Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Unidentifizierter Virusbefall

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Thema geschlossen
Alt 30.11.2016, 15:17   #1
HoChiMinh
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Servus beisammen,

ich hoffe das ich im richtigen Unterforum bin und zwar geht es um das vermutlich virenbefalle Notebook meiner Mutter. Ehrlich gesagt habe ich solche "Symptome" noch nie bei einem Virus erlebt, jedenfalls kann man auf dem Desktop und in Ordner nichts mehr wirklich einzeln anklicken sondern markiert sofort alle Dateien, sofern man etwas öffnet wird dies immer in einem neuen Tab getan, es ploppen unregelmäßig Firefox-Werbetabs auf, Groß- und Kleinschreibung spinnt teils komplett, Buchstaben sind o. scheinen unregelmäßig vertauscht und zu guter Letzt ist das Notebook unerträglich langsam.

Ich war schonmal so frei und hab Farbar's Recovery Scan Tool durchlaufen lassen, anbei die FRST.txt und Addition.txt:

FRST.txt Teil 1
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 27-11-2016
durchgeführt von Lotte (Administrator) auf VAIO (30-11-2016 14:59:09)
Gestartet von F:\
Geladene Profile: Lotte (Verfügbare Profile: Lotte)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: IE)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\BCMWLTRY.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-11] (Realtek Semiconductor)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [10590208 2013-03-14] (Broadcom Corporation)
HKLM\...\Run: [Bluetooth] => C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe [526704 2012-12-14] (Broadcom Corporation.)
HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe"
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3039984 2013-03-14] (Synaptics Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-02-19] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [916072 2016-10-17] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [60136 2016-11-15] (Avira Operations GmbH & Co. KG)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1A46D567-875B-45A4-98FE-CAF331EF188B}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{A3513364-028E-42DF-837F-A15CF72021FD}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sony13.msn.com/
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\S-1-5-21-927612283-1200829413-3393210303-1001 -> {48235808-A77B-491C-A5F9-4BC1D50B3D36} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-&_nkw={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-19] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-19] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-19] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-19] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Lotte\AppData\Roaming\Mozilla\Firefox\Profiles\olfpfw54.default-1479064688085 [2016-11-30]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
FF Plugin: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\system32\npDeployJava1.dll [2013-12-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin-x32: Adobe Reader -> c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-927612283-1200829413-3393210303-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [2013-02-19] (Intel)
FF Plugin HKU\S-1-5-21-927612283-1200829413-3393210303-1001: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll [2013-02-19] (Intel)

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1089088 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [475232 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [475232 2016-10-17] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1488240 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [349512 2016-11-15] (Avira Operations GmbH & Co. KG)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2227992 2013-01-23] (Broadcom Corporation.)
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-10-27] (Chip Digital GmbH) [Datei ist nicht signiert]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129824 2013-01-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166688 2013-01-23] (Intel Corporation)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [639576 2013-05-10] (Sony Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2013-01-06] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1656600 2016-03-31] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2016-11-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2016-11-12] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [6070272 2013-03-14] (Broadcom Corporation) [Datei ist nicht signiert]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [151352 2016-10-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [153392 2016-10-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [35488 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [78208 2016-10-17] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [23640 2016-10-17] (Avira Operations GmbH & Co. KG)
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [169240 2013-01-23] (Broadcom Corporation.)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [8469680 2016-11-05] (Broadcom Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-03-14] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2016-11-12] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [270168 2016-11-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2016-11-12] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-30 14:52 - 2016-11-30 14:59 - 00000000 ____D C:\FRST
2016-11-30 13:14 - 2016-11-30 13:14 - 00001152 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2016-11-30 13:12 - 2016-11-30 14:47 - 00000000 ____D C:\Users\Lotte\AppData\LocalLow\Mozilla
2016-11-30 13:11 - 2016-11-30 13:11 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-30 13:11 - 2016-11-30 13:11 - 00001159 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-11-30 13:11 - 2016-11-30 13:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-30 13:07 - 2016-11-30 13:07 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-30 13:05 - 2016-10-28 22:04 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-11-30 13:05 - 2016-10-28 22:04 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-13 21:39 - 2015-07-30 15:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 21:39 - 2015-07-30 14:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 21:18 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-11-13 21:18 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-11-13 20:37 - 2016-06-10 19:11 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-11-13 20:37 - 2016-06-10 19:11 - 01487992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-11-13 20:37 - 2016-04-06 19:17 - 18825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-11-13 20:37 - 2016-04-06 17:25 - 15158272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-11-13 20:36 - 2016-06-18 21:06 - 00590688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-11-13 20:36 - 2016-06-18 21:06 - 00072408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2016-11-13 20:36 - 2016-06-11 20:52 - 00379232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-11-13 20:36 - 2016-06-11 20:52 - 00057184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-11-13 20:36 - 2016-06-11 19:05 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2016-11-13 20:36 - 2016-06-11 18:14 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpresult.exe
2016-11-13 20:36 - 2016-06-11 17:50 - 00987136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-11-13 20:36 - 2016-06-11 17:46 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2016-11-13 20:36 - 2016-06-11 17:44 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-11-13 20:36 - 2016-06-11 17:37 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-11-13 20:36 - 2016-06-11 17:24 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-11-13 20:36 - 2016-06-11 17:20 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-11-13 20:36 - 2016-06-11 17:16 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-11-13 20:36 - 2016-06-10 21:07 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-13 20:36 - 2016-06-10 19:11 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-11-13 20:36 - 2016-06-10 19:11 - 00125024 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2016-11-13 20:36 - 2016-06-10 19:10 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2016-11-13 20:36 - 2016-06-10 19:07 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-13 20:36 - 2016-06-09 20:32 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-11-13 20:36 - 2016-06-09 19:18 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-11-13 20:36 - 2016-06-07 19:10 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\hbaapi.dll
2016-11-13 20:36 - 2016-06-07 18:13 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hbaapi.dll
2016-11-13 20:36 - 2016-06-04 01:38 - 01613528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-11-13 20:36 - 2016-06-04 01:37 - 01970968 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-11-13 20:36 - 2016-05-18 22:54 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2016-11-13 20:36 - 2016-05-18 22:15 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2016-11-13 20:36 - 2016-05-18 21:56 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2016-11-13 20:36 - 2016-05-18 21:33 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2016-11-13 20:36 - 2016-05-18 21:28 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-11-13 20:36 - 2016-05-18 21:16 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-11-13 20:36 - 2016-05-14 21:26 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-13 20:36 - 2016-05-14 06:19 - 01134768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-11-13 20:36 - 2016-05-14 00:08 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-11-13 20:36 - 2016-05-14 00:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-11-13 20:36 - 2016-05-14 00:08 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-11-13 20:36 - 2016-05-13 23:24 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-11-13 20:36 - 2016-05-13 22:42 - 03667968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-11-13 20:36 - 2016-05-13 22:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-11-13 20:36 - 2016-05-13 22:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-11-13 20:36 - 2016-05-13 22:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-11-13 20:36 - 2016-05-13 22:27 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-11-13 20:36 - 2016-05-13 22:26 - 02230784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-11-13 20:36 - 2016-05-13 22:26 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-11-13 20:36 - 2016-05-13 22:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-11-13 20:36 - 2016-05-13 22:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-11-13 20:36 - 2016-05-13 22:16 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-11-13 20:36 - 2016-05-13 22:16 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-11-13 20:36 - 2016-05-12 19:36 - 00034600 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2016-11-13 20:36 - 2016-05-12 18:39 - 00030984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2016-11-13 20:36 - 2016-05-06 22:59 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-11-13 20:36 - 2016-05-05 18:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2016-11-13 20:36 - 2016-05-05 18:02 - 03320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-11-13 20:36 - 2016-05-05 17:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2016-11-13 20:36 - 2016-05-05 17:29 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-11-13 20:36 - 2016-04-09 23:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-11-13 20:36 - 2016-04-09 23:14 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2016-11-13 20:36 - 2016-04-09 23:10 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-11-13 20:36 - 2016-04-09 23:09 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-11-13 20:36 - 2016-04-09 23:02 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2016-11-13 20:36 - 2016-04-09 22:59 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Geolocation.dll
2016-11-13 20:36 - 2016-04-09 22:59 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-11-13 20:36 - 2016-04-09 22:56 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-11-13 20:36 - 2016-04-09 22:55 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-11-13 20:36 - 2016-04-09 22:52 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2016-11-13 20:36 - 2016-04-07 17:06 - 00927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-11-13 20:36 - 2016-04-06 22:21 - 00114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-11-13 20:36 - 2016-04-06 19:20 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-11-13 20:36 - 2016-04-05 23:37 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-11-13 20:36 - 2016-04-02 14:58 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-11-13 20:36 - 2016-04-01 18:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-11-13 20:36 - 2016-04-01 17:53 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-11-13 20:36 - 2016-04-01 17:50 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-11-13 20:36 - 2016-02-04 17:57 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-11-13 20:36 - 2016-02-04 17:49 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-11-13 20:36 - 2016-02-04 17:39 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-11-13 20:34 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-11-13 20:34 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-11-13 20:33 - 2016-07-12 15:08 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-13 20:33 - 2016-07-09 17:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-11-13 20:33 - 2016-07-08 23:35 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-11-13 20:33 - 2016-07-08 15:17 - 00377344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-11-13 20:33 - 2016-07-08 15:17 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-11-13 20:33 - 2016-07-07 23:32 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2016-11-13 20:33 - 2016-07-07 23:18 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2016-11-13 20:33 - 2016-07-07 23:10 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-11-13 20:33 - 2016-07-07 23:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2016-11-13 20:33 - 2016-07-07 22:04 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2016-11-13 20:33 - 2016-07-07 21:59 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-11-13 20:33 - 2016-07-07 21:44 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-11-13 20:33 - 2016-07-07 21:41 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-11-13 20:33 - 2016-07-07 21:34 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-11-13 20:33 - 2016-07-07 21:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-11-13 20:33 - 2016-07-07 21:29 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-11-13 20:33 - 2016-07-07 21:23 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2016-11-13 20:33 - 2016-07-07 21:18 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-11-13 20:33 - 2016-07-07 21:11 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2016-11-13 20:33 - 2016-07-07 20:35 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2016-11-13 20:33 - 2016-07-07 20:14 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-11-13 20:33 - 2016-07-04 06:09 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-13 20:33 - 2016-07-04 04:45 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2016-11-13 20:33 - 2016-07-04 04:33 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-11-13 20:33 - 2016-07-04 04:02 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-11-13 20:33 - 2016-07-04 03:19 - 03547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-13 20:33 - 2016-07-01 21:39 - 00197352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssenh.dll
2016-11-13 20:33 - 2016-07-01 21:39 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dssenh.dll
2016-11-13 20:33 - 2016-01-10 18:08 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-11-13 20:33 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2016-11-13 20:33 - 2014-07-24 04:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-11-13 20:33 - 2014-07-24 04:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-11-13 20:32 - 2016-08-27 20:44 - 22360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-13 20:32 - 2016-08-27 20:44 - 02755504 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-13 20:32 - 2016-08-27 20:44 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2016-11-13 20:32 - 2016-08-27 19:26 - 19789232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-13 20:32 - 2016-08-27 19:26 - 02411048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-13 20:32 - 2016-08-27 19:26 - 00113656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2016-11-13 20:32 - 2016-08-27 17:09 - 14466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-13 20:32 - 2016-08-27 16:55 - 12879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-13 20:32 - 2015-05-12 14:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-11-13 20:09 - 2016-11-30 14:46 - 00000000 __SHD C:\Users\Lotte\IntelGraphicsProfiles
2016-11-13 20:09 - 2016-11-13 20:09 - 00001450 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-11-13 20:09 - 2016-11-13 20:09 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-11-13 20:09 - 2016-11-13 20:09 - 00000020 ___SH C:\Users\Lotte\ntuser.ini
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-11-13 00:56 - 2016-11-13 00:56 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-11-13 00:43 - 2016-11-13 00:43 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-13 00:40 - 2016-11-13 00:40 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-11-13 00:38 - 2016-11-13 20:09 - 00000000 ____D C:\Users\Lotte
2016-11-13 00:38 - 2016-11-13 00:56 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2016-11-13 00:38 - 2016-11-13 00:56 - 00020958 _____ C:\WINDOWS\diagerr.xml
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Vorlagen
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Startmenü
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Netzwerkumgebung
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Lokale Einstellungen
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Eigene Dateien
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Druckumgebung
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Videos
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Musik
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Bilder
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Local\Verlauf
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Local\Anwendungsdaten
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Anwendungsdaten
2016-11-13 00:38 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-11-13 00:38 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-11-13 00:29 - 2016-11-13 00:41 - 00000000 ____D C:\Program Files (x86)\Intel
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____D C:\Program Files\Realtek
2016-11-13 00:29 - 2015-08-27 18:20 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-13 00:29 - 2015-08-27 18:20 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-13 00:28 - 2016-11-13 00:28 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____D C:\Program Files\Synaptics
2016-11-13 00:24 - 2016-11-13 20:09 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-13 00:23 - 2016-11-13 00:24 - 00000000 ____D C:\Windows.old
2016-11-13 00:21 - 2016-11-13 00:21 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2016-11-13 00:20 - 2016-11-13 00:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2016-11-13 00:20 - 2016-11-13 00:20 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-11-13 00:19 - 2016-11-13 00:19 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-11-13 00:19 - 2016-11-13 00:19 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpsapi.dll
2016-11-13 00:19 - 2016-11-13 00:19 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpsapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02745184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02528784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02450240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02447136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02334104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02324744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01798480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01484888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01288128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01210200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01115640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01037680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00914672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00850680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00736256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00735496 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00700360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00629600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00557856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00492736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00463776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00299080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-11-13 00:18 - 2016-11-13 00:18 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00274280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00248432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00246856 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-11-13 00:18 - 2016-11-13 00:18 - 00244296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00229272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00203016 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00184912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00183856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00177712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00148752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00110544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00090904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00090392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00081032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00076936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2016-11-13 00:17 - 2016-11-13 00:17 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-11-13 00:17 - 2016-11-13 00:17 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2016-11-13 00:17 - 2016-11-13 00:17 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 25763328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 20304896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 15431168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 15257088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 13654016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 13317120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-11-13 00:16 - 2016-11-13 00:16 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-11-13 00:16 - 2016-11-13 00:16 - 07444312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 06047744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 04608000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 03754496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02920448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02463744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02315496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02287616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-13 00:16 - 2016-11-13 00:16 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-13 00:16 - 2016-11-13 00:16 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01946176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01754112 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01663184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-13 00:16 - 2016-11-13 00:16 - 01660040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01560064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01523208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01490112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-13 00:16 - 2016-11-13 00:16 - 01445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01377792 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01358952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01317888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01124376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00921944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-11-13 00:16 - 2016-11-13 00:16 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00497448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-13 00:16 - 2016-11-13 00:16 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00444248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00420184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2016-11-13 00:16 - 2016-11-13 00:16 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00399776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-11-13 00:16 - 2016-11-13 00:16 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00377176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2016-11-13 00:16 - 2016-11-13 00:16 - 00333656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00275800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00162850 _____ C:\WINDOWS\SysWOW64\C_932.NLS
2016-11-13 00:16 - 2016-11-13 00:16 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-11-13 00:16 - 2016-11-13 00:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiexe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00121176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\parport.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2016-11-13 00:16 - 2016-11-13 00:16 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsidsc.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2016-11-13 00:16 - 2016-11-13 00:16 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsidsc.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifibus.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serenum.sys
2016-11-13 00:13 - 2016-11-13 00:13 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2016-11-13 00:13 - 2016-11-13 00:13 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00099672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 02466136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-11-13 00:12 - 2016-11-13 00:12 - 00160160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2016-11-13 00:12 - 2016-11-13 00:12 - 00121912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2016-11-13 00:12 - 2016-11-13 00:12 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01379040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-11-13 00:10 - 2016-11-13 00:10 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-11-13 00:10 - 2016-11-13 00:10 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2016-11-13 00:09 - 2016-11-13 00:09 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-13 00:09 - 2016-11-13 00:09 - 00513480 _____ C:\WINDOWS\system32\locale.nls
2016-11-13 00:09 - 2016-11-13 00:09 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
         

Alt 30.11.2016, 15:18   #2
HoChiMinh
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



FRST.txt Teil 2
Code:
ATTFilter
2016-11-13 00:09 - 2016-11-13 00:09 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2016-11-13 00:08 - 2016-11-13 00:08 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2016-11-13 00:08 - 2016-11-13 00:08 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2016-11-13 00:08 - 2016-11-13 00:08 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-11-13 00:08 - 2016-11-13 00:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-11-13 00:08 - 2016-11-13 00:08 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2016-11-13 00:07 - 2016-11-13 00:07 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsparse.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsparse.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2016-11-13 00:06 - 2016-11-13 00:06 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2016-11-13 00:06 - 2016-11-13 00:06 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 01763376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 01489088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00179248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 01549144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2016-11-13 00:04 - 2016-11-13 00:04 - 00690016 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-11-13 00:04 - 2016-11-13 00:04 - 00484552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00952928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00786152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00470360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2016-11-13 00:03 - 2016-11-13 00:03 - 00218448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00192120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2016-11-13 00:02 - 2016-11-13 00:02 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-11-13 00:02 - 2016-11-13 00:02 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-11-13 00:02 - 2016-11-13 00:02 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-11-13 00:02 - 2016-11-13 00:02 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2016-11-13 00:01 - 2016-11-13 00:01 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 02609152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 02170880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-11-13 00:00 - 2016-11-13 00:00 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 07795712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 07076864 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 05273600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 05268480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 03120640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02712576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02592256 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01348096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01197056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-11-12 23:59 - 2016-11-12 23:59 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00273264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01673728 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01541248 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01376768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00685432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00563024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00397232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00340880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00292696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-11-12 23:58 - 2016-11-12 23:58 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00243032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-11-12 23:58 - 2016-11-12 23:58 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00137976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00120384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00107984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-11-12 23:57 - 2016-11-12 23:57 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2016-11-12 23:57 - 2016-11-12 23:57 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01501488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01360896 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01307328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00738096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00613624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2016-11-12 23:56 - 2016-11-12 23:56 - 00135336 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 02175008 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-11-12 23:55 - 2016-11-12 23:55 - 01063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00548024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00468824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-11-12 23:55 - 2016-11-12 23:55 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-11-12 23:55 - 2016-11-12 23:55 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00270168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00803176 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00611576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00462168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00443224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00183368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-11-12 23:53 - 2016-11-12 23:53 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00091992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00072024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00027992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 02017624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-12 23:52 - 2016-11-12 23:52 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2016-11-12 23:52 - 2016-11-12 23:52 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-11-12 23:52 - 2016-11-12 23:52 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-11-12 23:50 - 2016-11-12 23:50 - 00074584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2016-11-12 23:50 - 2016-11-12 23:50 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 01455104 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-11-12 23:49 - 2016-11-12 23:49 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2016-11-12 23:47 - 2016-11-12 23:47 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2016-11-12 23:47 - 2016-11-12 23:47 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2016-11-12 23:47 - 2016-11-12 23:47 - 00316760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01482240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2016-11-12 23:44 - 2016-11-12 23:44 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2016-11-12 23:44 - 2016-11-12 23:44 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files\MSBuild
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-12 23:41 - 2016-11-12 23:41 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2016-11-12 23:41 - 2016-11-12 23:41 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2016-11-12 23:41 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-11-12 23:41 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-11-06 22:18 - 2016-11-06 22:18 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\OpenOffice
2016-11-06 22:17 - 2016-11-13 20:18 - 00000000 ____D C:\Users\Lotte\Desktop\Alte Firefox-Daten
2016-11-06 21:22 - 2016-11-30 13:03 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2016-11-06 07:52 - 2015-03-04 08:26 - 00011105 _____ C:\WINDOWS\system32\AutoconfigV2.cab
2016-11-05 23:59 - 2016-11-13 21:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-05 23:59 - 2016-11-13 21:23 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-05 22:30 - 2016-11-13 00:41 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Main
2016-11-05 22:30 - 2016-11-05 22:30 - 00000000 ____D C:\Program Files (x86)\Sony Corporation
2016-11-05 22:26 - 2016-11-05 22:26 - 00000000 ____D C:\Users\Gast\AppData\Local\Packages
2016-11-05 22:26 - 2016-11-05 22:26 - 00000000 ____D C:\Users\Gast
2016-11-05 22:26 - 2016-11-05 22:26 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2016-11-05 22:26 - 2016-11-05 22:26 - 00000000 ____D C:\Users\Administrator
2016-11-05 22:25 - 2016-11-13 00:45 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2016-11-05 22:25 - 2016-11-05 22:25 - 00074703 _____ C:\WINDOWS\SysWOW64\mfc45.dat
2016-11-05 22:25 - 2016-11-05 22:25 - 00002044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care (Desktop).lnk
2016-11-05 22:25 - 2016-11-05 22:25 - 00001976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Manual.lnk
2016-11-05 22:19 - 2016-11-30 14:49 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-927612283-1200829413-3393210303-1001
2016-11-05 22:19 - 2013-05-04 05:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2016-11-05 22:17 - 2013-05-04 05:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2016-11-05 10:58 - 2016-06-25 19:28 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-11-05 10:58 - 2016-06-25 16:55 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-11-05 10:04 - 2016-11-13 00:45 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.3
2016-11-05 10:04 - 2016-11-05 10:04 - 00001116 _____ C:\Users\Public\Desktop\OpenOffice 4.1.3.lnk
2016-11-05 10:04 - 2016-11-05 10:04 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2016-11-05 10:00 - 2016-11-05 10:00 - 00000000 ____D C:\Users\Lotte\Desktop\OpenOffice 4.1.3 (de) Installation Files
2016-11-05 10:00 - 2016-11-05 10:00 - 00000000 ____D C:\Program Files\Sony Corporation
2016-11-05 09:56 - 2016-11-05 09:56 - 00000000 ____D C:\Users\Lotte\AppData\Local\Downloaded Installations
2016-11-05 09:56 - 2016-11-05 09:56 - 00000000 ____D C:\Program Files (x86)\Chip Digital GmbH
2016-11-05 09:56 - 2014-02-14 13:02 - 03867224 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-11-05 09:56 - 2014-02-14 09:48 - 00945880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-11-05 09:56 - 2014-02-14 09:36 - 54936576 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2016-11-05 09:56 - 2014-02-13 08:48 - 00747989 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-11-05 09:56 - 2014-02-06 07:19 - 02787544 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2016-11-05 09:56 - 2014-02-06 04:28 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2016-11-05 09:56 - 2014-02-03 17:45 - 14737496 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-11-05 09:56 - 2014-02-03 17:45 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2016-11-05 09:56 - 2014-02-03 17:45 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-11-05 09:56 - 2014-02-03 17:45 - 01932888 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2016-11-05 09:56 - 2014-02-03 17:45 - 01033304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-11-05 09:56 - 2014-01-31 10:23 - 01419376 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-11-05 09:56 - 2014-01-31 10:22 - 01419376 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-11-05 09:56 - 2014-01-28 04:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-11-05 09:56 - 2014-01-09 23:52 - 00899320 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2016-11-05 09:56 - 2014-01-09 23:52 - 00724728 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2016-11-05 09:56 - 2014-01-09 23:51 - 01045752 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2016-11-05 09:56 - 2014-01-09 23:51 - 00245496 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2016-11-05 09:56 - 2014-01-03 09:02 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-11-05 09:56 - 2013-12-31 04:16 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-11-05 09:56 - 2013-12-27 07:58 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-11-05 09:56 - 2013-12-04 09:27 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-11-05 09:56 - 2013-10-15 20:43 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2016-11-05 09:56 - 2013-10-11 05:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-11-05 09:56 - 2013-10-06 17:26 - 00501184 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-11-05 09:56 - 2013-10-06 17:26 - 00487360 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-11-05 09:56 - 2013-10-06 17:26 - 00415680 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2016-11-05 09:56 - 2013-10-01 10:11 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2016-11-05 09:56 - 2013-09-09 21:02 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-11-05 09:56 - 2013-09-09 21:02 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-11-05 09:56 - 2013-09-09 21:01 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-11-05 09:56 - 2013-09-09 21:01 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-11-05 09:56 - 2013-08-14 08:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-11-05 09:56 - 2013-08-14 08:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-11-05 09:56 - 2013-06-25 05:47 - 00871856 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2016-11-05 09:56 - 2013-06-25 05:47 - 00162224 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2016-11-05 09:56 - 2013-06-25 05:46 - 00582056 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2016-11-05 09:56 - 2013-04-30 07:28 - 00916016 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2016-11-05 09:56 - 2013-04-23 07:54 - 00154184 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkXInterface64.dll
2016-11-05 09:56 - 2013-04-03 07:13 - 00906800 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2016-11-05 09:56 - 2012-08-31 12:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-11-05 09:56 - 2012-08-31 12:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-11-05 09:56 - 2012-08-31 12:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-11-05 09:56 - 2012-08-31 12:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-11-05 09:56 - 2012-08-31 12:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-11-05 09:56 - 2012-03-08 04:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2016-11-05 09:56 - 2012-01-30 04:43 - 00836544 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2016-11-05 09:56 - 2012-01-10 03:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2016-11-05 09:56 - 2011-12-20 08:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-11-05 09:56 - 2011-11-22 09:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-11-05 09:56 - 2011-09-02 07:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2016-11-05 09:56 - 2011-09-02 07:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2016-11-05 09:56 - 2011-09-02 07:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2016-11-05 09:56 - 2011-08-23 10:00 - 00603984 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-11-05 09:56 - 2011-03-17 05:17 - 01361336 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2016-11-05 09:56 - 2011-03-07 10:11 - 00148416 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2016-11-05 09:56 - 2010-11-03 11:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-11-05 09:56 - 2010-09-27 02:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-11-05 09:56 - 2010-07-22 09:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2016-11-05 09:56 - 2009-11-24 02:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2016-11-05 09:56 - 2009-11-24 02:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2016-11-05 09:56 - 2009-11-24 02:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2016-11-05 09:56 - 2009-11-24 02:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2016-11-05 09:55 - 2016-11-05 09:55 - 01474568 _____ C:\Users\Lotte\Downloads\OpenOffice - CHIP-Installer.exe
2016-11-05 09:53 - 2016-11-05 09:53 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\iolo
2016-11-05 09:51 - 2016-11-30 14:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-05 09:51 - 2016-11-05 09:51 - 00001209 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-11-05 09:51 - 2016-11-05 09:51 - 00001197 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-11-05 09:51 - 2016-11-05 09:51 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Thunderbird
2016-11-05 09:51 - 2016-11-05 09:51 - 00000000 ____D C:\Users\Lotte\AppData\Local\Thunderbird
2016-11-05 09:51 - 2016-11-05 09:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-11-05 09:50 - 2016-11-05 09:50 - 34869536 _____ (Mozilla) C:\Users\Lotte\Downloads\Thunderbird Setup 45.4.0.exe
2016-11-05 09:39 - 2016-11-05 09:53 - 00000000 ____D C:\Users\Lotte\AppData\Local\Mozilla
2016-11-05 09:39 - 2016-11-05 09:39 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Mozilla
2016-11-05 09:37 - 2016-11-05 09:37 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Avira
2016-11-05 09:36 - 2016-11-30 13:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-11-05 09:36 - 2016-11-05 09:36 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2016-11-05 09:36 - 2016-10-17 11:18 - 00023640 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2016-11-05 09:35 - 2016-11-05 09:37 - 00000000 ____D C:\ProgramData\Avira
2016-11-05 09:35 - 2016-11-05 09:37 - 00000000 ____D C:\Program Files (x86)\Avira
2016-11-05 09:35 - 2016-10-17 11:18 - 00153392 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2016-11-05 09:35 - 2016-10-17 11:18 - 00151352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2016-11-05 09:35 - 2016-10-17 11:18 - 00078208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2016-11-05 09:35 - 2016-10-17 11:18 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2016-11-05 09:27 - 2016-11-05 09:27 - 00000982 _____ C:\Users\Public\Desktop\VAIO Update.lnk
2016-11-05 09:27 - 2016-11-05 09:27 - 00000982 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2016-11-05 09:25 - 2016-11-30 13:16 - 00000000 ____D C:\Update
2016-11-05 09:23 - 2016-11-06 22:15 - 00000000 ____D C:\Users\Lotte\AppData\Local\Sony Corporation
2016-11-05 09:21 - 2016-11-05 09:21 - 00000000 ____D C:\Users\Lotte\Documents\Bluetooth-Exchange-Ordner
2016-11-05 09:21 - 2016-11-05 09:21 - 00000000 ____D C:\Users\Lotte\AppData\Local\Broadcom
2016-11-05 09:20 - 2016-11-05 09:20 - 00002067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music Unlimited.lnk
2016-11-05 09:20 - 2016-11-05 09:20 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Adobe
2016-11-05 09:19 - 2016-11-13 21:11 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Sony Corporation
2016-11-05 09:19 - 2016-11-13 00:45 - 00000000 ____D C:\WINDOWS\SysWOW64\VAIO Startup Setting Tool
2016-11-05 09:19 - 2016-11-05 09:19 - 00000000 ____D C:\WINDOWS\pss
2016-11-05 09:19 - 2016-11-05 09:19 - 00000000 ____D C:\Users\Lotte\AppData\Local\VirtualStore
2016-11-05 09:18 - 2016-11-13 20:11 - 00000000 ____D C:\Users\Lotte\AppData\Local\Packages
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Videos
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Programme
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\ProgramData\Vorlagen
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\ProgramData\Startmenü
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\ProgramData\Dokumente
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Dokumente und Einstellungen
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-05 04:33 - 2016-11-05 04:33 - 00000000 _____ C:\Recovery.txt

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-30 14:59 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-30 14:52 - 2014-11-21 04:35 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-30 14:52 - 2014-11-21 03:45 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-30 14:52 - 2014-11-21 03:45 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-30 14:52 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-11-30 14:44 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-30 13:17 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-11-30 13:14 - 2013-12-19 11:09 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\setup
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-11-13 22:06 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-11-13 21:12 - 2013-12-19 11:23 - 00000000 ____D C:\ProgramData\Sony Corporation
2016-11-13 21:10 - 2013-08-22 16:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-13 20:16 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-13 20:11 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-13 00:58 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-11-13 00:57 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2016-11-13 00:57 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2016-11-13 00:54 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2016-11-13 00:53 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-13 00:46 - 2013-08-22 15:44 - 00382744 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-13 00:45 - 2013-12-19 11:50 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-13 00:45 - 2013-12-19 11:45 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2016-11-13 00:45 - 2013-12-19 11:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel AppUp(R) center
2016-11-13 00:45 - 2013-12-19 11:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD
2016-11-13 00:45 - 2013-12-19 11:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayMemories Home
2016-11-13 00:45 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-11-13 00:45 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-11-13 00:43 - 2013-12-19 11:19 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2016-11-13 00:43 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2016-11-13 00:43 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-13 00:43 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2016-11-13 00:42 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Resources
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-13 00:41 - 2012-08-03 03:25 - 00000000 ____D C:\ProgramData\PRICache
2016-11-13 00:41 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal
2016-11-13 00:24 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2016-11-13 00:21 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-13 00:17 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-11-13 00:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2016-11-12 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2016-11-12 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-12 23:44 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-11-12 23:24 - 2014-11-21 22:57 - 00000000 ___HD C:\$Windows.~BT
2016-11-12 22:44 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2016-11-05 22:57 - 2013-12-19 11:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-05 22:55 - 2013-12-19 11:21 - 00015814 _____ C:\WINDOWS\system32\results.xml
2016-11-05 22:30 - 2013-12-19 11:27 - 00000000 ____D C:\Program Files (x86)\Sony
2016-11-05 22:30 - 2013-12-19 10:29 - 00000000 ____D C:\Program Files\Sony
2016-11-05 22:28 - 2013-12-19 11:09 - 08469680 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\BCMWL63a.SYS
2016-11-05 22:28 - 2013-12-19 11:09 - 04557824 _____ (Broadcom Corporation) C:\WINDOWS\system32\bcmihvsrv64.dll
2016-11-05 22:28 - 2013-12-19 11:09 - 03759104 _____ (Broadcom Corporation) C:\WINDOWS\system32\bcmihvui64.dll
2016-11-05 22:26 - 2013-12-19 11:27 - 00000000 ____D C:\WINDOWS\System32\Tasks\Sony Corporation
2016-11-05 22:25 - 2013-12-19 12:01 - 00000000 ____D C:\ProgramData\iolo
2016-11-05 10:01 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-11-05 09:59 - 2013-12-19 11:41 - 00000000 ____D C:\Program Files\McAfeeEx
2016-11-05 09:59 - 2013-12-19 11:14 - 00000000 ___HD C:\Program Files (x86)\Temp

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-11-13 00:29 - 2016-11-13 00:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-13 00:26

==================== Ende von FRST.txt ============================
         
Addition.txt
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 27-11-2016
durchgeführt von Lotte (30-11-2016 15:00:57)
Gestartet von F:\
Windows 8.1 (Update) (X64) (2016-11-13 19:09:12)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-927612283-1200829413-3393210303-500 - Administrator - Disabled)
Gast (S-1-5-21-927612283-1200829413-3393210303-501 - Limited - Disabled)
Lotte (S-1-5-21-927612283-1200829413-3393210303-1001 - Administrator - Enabled) => C:\Users\Lotte

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Reader XI  MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.23.58 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{e7f56494-d786-472e-aba2-1b93089e06cd}) (Version: 1.2.76.20506 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.76.20506 - Avira Operations GmbH & Co. KG) Hidden
Azteca (x32 Version: 2.2.0.97 - WildTangent) Hidden
Behind The Reflection 2: Witch's Revenge (x32 Version: 3.0.2.32 - WildTangent) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.223.181 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\{4CDA59B9-7AD3-4283-9F5C-BC469FF975B6}) (Version: 6.30.59.125 - Broadcom Corporation)
Build-a-lot: On Vacation (x32 Version: 2.2.0.110 - WildTangent) Hidden
chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cut the Rope (x32 Version: 3.0.2.38 - WildTangent) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.2529 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.6201.52 - CyberLink Corp.)
Einstellungen für VAIO Media Server (HKLM\...\{62A172B2-550E-499D-9A82-5190D18390AA}) (Version: 1.1.0.02220 - Sony Corporation)
Enchanted Cavern 2 (x32 Version: 2.2.0.110 - WildTangent) Hidden
ESDL (x32 Version: 1.0.0 - Sony Corporation) Hidden
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Heroes of Hellas 3: Athens (x32 Version: 3.0.2.32 - WildTangent) Hidden
Intel AppUp(R) center (HKLM-x32\...\Intel AppUp(R) center 41800) (Version: 3.8.0.41800.66 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) PROSet/Wireless NFC-Software (HKLM\...\Intel(R) PROSet/Wireless NFC-Software) (Version: 1.0.1.003 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 7 Update 13 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417013FF}) (Version: 7.0.130 - Oracle)
Java 7 Update 13 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217013FF}) (Version: 7.0.130 - Oracle)
Luxor HD (x32 Version: 2.2.0.110 - WildTangent) Hidden
Mahjongg Artifacts (x32 Version: 2.2.0.110 - WildTangent) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mozilla Firefox 50.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.0.1 (x86 de)) (Version: 50.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.1 - Mozilla)
Mozilla Thunderbird 45.4.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.4.0 (x86 de)) (Version: 45.4.0 - Mozilla)
My Kingdom for the Princess 3 (x32 Version: 2.2.0.110 - WildTangent) Hidden
Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden
Networkx64 (Version: 1.0.0 - Sony Corporation) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{8D5FCC56-BB9F-4122-923C-71753F50F6F5}) (Version: 4.13.9783 - Apache Software Foundation)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayMemories Home (HKLM-x32\...\{1E5C7043-09C5-4974-A69F-A5271FD82BBC}) (Version: 7.0.02.14060 - Sony Corporation)
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7177 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.28135 - Realtek Semiconductor Corp.)
Remote Keyboard (x32 Version: 1.2.0.09270 - Sony Corporation) Hidden
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.4.0.1 - Synaptics Incorporated)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
VAIO - Remote-Tastatur (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.2.0.09270 - Sony Corporation)
VAIO - Remote-Tastatur mit PlayStation®3 (HKLM-x32\...\{E682702C-609C-4017-99E7-3129C163955F}) (Version: 1.2.1.05220 - Sony Corporation)
VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.4.0.15030 - Sony Corporation)
VAIO BIOS Data Transfer Utility (x32 Version: 1.0.0.02050 - Sony Corporation) Hidden
VAIO Care (HKLM\...\{404D6E7E-948E-4D2E-9540-59550AB59D4F}) (Version: 8.4.5.06026 - Sony Corporation)
VAIO Care Recovery (HKLM\...\{15B9204E-BA09-485E-8F2C-094AC0077664}) (Version: 1.1.2.13230 - Sony Corporation)
VAIO Care-Hardwarediagnose-Plugin (HKLM-x32\...\{EC153498-00E1-4C9C-89BE-81527C6750BE}) (Version: 4.11.1.11210 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 6.2.0.03070 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.11.0.13250 - Sony Corporation)
VAIO Easy Connect (x32 Version: 8.4.4.07220 - Sony Corporation) Hidden
VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 2.2.0.01230 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.2.0.01230 - Sony Corporation) Hidden
VAIO Image Optimizer (HKLM-x32\...\InstallShield_{5597C927-029A-46A7-A0C0-8DABD9891A50}) (Version: 3.3.00.10220 - Sony Corporation)
VAIO Image Optimizer (x32 Version: 3.1.00.14260 - Sony Corporation) Hidden
VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 2.2.0.01240 - Sony Corporation)
VAIO Movie Creator (HKLM-x32\...\InstallShield_{C2CC5822-32E6-4D21-88EA-DE8CED09EE2F}) (Version: 4.3.01.11140 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.1.01.15140 - Sony Corporation) Hidden
VAIO Sample Music (HKLM-x32\...\{FBEE3D44-0933-4B84-BB6A-49957F89187F}) (Version: 1.0.0.03051 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.2.0.16270 - Sony Corporation)
VAIO*CPU-Lüfterdiagnose (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.2.0.03050 - Sony Corporation)
VAIO-Support für Übertragungen (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.9.0.11060 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
Virtual Villagers 5 - New Believers (x32 Version: 3.0.2.32 - WildTangent) Hidden
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VUx64 (Version: 1.2.0 - Sony Corporation) Hidden
VUx86 (x32 Version: 1.2.0 - Sony Corporation) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.4900 - Broadcom Corporation)
WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden
WildTangent-Spiele (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AC}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)
CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AD}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0E2BAD16-BD41-46EB-BCBB-49740EF28E60} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2013-01-24] (Sony Corporation)
Task: {1D311D4E-A1F5-46D0-BF78-CB678DAB0EB2} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2016-04-25] (Sony Corporation)
Task: {204CDCD8-7647-445B-8A37-A8DF44F45634} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2016-03-31] (Sony Corporation)
Task: {21A3858C-C8D4-4C25-911E-F63059C3087D} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {287B6E5F-2984-4E88-A980-5C96440A07BE} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2016-03-24] (Sony Corporation)
Task: {2A8A0E52-34CB-4F1C-B80F-4EE9D343A2E7} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {2EE8EAF3-FDE2-4A0B-8FD4-7363EE7B3F71} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2016-03-04] (Sony Corporation)
Task: {43814966-938F-4B44-9735-2176EEE8841C} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2013-01-23] (Sony Corporation)
Task: {54020D2B-8EE9-48B1-B77A-67EA816E00E8} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-03-08] (Sony Corporation)
Task: {5EC3FEAC-4E02-4C57-A39D-CA02A87B5346} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-03-08] (Sony Corporation)
Task: {62031FDF-8742-4ADA-AEF6-0EFDB420FC80} - System32\Tasks\Sony Corporation\VAIO Care\VTUsr => C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe [2016-05-30] (Sony Corporation)
Task: {6F21F9AB-11CC-433C-AF54-29D2E1E8A691} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {83B969F2-B842-4260-974F-BC363283F8E4} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {8C940F42-BD0E-44B6-8744-035734B7EF13} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {93A8D53D-9570-4411-A06A-E8334A815974} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcWeekly => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation)
Task: {9D666896-0388-42D2-8DEB-A39DB42A7B9B} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {AB91E0E8-6780-4FB2-90B7-8A3176FEFE13} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {AE6A609D-A5C9-4273-991B-3F9D4491761F} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2016-03-18] (Sony Corporation)
Task: {B109E244-289C-4E42-AEC9-04ED2B811498} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {B4740220-0EE3-4327-BEF6-86A3FE4C3D72} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {BE1E2485-37EA-44D9-A3D4-6AEB16917BC4} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {C1B32111-3E2F-4810-BE54-ACFFFE3A90DF} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
Task: {C589A061-6AA6-47F8-AC31-ECE6892967EB} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {D21378E3-8ACE-4CD8-B270-B31EAA4BC837} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {E542BE74-768B-44B9-BE1E-495C77582DAB} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {E5E9F06D-74C2-4AF4-83C7-52B9FBED48C2} - System32\Tasks\Sony Corporation\VAIO Care\VTSvc => C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe [2016-05-30] (Sony Corporation)
Task: {FD4D7BFD-4329-4E74-B551-CC6CE469FCBD} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcDaily => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2012-12-14 14:27 - 2012-12-14 14:27 - 00049520 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btwleapi.dll
2014-11-21 04:19 - 2014-11-21 04:19 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\ErrorReporting.dll
2013-12-19 11:11 - 2013-01-23 10:26 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\Sony\VAIO 13 img1 Wallpaper 1366x768.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{95225308-8D1C-494B-8325-45CE3A3B17EA}] => (Allow) C:\Program Files\Sony\VAIO Care\VAIOShell.exe
FirewallRules: [{E005A6CF-CF6B-4554-BC6D-BF84294536B1}] => (Allow) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
FirewallRules: [{5927AAE6-DC1E-49E7-8C10-BE80C9E482E3}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
FirewallRules: [{62DB37CB-BF6A-4051-BBB3-E059B5A24141}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAgent.exe
FirewallRules: [{9930954B-B1E1-4874-B41A-75168E5B2C71}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3361260A-6546-48DE-92D9-C33998A45C4A}] => (Allow) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
FirewallRules: [{55F335C9-5BAB-41DF-A857-D3B20604F70B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE

==================== Wiederherstellungspunkte =========================

13-11-2016 21:09:22 Removed Microsoft Office

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/30/2016 02:57:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DllHost.exe, Version: 6.3.9600.17415, Zeitstempel: 0x54504134
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18438, Zeitstempel: 0x57ae642e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003dd8e
ID des fehlerhaften Prozesses: 0x3b0
Startzeit der fehlerhaften Anwendung: 0x01d24b11ad392224
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\DllHost.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: eb3b83e0-b704-11e6-be7a-3423877ff934
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (11/30/2016 01:12:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm IEXPLORE.EXE, Version 11.0.9600.18124 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: a50

Startzeit: 01d24b030331c43b

Endzeit: 656

Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Berichts-ID: 458b5b8a-b6f6-11e6-be79-3423877ff934

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (11/30/2016 01:07:07 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (11/13/2016 10:05:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (11/13/2016 09:08:55 PM) (Source: chip 1-click download service) (EventID: 0) (User: )
Description: |ERORRS=;(380) error at getOrdersForVersion:Der Remotename konnte nicht aufgelöst werden: 'service.chip-secured-download.de'
;(180) error at GetHttpWebRequest: 1Der Remotename konnte nicht aufgelöst werden: 'api.chip-secured-download.de'
;(480) Could not load new Downlaoder

Error: (11/13/2016 08:54:51 PM) (Source: Intel(R) PROSet/Wireless NFC Software) (EventID: 260) (User: )
Description: HECI-MEI communication failure.

Error: (11/13/2016 12:56:52 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "AVWMIEVTProv" wurde versucht, die Abfrage "select * from Event_Notification" zu registrieren, deren Zielklasse "Event_Notification" im Namespace "//./ROOT/CIMV2/Applications/Avira_AntiVir" nicht vorhanden ist. Die Abfrage wird ignoriert.

Error: (11/13/2016 12:56:52 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "" wurde versucht, die Abfrage "select * from Event_Notification" zu registrieren, deren Zielklasse "Event_Notification" im Namespace "//./ROOT/CIMV2/Applications/Avira_AntiVir" nicht vorhanden ist. Die Abfrage wird ignoriert.

Error: (11/12/2016 10:44:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm SystemSettings.exe, Version 6.2.9200.16420 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1208

Startzeit: 01d23d2dd3c48c65

Endzeit: 0

Anwendungspfad: C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe

Berichts-ID: 39fc05ed-a921-11e6-be78-3423877ff934

Vollständiger Name des fehlerhaften Pakets: windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: microsoft.windows.immersivecontrolpanel

Error: (11/07/2016 07:12:45 AM) (Source: chip 1-click download service) (EventID: 0) (User: )
Description: |ERORRS=;(380) error at getOrdersForVersion:Der Remotename konnte nicht aufgelöst werden: 'service.chip-secured-download.de'
;(180) error at GetHttpWebRequest: 1Der Remotename konnte nicht aufgelöst werden: 'api.chip-secured-download.de'
;(480) Could not load new Downlaoder


Systemfehler:
=============
Error: (11/30/2016 02:49:21 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
Unzulässige Funktion.

Error: (11/30/2016 02:49:15 PM) (Source: Virtual Disk Service) (EventID: 9) (User: )
Description: Unerwarteter Anbieterfehler. Möglicherweise kann das Problem durch erneutes Starten des Dienstes behoben werden. Fehlercode: 8007001F@02000014

Error: (11/30/2016 02:44:58 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (11/30/2016 02:44:57 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (11/30/2016 01:17:33 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (11/30/2016 01:04:20 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (11/30/2016 01:04:20 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (11/13/2016 10:05:44 PM) (Source: DCOM) (EventID: 10010) (User: VAIO)
Description: Der Server "Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (11/13/2016 10:05:43 PM) (Source: DCOM) (EventID: 10010) (User: VAIO)
Description: Der Server "{4545DEA0-2DFC-4906-A728-6D986BA399A9}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (11/13/2016 10:05:43 PM) (Source: DCOM) (EventID: 10010) (User: VAIO)
Description: Der Server "{4545DEA0-2DFC-4906-A728-6D986BA399A9}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Pentium(R) CPU 2117U @ 1.80GHz
Prozentuale Nutzung des RAM: 24%
Installierter physikalischer RAM: 8070.8 MB
Verfügbarer physikalischer RAM: 6125.55 MB
Summe virtueller Speicher: 9350.8 MB
Verfügbarer virtueller Speicher: 7153.77 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:903.8 GB) (Free:856.1 GB) NTFS
Drive e: () (Removable) (Total:3.68 GB) (Free:3.68 GB) FAT32
Drive f: (USB) (Removable) (Total:3.76 GB) (Free:3.58 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A42C908E)

Partition: GPT.

========================================================
Disk: 1 (Size: 3.7 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 2 (Size: 3.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Ende von Addition.txt ============================
         
__________________


Alt 05.12.2016, 13:21   #3
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Bitte Avira deinstallieren. Das Teil empfehlen wir schon seit Jahren aus mehreren Gründen nicht mehr. Ein Grund ist ne rel. hohe Fehlalarmquote, der zweite Hauptgrund ist, dass die immer noch mit ASK zusammenarbeiten (Avira Suchfunktion geht über ASK). Auch andere Freewareanbieter wie AVG, Avast oder Panda sprangen auf diesen Zug auf; so was ist bei Sicherheitssoftware einfach inakzeptabel. Vgl. Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog

Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________
__________________

Alt 05.12.2016, 18:20   #4
HoChiMinh
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Vielen Dank für die Antwort. Avira habe ich umgehend entfernt, wie sieht denn der weitere Fahrplan aus? Gruß

Alt 05.12.2016, 22:58   #5
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



1. Schritt: Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers




2. Schritt: Kaspersky TDSS-Killer

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 06.12.2016, 16:57   #6
HoChiMinh
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Es scheitert leider schon am ersten Schritt, Malwarebytes Anti-Rootkit lässt sich nicht installieren, es erscheint die Fehlermeldung
Code:
ATTFilter
Could not find command for "AutoInstall"
         
Gibt es hier irgendeinen Ausweg?

Alt 06.12.2016, 23:53   #7
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Dann mach mit tdsskiller weiter
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 07.12.2016, 10:20   #8
HoChiMinh
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Code:
ATTFilter
10:14:33.0366 0x157c  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
10:14:33.0366 0x157c  UEFI system
10:14:38.0785 0x157c  ============================================================
10:14:38.0785 0x157c  Current date / time: 2016/12/07 10:14:38.0785
10:14:38.0785 0x157c  SystemInfo:
10:14:38.0785 0x157c  
10:14:38.0785 0x157c  OS Version: 6.3.9600 ServicePack: 0.0
10:14:38.0785 0x157c  Product type: Workstation
10:14:38.0785 0x157c  ComputerName: VAIO
10:14:38.0785 0x157c  UserName: Lotte
10:14:38.0785 0x157c  Windows directory: C:\WINDOWS
10:14:38.0785 0x157c  System windows directory: C:\WINDOWS
10:14:38.0785 0x157c  Running under WOW64
10:14:38.0785 0x157c  Processor architecture: Intel x64
10:14:38.0785 0x157c  Number of processors: 2
10:14:38.0785 0x157c  Page size: 0x1000
10:14:38.0785 0x157c  Boot type: Normal boot
10:14:38.0785 0x157c  CodeIntegrityOptions = 0x00000001
10:14:38.0785 0x157c  ============================================================
10:14:39.0285 0x157c  KLMD registered as C:\WINDOWS\system32\drivers\20676765.sys
10:14:39.0285 0x157c  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 9600.18505, osProperties = 0x19
10:14:40.0926 0x157c  System UUID: {A9FE5BFF-B898-0FD3-C9E8-D6E0B3CA9B3C}
10:14:41.0832 0x157c  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:14:41.0848 0x157c  Drive \Device\Harddisk1\DR1 - Size: 0xEC400000 ( 3.69 Gb ), SectorSize: 0x200, Cylinders: 0x1E1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:14:41.0848 0x157c  Drive \Device\Harddisk2\DR2 - Size: 0x7D580000 ( 1.96 Gb ), SectorSize: 0x200, Cylinders: 0xFF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:14:41.0848 0x157c  ============================================================
10:14:41.0848 0x157c  \Device\Harddisk0\DR0:
10:14:41.0848 0x157c  GPT partitions:
10:14:41.0848 0x157c  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {F4019732-066E-4E12-8273-346C5641494F}, UniqueGUID: {DD59023B-6CB0-477D-826D-F5EBDF76D0C5}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x82000
10:14:41.0848 0x157c  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {CAD7CAF3-CFB6-4B43-A5EF-36290622E661}, Name: Basic data partition, StartLBA 0x82800, BlocksNum 0x2E1000
10:14:41.0848 0x157c  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {6A904E9A-C2EC-4F57-B395-1CCD8E47B3DE}, Name: EFI system partition, StartLBA 0x363800, BlocksNum 0x82000
10:14:41.0848 0x157c  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {D30CFCE4-62B3-4AF8-879F-367D85F57DB1}, Name: Microsoft reserved partition, StartLBA 0x3E5800, BlocksNum 0x40000
10:14:41.0848 0x157c  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {86DFE397-AA97-452F-91CF-455610EAA271}, Name: Basic data partition, StartLBA 0x425800, BlocksNum 0x70F9A000
10:14:41.0848 0x157c  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {BF7F5D99-E400-4DB8-98FA-C8A5D0DD0E8B}, Name: , StartLBA 0x713C0000, BlocksNum 0xE1000
10:14:41.0848 0x157c  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {B3F946CB-5CAD-4634-B4DE-0C278020163E}, Name: , StartLBA 0x714A1000, BlocksNum 0xAF000
10:14:41.0848 0x157c  \Device\Harddisk0\DR0\Partition8: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {ABD53171-A084-4CA2-8ABD-CC2D4B9A911E}, Name: Basic data partition, StartLBA 0x71550000, BlocksNum 0x31B6800
10:14:41.0848 0x157c  MBR partitions:
10:14:41.0848 0x157c  \Device\Harddisk1\DR1:
10:14:41.0848 0x157c  MBR partitions:
10:14:41.0848 0x157c  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x760000
10:14:41.0848 0x157c  \Device\Harddisk2\DR2:
10:14:41.0848 0x157c  MBR partitions:
10:14:41.0848 0x157c  ============================================================
10:14:41.0864 0x157c  C: <-> \Device\Harddisk0\DR0\Partition5
10:14:41.0864 0x157c  ============================================================
10:14:41.0864 0x157c  Initialize success
10:14:41.0864 0x157c  ============================================================
10:15:38.0343 0x1550  ============================================================
10:15:38.0343 0x1550  Scan started
10:15:38.0343 0x1550  Mode: Manual; SigCheck; TDLFS; 
10:15:38.0343 0x1550  ============================================================
10:15:38.0343 0x1550  KSN ping started
10:15:38.0499 0x1550  KSN ping finished: true
10:15:42.0492 0x1550  ================ Scan system memory ========================
10:15:42.0492 0x1550  System memory - ok
10:15:42.0492 0x1550  ================ Scan services =============================
10:15:42.0836 0x1550  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
10:15:42.0914 0x1550  1394ohci - ok
10:15:42.0945 0x1550  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
10:15:42.0961 0x1550  3ware - ok
10:15:42.0992 0x1550  [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
10:15:43.0023 0x1550  ACPI - ok
10:15:43.0023 0x1550  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
10:15:43.0039 0x1550  acpiex - ok
10:15:43.0055 0x1550  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
10:15:43.0086 0x1550  acpipagr - ok
10:15:43.0133 0x1550  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
10:15:43.0211 0x1550  AcpiPmi - ok
10:15:43.0211 0x1550  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
10:15:43.0227 0x1550  acpitime - ok
10:15:43.0289 0x1550  [ B1EA9681502EE57F87DB71D726288A5B, D17BD2CFAE72E92C77D183331D5CBA0FEA893BF54875920870E271940F40A8BB ] AdobeARMservice c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:15:43.0305 0x1550  AdobeARMservice - ok
10:15:43.0398 0x1550  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
10:15:43.0430 0x1550  ADP80XX - ok
10:15:43.0508 0x1550  [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
10:15:43.0586 0x1550  AeLookupSvc - ok
10:15:43.0633 0x1550  [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD             C:\WINDOWS\system32\drivers\afd.sys
10:15:43.0727 0x1550  AFD - ok
10:15:43.0773 0x1550  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
10:15:43.0789 0x1550  agp440 - ok
10:15:43.0820 0x1550  [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
10:15:43.0883 0x1550  ahcache - ok
10:15:43.0930 0x1550  [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG             C:\WINDOWS\System32\alg.exe
10:15:44.0008 0x1550  ALG - ok
10:15:44.0039 0x1550  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
10:15:44.0086 0x1550  AmdK8 - ok
10:15:44.0117 0x1550  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
10:15:44.0149 0x1550  AmdPPM - ok
10:15:44.0149 0x1550  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
10:15:44.0164 0x1550  amdsata - ok
10:15:44.0195 0x1550  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
10:15:44.0211 0x1550  amdsbs - ok
10:15:44.0227 0x1550  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
10:15:44.0242 0x1550  amdxata - ok
10:15:44.0274 0x1550  [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID           C:\WINDOWS\system32\drivers\appid.sys
10:15:44.0320 0x1550  AppID - ok
10:15:44.0352 0x1550  [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
10:15:44.0399 0x1550  AppIDSvc - ok
10:15:44.0430 0x1550  [ 734622FBA766DBD65B1803549B24A04A, 3B6872B87A60D4DA265D3B8AB0561A929CFE2C097419183E93D3843422363C89 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
10:15:44.0477 0x1550  Appinfo - ok
10:15:44.0524 0x1550  [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
10:15:44.0602 0x1550  AppReadiness - ok
10:15:44.0727 0x1550  [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
10:15:44.0820 0x1550  AppXSvc - ok
10:15:44.0852 0x1550  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
10:15:44.0867 0x1550  arcsas - ok
10:15:44.0883 0x1550  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
10:15:44.0899 0x1550  atapi - ok
10:15:44.0930 0x1550  [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
10:15:44.0961 0x1550  AudioEndpointBuilder - ok
10:15:44.0992 0x1550  [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
10:15:45.0086 0x1550  Audiosrv - ok
10:15:45.0133 0x1550  [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
10:15:45.0242 0x1550  AxInstSV - ok
10:15:45.0336 0x1550  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
10:15:45.0367 0x1550  b06bdrv - ok
10:15:45.0399 0x1550  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
10:15:45.0430 0x1550  BasicDisplay - ok
10:15:45.0461 0x1550  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
10:15:45.0507 0x1550  BasicRender - ok
10:15:45.0549 0x1550  [ 656B7660FB8FD2D3D015172486A2DB04, CF2F71EAE9413346F509E4C8D25199C040485CEBDD7AD3967889D9CE06479881 ] bcbtums         C:\WINDOWS\system32\drivers\bcbtums.sys
10:15:45.0564 0x1550  bcbtums - ok
10:15:45.0596 0x1550  [ 80EF4382B5CB1DB7BF56629131D36AA5, BEC4F3AE3E805688A2DB394046451276FFB1663838778F3B33950C5CE766CDE9 ] BCM42RLY        C:\WINDOWS\system32\drivers\BCM42RLY.sys
10:15:45.0611 0x1550  BCM42RLY - ok
10:15:45.0955 0x1550  [ D7DBC8C2C159BE83A14D7A84DF6A9622, 2C089F6BDD74C1980CB166C1A32E06B95342465EB3100F2735D6956F13B15681 ] BCM43XX         C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys
10:15:46.0283 0x1550  BCM43XX - ok
10:15:46.0455 0x1550  [ 47F0FE026652F601F367ECE2DFFCFC40, 93986523D33FEF323727A15BF5FB7BA7472CEBC1E185917897AF212E4EA9302D ] BcmBtRSupport   C:\WINDOWS\system32\BtwRSupportService.exe
10:15:46.0549 0x1550  BcmBtRSupport - ok
10:15:46.0596 0x1550  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
10:15:46.0611 0x1550  bcmfn2 - ok
10:15:46.0658 0x1550  [ 174394F4EF93C117BF7BE3878046A1B1, D58E868342D1DAFC4B04384A3713F729DF07F408AA6AE4762E6A4244F976526A ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
10:15:46.0721 0x1550  BDESVC - ok
10:15:46.0752 0x1550  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
10:15:46.0814 0x1550  Beep - ok
10:15:46.0908 0x1550  [ 5059D93764340D4EAEDF49C47133118F, 26C5779469E04BEAFD290B619CA355648F3911C66D41B22D2C3DCA909FCA0F6E ] BFE             C:\WINDOWS\System32\bfe.dll
10:15:47.0018 0x1550  BFE - ok
10:15:47.0096 0x1550  [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS            C:\WINDOWS\System32\qmgr.dll
10:15:47.0221 0x1550  BITS - ok
10:15:47.0252 0x1550  [ 4938A9236300A356F97E378491EE4844, 60D892960D48EEF48F8EC4DE4F174EBD0BC0E7B28B6D8723D554CD1979EB55B4 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
10:15:47.0330 0x1550  bowser - ok
10:15:47.0361 0x1550  [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
10:15:47.0439 0x1550  BrokerInfrastructure - ok
10:15:47.0471 0x1550  [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser         C:\WINDOWS\System32\browser.dll
10:15:47.0570 0x1550  Browser - ok
10:15:47.0600 0x1550  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
10:15:47.0632 0x1550  BthAvrcpTg - ok
10:15:47.0663 0x1550  [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
10:15:47.0710 0x1550  BthEnum - ok
10:15:47.0751 0x1550  [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
10:15:47.0817 0x1550  BthHFEnum - ok
10:15:47.0848 0x1550  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
10:15:47.0879 0x1550  bthhfhid - ok
10:15:47.0919 0x1550  [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
10:15:47.0962 0x1550  BthHFSrv - ok
10:15:47.0993 0x1550  [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum       C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
10:15:48.0024 0x1550  BthLEEnum - ok
10:15:48.0040 0x1550  [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
10:15:48.0071 0x1550  BTHMODEM - ok
10:15:48.0102 0x1550  [ FEA8FC81431AD93F44D5FBFBBF096AA7, C0581DF6B2AD24836604B083F4866F93A3F4D9091D382029948A5E6221EDF788 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
10:15:48.0134 0x1550  BthPan - ok
10:15:48.0196 0x1550  [ 0CC00ADC1B84C93FB46E1A0974E956E1, 64C759244651B916901F4D0C82C3D6034532A20714A72FD26FC9D050B99E230B ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
10:15:48.0321 0x1550  BTHPORT - ok
10:15:48.0352 0x1550  [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv         C:\WINDOWS\system32\bthserv.dll
10:15:48.0415 0x1550  bthserv - ok
10:15:48.0446 0x1550  [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
10:15:48.0477 0x1550  BTHUSB - ok
10:15:48.0805 0x1550  [ 35412CD4A227EE7A99179A930B1FDF4E, E6349B7646544B5B065112D9C7563F0A95462CA4511CB00B77D91E7C14DAD541 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
10:15:48.0852 0x1550  btwdins - ok
10:15:48.0884 0x1550  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
10:15:48.0946 0x1550  cdfs - ok
10:15:48.0977 0x1550  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
10:15:49.0009 0x1550  cdrom - ok
10:15:49.0040 0x1550  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
10:15:49.0087 0x1550  CertPropSvc - ok
10:15:49.0118 0x1550  [ 59B4AB79011957DD3B83F0C2E63741BD, 5DE68785D701DBA0F98452B7D5CC407BEECD51685F39516157733CED2EF2FA19 ] chip1click      C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
10:15:49.0149 0x1550  chip1click - detected UnsignedFile.Multi.Generic ( 1 )
10:15:49.0384 0x1550  chip1click ( UnsignedFile.Multi.Generic ) - warning
10:15:49.0571 0x1550  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
10:15:49.0602 0x1550  circlass - ok
10:15:49.0649 0x1550  [ 28D94419E856D61D7686ED942611D15E, AC9ED48AA09B09B854512B35E905C8C4C451B34F59951661367392AF64E8ADE7 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
10:15:49.0665 0x1550  CLFS - ok
10:15:49.0727 0x1550  [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive  C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
10:15:49.0743 0x1550  CLVirtualDrive - ok
10:15:49.0774 0x1550  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
10:15:49.0806 0x1550  CmBatt - ok
10:15:49.0837 0x1550  [ 5CBF8B3E27D824D2AA2A34AFB406F1D0, 955AF1307C02D2B4DEEB150F37F77B8631C0F3C450037C233E9E27D6571B0265 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
10:15:49.0899 0x1550  CNG - ok
10:15:49.0931 0x1550  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
10:15:49.0977 0x1550  CompositeBus - ok
10:15:49.0977 0x1550  COMSysApp - ok
10:15:50.0009 0x1550  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
10:15:50.0040 0x1550  condrv - ok
10:15:50.0227 0x1550  [ BB812787B838A74943DEF209350C3883, 2C168F48A68644AA3CB6167BEC2A260E3E9C78D0766A15AA0FAA39CDBD7FA040 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
10:15:50.0446 0x1550  cphs - ok
10:15:50.0477 0x1550  [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
10:15:50.0571 0x1550  CryptSvc - ok
10:15:50.0602 0x1550  [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam             C:\WINDOWS\system32\drivers\dam.sys
10:15:50.0618 0x1550  dam - ok
10:15:50.0712 0x1550  [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
10:15:50.0790 0x1550  DcomLaunch - ok
10:15:50.0837 0x1550  [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
10:15:50.0915 0x1550  defragsvc - ok
10:15:50.0962 0x1550  [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
10:15:51.0040 0x1550  DeviceAssociationService - ok
10:15:51.0056 0x1550  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
10:15:51.0102 0x1550  DeviceInstall - ok
10:15:51.0118 0x1550  [ FBFF94FC1FE0699A6BC5ACE270AB9EA1, 7D67E7BE539D9D515A1A6B9282C72114310E874DD1FE51E71F002DBB0E1439FB ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
10:15:51.0196 0x1550  Dfsc - ok
10:15:51.0321 0x1550  [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
10:15:51.0399 0x1550  Dhcp - ok
10:15:51.0462 0x1550  [ 0AC9F83A5508935DE89C447473085EEA, 223782B17BACEFB0A663EB13514B68B919C95EF641CDDA7AC30CB239BC4307EC ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
10:15:51.0634 0x1550  DiagTrack - ok
10:15:51.0665 0x1550  [ 8B1E62881D5AC68E673CD94B136B34AC, A0C50F17041E43AC07B67A74F2C408820316201439F47CDEA37A4F5891CC0E6F ] disk            C:\WINDOWS\system32\drivers\disk.sys
10:15:51.0681 0x1550  disk - ok
10:15:51.0696 0x1550  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
10:15:51.0759 0x1550  dmvsc - ok
10:15:51.0790 0x1550  [ 561CBB163EB3C8221D9B1D7D1E5CA477, 4D235E73CC127769A257B31A92180552276EC8DDD991F1106815FADEF385E72D ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
10:15:51.0884 0x1550  Dnscache - ok
10:15:51.0915 0x1550  [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
10:15:51.0993 0x1550  dot3svc - ok
10:15:52.0009 0x1550  [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS             C:\WINDOWS\system32\dps.dll
10:15:52.0040 0x1550  DPS - ok
10:15:52.0071 0x1550  [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
10:15:52.0087 0x1550  drmkaud - ok
10:15:52.0118 0x1550  [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
10:15:52.0149 0x1550  DsmSvc - ok
10:15:52.0228 0x1550  [ F74B839FA0F4E6060CA1DA6B8DA17941, EF493E1F55FCD6A8C32B3D5D5809B7EFCCC9829E9A347522D1E6FE080D41BF37 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
10:15:52.0321 0x1550  DXGKrnl - ok
10:15:52.0337 0x1550  [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
10:15:52.0399 0x1550  Eaphost - ok
10:15:52.0524 0x1550  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
10:15:52.0696 0x1550  ebdrv - ok
10:15:52.0728 0x1550  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS             C:\WINDOWS\System32\lsass.exe
10:15:52.0743 0x1550  EFS - ok
10:15:52.0759 0x1550  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
10:15:52.0774 0x1550  EhStorClass - ok
10:15:52.0790 0x1550  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
10:15:52.0806 0x1550  EhStorTcgDrv - ok
10:15:52.0821 0x1550  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
10:15:52.0853 0x1550  ErrDev - ok
10:15:52.0915 0x1550  [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem     C:\WINDOWS\system32\es.dll
10:15:52.0978 0x1550  EventSystem - ok
10:15:53.0024 0x1550  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
10:15:53.0103 0x1550  exfat - ok
10:15:53.0118 0x1550  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
10:15:53.0149 0x1550  fastfat - ok
10:15:53.0181 0x1550  [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax             C:\WINDOWS\system32\fxssvc.exe
10:15:53.0274 0x1550  Fax - ok
10:15:53.0306 0x1550  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
10:15:53.0337 0x1550  fdc - ok
10:15:53.0368 0x1550  [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
10:15:53.0384 0x1550  fdPHost - ok
10:15:53.0399 0x1550  [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
10:15:53.0431 0x1550  FDResPub - ok
10:15:53.0462 0x1550  [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
10:15:53.0524 0x1550  fhsvc - ok
10:15:53.0556 0x1550  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
10:15:53.0571 0x1550  FileInfo - ok
10:15:53.0587 0x1550  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
10:15:53.0603 0x1550  Filetrace - ok
10:15:53.0618 0x1550  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
10:15:53.0649 0x1550  flpydisk - ok
10:15:53.0665 0x1550  [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
10:15:53.0696 0x1550  FltMgr - ok
10:15:53.0774 0x1550  [ 1EFEF3B4EF2B241263F0F791EA128598, B6CADC254B0779E43E0D6AB6125A7E7ED8FF50C3158911681BA7B43160A08176 ] FontCache       C:\WINDOWS\system32\FntCache.dll
10:15:53.0915 0x1550  FontCache - ok
10:15:53.0993 0x1550  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:15:54.0009 0x1550  FontCache3.0.0.0 - ok
10:15:54.0024 0x1550  [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
10:15:54.0040 0x1550  FsDepends - ok
10:15:54.0056 0x1550  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:15:54.0071 0x1550  Fs_Rec - ok
10:15:54.0118 0x1550  [ D4AB6EE3D715BC44C00277FD934FAACF, DE8A8B14D7BA73BA1B5A833DE193CA65EDFE512A57D84F4F2CE19D9646D97F4E ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
10:15:54.0165 0x1550  fvevol - ok
10:15:54.0196 0x1550  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
10:15:54.0228 0x1550  FxPPM - ok
10:15:54.0259 0x1550  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
10:15:54.0274 0x1550  gagp30kx - ok
10:15:54.0321 0x1550  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
10:15:54.0337 0x1550  GamesAppService - ok
10:15:54.0368 0x1550  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
10:15:54.0399 0x1550  gencounter - ok
10:15:54.0446 0x1550  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
10:15:54.0462 0x1550  GPIOClx0101 - ok
10:15:54.0524 0x1550  [ 9678FD4747A4F2E2318245EE6099482E, C76AE30E8BA77DC330F9CFE5ECEA58FAE0995396742923B564A2257DE24D7B32 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
10:15:54.0696 0x1550  gpsvc - ok
10:15:54.0728 0x1550  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
10:15:54.0759 0x1550  HDAudBus - ok
10:15:54.0790 0x1550  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
10:15:54.0821 0x1550  HidBatt - ok
10:15:54.0868 0x1550  [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
10:15:54.0946 0x1550  HidBth - ok
10:15:54.0962 0x1550  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
10:15:54.0993 0x1550  hidi2c - ok
10:15:55.0025 0x1550  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
10:15:55.0056 0x1550  HidIr - ok
10:15:55.0087 0x1550  [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv         C:\WINDOWS\system32\hidserv.dll
10:15:55.0118 0x1550  hidserv - ok
10:15:55.0150 0x1550  [ 49676FEC898AB2A11B157F848269A56E, 011E6DDEF9570212520F92FEFD205E1F8104F198B57C40D11BE857FCBCC5F68D ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
10:15:55.0212 0x1550  HidUsb - ok
10:15:55.0243 0x1550  [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
10:15:55.0306 0x1550  hkmsvc - ok
10:15:55.0337 0x1550  [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
10:15:55.0415 0x1550  HomeGroupListener - ok
10:15:55.0446 0x1550  [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
10:15:55.0508 0x1550  HomeGroupProvider - ok
10:15:55.0547 0x1550  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
10:15:55.0562 0x1550  HpSAMD - ok
10:15:55.0625 0x1550  [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
10:15:55.0672 0x1550  HTTP - ok
10:15:55.0703 0x1550  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
10:15:55.0718 0x1550  hwpolicy - ok
10:15:55.0734 0x1550  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
10:15:55.0765 0x1550  hyperkbd - ok
10:15:55.0812 0x1550  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
10:15:55.0843 0x1550  HyperVideo - ok
10:15:55.0890 0x1550  [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
10:15:56.0000 0x1550  i8042prt - ok
10:15:56.0047 0x1550  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
10:15:56.0047 0x1550  iaLPSSi_GPIO - ok
10:15:56.0062 0x1550  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
10:15:56.0078 0x1550  iaLPSSi_I2C - ok
10:15:56.0125 0x1550  [ 6C91E425ACE29594BD574DE38AC9B76D, 697784E4C7AF08B1F35662D8AD871E6890CECE22B6E64985B7C1A66C10DA390D ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
10:15:56.0156 0x1550  iaStorA - ok
10:15:56.0187 0x1550  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
10:15:56.0234 0x1550  iaStorAV - ok
10:15:56.0265 0x1550  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
10:15:56.0297 0x1550  iaStorV - ok
10:15:56.0344 0x1550  [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS            C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
10:15:56.0359 0x1550  ICCS - ok
10:15:56.0469 0x1550  [ DEA2F976E7327716AA0038EBF550003A, 5EA4666874F1D03879EA95F28228AC9EA3D7DF0F2E199EEE9B5BC6C81CA290B3 ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
10:15:56.0578 0x1550  IconMan_R - ok
10:15:56.0594 0x1550  IEEtwCollectorService - ok
10:15:56.0734 0x1550  [ CEFA6BDB4789F3DA003ACBDCC64F5877, 0FE78AEFA9A75B4A99AD6B73AC3252E4C6DFA9D306FEC02D26C1FD574108BFBA ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
10:15:57.0015 0x1550  igfx - ok
10:15:57.0047 0x1550  [ 75909533EECD0CD9D5974B59474AA6C0, F81D0F949F1F01D09C91735C79288395B82C27B8FB78804752E5A678D7EF3860 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
10:15:57.0062 0x1550  igfxCUIService1.0.0.0 - ok
10:15:57.0125 0x1550  [ 5697FD05EC6915A1E7193D658D8D6E05, 0179C3AF29880AA21F609CB471034EA5FA49324ACCE12736866675C037EBEC7A ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
10:15:57.0203 0x1550  IKEEXT - ok
10:15:57.0234 0x1550  [ B1F193AB8FB72E9FC34B3A39314ED872, 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
10:15:57.0265 0x1550  intaud_WaveExtensible - ok
10:15:57.0422 0x1550  [ F9A6ACDDD86D3281F765374A0BF37DE0, 988911FC45B14A5E40AD91B49A18DFFF56F81874611ED994624D7200E7FDD834 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
10:15:57.0608 0x1550  IntcAzAudAddService - ok
10:15:57.0663 0x1550  [ 87871AB7AC797F922A6F3D4C874CED96, 2BCD89911E42827CD294DD7D1486A7845D1F98019E51958E0F488384401B2944 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
10:15:57.0694 0x1550  IntcDAud - ok
10:15:57.0790 0x1550  [ B353F1834FCD36D77BE3F74992C147D4, BFBC42B500FC7D6D2B523F988DD54156D2B6132CBE366EB591BF45556959A8E9 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
10:15:57.0800 0x1550  Intel(R) Capability Licensing Service Interface - ok
10:15:57.0863 0x1550  [ 420142EC02098130910F34191F38D1B1, 8D853F69DFF2D6D66BB1A25644E66DC1E8D841B86674925821B7795FBDC6A683 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
10:15:57.0863 0x1550  Intel(R) ME Service - ok
10:15:57.0894 0x1550  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
10:15:57.0910 0x1550  intelide - ok
10:15:57.0942 0x1550  [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
10:15:57.0954 0x1550  intelpep - ok
10:15:57.0961 0x1550  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
10:15:57.0992 0x1550  intelppm - ok
10:15:58.0023 0x1550  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:15:58.0086 0x1550  IpFilterDriver - ok
10:15:58.0148 0x1550  [ B452623C1DE60544054E784D94A7AA47, 57AECDEE0AB2B80DFFE11E43608988D46E9169288CB56D644DDE2CAFED6AFD40 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
10:15:58.0242 0x1550  iphlpsvc - ok
10:15:58.0273 0x1550  [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
10:15:58.0351 0x1550  IPMIDRV - ok
10:15:58.0367 0x1550  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
10:15:58.0398 0x1550  IPNAT - ok
10:15:58.0430 0x1550  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
10:15:58.0445 0x1550  IRENUM - ok
10:15:58.0477 0x1550  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
10:15:58.0492 0x1550  isapnp - ok
10:15:58.0539 0x1550  [ AD3C1F4BD9167420F04052FDA197CF29, 82B687092DFC50E8885656AF06BFB7559930750F4905BC4DBDA3A5D334A443D1 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
10:15:58.0555 0x1550  iScsiPrt - ok
10:15:58.0586 0x1550  [ DD1F43B86AD84E53203F92FD3EF3AEB6, 9DE2BA80B315E56DF2E74EAA65F4ECB8324DFC19E30EB56EDDF08340AB100E87 ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
10:15:58.0617 0x1550  iwdbus - ok
10:15:58.0648 0x1550  [ 9B24288D9F247BC5B3DAA71C571A028C, 0A1EF61858F9C1066F299C94C0FC4BB434D7585536294847CA8E21E731B9B931 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
10:15:58.0664 0x1550  jhi_service - ok
10:15:58.0680 0x1550  [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
10:15:58.0727 0x1550  kbdclass - ok
10:15:58.0758 0x1550  [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
10:15:58.0773 0x1550  kbdhid - ok
10:15:58.0805 0x1550  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
10:15:58.0836 0x1550  kdnic - ok
10:15:58.0867 0x1550  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso          C:\WINDOWS\system32\lsass.exe
10:15:58.0883 0x1550  KeyIso - ok
10:15:58.0914 0x1550  [ 304DA394D958BC3B62AF6DF514005B01, 8D17777C82F034E800181E82D30FCED800CBC46CD659AE2E0D972CA1381BD4C2 ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
10:15:58.0930 0x1550  KSecDD - ok
10:15:58.0945 0x1550  [ 3D4AE520CD6F6FFE549DD195C1F515BE, 2AD3E07F504CE50956C391FD4633D20B354A854C940B3563A67B79BB6E40218F ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
10:15:58.0977 0x1550  KSecPkg - ok
10:15:58.0977 0x1550  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
10:15:59.0008 0x1550  ksthunk - ok
10:15:59.0055 0x1550  [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
10:15:59.0102 0x1550  KtmRm - ok
10:15:59.0148 0x1550  [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
10:15:59.0211 0x1550  LanmanServer - ok
10:15:59.0242 0x1550  [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
10:15:59.0273 0x1550  LanmanWorkstation - ok
10:15:59.0320 0x1550  [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
10:15:59.0398 0x1550  lfsvc - ok
10:15:59.0430 0x1550  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
10:15:59.0477 0x1550  lltdio - ok
10:15:59.0523 0x1550  [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
10:15:59.0570 0x1550  lltdsvc - ok
10:15:59.0602 0x1550  [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
10:15:59.0664 0x1550  lmhosts - ok
10:15:59.0695 0x1550  [ F194FE43BD9C0E949384E16EED7AA52E, 6260DD6DE9E6BBE8AB2CB8FA3A008C921ACDD340A6BF5C6A1C7C4FFE84C5BD79 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
10:15:59.0711 0x1550  LMS - ok
10:15:59.0742 0x1550  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
10:15:59.0758 0x1550  LSI_SAS - ok
10:15:59.0773 0x1550  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
10:15:59.0789 0x1550  LSI_SAS2 - ok
10:15:59.0805 0x1550  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
10:15:59.0820 0x1550  LSI_SAS3 - ok
10:15:59.0836 0x1550  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
10:15:59.0852 0x1550  LSI_SSS - ok
10:15:59.0898 0x1550  [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM             C:\WINDOWS\System32\lsm.dll
10:15:59.0977 0x1550  LSM - ok
10:16:00.0008 0x1550  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
10:16:00.0070 0x1550  luafv - ok
10:16:00.0102 0x1550  [ 1239597BAB7EED2BB16D035AF87E65D9, 67A4F1C8BA77502404629C3411BA76729435012CFA6D7794C46F31BBC118064E ] mbamchameleon   C:\WINDOWS\system32\drivers\mbamchameleon.sys
10:16:00.0320 0x1550  mbamchameleon - ok
10:16:00.0336 0x1550  [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
10:16:00.0352 0x1550  MBAMProtector - ok
10:16:00.0398 0x1550  [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService     C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
10:16:00.0461 0x1550  MBAMService - ok
10:16:00.0492 0x1550  [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
10:16:00.0508 0x1550  MBAMSwissArmy - ok
10:16:00.0523 0x1550  [ 898415AC0B5F1D2A9A48ABCB68A6DC4B, E1FD9AE5E22E3E5A18288E66A6184E92A4B63A1274DCE147A7728BB09C6A225E ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
10:16:00.0555 0x1550  MBAMWebAccessControl - ok
10:16:00.0586 0x1550  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
10:16:00.0602 0x1550  megasas - ok
10:16:00.0633 0x1550  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
10:16:00.0664 0x1550  megasr - ok
10:16:00.0680 0x1550  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
10:16:00.0695 0x1550  MEIx64 - ok
10:16:00.0727 0x1550  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS           C:\WINDOWS\system32\mmcss.dll
10:16:00.0773 0x1550  MMCSS - ok
10:16:00.0789 0x1550  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
10:16:00.0820 0x1550  Modem - ok
10:16:00.0867 0x1550  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
10:16:00.0899 0x1550  monitor - ok
10:16:00.0930 0x1550  [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
10:16:00.0961 0x1550  mouclass - ok
10:16:00.0992 0x1550  [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
10:16:01.0070 0x1550  mouhid - ok
10:16:01.0102 0x1550  [ 24DABC0A77FAFDC0E379AB3B30F61BB6, E66624ABBF1D742879035F9161F9D3713DE7B759B3D3CF8B96C9E397A02FCF82 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
10:16:01.0117 0x1550  mountmgr - ok
10:16:01.0180 0x1550  [ 7AAFF443581F9B6F86CDF761ED0A437D, 6E159C875F5666E6D17C58628EEAF79818697355AFE213CE778BD3FEA04248C0 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:16:01.0289 0x1550  MozillaMaintenance - ok
10:16:01.0320 0x1550  [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
10:16:01.0414 0x1550  mpsdrv - ok
10:16:01.0477 0x1550  [ D1418745A5472F3930A288E05B9E2C05, 95785F0FA7EE239459C0288DB37E9E54648029FD6FE45A61E6343526D67FFA32 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
10:16:01.0555 0x1550  MpsSvc - ok
10:16:01.0586 0x1550  [ 3F818C1518DA702C8F10259095C9BDE0, B98C1A6F9A3C01A10503B2B2C45CC89AFF17B346B15990F4DB4820F68BDC62C8 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
10:16:01.0680 0x1550  MRxDAV - ok
10:16:01.0711 0x1550  [ 3AF30CEB99E581E2FADA0B5FC4B551D8, 59BDE83C10D6F31E13B81FC317F1DE0E00793FBA288EAF844E29CFA0EB184502 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:16:01.0774 0x1550  mrxsmb - ok
10:16:01.0789 0x1550  [ 15D7AF1A26CCEBA32DF21A8E2098F463, 84390806AD3A9651DAB803E9257EEE851B898ED2AB56D8936E8C9F6B41967243 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
10:16:01.0867 0x1550  mrxsmb10 - ok
10:16:01.0883 0x1550  [ 0790EEB1EC199F8BE8259E47B373ED23, F9330F43B40675CCB60804182EF04BFBA3837ED14C798788A4B27D65A646D1C7 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
10:16:01.0914 0x1550  mrxsmb20 - ok
10:16:01.0961 0x1550  [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
10:16:01.0977 0x1550  MsBridge - ok
10:16:02.0024 0x1550  [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
10:16:02.0055 0x1550  MSDTC - ok
10:16:02.0102 0x1550  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
10:16:02.0117 0x1550  Msfs - ok
10:16:02.0133 0x1550  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
10:16:02.0133 0x1550  msgpiowin32 - ok
10:16:02.0149 0x1550  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
10:16:02.0180 0x1550  mshidkmdf - ok
10:16:02.0211 0x1550  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
10:16:02.0242 0x1550  mshidumdf - ok
10:16:02.0242 0x1550  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
10:16:02.0258 0x1550  msisadrv - ok
10:16:02.0305 0x1550  [ A06142B3850B06972F1C89748FAA2C02, B1CCC5C8D100FEB384FCC85FED2A77F47DA4C9BA5F6889A130F4D73E30ACAA78 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
10:16:02.0399 0x1550  MSiSCSI - ok
10:16:02.0399 0x1550  msiserver - ok
10:16:02.0445 0x1550  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:16:02.0477 0x1550  MSKSSRV - ok
10:16:02.0508 0x1550  [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
10:16:02.0555 0x1550  MsLldp - ok
10:16:02.0570 0x1550  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:16:02.0602 0x1550  MSPCLOCK - ok
10:16:02.0617 0x1550  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
10:16:02.0633 0x1550  MSPQM - ok
10:16:02.0664 0x1550  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
10:16:02.0680 0x1550  MsRPC - ok
10:16:02.0695 0x1550  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
10:16:02.0711 0x1550  mssmbios - ok
10:16:02.0742 0x1550  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
10:16:02.0742 0x1550  MSTEE - ok
10:16:02.0758 0x1550  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
10:16:02.0805 0x1550  MTConfig - ok
10:16:02.0836 0x1550  [ 438EA7A2D8D4F9B8AFB64748ACA70BA8, AEEB7B657B645C4006C6D5E8D07ECE581DEE7AD22EA1A587C552574990CF091B ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
10:16:02.0852 0x1550  Mup - ok
10:16:02.0867 0x1550  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
10:16:02.0883 0x1550  mvumis - ok
10:16:02.0914 0x1550  [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent        C:\WINDOWS\system32\qagentRT.dll
10:16:02.0961 0x1550  napagent - ok
10:16:03.0008 0x1550  [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
10:16:03.0086 0x1550  NativeWifiP - ok
10:16:03.0133 0x1550  [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
10:16:03.0180 0x1550  NcaSvc - ok
10:16:03.0195 0x1550  [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService      C:\WINDOWS\System32\ncbservice.dll
10:16:03.0227 0x1550  NcbService - ok
10:16:03.0242 0x1550  [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
10:16:03.0321 0x1550  NcdAutoSetup - ok
10:16:03.0461 0x1550  [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
10:16:04.0852 0x1550  NDIS - ok
10:16:05.0008 0x1550  [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
10:16:05.0086 0x1550  NdisCap - ok
10:16:05.0117 0x1550  [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
10:16:05.0149 0x1550  NdisImPlatform - ok
10:16:05.0274 0x1550  [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:16:05.0414 0x1550  NdisTapi - ok
10:16:05.0461 0x1550  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:16:05.0513 0x1550  Ndisuio - ok
10:16:05.0536 0x1550  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
10:16:05.0583 0x1550  NdisVirtualBus - ok
10:16:05.0630 0x1550  [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:16:05.0755 0x1550  NdisWan - ok
10:16:05.0786 0x1550  [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:16:05.0802 0x1550  NdisWanLegacy - ok
10:16:05.0818 0x1550  [ 0BBE2FA30BAD58C9ADC01E4F84A3D2A1, 913AEC8A5F735C2EFDCB417E4077AB5A15457C601E6E88A1F4FA52C91E6E0BBF ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
10:16:05.0849 0x1550  NDProxy - ok
10:16:05.0865 0x1550  [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
10:16:05.0943 0x1550  Ndu - ok
10:16:05.0974 0x1550  [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
10:16:06.0005 0x1550  NetBIOS - ok
10:16:06.0052 0x1550  [ 9DC17B7D9D84C37C102D379FCC7D4942, D522022ED4395686837E96F57EE29F8065FB749D1195B60D2A406FB33F696C09 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
10:16:06.0130 0x1550  NetBT - ok
10:16:06.0161 0x1550  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon        C:\WINDOWS\system32\lsass.exe
10:16:06.0177 0x1550  Netlogon - ok
10:16:06.0240 0x1550  [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman          C:\WINDOWS\System32\netman.dll
10:16:06.0271 0x1550  Netman - ok
10:16:06.0333 0x1550  [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
10:16:06.0365 0x1550  netprofm - ok
10:16:06.0427 0x1550  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:16:06.0474 0x1550  NetTcpPortSharing - ok
10:16:06.0505 0x1550  [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc          C:\WINDOWS\System32\drivers\netvsc63.sys
10:16:06.0521 0x1550  netvsc - ok
10:16:06.0771 0x1550  [ 109413059775750CE8248A491834514E, F8665953F9E5EA3FA1B1020C0DA7DF1F82D97D204D6D9A32B81F48534903B098 ] NetworkSupport  C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe
10:16:06.0802 0x1550  NetworkSupport - ok
10:16:06.0833 0x1550  [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
10:16:06.0927 0x1550  NlaSvc - ok
10:16:06.0943 0x1550  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
10:16:06.0974 0x1550  Npfs - ok
10:16:06.0990 0x1550  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
10:16:07.0021 0x1550  npsvctrig - ok
10:16:07.0052 0x1550  [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi             C:\WINDOWS\system32\nsisvc.dll
10:16:07.0083 0x1550  nsi - ok
10:16:07.0099 0x1550  [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
10:16:07.0130 0x1550  nsiproxy - ok
10:16:07.0224 0x1550  [ 9980B262DBE439AE6BDC91AA985F19EE, E998E4CAE9CD103ADA9CA3C737C4DAD017D056828BFA42A41C7B4E4E108FB13C ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
10:16:07.0318 0x1550  Ntfs - ok
10:16:07.0333 0x1550  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
10:16:07.0365 0x1550  Null - ok
10:16:07.0396 0x1550  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
10:16:07.0411 0x1550  nvraid - ok
10:16:07.0427 0x1550  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
10:16:07.0443 0x1550  nvstor - ok
10:16:07.0458 0x1550  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
10:16:07.0474 0x1550  nv_agp - ok
10:16:07.0505 0x1550  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
10:16:07.0581 0x1550  p2pimsvc - ok
10:16:07.0600 0x1550  [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
10:16:07.0679 0x1550  p2psvc - ok
10:16:07.0710 0x1550  [ 57DCE4FB0467986AE78E1C6FC5240D32, F7F3ADD1B48E4D6BB0A664A2FE556F71ED7453054B4FB667A29BE050C845045B ] Parport         C:\WINDOWS\System32\drivers\parport.sys
10:16:07.0784 0x1550  Parport - ok
10:16:07.0800 0x1550  [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
10:16:07.0816 0x1550  partmgr - ok
10:16:07.0847 0x1550  [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
10:16:07.0912 0x1550  PcaSvc - ok
10:16:07.0925 0x1550  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\WINDOWS\system32\drivers\pci.sys
10:16:07.0945 0x1550  pci - ok
10:16:07.0961 0x1550  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
10:16:07.0976 0x1550  pciide - ok
10:16:07.0992 0x1550  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
10:16:08.0008 0x1550  pcmcia - ok
10:16:08.0023 0x1550  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
10:16:08.0039 0x1550  pcw - ok
10:16:08.0054 0x1550  [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
10:16:08.0070 0x1550  pdc - ok
10:16:08.0101 0x1550  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
10:16:08.0164 0x1550  PEAUTH - ok
10:16:08.0226 0x1550  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
10:16:08.0273 0x1550  PerfHost - ok
10:16:08.0351 0x1550  [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla             C:\WINDOWS\system32\pla.dll
10:16:08.0429 0x1550  pla - ok
10:16:08.0461 0x1550  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
10:16:08.0476 0x1550  PlugPlay - ok
10:16:08.0492 0x1550  [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
10:16:08.0523 0x1550  PNRPAutoReg - ok
10:16:08.0570 0x1550  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
10:16:08.0586 0x1550  PNRPsvc - ok
10:16:08.0633 0x1550  [ 0FF8507A8B901B904E98EB36B9E347EE, FE4A9A6159A8490F3155D166656748722EFDEDCDC447C09155A5AD6D9F5D294D ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
10:16:08.0711 0x1550  PolicyAgent - ok
10:16:08.0742 0x1550  [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power           C:\WINDOWS\system32\umpo.dll
10:16:08.0773 0x1550  Power - ok
10:16:08.0929 0x1550  [ F6EA63145C20A23732AD2CA1EBA65FA1, 0DD1164D37C1500258E9CCCE458778A3DA196D9A65919B2672E3C88383068F52 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
10:16:09.0195 0x1550  PrintNotify - ok
10:16:09.0242 0x1550  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
10:16:09.0258 0x1550  Processor - ok
10:16:09.0304 0x1550  [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
10:16:09.0414 0x1550  ProfSvc - ok
10:16:09.0429 0x1550  [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
10:16:09.0445 0x1550  Psched - ok
10:16:09.0476 0x1550  [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE           C:\WINDOWS\system32\qwave.dll
10:16:09.0539 0x1550  QWAVE - ok
10:16:09.0570 0x1550  [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
10:16:09.0586 0x1550  QWAVEdrv - ok
10:16:09.0617 0x1550  [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:16:09.0648 0x1550  RasAcd - ok
10:16:09.0695 0x1550  [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
10:16:09.0711 0x1550  RasAuto - ok
10:16:09.0758 0x1550  [ 15C0034561FE5B03FA376F1A6232478B, 0F9B5C2BD7D8803FF3C5ED957D3F0859F2A59B74510E4659FBF05EDCBF230208 ] RasMan          C:\WINDOWS\System32\rasmans.dll
10:16:09.0820 0x1550  RasMan - ok
10:16:09.0851 0x1550  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:16:09.0883 0x1550  RasPppoe - ok
10:16:09.0929 0x1550  [ D67ED4AB59D1EF66B05AD1A81AC28B26, 72E750A9A6B484D8BEDE52FA6DABEF4D95765DE491152E1F6C856D0590B50C28 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:16:09.0992 0x1550  rdbss - ok
10:16:10.0008 0x1550  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
10:16:10.0039 0x1550  rdpbus - ok
10:16:10.0070 0x1550  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
10:16:10.0117 0x1550  RDPDR - ok
10:16:10.0148 0x1550  [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
10:16:10.0148 0x1550  RdpVideoMiniport - ok
10:16:10.0179 0x1550  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
10:16:10.0195 0x1550  rdyboost - ok
10:16:10.0258 0x1550  [ 759FB47B96FA0A9D767B3269F76E5E25, B19EF75D2ECC9041F2578D6D4574302A06A12E551CE6211C049CD642E92D4D3E ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
10:16:10.0304 0x1550  ReFS - ok
10:16:10.0336 0x1550  [ DF78648AC3C8DC9D70E6714AF785382F, 56E104939ED0AB5B26AE07BAB1BBB7D15828DBD3A2AD35361423D7ADDA4BA551 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
10:16:10.0351 0x1550  RemoteAccess - ok
10:16:10.0383 0x1550  [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
10:16:10.0430 0x1550  RemoteRegistry - ok
10:16:10.0445 0x1550  [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
10:16:10.0492 0x1550  RFCOMM - ok
10:16:10.0523 0x1550  [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
10:16:10.0555 0x1550  RpcEptMapper - ok
10:16:10.0601 0x1550  [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator      C:\WINDOWS\system32\locator.exe
10:16:10.0633 0x1550  RpcLocator - ok
10:16:10.0695 0x1550  [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
10:16:10.0726 0x1550  RpcSs - ok
10:16:10.0758 0x1550  [ D5E76FA33A4109490228F4015564133E, 2C8206F3E8149D8A6DDFAF5EF0341752586C210ABAB8809E1AB42777CB1B6447 ] RSPCIESTOR      C:\WINDOWS\system32\DRIVERS\RtsPStor.sys
10:16:10.0773 0x1550  RSPCIESTOR - ok
10:16:10.0805 0x1550  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
10:16:10.0836 0x1550  rspndr - ok
10:16:10.0914 0x1550  [ D2768897FCEA8EEFAD3D69BAC9DC4180, 81E23AA9E13C06BD417C34566766A9F98FD3A8F916123F282CB6E52AB1A10A1D ] RTL8168         C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
10:16:10.0976 0x1550  RTL8168 - ok
10:16:10.0992 0x1550  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
10:16:11.0055 0x1550  s3cap - ok
10:16:11.0070 0x1550  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs           C:\WINDOWS\system32\lsass.exe
10:16:11.0086 0x1550  SamSs - ok
10:16:11.0133 0x1550  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
10:16:11.0148 0x1550  sbp2port - ok
10:16:11.0164 0x1550  [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
10:16:11.0195 0x1550  SCardSvr - ok
10:16:11.0211 0x1550  [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
10:16:11.0242 0x1550  ScDeviceEnum - ok
10:16:11.0273 0x1550  [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
10:16:11.0305 0x1550  scfilter - ok
10:16:11.0383 0x1550  [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
10:16:11.0492 0x1550  Schedule - ok
10:16:11.0539 0x1550  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
10:16:11.0555 0x1550  SCPolicySvc - ok
10:16:11.0586 0x1550  [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
10:16:11.0601 0x1550  sdbus - ok
10:16:11.0648 0x1550  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
10:16:11.0664 0x1550  sdstor - ok
10:16:11.0680 0x1550  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
10:16:11.0742 0x1550  secdrv - ok
10:16:11.0758 0x1550  [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon        C:\WINDOWS\system32\seclogon.dll
10:16:11.0836 0x1550  seclogon - ok
10:16:11.0851 0x1550  [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS            C:\WINDOWS\System32\sens.dll
10:16:11.0867 0x1550  SENS - ok
10:16:11.0898 0x1550  [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
10:16:11.0914 0x1550  SensrSvc - ok
10:16:11.0945 0x1550  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
10:16:11.0961 0x1550  SerCx - ok
10:16:11.0976 0x1550  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
10:16:11.0992 0x1550  SerCx2 - ok
10:16:12.0039 0x1550  [ 1F0135949A6AD6025F363F80FE268251, DB2D503863143F2251E589F7B0B3E9FBF997D7333D54C55856590B5080B5513D ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
10:16:12.0086 0x1550  Serenum - ok
10:16:12.0101 0x1550  [ 81633C87B42B63BA484A6177179AC750, A22BA40E9EC74E88D8098CBDC954E1D63B832FCB789E3C7B731DE5DA39BEE2CA ] Serial          C:\WINDOWS\System32\drivers\serial.sys
10:16:12.0133 0x1550  Serial - ok
10:16:12.0180 0x1550  [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
10:16:12.0211 0x1550  sermouse - ok
10:16:12.0273 0x1550  [ 389458EA0B5FAEBA325FAC47B9ED589E, F7F37A1F1E912069F65E4629FF733F080AE675DF6FE255AF48F5E23EB47D0622 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
10:16:12.0367 0x1550  SessionEnv - ok
10:16:12.0383 0x1550  [ 415B1326C40A2E1F251A3845B9C7DF31, D7BD668962B71DC3877366EB0C0BD5CDB1FF564A5866EE58DB90838D78227AD6 ] SFEP            C:\WINDOWS\System32\drivers\SFEP.sys
10:16:12.0445 0x1550  SFEP - ok
10:16:12.0492 0x1550  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
10:16:12.0523 0x1550  sfloppy - ok
10:16:12.0586 0x1550  [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
10:16:12.0633 0x1550  SharedAccess - ok
10:16:12.0711 0x1550  [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:16:12.0773 0x1550  ShellHWDetection - ok
10:16:12.0805 0x1550  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
10:16:12.0820 0x1550  SiSRaid2 - ok
10:16:12.0852 0x1550  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
10:16:12.0867 0x1550  SiSRaid4 - ok
10:16:12.0898 0x1550  [ 817B64BE830C64FEA9A5FDE2251F8F8B, 0CF2D24DF4B56B4928167597D44C17835903B0AEB8B6169E6A1CD65CED293C04 ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
10:16:12.0914 0x1550  SmbDrvI - ok
10:16:12.0945 0x1550  [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost         C:\WINDOWS\System32\smphost.dll
10:16:12.0961 0x1550  smphost - ok
10:16:13.0008 0x1550  [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
10:16:13.0039 0x1550  SNMPTRAP - ok
10:16:13.0133 0x1550  [ 56210E78E7ED9CD178DF3B710D0D514C, 641C8CA7264975DA82A532B816723454235CFD247E0311803B472070DBE83320 ] SOHCImp         C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
10:16:13.0133 0x1550  SOHCImp - ok
10:16:13.0180 0x1550  [ F939D397853E433C1D59B96B96497F88, 98FC1EC27B758774A708910AE217AA02B14DA34245A1D6BA072436928FDA972D ] SOHDms          C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
10:16:13.0211 0x1550  SOHDms - ok
10:16:13.0227 0x1550  [ FA4AC5624B245FA03D4CCBA9C48D385E, 3125359763D34EE51EB1125217050DB29045154E76673F7CFED25B6301C7EEBE ] SOHDs           C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
10:16:13.0242 0x1550  SOHDs - ok
10:16:13.0305 0x1550  [ B312191DCBECE3C07DF9A99DE433B126, D9D9028331C703CE9B9EC75772D29BB04FE43B3A7895F8CBB3AC701CA0548F8D ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
10:16:13.0320 0x1550  spaceport - ok
10:16:13.0352 0x1550  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
10:16:13.0367 0x1550  SpbCx - ok
10:16:13.0445 0x1550  [ C03E480E63A80D73FABE28D24D3B6B47, F8C68DC63A5492587F9343158348ADD99A99AF34DC7ED29E5562EE90C0AB8F25 ] SpfService      C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
10:16:13.0461 0x1550  SpfService - ok
10:16:13.0508 0x1550  [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
10:16:13.0617 0x1550  Spooler - ok
10:16:13.0852 0x1550  [ F264662C057A54AA2DE41B3C7551712F, 2C123C6ACD967CDF1AD2855187CF3D8357B16A4FD9C2F18AE54CFA384165FA11 ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
10:16:14.0164 0x1550  sppsvc - ok
10:16:14.0242 0x1550  [ 36B082C7A764A34FB1DC72D975870B61, 572CB632D9FDC1183F7BF8BFCBC51765C647945E0C13D1C91ADE3D0E76DF83BC ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
10:16:14.0336 0x1550  srv - ok
10:16:14.0383 0x1550  [ F5849909D4B29B4E3D4445F943E5C7E3, 3FCA1423753716FE1AFDD27EE1E13C4D779A3C976185B5C998EF1A9A39BFC186 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
10:16:14.0461 0x1550  srv2 - ok
10:16:14.0477 0x1550  [ FABC49666708EA562549E78E6FBF3191, BE1FEBFC259308B39C727915C41A67CD50720A6E2A68D148F4F2F926AED43B02 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
10:16:14.0539 0x1550  srvnet - ok
10:16:14.0586 0x1550  [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
10:16:14.0633 0x1550  SSDPSRV - ok
10:16:14.0664 0x1550  [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
10:16:14.0727 0x1550  SstpSvc - ok
10:16:14.0742 0x1550  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
10:16:14.0758 0x1550  stexstor - ok
10:16:14.0805 0x1550  [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
10:16:14.0852 0x1550  stisvc - ok
10:16:14.0867 0x1550  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
10:16:14.0883 0x1550  storahci - ok
10:16:14.0898 0x1550  [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
10:16:14.0930 0x1550  storflt - ok
10:16:14.0945 0x1550  [ 0EDD1F4D470C775740625B06A60C9DD5, 94964D0A793B1C984E87095249EE383A5E669D05BA6BF9F655587887E6CE3C19 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
10:16:14.0961 0x1550  stornvme - ok
10:16:14.0992 0x1550  [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
10:16:15.0086 0x1550  StorSvc - ok
10:16:15.0086 0x1550  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
10:16:15.0102 0x1550  storvsc - ok
10:16:15.0133 0x1550  [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc           C:\WINDOWS\system32\svsvc.dll
10:16:15.0211 0x1550  svsvc - ok
10:16:15.0242 0x1550  [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
10:16:15.0242 0x1550  swenum - ok
10:16:15.0305 0x1550  [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv           C:\WINDOWS\System32\swprv.dll
10:16:15.0383 0x1550  swprv - ok
10:16:15.0430 0x1550  [ AD6575A2637FF1B3C094791D1CFEC0F5, AA89886E1E86A64B6B81D9FF53FE5EA59E7F61C4F7A75E6EB0A04273C46E3576 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
10:16:15.0445 0x1550  SynTP - ok
10:16:15.0507 0x1550  [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain         C:\WINDOWS\system32\sysmain.dll
10:16:15.0609 0x1550  SysMain - ok
10:16:15.0640 0x1550  [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
10:16:15.0687 0x1550  SystemEventsBroker - ok
10:16:15.0734 0x1550  [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
10:16:15.0781 0x1550  TabletInputService - ok
10:16:15.0827 0x1550  [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
10:16:15.0906 0x1550  TapiSrv - ok
10:16:16.0046 0x1550  [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
10:16:16.0187 0x1550  Tcpip - ok
10:16:16.0265 0x1550  [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:16:16.0359 0x1550  TCPIP6 - ok
10:16:16.0390 0x1550  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
10:16:16.0421 0x1550  tcpipreg - ok
10:16:16.0452 0x1550  [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
10:16:16.0515 0x1550  tdx - ok
10:16:16.0531 0x1550  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
10:16:16.0546 0x1550  terminpt - ok
10:16:16.0593 0x1550  [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService     C:\WINDOWS\System32\termsrv.dll
10:16:16.0718 0x1550  TermService - ok
10:16:16.0749 0x1550  [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes          C:\WINDOWS\system32\themeservice.dll
10:16:16.0796 0x1550  Themes - ok
10:16:16.0828 0x1550  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
10:16:16.0843 0x1550  THREADORDER - ok
10:16:16.0890 0x1550  [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
10:16:16.0953 0x1550  TimeBroker - ok
10:16:16.0984 0x1550  [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
10:16:17.0015 0x1550  TPM - ok
10:16:17.0062 0x1550  [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
10:16:17.0109 0x1550  TrkWks - ok
10:16:17.0171 0x1550  [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
10:16:17.0218 0x1550  TrustedInstaller - ok
10:16:17.0234 0x1550  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
10:16:17.0265 0x1550  TsUsbFlt - ok
10:16:17.0281 0x1550  [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
10:16:17.0328 0x1550  TsUsbGD - ok
10:16:17.0374 0x1550  [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
10:16:17.0406 0x1550  tunnel - ok
10:16:17.0437 0x1550  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
10:16:17.0453 0x1550  uagp35 - ok
10:16:17.0468 0x1550  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
10:16:17.0484 0x1550  UASPStor - ok
10:16:17.0499 0x1550  [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
10:16:17.0515 0x1550  UCX01000 - ok
10:16:17.0562 0x1550  [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
10:16:17.0631 0x1550  udfs - ok
10:16:17.0647 0x1550  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
10:16:17.0663 0x1550  UEFI - ok
10:16:17.0678 0x1550  [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
10:16:17.0741 0x1550  UI0Detect - ok
10:16:17.0772 0x1550  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
10:16:17.0785 0x1550  uliagpkx - ok
10:16:17.0800 0x1550  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
10:16:17.0801 0x1550  umbus - ok
10:16:17.0816 0x1550  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
10:16:17.0848 0x1550  UmPass - ok
10:16:17.0895 0x1550  [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
10:16:17.0951 0x1550  UmRdpService - ok
10:16:18.0024 0x1550  [ 83C37EF0E54580BAB3497259516A9431, A5EAC7241774EF738AB3927B11091F0C1E7E987DAF936B76D129EA3E516C6733 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
10:16:18.0040 0x1550  UNS - ok
10:16:18.0086 0x1550  [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost        C:\WINDOWS\System32\upnphost.dll
10:16:18.0118 0x1550  upnphost - ok
10:16:18.0149 0x1550  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
10:16:18.0165 0x1550  usbccgp - ok
10:16:18.0211 0x1550  [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
10:16:18.0227 0x1550  usbcir - ok
10:16:18.0258 0x1550  [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
10:16:18.0258 0x1550  usbehci - ok
10:16:18.0290 0x1550  [ CD81683F4553677B9BF5163A922153EB, 6B304B0D68B9BFF0245EC755CDAAF9DF59DF3A081727E32CB66672929F0DBC50 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
10:16:18.0337 0x1550  usbhub - ok
10:16:18.0368 0x1550  [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
10:16:18.0399 0x1550  USBHUB3 - ok
10:16:18.0415 0x1550  [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
10:16:18.0462 0x1550  usbohci - ok
10:16:18.0493 0x1550  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
10:16:18.0524 0x1550  usbprint - ok
10:16:18.0571 0x1550  [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
10:16:18.0587 0x1550  USBSTOR - ok
10:16:18.0602 0x1550  [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
10:16:18.0633 0x1550  usbuhci - ok
10:16:18.0680 0x1550  [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
10:16:18.0712 0x1550  usbvideo - ok
10:16:18.0758 0x1550  [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
10:16:18.0774 0x1550  USBXHCI - ok
10:16:18.0837 0x1550  [ 1CA1DC88D9484BCFD6C26560F397539A, 95C2AB45D4682BB4F75F1D03D57CCA944BA570EFEA06E0AB71062C6E6E7C7F4A ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
10:16:18.0852 0x1550  VAIO Event Service - ok
10:16:18.0899 0x1550  [ 0E15735307E1068F2E2169BEB1CA4CC2, BF44F28E473EBBA1910436C17FD14CF9A4DD4AD0716FFD3129D2B6F2300ADCF1 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
10:16:18.0930 0x1550  VAIO Power Management - ok
10:16:18.0946 0x1550  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc        C:\WINDOWS\system32\lsass.exe
10:16:18.0962 0x1550  VaultSvc - ok
10:16:19.0024 0x1550  [ DEBA4273293DAE85EE4BE3F433C903D7, 62254F305DDE2D14CE3ABD1FA7B2B1F1FAC3925926D73A217EF863F6D4B25FBF ] VCFw            C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
10:16:19.0087 0x1550  VCFw - ok
10:16:19.0133 0x1550  [ 213B5C9C5D13EF583574C87EDA2F4BB5, 039BD34F4739FE4D64FCD1A7CF73F47A59C106D8EEC2C9B7B62A6E6718EDBD1C ] VCService       C:\Program Files\Sony\VAIO Care\VCService.exe
10:16:19.0149 0x1550  VCService - ok
10:16:19.0165 0x1550  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
10:16:19.0180 0x1550  vdrvroot - ok
10:16:19.0243 0x1550  [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds             C:\WINDOWS\System32\vds.exe
10:16:19.0321 0x1550  vds - ok
10:16:19.0337 0x1550  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
10:16:19.0352 0x1550  VerifierExt - ok
10:16:19.0399 0x1550  [ 8ABB4BABF59F092DF0B43778D8FD1884, 94C2100CE86448543A8DD586AD4A128AB9EB37959238D70F33EF59202270AC6C ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
10:16:19.0446 0x1550  vhdmp - ok
10:16:19.0462 0x1550  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
10:16:19.0477 0x1550  viaide - ok
10:16:19.0493 0x1550  [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
10:16:19.0508 0x1550  vmbus - ok
10:16:19.0508 0x1550  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
10:16:19.0524 0x1550  VMBusHID - ok
10:16:19.0571 0x1550  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
10:16:19.0618 0x1550  vmicguestinterface - ok
10:16:19.0633 0x1550  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
10:16:19.0665 0x1550  vmicheartbeat - ok
10:16:19.0680 0x1550  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
10:16:19.0712 0x1550  vmickvpexchange - ok
10:16:19.0727 0x1550  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
10:16:19.0758 0x1550  vmicrdv - ok
10:16:19.0774 0x1550  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
10:16:19.0805 0x1550  vmicshutdown - ok
10:16:19.0821 0x1550  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
10:16:19.0852 0x1550  vmictimesync - ok
10:16:19.0883 0x1550  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
10:16:19.0899 0x1550  vmicvss - ok
10:16:19.0946 0x1550  [ 436E1A724E7E683F6B612D3D58F04241, 939B5EF0090DF3759295F88402FD0EA33F499DDA9F89E5D0E90D1F9AED65D491 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
10:16:19.0962 0x1550  volmgr - ok
10:16:19.0977 0x1550  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
10:16:20.0008 0x1550  volmgrx - ok
10:16:20.0024 0x1550  [ 17F7B0F2298D97F4B6C7A69511033D3D, 5BDFC225F31553786726808FB7952940FC05CA72B3977D684056F42AFAA59565 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
10:16:20.0055 0x1550  volsnap - ok
10:16:20.0087 0x1550  [ DAC438FB5FF85A9E72806E2341D5D732, B1D1EFCA8C588A6BF53CEC941CC59702C366F15C7D5943431736EC857E57C0A2 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
10:16:20.0102 0x1550  vpci - ok
10:16:20.0133 0x1550  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
10:16:20.0149 0x1550  vsmraid - ok
10:16:20.0243 0x1550  [ D0CBA7B3531CCF2ADB985856D5F92434, 7FCBBCAF1AA85DCE8D75FB38DC4848AE12E8DD913CEBBC37BCD3D0123F0A3CAB ] VSS             C:\WINDOWS\system32\vssvc.exe
10:16:20.0415 0x1550  VSS - ok
10:16:20.0446 0x1550  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
10:16:20.0462 0x1550  VSTXRAID - ok
10:16:20.0587 0x1550  [ 16595E67A5AE390C70F4A482644C6D3D, 5D233199963E4970CDE93A800E4C40E675979AE255590E060391AE315D45DA71 ] VUAgent         C:\Program Files\Sony\VAIO Update\vuagent.exe
10:16:20.0665 0x1550  VUAgent - ok
10:16:20.0680 0x1550  [ 71066FF95C487327E44C8AF1B72EBE8B, EA2729126B452CAE0C80D07501779D804B08E47F1217B61D53277B40869FEC25 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
10:16:20.0743 0x1550  vwifibus - ok
10:16:20.0759 0x1550  [ 29AB43937FFDA0B0FB56984226E698C6, 6A1A559964FE5D594E54988C46149969E6FFD5A8D5A6862E14648B608794CC29 ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
10:16:20.0852 0x1550  vwififlt - ok
10:16:20.0868 0x1550  [ 8B8624A93E3F88CB923AEB05B6313227, 2856B63CD376BF2B1A9129581E7B9207588D4EAFD29A2C8D98F176FEAFDE26A9 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
10:16:20.0899 0x1550  vwifimp - ok
10:16:20.0930 0x1550  [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time         C:\WINDOWS\system32\w32time.dll
10:16:20.0993 0x1550  W32Time - ok
10:16:21.0024 0x1550  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
10:16:21.0040 0x1550  WacomPen - ok
10:16:21.0118 0x1550  [ 841345442390953CBC8801B95D3D0540, FD4F9FD2C4C60A1A580177FFF2E9035009AC6A38E78D4236B0ED4773E3B263EE ] wbengine        C:\WINDOWS\system32\wbengine.exe
10:16:21.0352 0x1550  wbengine - ok
10:16:21.0384 0x1550  [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
10:16:21.0430 0x1550  WbioSrvc - ok
10:16:21.0446 0x1550  [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
10:16:21.0477 0x1550  Wcmsvc - ok
10:16:21.0509 0x1550  [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
10:16:21.0540 0x1550  wcncsvc - ok
10:16:21.0555 0x1550  [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
10:16:21.0618 0x1550  WcsPlugInService - ok
10:16:21.0649 0x1550  [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
10:16:21.0665 0x1550  WdBoot - ok
10:16:21.0712 0x1550  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
10:16:21.0759 0x1550  Wdf01000 - ok
10:16:21.0774 0x1550  [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
10:16:21.0805 0x1550  WdFilter - ok
10:16:21.0821 0x1550  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
10:16:21.0837 0x1550  WdiServiceHost - ok
10:16:21.0837 0x1550  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
10:16:21.0852 0x1550  WdiSystemHost - ok
10:16:21.0884 0x1550  [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
10:16:21.0899 0x1550  WdNisDrv - ok
10:16:21.0930 0x1550  WdNisSvc - ok
10:16:21.0962 0x1550  [ A70CAF5EA36CBA5FCA24244306D4D5C6, 76C3E20B62B89D9699A1E817377FAD70B144B877BCC5C850A5B64CC68184D8DA ] WebClient       C:\WINDOWS\System32\webclnt.dll
10:16:21.0993 0x1550  WebClient - ok
10:16:22.0024 0x1550  [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
10:16:22.0055 0x1550  Wecsvc - ok
10:16:22.0087 0x1550  [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
10:16:22.0118 0x1550  WEPHOSTSVC - ok
10:16:22.0149 0x1550  [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
10:16:22.0243 0x1550  wercplsupport - ok
10:16:22.0259 0x1550  [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
10:16:22.0274 0x1550  WerSvc - ok
10:16:22.0305 0x1550  [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
10:16:22.0321 0x1550  WFPLWFS - ok
10:16:22.0352 0x1550  [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
10:16:22.0384 0x1550  WiaRpc - ok
10:16:22.0415 0x1550  [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
10:16:22.0430 0x1550  WIMMount - ok
10:16:22.0430 0x1550  WinDefend - ok
10:16:22.0493 0x1550  [ 0E70990EC2E5D2331AA5E88DB0CFB826, 79DFF565C3FCBC691E8FEB669CEC00E340FD2A2AFA4488D23A7CC63A2A98A5C1 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
10:16:22.0571 0x1550  WinHttpAutoProxySvc - ok
10:16:22.0618 0x1550  [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
10:16:22.0696 0x1550  Winmgmt - ok
10:16:22.0805 0x1550  [ 427873F889F2F508BE8BE982219CE578, CA8DCFB774BF0F747295A7A0CB46A6177DE12AD6BD58266182206C41A3C9001E ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
10:16:22.0977 0x1550  WinRM - ok
10:16:23.0055 0x1550  [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
10:16:23.0165 0x1550  WlanSvc - ok
10:16:23.0243 0x1550  [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
10:16:23.0352 0x1550  wlidsvc - ok
10:16:23.0415 0x1550  [ 73B8665D4C3111E4AFF871955BDEB2DB, D919425768589D6BC5806CD559599D7775BF03BABC19D406E2E8F5C35BFA6F44 ] wltrysvc        C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
10:16:23.0415 0x1550  wltrysvc - detected UnsignedFile.Multi.Generic ( 1 )
10:16:23.0509 0x1550  Detect skipped due to KSN trusted
10:16:23.0509 0x1550  wltrysvc - ok
10:16:23.0540 0x1550  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
10:16:23.0556 0x1550  WmiAcpi - ok
10:16:23.0587 0x1550  [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
10:16:23.0602 0x1550  wmiApSrv - ok
10:16:23.0634 0x1550  WMPNetworkSvc - ok
10:16:23.0649 0x1550  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
10:16:23.0665 0x1550  Wof - ok
10:16:23.0743 0x1550  [ EDFA5CEDBE174FAAA4A09A6B297AEA42, 5998FE15462E4AD9C7B1444E5E2C17BD470DA3A5D474A0A118E02E47DADC678A ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
10:16:23.0915 0x1550  workfolderssvc - ok
10:16:23.0946 0x1550  [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
10:16:23.0962 0x1550  wpcfltr - ok
10:16:23.0993 0x1550  [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
10:16:24.0009 0x1550  WPCSvc - ok
10:16:24.0056 0x1550  [ DBDCE2378F65F0A07D4644AC103037E7, 99714F0CD31297C9831BAF04768F467F6E0BF710C859CEDCA83069226BF1A68A ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
10:16:24.0102 0x1550  WPDBusEnum - ok
10:16:24.0118 0x1550  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
10:16:24.0134 0x1550  WpdUpFltr - ok
10:16:24.0134 0x1550  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
10:16:24.0149 0x1550  ws2ifsl - ok
10:16:24.0181 0x1550  [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
10:16:24.0212 0x1550  wscsvc - ok
10:16:24.0227 0x1550  WSearch - ok
10:16:24.0368 0x1550  [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService       C:\WINDOWS\System32\WSService.dll
10:16:24.0524 0x1550  WSService - ok
10:16:24.0681 0x1550  [ F3F60C88A6BBC8D0C68FE5B1C91181AF, AF9A4D282CD4BB1127BC3F48AB89DC294408D96F7906553C636F37D1503CFA48 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
10:16:24.0852 0x1550  wuauserv - ok
10:16:24.0899 0x1550  [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
10:16:24.0946 0x1550  WudfPf - ok
10:16:24.0977 0x1550  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
10:16:24.0993 0x1550  WUDFRd - ok
10:16:25.0009 0x1550  [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
10:16:25.0040 0x1550  wudfsvc - ok
10:16:25.0087 0x1550  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:16:25.0102 0x1550  WUDFWpdFs - ok
10:16:25.0134 0x1550  [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
10:16:25.0196 0x1550  WwanSvc - ok
10:16:25.0227 0x1550  ================ Scan global ===============================
10:16:25.0259 0x1550  [ 3500AF0BA2EF095BF313EEB75D2366C6, C755E57B02BFA82151A182DF964349859575570EA5C3FBA81F747B8D2134A4D0 ] C:\WINDOWS\system32\basesrv.dll
10:16:25.0290 0x1550  [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
10:16:25.0321 0x1550  [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
10:16:25.0368 0x1550  [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\WINDOWS\system32\services.exe
10:16:25.0384 0x1550  [ Global ] - ok
10:16:25.0384 0x1550  ================ Scan MBR ==================================
10:16:25.0399 0x1550  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
10:16:25.0498 0x1550  \Device\Harddisk0\DR0 - ok
10:16:25.0507 0x1550  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
10:16:25.0580 0x1550  \Device\Harddisk1\DR1 - ok
10:16:25.0580 0x1550  [ 4488CF05DA3BE2BD4DBF8072212D22A5 ] \Device\Harddisk2\DR2
10:16:25.0674 0x1550  \Device\Harddisk2\DR2 - ok
10:16:25.0674 0x1550  ================ Scan VBR ==================================
10:16:25.0674 0x1550  [ 6781C8F30AB7A08BC7AF94CEE0086344 ] \Device\Harddisk0\DR0\Partition1
10:16:25.0674 0x1550  \Device\Harddisk0\DR0\Partition1 - ok
10:16:25.0705 0x1550  [ 53640AAAD0622F3D128833781CA42B3F ] \Device\Harddisk0\DR0\Partition2
10:16:25.0705 0x1550  \Device\Harddisk0\DR0\Partition2 - ok
10:16:25.0705 0x1550  [ 3511EA8789A5E34434456264C53DC25E ] \Device\Harddisk0\DR0\Partition3
10:16:25.0705 0x1550  \Device\Harddisk0\DR0\Partition3 - ok
10:16:25.0721 0x1550  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition4
10:16:25.0721 0x1550  \Device\Harddisk0\DR0\Partition4 - ok
10:16:25.0737 0x1550  [ 833DC2E47A729589C626F5AD527C265B ] \Device\Harddisk0\DR0\Partition5
10:16:25.0737 0x1550  \Device\Harddisk0\DR0\Partition5 - ok
10:16:25.0768 0x1550  [ B8AB2E3E99A0C7B75E6241DB6AAB563D ] \Device\Harddisk0\DR0\Partition6
10:16:25.0768 0x1550  \Device\Harddisk0\DR0\Partition6 - ok
10:16:25.0783 0x1550  [ 8BA350FD369DFAD8265FB4ED78A4C001 ] \Device\Harddisk0\DR0\Partition7
10:16:25.0783 0x1550  \Device\Harddisk0\DR0\Partition7 - ok
10:16:25.0799 0x1550  [ 400A4E913209DFFC52CCCA67EAECB4DC ] \Device\Harddisk0\DR0\Partition8
10:16:25.0799 0x1550  \Device\Harddisk0\DR0\Partition8 - ok
10:16:25.0815 0x1550  [ B01BCAB3C449C7EB0455A13F3433CCE2 ] \Device\Harddisk1\DR1\Partition1
10:16:25.0815 0x1550  \Device\Harddisk1\DR1\Partition1 - ok
10:16:25.0815 0x1550  ================ Scan generic autorun ======================
10:16:25.0893 0x1550  [ AAA55BD633DBDB39746CC2394A04187F, 2F22135FCE51B31047A231DB9B22F9FB1F29CED67E32660B56F7FA68BBCD5235 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
10:16:25.0955 0x1550  RtHDVBg - ok
10:16:26.0315 0x1550  [ 693B9E5DF7A394D70D2AA96958854C67, F1FB4CE517DC7FB8788D991F354B7429EF756B15953C38B859FDACAFD356DC21 ] C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe
10:16:26.0737 0x1550  Broadcom Wireless Manager UI - detected UnsignedFile.Multi.Generic ( 1 )
10:16:26.0830 0x1550  Detect skipped due to KSN trusted
10:16:26.0830 0x1550  Broadcom Wireless Manager UI - ok
10:16:26.0893 0x1550  [ 5018884304BC23A3870F6BF92B840FD0, 66C105881A3F1A83654E53A71E047AF82C587458C437EB6851EB57A352B3FBE2 ] C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe
10:16:26.0924 0x1550  Bluetooth - ok
10:16:26.0955 0x1550  [ 8D2A1935AE10BE1E11A8C58B2F473560, BAD89C2E6231C950D345FC8FD4E128136B5520C8429E101A79A64BAFC9DE0EB2 ] C:\WINDOWS\system32\igfxtray.exe
10:16:26.0971 0x1550  IgfxTray - ok
10:16:26.0971 0x1550  HotKeysCmds - ok
10:16:26.0971 0x1550  Persistence - ok
10:16:26.0987 0x1550  SynTPEnh - ok
10:16:27.0034 0x1550  [ FE821F6FA60E9DF9FDEE69A23488BBAB, 98D9926152FDA45705F5E208D7236E467CAEEF83D756A14B4104EBF804644B29 ] c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
10:16:27.0080 0x1550  Adobe ARM - ok
10:16:27.0143 0x1550  [ 49CD8D25D932C5BF867EBFF00D432B75, D107F7736AC8D43CE93ABDE1A8038D8FE87779F25F41B3FD1E942DF439581236 ] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
10:16:27.0159 0x1550  Intel AppUp(R) center - ok
10:16:27.0159 0x1550  Waiting for KSN requests completion. In queue: 130
10:16:28.0164 0x1550  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x61100 ( enabled : updated )
10:16:28.0226 0x1550  Win FW state via NFP2: enabled ( trusted )
10:16:28.0336 0x1550  ============================================================
10:16:28.0336 0x1550  Scan finished
10:16:28.0336 0x1550  ============================================================
10:16:28.0336 0x161c  Detected object count: 1
10:16:28.0336 0x161c  Actual detected object count: 1
10:17:22.0382 0x161c  chip1click ( UnsignedFile.Multi.Generic ) - skipped by user
10:17:22.0382 0x161c  chip1click ( UnsignedFile.Multi.Generic ) - User select action: Skip
         

Alt 07.12.2016, 11:10   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Rechner rebooten und MBAR nochmal probieren
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 10.12.2016, 20:34   #10
HoChiMinh
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2016.12.07.09
  rootkit: v2016.11.20.01

Windows 8.1 x64 NTFS
Internet Explorer 11.0.9600.18525
Lotte :: VAIO [administrator]

07.12.2016 19:05:14
mbar-log-2016-12-07 (19-05-14).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 322091
Time elapsed: 18 minute(s), 15 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         

Alt 10.12.2016, 21:13   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!


1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).




2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 10.12.2016, 21:58   #12
HoChiMinh
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Code:
ATTFilter
# AdwCleaner v6.040 - Bericht erstellt am 10/12/2016 um 21:49:44
# Aktualisiert am 02/12/2016 von Malwarebytes
# Datenbank : 2016-12-02.1 [Lokal]
# Betriebssystem : Windows 8.1  (X64)
# Benutzername : Lotte - VAIO
# Gestartet von : C:\Users\Lotte\Desktop\AdwCleaner_6.040.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****



***** [ Dateien ] *****

[-] Datei gelöscht: C:\Users\Public\Desktop\eBay.lnk


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com


***** [ Browser ] *****



*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1279 Bytes] - [10/12/2016 21:49:44]
C:\AdwCleaner\AdwCleaner[S0].txt - [1555 Bytes] - [10/12/2016 21:48:43]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1425 Bytes] ##########
         
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 8.1 x64 
Ran by Lotte (Administrator) on 10.12.2016 at 21:52:28,62
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0 




Registry: 0 





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 10.12.2016 at 21:53:48,11
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
Schonmal danke für die Hilfe

Alt 11.12.2016, 14:14   #13
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 11.12.2016, 18:37   #14
HoChiMinh
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



FRST Teil 1:
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2016
durchgeführt von Lotte (Administrator) auf VAIO (11-12-2016 18:29:22)
Gestartet von F:\
Geladene Profile: Lotte (Verfügbare Profile: Lotte)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: IE)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\BCMWLTRY.EXE
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\livecomm.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-11] (Realtek Semiconductor)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [10590208 2013-03-14] (Broadcom Corporation)
HKLM\...\Run: [Bluetooth] => C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe [526704 2012-12-14] (Broadcom Corporation.)
HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe"
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3039984 2013-03-14] (Synaptics Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-02-19] (Intel Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1A46D567-875B-45A4-98FE-CAF331EF188B}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{A3513364-028E-42DF-837F-A15CF72021FD}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sony13.msn.com/
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\S-1-5-21-927612283-1200829413-3393210303-1001 -> {48235808-A77B-491C-A5F9-4BC1D50B3D36} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-&_nkw={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-19] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-19] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-19] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-19] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Lotte\AppData\Roaming\Mozilla\Firefox\Profiles\d4gtqdy3.default-1480958885914 [2016-12-10]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
FF Plugin: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\system32\npDeployJava1.dll [2013-12-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin-x32: Adobe Reader -> c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-927612283-1200829413-3393210303-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [2013-02-19] (Intel)
FF Plugin HKU\S-1-5-21-927612283-1200829413-3393210303-1001: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll [2013-02-19] (Intel)

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2227992 2013-01-23] (Broadcom Corporation.)
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-10-27] (Chip Digital GmbH) [Datei ist nicht signiert]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129824 2013-01-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166688 2013-01-23] (Intel Corporation)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [639576 2013-05-10] (Sony Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2013-01-06] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1656600 2016-03-31] (Sony Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2016-11-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2016-11-12] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [6070272 2013-03-14] (Broadcom Corporation) [Datei ist nicht signiert]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [169240 2013-01-23] (Broadcom Corporation.)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [8469680 2016-11-05] (Broadcom Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-03-14] (Synaptics Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44560 2016-11-12] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [270168 2016-11-12] (Microsoft Corporation)
R2 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2016-11-12] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-12-10 21:52 - 2016-12-10 21:36 - 01631928 _____ (Malwarebytes) C:\Users\Lotte\Desktop\JRT.exe
2016-12-10 21:44 - 2016-12-10 21:49 - 00000000 ____D C:\AdwCleaner
2016-12-10 21:43 - 2016-12-10 21:36 - 03968464 _____ C:\Users\Lotte\Desktop\AdwCleaner_6.040.exe
2016-12-07 19:04 - 2016-12-07 19:25 - 00000000 ____D C:\Users\Lotte\Downloads\mbar
2016-12-07 18:09 - 2016-12-07 19:25 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-12-06 17:03 - 2016-12-06 17:03 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Lotte\Desktop\mbar-1.09.3.1001.exe
2016-12-06 16:54 - 2016-12-10 21:37 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-12-06 16:54 - 2016-12-06 16:54 - 00001114 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-12-06 16:54 - 2016-12-06 16:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-12-06 16:54 - 2016-12-06 16:54 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-12-06 16:54 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-12-06 16:54 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-12-06 16:53 - 2016-12-11 18:23 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-12-06 16:51 - 2016-12-06 16:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-12-06 16:40 - 2016-12-06 16:40 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Lotte\Downloads\mbar-1.09.3.1001.exe
2016-12-06 16:33 - 2016-12-06 16:33 - 00000000 ____D C:\Users\Lotte\Downloads\Neuer Ordner
2016-12-05 18:31 - 2016-10-28 02:22 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-11-30 14:52 - 2016-12-11 18:29 - 00000000 ____D C:\FRST
2016-11-30 13:12 - 2016-12-10 21:45 - 00000000 ____D C:\Users\Lotte\AppData\LocalLow\Mozilla
2016-11-30 13:11 - 2016-12-07 10:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-30 13:11 - 2016-11-30 13:11 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-30 13:07 - 2016-11-30 13:07 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-30 13:05 - 2016-10-28 22:04 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-11-30 13:05 - 2016-10-28 22:04 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-13 21:39 - 2015-07-30 15:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 21:39 - 2015-07-30 14:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 21:18 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-11-13 21:18 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-11-13 20:37 - 2016-06-10 19:11 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-11-13 20:37 - 2016-06-10 19:11 - 01487992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-11-13 20:37 - 2016-04-06 19:17 - 18825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-11-13 20:37 - 2016-04-06 17:25 - 15158272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-11-13 20:36 - 2016-06-18 21:06 - 00590688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-11-13 20:36 - 2016-06-18 21:06 - 00072408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2016-11-13 20:36 - 2016-06-11 20:52 - 00379232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-11-13 20:36 - 2016-06-11 20:52 - 00057184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-11-13 20:36 - 2016-06-11 19:05 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2016-11-13 20:36 - 2016-06-11 18:14 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpresult.exe
2016-11-13 20:36 - 2016-06-11 17:50 - 00987136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-11-13 20:36 - 2016-06-11 17:46 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2016-11-13 20:36 - 2016-06-11 17:44 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-11-13 20:36 - 2016-06-11 17:37 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-11-13 20:36 - 2016-06-11 17:24 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-11-13 20:36 - 2016-06-11 17:20 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-11-13 20:36 - 2016-06-11 17:16 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-11-13 20:36 - 2016-06-10 21:07 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-13 20:36 - 2016-06-10 19:11 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-11-13 20:36 - 2016-06-10 19:11 - 00125024 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2016-11-13 20:36 - 2016-06-10 19:10 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2016-11-13 20:36 - 2016-06-10 19:07 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-13 20:36 - 2016-06-09 20:32 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-11-13 20:36 - 2016-06-09 19:18 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-11-13 20:36 - 2016-06-07 19:10 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\hbaapi.dll
2016-11-13 20:36 - 2016-06-07 18:13 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hbaapi.dll
2016-11-13 20:36 - 2016-06-04 01:38 - 01613528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-11-13 20:36 - 2016-06-04 01:37 - 01970968 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-11-13 20:36 - 2016-05-18 22:54 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2016-11-13 20:36 - 2016-05-18 22:15 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2016-11-13 20:36 - 2016-05-18 21:56 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2016-11-13 20:36 - 2016-05-18 21:33 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2016-11-13 20:36 - 2016-05-18 21:28 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-11-13 20:36 - 2016-05-18 21:16 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-11-13 20:36 - 2016-05-14 21:26 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-13 20:36 - 2016-05-14 06:19 - 01134768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-11-13 20:36 - 2016-05-14 00:08 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-11-13 20:36 - 2016-05-14 00:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-11-13 20:36 - 2016-05-14 00:08 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-11-13 20:36 - 2016-05-13 23:24 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-11-13 20:36 - 2016-05-13 22:42 - 03667968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-11-13 20:36 - 2016-05-13 22:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-11-13 20:36 - 2016-05-13 22:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-11-13 20:36 - 2016-05-13 22:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-11-13 20:36 - 2016-05-13 22:27 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-11-13 20:36 - 2016-05-13 22:26 - 02230784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-11-13 20:36 - 2016-05-13 22:26 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-11-13 20:36 - 2016-05-13 22:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-11-13 20:36 - 2016-05-13 22:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-11-13 20:36 - 2016-05-13 22:16 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-11-13 20:36 - 2016-05-13 22:16 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-11-13 20:36 - 2016-05-12 19:36 - 00034600 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2016-11-13 20:36 - 2016-05-12 18:39 - 00030984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2016-11-13 20:36 - 2016-05-06 22:59 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-11-13 20:36 - 2016-05-05 18:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2016-11-13 20:36 - 2016-05-05 18:02 - 03320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-11-13 20:36 - 2016-05-05 17:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2016-11-13 20:36 - 2016-05-05 17:29 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-11-13 20:36 - 2016-04-09 23:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-11-13 20:36 - 2016-04-09 23:14 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2016-11-13 20:36 - 2016-04-09 23:10 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-11-13 20:36 - 2016-04-09 23:09 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-11-13 20:36 - 2016-04-09 23:02 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2016-11-13 20:36 - 2016-04-09 22:59 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Geolocation.dll
2016-11-13 20:36 - 2016-04-09 22:59 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-11-13 20:36 - 2016-04-09 22:56 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-11-13 20:36 - 2016-04-09 22:55 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-11-13 20:36 - 2016-04-09 22:52 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2016-11-13 20:36 - 2016-04-07 17:06 - 00927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-11-13 20:36 - 2016-04-06 22:21 - 00114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-11-13 20:36 - 2016-04-06 19:20 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-11-13 20:36 - 2016-04-05 23:37 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-11-13 20:36 - 2016-04-02 14:58 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-11-13 20:36 - 2016-04-01 18:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-11-13 20:36 - 2016-04-01 17:53 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-11-13 20:36 - 2016-04-01 17:50 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-11-13 20:36 - 2016-02-04 17:57 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-11-13 20:36 - 2016-02-04 17:49 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-11-13 20:36 - 2016-02-04 17:39 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-11-13 20:34 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-11-13 20:34 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-11-13 20:33 - 2016-07-12 15:08 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-13 20:33 - 2016-07-09 17:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-11-13 20:33 - 2016-07-08 23:35 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-11-13 20:33 - 2016-07-08 15:17 - 00377344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-11-13 20:33 - 2016-07-08 15:17 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-11-13 20:33 - 2016-07-07 23:32 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2016-11-13 20:33 - 2016-07-07 23:18 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2016-11-13 20:33 - 2016-07-07 23:10 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-11-13 20:33 - 2016-07-07 23:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2016-11-13 20:33 - 2016-07-07 22:04 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2016-11-13 20:33 - 2016-07-07 21:59 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-11-13 20:33 - 2016-07-07 21:44 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-11-13 20:33 - 2016-07-07 21:41 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-11-13 20:33 - 2016-07-07 21:34 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-11-13 20:33 - 2016-07-07 21:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-11-13 20:33 - 2016-07-07 21:29 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-11-13 20:33 - 2016-07-07 21:23 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2016-11-13 20:33 - 2016-07-07 21:18 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-11-13 20:33 - 2016-07-07 21:11 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2016-11-13 20:33 - 2016-07-07 20:35 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2016-11-13 20:33 - 2016-07-07 20:14 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-11-13 20:33 - 2016-07-04 06:09 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-13 20:33 - 2016-07-04 04:45 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2016-11-13 20:33 - 2016-07-04 04:33 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-11-13 20:33 - 2016-07-04 04:02 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-11-13 20:33 - 2016-07-04 03:19 - 03547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-13 20:33 - 2016-07-01 21:39 - 00197352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssenh.dll
2016-11-13 20:33 - 2016-07-01 21:39 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dssenh.dll
2016-11-13 20:33 - 2016-01-10 18:08 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-11-13 20:33 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2016-11-13 20:32 - 2016-08-27 20:44 - 22360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-13 20:32 - 2016-08-27 20:44 - 02755504 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-13 20:32 - 2016-08-27 20:44 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2016-11-13 20:32 - 2016-08-27 19:26 - 19789232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-13 20:32 - 2016-08-27 19:26 - 02411048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-13 20:32 - 2016-08-27 19:26 - 00113656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2016-11-13 20:32 - 2016-08-27 17:09 - 14466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-13 20:32 - 2016-08-27 16:55 - 12879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-13 20:32 - 2015-05-12 14:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-11-13 20:09 - 2016-12-11 18:16 - 00000000 __SHD C:\Users\Lotte\IntelGraphicsProfiles
2016-11-13 20:09 - 2016-11-13 20:09 - 00001450 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-11-13 20:09 - 2016-11-13 20:09 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-11-13 20:09 - 2016-11-13 20:09 - 00000020 ___SH C:\Users\Lotte\ntuser.ini
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-11-13 00:56 - 2016-11-13 00:56 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-11-13 00:43 - 2016-11-13 00:43 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-13 00:40 - 2016-11-13 00:40 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-11-13 00:38 - 2016-12-07 10:08 - 00000000 ____D C:\Users\Lotte
2016-11-13 00:38 - 2016-11-13 00:56 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2016-11-13 00:38 - 2016-11-13 00:56 - 00020958 _____ C:\WINDOWS\diagerr.xml
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Vorlagen
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Startmenü
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Netzwerkumgebung
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Lokale Einstellungen
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Eigene Dateien
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Druckumgebung
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Videos
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Musik
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Bilder
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Local\Verlauf
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Local\Anwendungsdaten
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Anwendungsdaten
2016-11-13 00:38 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-11-13 00:38 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-11-13 00:29 - 2016-11-13 00:41 - 00000000 ____D C:\Program Files (x86)\Intel
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____D C:\Program Files\Realtek
2016-11-13 00:29 - 2015-08-27 18:20 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-13 00:29 - 2015-08-27 18:20 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-13 00:28 - 2016-11-13 00:28 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____D C:\Program Files\Synaptics
2016-11-13 00:24 - 2016-11-13 20:09 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-13 00:21 - 2016-11-13 00:21 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2016-11-13 00:20 - 2016-11-13 00:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2016-11-13 00:20 - 2016-11-13 00:20 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-11-13 00:19 - 2016-11-13 00:19 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-11-13 00:19 - 2016-11-13 00:19 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpsapi.dll
2016-11-13 00:19 - 2016-11-13 00:19 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpsapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02745184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02528784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02450240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02447136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02334104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02324744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01798480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01484888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01288128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01210200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01115640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01037680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00914672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00850680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00736256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00735496 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00700360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00629600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00557856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00492736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00463776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00299080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-11-13 00:18 - 2016-11-13 00:18 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00274280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00248432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00246856 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-11-13 00:18 - 2016-11-13 00:18 - 00244296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00229272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00203016 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00184912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00183856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00177712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00148752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00110544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00090904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00090392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00081032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00076936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2016-11-13 00:17 - 2016-11-13 00:17 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-11-13 00:17 - 2016-11-13 00:17 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2016-11-13 00:17 - 2016-11-13 00:17 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 25763328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 20304896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 15431168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 15257088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 13654016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 13317120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-11-13 00:16 - 2016-11-13 00:16 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-11-13 00:16 - 2016-11-13 00:16 - 07444312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 06047744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 04608000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 03754496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02920448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02463744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02315496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02287616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-13 00:16 - 2016-11-13 00:16 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-13 00:16 - 2016-11-13 00:16 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01946176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01754112 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01663184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-13 00:16 - 2016-11-13 00:16 - 01660040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01560064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01523208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01490112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-13 00:16 - 2016-11-13 00:16 - 01445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01377792 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01358952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01317888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01124376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00921944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-11-13 00:16 - 2016-11-13 00:16 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00497448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-13 00:16 - 2016-11-13 00:16 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00444248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00420184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2016-11-13 00:16 - 2016-11-13 00:16 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00399776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-11-13 00:16 - 2016-11-13 00:16 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00377176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2016-11-13 00:16 - 2016-11-13 00:16 - 00333656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00275800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00162850 _____ C:\WINDOWS\SysWOW64\C_932.NLS
2016-11-13 00:16 - 2016-11-13 00:16 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-11-13 00:16 - 2016-11-13 00:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiexe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00121176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\parport.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2016-11-13 00:16 - 2016-11-13 00:16 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsidsc.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2016-11-13 00:16 - 2016-11-13 00:16 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsidsc.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifibus.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serenum.sys
2016-11-13 00:13 - 2016-11-13 00:13 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2016-11-13 00:13 - 2016-11-13 00:13 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00099672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 02466136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-11-13 00:12 - 2016-11-13 00:12 - 00160160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2016-11-13 00:12 - 2016-11-13 00:12 - 00121912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2016-11-13 00:12 - 2016-11-13 00:12 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01379040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-11-13 00:10 - 2016-11-13 00:10 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-11-13 00:10 - 2016-11-13 00:10 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2016-11-13 00:09 - 2016-11-13 00:09 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-13 00:09 - 2016-11-13 00:09 - 00513480 _____ C:\WINDOWS\system32\locale.nls
         
FRST Teil 2:
Code:
ATTFilter
2016-11-13 00:09 - 2016-11-13 00:09 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2016-11-13 00:08 - 2016-11-13 00:08 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2016-11-13 00:08 - 2016-11-13 00:08 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2016-11-13 00:08 - 2016-11-13 00:08 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-11-13 00:08 - 2016-11-13 00:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-11-13 00:08 - 2016-11-13 00:08 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2016-11-13 00:07 - 2016-11-13 00:07 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsparse.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsparse.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2016-11-13 00:06 - 2016-11-13 00:06 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2016-11-13 00:06 - 2016-11-13 00:06 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 01763376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 01489088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00179248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 01549144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00993632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00987848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2016-11-13 00:04 - 2016-11-13 00:04 - 00690016 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-11-13 00:04 - 2016-11-13 00:04 - 00484552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00952928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00786152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00470360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2016-11-13 00:03 - 2016-11-13 00:03 - 00218448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00192120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2016-11-13 00:02 - 2016-11-13 00:02 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-11-13 00:02 - 2016-11-13 00:02 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-11-13 00:02 - 2016-11-13 00:02 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-11-13 00:02 - 2016-11-13 00:02 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2016-11-13 00:01 - 2016-11-13 00:01 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 02609152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 02170880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-11-13 00:00 - 2016-11-13 00:00 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 07795712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 07076864 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 05273600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 05268480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 03120640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02712576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02592256 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01348096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01197056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-11-12 23:59 - 2016-11-12 23:59 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00273264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01673728 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01541248 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01376768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00685432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00563024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00397232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00340880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00292696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-11-12 23:58 - 2016-11-12 23:58 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00243032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-11-12 23:58 - 2016-11-12 23:58 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00137976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00120384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00107984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-11-12 23:57 - 2016-11-12 23:57 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2016-11-12 23:57 - 2016-11-12 23:57 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01501488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01360896 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01307328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00738096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00613624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2016-11-12 23:56 - 2016-11-12 23:56 - 00135336 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 02175008 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-11-12 23:55 - 2016-11-12 23:55 - 01063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00548024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00468824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-11-12 23:55 - 2016-11-12 23:55 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-11-12 23:55 - 2016-11-12 23:55 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00270168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00803176 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00611576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00462168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00443224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00183368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-11-12 23:53 - 2016-11-12 23:53 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00091992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00072024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00027992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 02017624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-12 23:52 - 2016-11-12 23:52 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2016-11-12 23:52 - 2016-11-12 23:52 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-11-12 23:52 - 2016-11-12 23:52 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-11-12 23:50 - 2016-11-12 23:50 - 00074584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2016-11-12 23:50 - 2016-11-12 23:50 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 01455104 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-11-12 23:49 - 2016-11-12 23:49 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2016-11-12 23:47 - 2016-11-12 23:47 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2016-11-12 23:47 - 2016-11-12 23:47 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2016-11-12 23:47 - 2016-11-12 23:47 - 00316760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01482240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2016-11-12 23:44 - 2016-11-12 23:44 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2016-11-12 23:44 - 2016-11-12 23:44 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files\MSBuild
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-12 23:41 - 2016-11-12 23:41 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2016-11-12 23:41 - 2016-11-12 23:41 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2016-11-12 23:41 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-11-12 23:41 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-12-11 18:27 - 2014-11-21 04:35 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-11 18:27 - 2014-11-21 03:45 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2016-12-11 18:27 - 2014-11-21 03:45 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2016-12-11 18:27 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-12-11 18:16 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-07 22:29 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-12-07 10:26 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-12-07 10:23 - 2016-11-05 22:19 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-927612283-1200829413-3393210303-1001
2016-12-07 10:07 - 2016-11-05 09:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-06 17:13 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-06 16:28 - 2016-11-05 09:35 - 00000000 ____D C:\Program Files (x86)\Avira
2016-12-05 18:31 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-12-05 18:21 - 2013-12-19 11:09 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-30 15:15 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-30 13:16 - 2016-11-05 09:25 - 00000000 ____D C:\Update
2016-11-30 13:03 - 2016-11-06 21:22 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\setup
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-11-13 22:06 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-11-13 21:28 - 2016-11-05 23:59 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-13 21:23 - 2016-11-05 23:59 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-13 21:12 - 2013-12-19 11:23 - 00000000 ____D C:\ProgramData\Sony Corporation
2016-11-13 21:11 - 2016-11-05 09:19 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Sony Corporation
2016-11-13 21:10 - 2013-08-22 16:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-13 20:16 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-13 20:11 - 2016-11-05 09:18 - 00000000 ____D C:\Users\Lotte\AppData\Local\Packages
2016-11-13 00:57 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2016-11-13 00:57 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2016-11-13 00:54 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2016-11-13 00:53 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-13 00:46 - 2013-08-22 15:44 - 00382744 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-13 00:45 - 2016-11-05 22:25 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2016-11-13 00:45 - 2016-11-05 10:04 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.3
2016-11-13 00:45 - 2016-11-05 09:19 - 00000000 ____D C:\WINDOWS\SysWOW64\VAIO Startup Setting Tool
2016-11-13 00:45 - 2013-12-19 11:50 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-13 00:45 - 2013-12-19 11:45 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2016-11-13 00:45 - 2013-12-19 11:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel AppUp(R) center
2016-11-13 00:45 - 2013-12-19 11:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD
2016-11-13 00:45 - 2013-12-19 11:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayMemories Home
2016-11-13 00:45 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-11-13 00:43 - 2013-12-19 11:19 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2016-11-13 00:43 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2016-11-13 00:43 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-13 00:43 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2016-11-13 00:42 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Resources
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2016-11-13 00:41 - 2016-11-05 22:30 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Main
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-13 00:41 - 2012-08-03 03:25 - 00000000 ____D C:\ProgramData\PRICache
2016-11-13 00:41 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal
2016-11-13 00:24 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2016-11-13 00:21 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-13 00:17 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-11-13 00:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2016-11-12 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2016-11-12 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-12 23:44 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-11-12 22:44 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-11-13 00:29 - 2016-11-13 00:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Lotte\AppData\Local\Temp\libeay32.dll
C:\Users\Lotte\AppData\Local\Temp\msvcr120.dll
C:\Users\Lotte\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2016-11-30 15:07

==================== Ende von FRST.txt ============================
         

Alt 11.12.2016, 18:40   #15
HoChiMinh
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall



Addition
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 07-12-2016
durchgeführt von Lotte (11-12-2016 18:30:55)
Gestartet von F:\
Windows 8.1 (Update) (X64) (2016-11-13 19:09:12)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-927612283-1200829413-3393210303-500 - Administrator - Disabled)
Gast (S-1-5-21-927612283-1200829413-3393210303-501 - Limited - Disabled)
Lotte (S-1-5-21-927612283-1200829413-3393210303-1001 - Administrator - Enabled) => C:\Users\Lotte

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Reader XI  MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Azteca (x32 Version: 2.2.0.97 - WildTangent) Hidden
Behind The Reflection 2: Witch's Revenge (x32 Version: 3.0.2.32 - WildTangent) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.223.181 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\{4CDA59B9-7AD3-4283-9F5C-BC469FF975B6}) (Version: 6.30.59.125 - Broadcom Corporation)
Build-a-lot: On Vacation (x32 Version: 2.2.0.110 - WildTangent) Hidden
chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cut the Rope (x32 Version: 3.0.2.38 - WildTangent) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.2529 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.6201.52 - CyberLink Corp.)
Einstellungen für VAIO Media Server (HKLM\...\{62A172B2-550E-499D-9A82-5190D18390AA}) (Version: 1.1.0.02220 - Sony Corporation)
Enchanted Cavern 2 (x32 Version: 2.2.0.110 - WildTangent) Hidden
ESDL (x32 Version: 1.0.0 - Sony Corporation) Hidden
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Heroes of Hellas 3: Athens (x32 Version: 3.0.2.32 - WildTangent) Hidden
Intel AppUp(R) center (HKLM-x32\...\Intel AppUp(R) center 41800) (Version: 3.8.0.41800.66 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) PROSet/Wireless NFC-Software (HKLM\...\Intel(R) PROSet/Wireless NFC-Software) (Version: 1.0.1.003 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 7 Update 13 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417013FF}) (Version: 7.0.130 - Oracle)
Java 7 Update 13 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217013FF}) (Version: 7.0.130 - Oracle)
Luxor HD (x32 Version: 2.2.0.110 - WildTangent) Hidden
Mahjongg Artifacts (x32 Version: 2.2.0.110 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mozilla Firefox 50.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.0.2 (x86 de)) (Version: 50.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.2.6177 - Mozilla)
Mozilla Thunderbird 45.4.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.4.0 (x86 de)) (Version: 45.4.0 - Mozilla)
My Kingdom for the Princess 3 (x32 Version: 2.2.0.110 - WildTangent) Hidden
Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden
Networkx64 (Version: 1.0.0 - Sony Corporation) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{8D5FCC56-BB9F-4122-923C-71753F50F6F5}) (Version: 4.13.9783 - Apache Software Foundation)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayMemories Home (HKLM-x32\...\{1E5C7043-09C5-4974-A69F-A5271FD82BBC}) (Version: 7.0.02.14060 - Sony Corporation)
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7177 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.28135 - Realtek Semiconductor Corp.)
Remote Keyboard (x32 Version: 1.2.0.09270 - Sony Corporation) Hidden
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.4.0.1 - Synaptics Incorporated)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
VAIO - Remote-Tastatur (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.2.0.09270 - Sony Corporation)
VAIO - Remote-Tastatur mit PlayStation®3 (HKLM-x32\...\{E682702C-609C-4017-99E7-3129C163955F}) (Version: 1.2.1.05220 - Sony Corporation)
VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.4.0.15030 - Sony Corporation)
VAIO BIOS Data Transfer Utility (x32 Version: 1.0.0.02050 - Sony Corporation) Hidden
VAIO Care (HKLM\...\{404D6E7E-948E-4D2E-9540-59550AB59D4F}) (Version: 8.4.5.06026 - Sony Corporation)
VAIO Care Recovery (HKLM\...\{15B9204E-BA09-485E-8F2C-094AC0077664}) (Version: 1.1.2.13230 - Sony Corporation)
VAIO Care-Hardwarediagnose-Plugin (HKLM-x32\...\{EC153498-00E1-4C9C-89BE-81527C6750BE}) (Version: 4.11.1.11210 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 6.2.0.03070 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.11.0.13250 - Sony Corporation)
VAIO Easy Connect (x32 Version: 8.4.4.07220 - Sony Corporation) Hidden
VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 2.2.0.01230 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.2.0.01230 - Sony Corporation) Hidden
VAIO Image Optimizer (HKLM-x32\...\InstallShield_{5597C927-029A-46A7-A0C0-8DABD9891A50}) (Version: 3.3.00.10220 - Sony Corporation)
VAIO Image Optimizer (x32 Version: 3.1.00.14260 - Sony Corporation) Hidden
VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 2.2.0.01240 - Sony Corporation)
VAIO Movie Creator (HKLM-x32\...\InstallShield_{C2CC5822-32E6-4D21-88EA-DE8CED09EE2F}) (Version: 4.3.01.11140 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.1.01.15140 - Sony Corporation) Hidden
VAIO Sample Music (HKLM-x32\...\{FBEE3D44-0933-4B84-BB6A-49957F89187F}) (Version: 1.0.0.03051 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.2.0.16270 - Sony Corporation)
VAIO*CPU-Lüfterdiagnose (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.2.0.03050 - Sony Corporation)
VAIO-Support für Übertragungen (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.9.0.11060 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
Virtual Villagers 5 - New Believers (x32 Version: 3.0.2.32 - WildTangent) Hidden
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VUx64 (Version: 1.2.0 - Sony Corporation) Hidden
VUx86 (x32 Version: 1.2.0 - Sony Corporation) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.4900 - Broadcom Corporation)
WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden
WildTangent-Spiele (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AC}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)
CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AD}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {03A25EC0-E75E-4558-AC13-FD0378FAC0F8} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2016-04-25] (Sony Corporation)
Task: {0E2BAD16-BD41-46EB-BCBB-49740EF28E60} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2013-01-24] (Sony Corporation)
Task: {204CDCD8-7647-445B-8A37-A8DF44F45634} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2016-03-31] (Sony Corporation)
Task: {21A3858C-C8D4-4C25-911E-F63059C3087D} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {287B6E5F-2984-4E88-A980-5C96440A07BE} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2016-03-24] (Sony Corporation)
Task: {2A8A0E52-34CB-4F1C-B80F-4EE9D343A2E7} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {2EE8EAF3-FDE2-4A0B-8FD4-7363EE7B3F71} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2016-03-04] (Sony Corporation)
Task: {43814966-938F-4B44-9735-2176EEE8841C} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2013-01-23] (Sony Corporation)
Task: {54020D2B-8EE9-48B1-B77A-67EA816E00E8} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-03-08] (Sony Corporation)
Task: {5EC3FEAC-4E02-4C57-A39D-CA02A87B5346} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-03-08] (Sony Corporation)
Task: {62031FDF-8742-4ADA-AEF6-0EFDB420FC80} - System32\Tasks\Sony Corporation\VAIO Care\VTUsr => C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe [2016-05-30] (Sony Corporation)
Task: {6F21F9AB-11CC-433C-AF54-29D2E1E8A691} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {83B969F2-B842-4260-974F-BC363283F8E4} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {8C940F42-BD0E-44B6-8744-035734B7EF13} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {93A8D53D-9570-4411-A06A-E8334A815974} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcWeekly => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation)
Task: {9D666896-0388-42D2-8DEB-A39DB42A7B9B} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {AB91E0E8-6780-4FB2-90B7-8A3176FEFE13} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {AE6A609D-A5C9-4273-991B-3F9D4491761F} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2016-03-18] (Sony Corporation)
Task: {B109E244-289C-4E42-AEC9-04ED2B811498} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {B4740220-0EE3-4327-BEF6-86A3FE4C3D72} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {BE1E2485-37EA-44D9-A3D4-6AEB16917BC4} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {C1B32111-3E2F-4810-BE54-ACFFFE3A90DF} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
Task: {C589A061-6AA6-47F8-AC31-ECE6892967EB} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {D21378E3-8ACE-4CD8-B270-B31EAA4BC837} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {E542BE74-768B-44B9-BE1E-495C77582DAB} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {E5E9F06D-74C2-4AF4-83C7-52B9FBED48C2} - System32\Tasks\Sony Corporation\VAIO Care\VTSvc => C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe [2016-05-30] (Sony Corporation)
Task: {FD4D7BFD-4329-4E74-B551-CC6CE469FCBD} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcDaily => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2012-12-14 14:27 - 2012-12-14 14:27 - 00049520 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btwleapi.dll
2014-11-21 04:19 - 2014-11-21 04:19 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\ErrorReporting.dll
2013-12-19 11:11 - 2013-01-23 10:26 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\Sony\VAIO 13 img1 Wallpaper 1366x768.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{95225308-8D1C-494B-8325-45CE3A3B17EA}] => C:\Program Files\Sony\VAIO Care\VAIOShell.exe
FirewallRules: [{E005A6CF-CF6B-4554-BC6D-BF84294536B1}] => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
FirewallRules: [{5927AAE6-DC1E-49E7-8C10-BE80C9E482E3}] => C:\Program Files\Sony\VAIO Care\VCAdmin.exe
FirewallRules: [{62DB37CB-BF6A-4051-BBB3-E059B5A24141}] => C:\Program Files\Sony\VAIO Care\VCAgent.exe
FirewallRules: [{9930954B-B1E1-4874-B41A-75168E5B2C71}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3361260A-6546-48DE-92D9-C33998A45C4A}] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
FirewallRules: [{55F335C9-5BAB-41DF-A857-D3B20604F70B}] => C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE

==================== Wiederherstellungspunkte =========================

13-11-2016 21:09:22 Removed Microsoft Office
30-11-2016 15:07:23 Windows Update
07-12-2016 18:53:47 Geplanter Prüfpunkt
10-12-2016 21:52:32 JRT Pre-Junkware Removal

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: BCM43142 Bluetooth Adapter
Description: BCM43142 Bluetooth Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/10/2016 08:49:27 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "select * from __InstanceModificationEvent where targetinstance isa '__ArbitratorConfiguration'" konnte im Namespace "//./root" aufgrund des Fehlers "0x80041033" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.

Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/05/2016 06:49:11 PM) (Source: Intel(R) PROSet/Wireless NFC Software) (EventID: 260) (User: )
Description: HECI-MEI communication failure.

Error: (11/30/2016 03:20:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (11/30/2016 02:57:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DllHost.exe, Version: 6.3.9600.17415, Zeitstempel: 0x54504134
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18438, Zeitstempel: 0x57ae642e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003dd8e
ID des fehlerhaften Prozesses: 0x3b0
Startzeit der fehlerhaften Anwendung: 0x01d24b11ad392224
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\DllHost.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: eb3b83e0-b704-11e6-be7a-3423877ff934
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:


Systemfehler:
=============
Error: (12/11/2016 06:29:43 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Der Dienst konnte nicht gestartet werden.

Error: (12/11/2016 06:29:43 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde nicht richtig gestartet.

Error: (12/11/2016 06:16:13 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (12/11/2016 06:16:13 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (12/10/2016 10:00:20 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (12/10/2016 09:50:47 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (12/10/2016 09:50:47 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (12/10/2016 09:50:08 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (12/10/2016 09:50:08 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (12/10/2016 09:50:01 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
Es wird bereits eine Instanz des Dienstes ausgeführt.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Pentium(R) CPU 2117U @ 1.80GHz
Prozentuale Nutzung des RAM: 20%
Installierter physikalischer RAM: 8070.8 MB
Verfügbarer physikalischer RAM: 6449.04 MB
Summe virtueller Speicher: 9350.8 MB
Verfügbarer virtueller Speicher: 7693.89 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:903.8 GB) (Free:864.79 GB) NTFS
Drive e: () (Removable) (Total:3.68 GB) (Free:3.68 GB) FAT32
Drive f: () (Removable) (Total:1.96 GB) (Free:1.9 GB) FAT

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A42C908E)

Partition: GPT.

========================================================
Disk: 1 (Size: 3.7 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 2 (Size: 2 GB) (Disk ID: 6E652072)
No partition Table on disk 2.

==================== Ende von Addition.txt ============================
         

Thema geschlossen

Themen zu Unidentifizierter Virusbefall
dateien, desktop, einzeln, erlebt, guter, ide, klicke, klicken, komplett, neue, neuen, nichts, notebook, ordner, recovery, scan, schonmal, spinnt, tab, tool, unterforum, vertauscht, virus, wirklich, öffnet



Ähnliche Themen: Unidentifizierter Virusbefall


  1. Extremer Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 22.11.2015 (1)
  2. sm.de virusbefall
    Plagegeister aller Art und deren Bekämpfung - 17.10.2014 (19)
  3. Erneuter Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 13.12.2013 (18)
  4. virusbefall
    Plagegeister aller Art und deren Bekämpfung - 01.12.2013 (5)
  5. Ihavenet-Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 09.06.2013 (37)
  6. GVU oder BKA Virusbefall
    Log-Analyse und Auswertung - 23.05.2013 (6)
  7. explorer.exe Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 08.02.2012 (1)
  8. Gema Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 14.01.2012 (17)
  9. Virusbefall auf meinem Laptop
    Log-Analyse und Auswertung - 08.11.2011 (47)
  10. BKA Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 28.07.2011 (3)
  11. Wahrscheinich ein Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 06.04.2011 (1)
  12. iexplore.exe virusbefall ?
    Log-Analyse und Auswertung - 09.07.2010 (16)
  13. Akut Virusbefall ! :/
    Plagegeister aller Art und deren Bekämpfung - 02.02.2010 (1)
  14. Plötzlicher Virusbefall
    Log-Analyse und Auswertung - 22.08.2008 (4)
  15. Virusbefall smitfraud
    Log-Analyse und Auswertung - 16.12.2005 (10)
  16. HJT Log 28.11.05 nach Virusbefall
    Log-Analyse und Auswertung - 05.12.2005 (13)
  17. Virusbefall: win32:Trojan-gen. {Other}
    Plagegeister aller Art und deren Bekämpfung - 23.06.2004 (1)

Zum Thema Unidentifizierter Virusbefall - Servus beisammen, ich hoffe das ich im richtigen Unterforum bin und zwar geht es um das vermutlich virenbefalle Notebook meiner Mutter. Ehrlich gesagt habe ich solche "Symptome" noch nie bei - Unidentifizierter Virusbefall...
Archiv
Du betrachtest: Unidentifizierter Virusbefall auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.