 - 02620928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 02312704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-09-29 21:47 - 2015-12-04 16:46 - 00904192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-09-29 21:47 - 2015-12-04 16:46 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 00487936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-09-29 21:47 - 2015-12-04 16:46 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-09-29 21:47 - 2015-12-04 16:46 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 02400256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 01453568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00946688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-09-29 21:47 - 2015-12-04 16:45 - 00929792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-09-29 21:47 - 2015-12-04 16:45 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-09-29 21:47 - 2015-10-11 08:45 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-09-29 21:47 - 2015-10-11 08:45 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-09-29 21:47 - 2015-09-23 15:10 - 00377552 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-09-29 21:47 - 2015-09-23 15:10 - 00332576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-09-29 21:47 - 2015-09-12 15:09 - 00414559 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-09-29 21:47 - 2014-12-18 10:51 - 00096576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2016-09-29 21:47 - 2014-12-18 08:52 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-09-29 21:47 - 2014-12-18 08:20 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-09-29 21:47 - 2014-12-06 09:51 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-09-29 21:47 - 2013-11-20 02:15 - 03842560 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-09-29 21:47 - 2013-11-20 01:57 - 03288576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-09-29 21:47 - 2013-09-28 05:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-09-29 21:47 - 2013-06-10 21:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-09-29 21:47 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-09-29 21:46 - 2015-12-06 00:20 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-09-29 21:46 - 2015-12-06 00:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-09-29 21:46 - 2015-12-06 00:19 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-09-29 21:46 - 2015-12-05 16:49 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-09-29 21:46 - 2015-12-05 16:49 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-09-29 21:46 - 2015-12-05 16:49 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-09-29 21:46 - 2015-12-04 16:51 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-09-29 21:46 - 2015-12-04 16:46 - 01468928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-09-29 21:46 - 2015-12-04 16:46 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-09-29 21:46 - 2015-12-04 16:46 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-09-29 21:46 - 2015-12-04 16:46 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2016-09-29 21:46 - 2015-12-04 16:46 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-09-29 21:46 - 2015-12-04 16:45 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-09-29 21:46 - 2015-12-04 16:45 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-09-29 21:46 - 2015-12-04 16:45 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-09-29 21:46 - 2015-12-04 16:45 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-09-29 21:46 - 2015-12-03 21:57 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2016-09-29 21:46 - 2015-11-05 11:55 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-09-29 21:46 - 2015-10-13 15:16 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-09-29 21:46 - 2015-10-13 15:16 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-09-29 21:46 - 2014-12-06 09:53 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-09-29 21:46 - 2014-12-06 09:53 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2016-09-29 21:46 - 2014-12-06 09:51 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2016-09-29 21:46 - 2014-12-06 08:10 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-09-29 21:46 - 2014-12-06 08:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2016-09-29 21:46 - 2014-12-06 08:09 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2016-09-29 21:46 - 2013-10-31 07:56 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-09-29 21:46 - 2013-10-31 07:56 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-09-29 21:46 - 2013-10-31 06:01 - 00550400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-09-29 21:46 - 2013-10-31 05:42 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2016-09-29 21:46 - 2013-10-13 22:49 - 00100696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2016-09-29 21:46 - 2013-10-10 11:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2016-09-29 21:46 - 2013-10-10 11:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2016-09-29 21:46 - 2013-10-10 11:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2016-09-29 21:46 - 2013-10-10 11:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2016-09-29 21:46 - 2013-10-10 11:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2016-09-29 21:46 - 2013-10-10 11:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2016-09-29 21:46 - 2013-10-10 11:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2016-09-29 21:46 - 2013-07-09 08:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2016-09-29 21:46 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2016-09-29 21:46 - 2012-10-11 07:46 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-09-29 21:46 - 2012-10-11 07:45 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-09-29 21:46 - 2012-10-11 07:44 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2016-09-29 21:46 - 2012-10-11 07:19 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2016-09-29 21:46 - 2012-10-11 07:07 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-09-29 21:45 - 2016-10-25 10:47 - 04035072 _____ C:\Users\XXXXXX\Downloads\COGNOME-NOME-REGISTRO-RELAZIONE-INIZIALE-2016-17 (1).xls
2016-09-29 21:44 - 2015-11-07 14:46 - 01341952 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-09-29 21:44 - 2015-11-07 14:44 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-09-29 21:44 - 2015-11-07 14:44 - 01280000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-09-29 21:44 - 2015-11-07 11:32 - 01412608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-09-29 21:44 - 2015-11-07 09:52 - 04063232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-09-29 21:44 - 2015-11-07 07:53 - 01126912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-09-29 21:44 - 2015-11-07 07:52 - 01680384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-09-29 21:44 - 2015-11-07 07:46 - 01426944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-09-29 21:44 - 2014-03-11 02:41 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2016-09-29 21:44 - 2014-03-11 02:41 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dimsroam.dll
2016-09-29 21:44 - 2014-03-11 02:38 - 00684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2016-09-29 21:44 - 2014-03-11 02:38 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-09-29 21:44 - 2014-03-11 02:38 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2016-09-29 21:39 - 2015-07-15 18:09 - 00095064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-09-29 21:39 - 2015-07-15 15:29 - 01333248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2016-09-29 21:36 - 2016-09-29 21:36 - 03939328 _____ C:\Users\XXXXXX\Downloads\COGNOME-NOME-REGISTRO-RELAZIONE-INIZIALE-2016-17.xls
2016-09-29 21:35 - 2014-07-24 15:50 - 00447296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-09-29 21:35 - 2014-07-17 01:28 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2016-09-29 21:35 - 2014-07-17 00:59 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2016-09-29 21:35 - 2014-07-17 00:59 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2016-09-29 21:35 - 2014-07-12 08:45 - 01549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-09-29 21:35 - 2014-07-12 06:36 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-09-29 21:35 - 2014-07-12 06:34 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-09-29 21:33 - 2015-01-24 08:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-09-29 21:33 - 2015-01-24 07:00 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-09-29 21:31 - 2015-07-09 23:47 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-09-29 21:31 - 2015-07-09 23:47 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2016-09-29 21:31 - 2015-07-09 22:18 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-09-29 21:30 - 2014-12-19 06:35 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-09-29 21:29 - 2015-03-04 09:26 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AutoUpdate.exe
2016-09-29 21:29 - 2015-03-04 09:26 - 00467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe
2016-09-29 21:29 - 2015-03-04 09:26 - 00011105 _____ C:\WINDOWS\system32\AutoconfigV2.cab
2016-09-29 21:29 - 2015-03-04 08:41 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-09-29 21:29 - 2015-03-04 08:41 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-29 21:29 - 2015-03-04 06:53 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-09-29 21:29 - 2015-03-04 06:53 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-29 21:29 - 2014-10-22 03:01 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-09-29 21:29 - 2014-10-22 03:00 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2016-09-29 21:29 - 2014-01-31 02:48 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-09-29 21:27 - 2014-11-08 13:22 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2016-09-29 21:27 - 2014-11-08 08:57 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2016-09-29 21:27 - 2014-10-23 14:47 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2016-09-29 21:27 - 2014-10-23 13:04 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2016-09-29 21:26 - 2015-12-08 17:43 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-09-29 21:26 - 2015-12-08 17:16 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-09-29 21:26 - 2015-12-04 02:55 - 00595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-09-29 21:26 - 2015-12-03 23:47 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-09-29 21:26 - 2015-08-01 16:50 - 17562112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-09-29 21:26 - 2015-08-01 15:56 - 19778048 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-09-29 21:26 - 2015-04-25 05:41 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-09-29 21:26 - 2015-04-25 01:13 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-09-29 21:26 - 2014-06-03 00:33 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2016-09-29 21:26 - 2014-03-01 11:47 - 01258496 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2016-09-29 21:26 - 2014-03-01 11:47 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2016-09-29 21:26 - 2014-03-01 10:07 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2016-09-29 21:26 - 2014-03-01 08:59 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2016-09-29 21:26 - 2014-02-15 06:15 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2016-09-29 21:26 - 2013-11-26 01:17 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-09-29 21:25 - 2015-12-31 01:29 - 06972760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-09-29 21:25 - 2015-11-16 16:42 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-09-29 21:25 - 2015-11-16 16:29 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-09-29 21:25 - 2015-11-16 16:29 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-09-29 21:25 - 2015-11-16 16:29 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-09-29 21:25 - 2015-11-16 16:29 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2016-09-29 21:25 - 2015-11-16 16:29 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-09-29 21:25 - 2015-11-16 16:28 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-09-29 21:25 - 2015-11-16 16:28 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2016-09-29 21:25 - 2015-11-16 16:27 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-09-29 21:25 - 2015-11-16 16:26 - 01282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 01043968 _____ (Microsoft Corporation)
         

Alt 25.10.2016, 15:50   #15
ItalyWoman78
 
Google Chrome öffnet Taps - Standard

Google Chrome öffnet Taps



Code:
ATTFilter
C:\WINDOWS\system32\usercpl.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-09-29 21:25 - 2015-11-16 16:26 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2016-09-29 21:25 - 2015-09-23 15:10 - 00570256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-09-29 21:25 - 2015-09-22 19:53 - 01405408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-09-29 21:25 - 2015-09-22 19:53 - 01273184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-09-29 21:25 - 2015-06-25 20:29 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-09-29 21:25 - 2015-06-25 20:27 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-09-29 21:25 - 2015-05-02 08:28 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-09-29 21:25 - 2015-01-15 11:38 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2016-09-29 21:25 - 2015-01-15 11:09 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2016-09-29 21:25 - 2015-01-07 06:25 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-09-29 21:25 - 2014-10-11 07:41 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2016-09-29 21:25 - 2014-10-11 07:05 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2016-09-29 21:25 - 2014-04-12 08:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\workerdd.dll
2016-09-29 21:25 - 2014-03-11 02:39 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-09-29 21:25 - 2014-03-11 02:38 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2016-09-29 21:25 - 2014-03-10 03:27 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-09-29 21:25 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-09-29 21:25 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-09-29 14:04 - 2016-10-21 21:10 - 00002204 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-29 14:04 - 2016-10-21 21:10 - 00002192 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-29 14:03 - 2016-10-25 15:08 - 00001170 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-29 14:03 - 2016-10-25 14:35 - 00001166 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-29 14:03 - 2016-10-02 17:05 - 00000000 ____D C:\Users\XXXXXX\AppData\Local\Google
2016-09-29 14:03 - 2016-09-29 14:04 - 00000000 ____D C:\Program Files (x86)\Google
2016-09-29 14:03 - 2016-09-29 14:03 - 00004142 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-09-29 14:03 - 2016-09-29 14:03 - 00003906 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-09-29 14:02 - 2016-09-29 14:03 - 00000000 ____D C:\Users\XXXXXX\AppData\Local\Deployment
2016-09-29 14:02 - 2016-09-29 14:03 - 00000000 ____D C:\Users\XXXXXX\AppData\Local\Apps\2.0
2016-09-29 13:45 - 2016-09-29 13:45 - 00000000 ____D C:\Users\XXXXXX\AppData\Roaming\Mozilla
2016-09-29 13:45 - 2016-09-29 13:45 - 00000000 ____D C:\Users\XXXXXX\AppData\Local\Amazon_Services_LLC

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-25 14:34 - 2012-07-26 09:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-25 14:18 - 2012-11-16 10:43 - 00741800 _____ C:\WINDOWS\system32\perfh007.dat
2016-10-25 14:18 - 2012-11-16 10:43 - 00155360 _____ C:\WINDOWS\system32\perfc007.dat
2016-10-25 14:18 - 2012-07-26 09:28 - 01745416 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-25 14:18 - 2012-07-26 07:37 - 00000000 ____D C:\WINDOWS\Inf
2016-10-25 12:34 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\rescache
2016-10-25 12:24 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-25 11:45 - 2013-09-18 18:43 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2768397689-4292562880-697418737-1001
2016-10-25 11:45 - 2012-07-26 07:26 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-10-25 11:37 - 2013-09-18 19:44 - 00000000 ____D C:\ProgramData\Avira
2016-10-25 11:33 - 2012-07-26 07:26 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-10-25 11:32 - 2013-09-18 20:03 - 00000000 ____D C:\Users\XXXXXX\AppData\Roaming\Avira
2016-10-23 09:49 - 2013-09-16 16:48 - 00001133 _____ C:\Users\XXXXXX\Desktop\Cyberlink Power2Go.lnk
2016-10-17 11:31 - 2012-11-16 02:13 - 00000000 ____D C:\Program Files (x86)\Amazon
2016-10-10 14:19 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AppCompat
2016-10-09 21:33 - 2012-07-26 10:12 - 00000000 ___RD C:\WINDOWS\ToastData
2016-10-09 21:32 - 2012-07-26 10:12 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-09 21:32 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-10-09 21:32 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Defender
2016-10-09 21:32 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-10-09 21:32 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-09 21:32 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-10-09 21:31 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-10-09 21:30 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\WinStore
2016-10-08 10:54 - 2012-07-26 07:26 - 00000191 _____ C:\WINDOWS\win.ini
2016-10-06 17:29 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-10-06 17:25 - 2012-07-26 09:52 - 00000000 ____D C:\Program Files\Windows Journal
2016-10-06 10:23 - 2012-11-16 02:12 - 00000000 ____D C:\ProgramData\Adobe
2016-10-06 10:22 - 2013-09-18 18:56 - 00000000 ____D C:\Users\XXXXXX\AppData\Local\Adobe
2016-10-06 10:21 - 2013-09-16 16:49 - 00000000 ____D C:\Users\XXXXXX\AppData\Roaming\Adobe
2016-10-06 10:20 - 2012-11-16 02:12 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-10-06 10:06 - 2013-09-16 16:48 - 00000000 ____D C:\Users\XXXXXX
2016-10-06 10:02 - 2012-11-16 01:54 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-05 21:06 - 2012-07-26 10:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-05 21:06 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2016-10-05 18:45 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-10-05 18:43 - 2013-09-16 16:50 - 00000000 ____D C:\Users\XXXXXX\AppData\Roaming\Lenovo
2016-10-05 18:43 - 2012-11-16 02:12 - 00000000 ____D C:\ProgramData\CyberLink
2016-09-29 13:46 - 2013-09-16 16:48 - 00000000 ____D C:\Users\XXXXXX\AppData\Local\VirtualStore

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2012-11-16 01:59 - 2012-11-16 01:59 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\XXXXXX\AppData\Local\Temp\avgnt.exe
C:\Users\XXXXXX\AppData\Local\Temp\libeay32.dll
C:\Users\XXXXXX\AppData\Local\Temp\msvcr120.dll
C:\Users\XXXXXX\AppData\Local\Temp\ose00000.exe
C:\Users\XXXXXX\AppData\Local\Temp\sqlite3.dll
C:\Users\XXXXXX\AppData\Local\Temp\sqlite3.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-10-19 11:25

==================== Ende von FRST.txt ============================
         
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 17-10-2016
durchgeführt von XXXXXX (25-10-2016 15:46:01)
Gestartet von C:\Users\XXXXXX\Desktop
Windows 8 (X64) (2013-09-16 14:48:23)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2768397689-4292562880-697418737-500 - Administrator - Disabled)
XXXXXX (S-1-5-21-2768397689-4292562880-697418737-1001 - Administrator - Enabled) => C:\Users\XXXXXX
Gast (S-1-5-21-2768397689-4292562880-697418737-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2768397689-4292562880-697418737-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.020.20039 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.8.0.1430 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.8.42.71502 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.8.42.71502 - Alcor Micro Corp.) Hidden
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.4 - Atheros Communications Inc.)
Benutzerhandbuch (x32 Version: 1.0.0.9 - Lenovo) Hidden
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.59.20 - Broadcom Corporation)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.13 - Dolby Laboratories Inc)
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.3 - Lenovo)
Energy Management (x32 Version: 8.0.2.3 - Lenovo) Hidden
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{B4F0E794-11F5-4971-85EC-6D7F2E4DAC68}) (Version: 4.4.3 - SEIKO EPSON CORPORATION)
EPSON XP-212 213 Series Printer Uninstall (HKLM\...\EPSON XP-212 213 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
ETDWare PS/2-X64 11.4.4.2_WHQL (HKLM\...\Elantech) (Version: 11.4.4.2 - ELAN Microelectronic Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ECC-B6BD-9C31E51D0333}) (Version: 1.12.824.1 - Vimicro)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.0710 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.0710 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4310.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.4310.52 - CyberLink Corp.) Hidden
Lenovo Solution Center (HKLM\...\{1E939186-B443-4262-A278-3C82949EA7AC}) (Version: 1.1.009.00 - Lenovo Group Limited)
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3127 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3127 - CyberLink Corp.) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manuali EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.52.0.0 - SEIKO EPSON CORPORATION)
Microsoft Office Standard 2010 (HKLM-x32\...\Office14.STANDARD) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.9109 - CyberLink Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6675 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
Windows-Treiberpaket - Lenovo (ACPIVPC) System  (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0131D189-DBE3-426F-89D4-135F543868D6} - System32\Tasks\EPSON XP-212 213 Series Invitation {CB93876F-27CF-4D16-839E-2A739141CFD9} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {23FBAB1B-5585-4356-A433-DCEB996FFE04} - System32\Tasks\EPSON XP-212 213 Series Invitation {7E19FBB4-F756-44BB-AE6A-7243E1C049BE} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {2A2473EC-A81D-479B-9ABC-C3554C84B686} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-29] (Google Inc.)
Task: {2CB5B566-699D-48D3-9936-61B6DFAFCDF5} - System32\Tasks\EPSON XP-212 213 Series Update {6D2C54C6-D69C-455D-9BE6-2A89C97826B8} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {4508B67C-A68E-493C-8FD9-A76F235F523D} - System32\Tasks\EPSON XP-212 213 Series Update {CB93876F-27CF-4D16-839E-2A739141CFD9} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {4EC6C285-1D47-4919-8467-7E55ACA6A5D0} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\lsc.exe [2012-08-08] ()
Task: {A105837E-25CA-4534-960B-247870334278} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27] (CyberLink)
Task: {A6F2680A-DAD9-4116-B2A5-36CB3DB1B9D1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-29] (Google Inc.)
Task: {AA2EE2D6-7F64-45A7-B91F-9CE216155E17} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2012-08-08] ()
Task: {AA379178-DBCE-4C93-ADD1-33AE85698E61} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2012-08-08] ()
Task: {AF29C1FB-A4A2-4FAF-BED4-5B6ECC8C39D5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {B9DBB8E9-F8C3-4681-9894-9079C4B1B769} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {D5E0748F-C2B9-4803-9864-A1C80320DA0B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2012-08-08] (Lenovo)
Task: {DB2B9361-AC4F-4603-84DC-A500CBB97BF7} - System32\Tasks\EPSON XP-212 213 Series Invitation {6D2C54C6-D69C-455D-9BE6-2A89C97826B8} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {E37179E0-2EA5-447A-8C84-569669F3D1FD} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2012-08-08] ()
Task: {E68509C9-2FC8-495C-B1B6-FC4DAFA4D081} - System32\Tasks\EPSON XP-212 213 Series Update {7E19FBB4-F756-44BB-AE6A-7243E1C049BE} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {CB93876F-27CF-4D16-839E-2A739141CFD9}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {6D2C54C6-D69C-455D-9BE6-2A89C97826B8}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE:/EXE:{6D2C54C6-D69C-455D-9BE6-2A89C97826B8} /F:Update WORKGROUP\IDEA-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {7E19FBB4-F756-44BB-AE6A-7243E1C049BE}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE:/EXE:{7E19FBB4-F756-44BB-AE6A-7243E1C049BE} /F:Update WORKGROUP\IDEA-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {CB93876F-27CF-4D16-839E-2A739141CFD9}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLHE.EXE:/EXE:{CB93876F-27CF-4D16-839E-2A739141CFD9} /F:Update WORKGROUP\IDEA-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2012-11-16 01:55 - 2012-06-25 04:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2768397689-4292562880-697418737-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [TCP Query User{7DF4AADF-0BC2-4D44-9B28-B7AB7D94DF90}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{5E2ABACE-F7ED-46F8-B0B2-571C4584A8D3}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [TCP Query User{4A46442C-E65D-429A-B35A-1DD2FCC2E392}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{37912805-8B48-4331-AD73-1AF9C4425E49}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{AB4F4B9B-D485-47DE-A9D9-757679B9B997}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{7075C55C-FF86-4ABA-8DD2-84011A9F3973}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{3934943D-A879-49CD-BFCC-9B50AB561D21}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{7DB4EDF8-8E8E-43F4-82CE-F17C75D66744}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Block) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe
FirewallRules: [UDP Query User{43F56EAC-4E22-4B92-8621-9D4903FD4BB4}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Block) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe
FirewallRules: [TCP Query User{2443F591-0677-4742-95E9-192CCD7E4E75}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Allow) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe
FirewallRules: [UDP Query User{8C08B00D-58FA-44A5-8B4E-0F5CE68596D2}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Allow) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe

==================== Wiederherstellungspunkte =========================

09-10-2016 20:31:36 Windows Update
13-10-2016 22:30:41 Windows Update
17-10-2016 11:37:36 JRT Pre-Junkware Removal
24-10-2016 11:53:25 JRT Pre-Junkware Removal
25-10-2016 12:23:24 Windows Modules Installer
25-10-2016 14:36:24 JRT Pre-Junkware Removal

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (10/24/2016 05:24:39 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80070005).

Error: (10/24/2016 08:23:44 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 10.0.9200.17568 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1094

Startzeit: 01d22d40197fccfa

Endzeit: 0

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID: 616a4363-99b2-11e6-be7c-3c970e4c5bcc

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/23/2016 08:33:55 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80070005).

Error: (10/23/2016 05:14:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm IEXPLORE.EXE, Version 10.0.9200.17568 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 778

Startzeit: 01d22d401986f3ba

Endzeit: 16

Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Berichts-ID: 651ceb77-9933-11e6-be7c-3c970e4c5bcc

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/23/2016 09:40:24 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80070005).

Error: (10/21/2016 11:17:45 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80070005).

Error: (10/20/2016 05:09:25 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80070005).

Error: (10/19/2016 10:38:54 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: idea-PC)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/19/2016 10:38:54 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: idea-PC)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/19/2016 10:38:43 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: idea-PC)
Description: Die App „winstore_cw5n1h2txyewy!Windows.Store“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.


Systemfehler:
=============
Error: (10/25/2016 02:34:09 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" ist vom Dienst "Windows Search" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Das System kann den angegebenen Pfad nicht finden.

Error: (10/25/2016 02:34:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%3 = Das System kann den angegebenen Pfad nicht finden.

Error: (10/25/2016 02:34:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069 = Der Dienst konnte wegen einer fehlerhaften Anmeldung nicht gestartet werden.

Error: (10/25/2016 02:34:09 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WSearch" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%50 = Die Anforderung wird nicht unterstützt.

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (10/25/2016 02:34:02 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (10/25/2016 02:34:02 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (10/25/2016 02:33:57 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (10/25/2016 02:33:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/25/2016 02:33:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Management and Security Application User Notification Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/25/2016 02:33:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) ME Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i3-2328M CPU @ 2.20GHz
Prozentuale Nutzung des RAM: 27%
Installierter physikalischer RAM: 3941.41 MB
Verfügbarer physikalischer RAM: 2865.93 MB
Summe virtueller Speicher: 6245.41 MB
Verfügbarer virtueller Speicher: 5174.48 MB

==================== Laufwerke ================================

Drive c: (Windows8_OS) (Fixed) (Total:418.43 GB) (Free:370.68 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.93 GB) NTFS
Drive e: (INTENSO) (Removable) (Total:14.55 GB) (Free:11 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 2E4C86E9)

Partition: GPT.

========================================================
Disk: 1 (Size: 14.6 GB) (Disk ID: 6F20736B)
No partition Table on disk 1.
Disk 1 is a removable device.

==================== Ende von Addition.txt ============================
         

Antwort

Themen zu Google Chrome öffnet Taps
andere, chrome, einiger, google, google chrome, guten, häufig, inter, interne, internet, meinem, nicht, probleme, search, öffnet



Ähnliche Themen: Google Chrome öffnet Taps


  1. Google Chrome öffnet ständig Spam Seiten!
    Plagegeister aller Art und deren Bekämpfung - 13.09.2016 (28)
  2. Watch4.de öffnet sich in Google Chrome.
    Log-Analyse und Auswertung - 05.12.2015 (1)
  3. Watch4 Website öffnet sich in Google Chrome
    Plagegeister aller Art und deren Bekämpfung - 05.12.2015 (15)
  4. Google Chrome öffnet Werbung und blinkende Pop ups
    Plagegeister aller Art und deren Bekämpfung - 20.02.2015 (11)
  5. Google Chrome - öffnet eine andere Seite beim Starten von Google Chrome (Win7)
    Plagegeister aller Art und deren Bekämpfung - 19.01.2015 (29)
  6. Google Chrome öffnet neue tabs mit werbung
    Log-Analyse und Auswertung - 08.01.2015 (16)
  7. Google Chrome öffnet Werbung und ist langsam
    Plagegeister aller Art und deren Bekämpfung - 10.11.2014 (7)
  8. Google Chrome öffnet ungefragt Seiten/Werbung
    Plagegeister aller Art und deren Bekämpfung - 04.08.2014 (11)
  9. Google Chrome öffnet eigenständig; h**p://98uj8.de/s3brsn5ba66mgfzeinrum#ad
    Plagegeister aller Art und deren Bekämpfung - 01.08.2014 (3)
  10. Google Chrome öffnet automatisch neue Tabs
    Log-Analyse und Auswertung - 03.07.2014 (4)
  11. Google Chrome öffnet automatisch Tabs
    Plagegeister aller Art und deren Bekämpfung - 22.05.2014 (10)
  12. Google Chrome öffnet sich...
    Plagegeister aller Art und deren Bekämpfung - 11.05.2014 (60)
  13. Google Chrome öffnet plötzlich Avira Tab
    Plagegeister aller Art und deren Bekämpfung - 27.04.2014 (1)
  14. Browser öffnet selbstendig Taps mit dem inhalt Fehler: Ungültige Adresse
    Log-Analyse und Auswertung - 10.03.2014 (9)
  15. Google chrome Öffnet 3 Facebook tabs unaufgefordert
    Plagegeister aller Art und deren Bekämpfung - 08.03.2014 (25)
  16. Google Chrome öffnet falsche Webseiten.
    Plagegeister aller Art und deren Bekämpfung - 03.04.2013 (28)
  17. Firefox öffnet eigenständig mehrere Fenster mit vielen Taps (keine Werbung)
    Log-Analyse und Auswertung - 26.08.2011 (12)

Zum Thema Google Chrome öffnet Taps - Guten Tag, habe seit einiger Zeit Probleme mit meinem Laptop. Mit Chrome kann ich kaum ins Internet gehen. Anstatt Google kommt "Search". Es kommen häufig andere Taps. Weiss nicht weiter. - Google Chrome öffnet Taps...
Archiv
Du betrachtest: Google Chrome öffnet Taps auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.