| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows Vista: AVG findet einen RootkitWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
27.12.2016, 15:12
| #1 |
 |  Windows Vista: AVG findet einen Rootkit Schönen guten Tag , bei der heutigen Systemüberprüfung fand AVG einen Rootkit (?), welcher sich nicht entfernen lässt. Inline-Hook win32k.sys EngProbeForRead+0x95->0xFFFFF95FFA7D893F. Außerdem erhalte ich bei jedem Systemstart folgende Warnung: "ERROR: System Fan has failed. Press F2 to continue" Ich bin dankbar für jede Hilfe. Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 21-12-2016
durchgeführt von Suiolirim (Administrator) auf SUIOLIRIM (27-12-2016 14:21:21)
Gestartet von C:\Users\Suiolirim\Desktop\Desktop
Geladene Profile: Suiolirim (Verfügbare Profile: Suiolirim)
Platform: Windows Vista (TM) Home Premium Service Pack 2 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 9 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(AMD) C:\WINDOWS\System32\atiesrxx.exe
(Microsoft Corporation) C:\WINDOWS\System32\SLsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(AMD) C:\WINDOWS\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehtray.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehmsas.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(Microsoft Corporation) C:\WINDOWS\SysWOW64\svchost.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(IObit) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\UninstMon\PubMonitor.exe
(Microsoft Corporation) C:\WINDOWS\System32\conime.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM\...\Policies\Explorer: [AllowLegacyWebView] 1
HKLM\...\Policies\Explorer: [AllowUnhashedWebView] 1
HKU\S-1-5-21-1653470619-1168622029-2061882709-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-1653470619-1168622029-2061882709-1000\...\Run: [Google Update] => C:\Users\Suiolirim\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-24] (Google Inc.)
HKU\S-1-5-21-1653470619-1168622029-2061882709-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-1653470619-1168622029-2061882709-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
GroupPolicy\User: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{9CA86A35-94EC-4BED-A5DB-38C113AD5714}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{A615081A-DB1C-42C8-8B6A-0E4FEC46738B}: [DhcpNameServer] 192.168.1.1 0.0.0.0
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\S-1-5-21-1653470619-1168622029-2061882709-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1653470619-1168622029-2061882709-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {F137222E-6DE9-44E9-8EF2-CC5A8D3833BB} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcndtie7-de-de
SearchScopes: HKLM -> {D6E4D59A-E5FE-4C8D-8347-B99B76E656E5} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKLM -> {F137222E-6DE9-44E9-8EF2-CC5A8D3833BB} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcndtie7-de-de
SearchScopes: HKLM-x32 -> DefaultScope Wert fehlt
SearchScopes: HKU\S-1-5-21-1653470619-1168622029-2061882709-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg64.dll [2009-10-18] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll [2009-10-18] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Browsing Protection Class -> {C6867EB7-8350-4856-877F-93CF8AE3DC9C} -> Keine Datei
DPF: HKLM-x32 {20A60F0D-9AFA-4515-A0FD-83BD84642501} hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default [2016-12-27]
FF NetworkProxy: Mozilla\Firefox\Profiles\bysl5o0l.default -> no_proxies_on", ""
FF Extension: (Grooveshark Unlocker) - C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\Extensions\groovesharkUnlocker@overlord1337.xpi [2016-12-26]
FF Extension: (Distrust) - C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\Extensions\trustme@gness.com [2009-04-14] [ist nicht signiert]
FF Extension: (Microsoft .NET Framework Assistant) - C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-04-29] [ist nicht signiert]
FF Extension: (NoScript) - C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-12-25]
FF Extension: (BugMeNot Plugin) - C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\Extensions\{987311C6-B504-4aa2-90BF-60CC49808D42}.xpi [2016-12-25]
FF Extension: (WOT) - C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-05-17] [ist nicht signiert]
FF Extension: (Fasterfox) - C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\Extensions\{c36177c0-224a-11da-8cd6-0800200c9a99} [2009-04-14] [ist nicht signiert]
FF Extension: (Adblock Plus) - C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-12-25]
FF Extension: (Greasemonkey) - C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-12-25]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-11.xml [2010-06-23]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-12.xml [2010-06-30]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-13.xml [2010-07-01]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-14.xml [2010-07-27]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-15.xml [2011-02-13]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-16.xml [2011-02-13]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-17.xml [2011-03-06]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-18.xml [2011-03-22]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-19.xml [2011-05-02]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-20.xml [2011-06-20]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-21.xml [2011-06-29]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-22.xml [2011-08-18]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-23.xml [2011-09-04]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-24.xml [2011-09-16]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-25.xml [2011-10-05]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\icqplugin-26.xml [2011-11-19]
FF SearchPlugin: C:\Users\Suiolirim\AppData\Roaming\Mozilla\Firefox\Profiles\bysl5o0l.default\searchplugins\winamp-search.xml [2009-04-30]
FF Extension: (Kaspersky URL Advisor) - C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru [2016-12-24] [ist nicht signiert]
FF Extension: (Java Console) - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2016-12-24] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-23] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [litmus-ff@f-secure.com] - C:\Program Files (x86)\F-Secure\NRS\litmus-ff@f-secure.com => nicht gefunden
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: (Eset Plugin) - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2009-07-06] [ist nicht signiert]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @idsoftware.com/QuakeLive -> C:\ProgramData\id Software\QuakeLive\npquakezero.dll [2012-02-14] (id Software Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @pack.google.com/Google Updater;version=14 -> C:\Program Files (x86)\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2011-09-14] (Google)
FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei]
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2011-02-14] (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-24] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-24] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1653470619-1168622029-2061882709-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Suiolirim\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2012-10-11] (Skype Limited)
FF Plugin HKU\S-1-5-21-1653470619-1168622029-2061882709-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Suiolirim\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-24] (Google Inc.)
FF Plugin HKU\S-1-5-21-1653470619-1168622029-2061882709-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Suiolirim\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-24] (Google Inc.)
FF Plugin HKU\S-1-5-21-1653470619-1168622029-2061882709-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2011-02-14] (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npigl.dll [2007-02-12] (Indiepath Ltd)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npijjiautoinstallpluginff.dll [2009-07-03] (NHN USA Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npLegitCheckPlugin.dll [2009-01-07] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Plugin: (Shockwave Flash) - C:\Users\Suiolirim\AppData\Local\Google\Chrome\User Data\PepperFlash\11.5.31.139\pepflashplayer.dll => Keine Datei
CHR Plugin: (Native Client) - C:\Users\Suiolirim\AppData\Local\Google\Chrome\Application\49.0.2623.112\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Suiolirim\AppData\Local\Google\Chrome\Application\49.0.2623.112\pdf.dll => Keine Datei
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (igLoader) - C:\Program Files (x86)\Mozilla Firefox\plugins\npigl.dll (Indiepath Ltd)
CHR Plugin: (ijji Auto Install Plugin for Mozilla) - C:\Program Files (x86)\Mozilla Firefox\plugins\npijjiautoinstallpluginff.dll (NHN USA Inc.)
CHR Plugin: (Windows Genuine Advantage) - C:\Program Files (x86)\Mozilla Firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei
CHR Plugin: (Winamp Application Detector) - C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll (Nullsoft, Inc.)
CHR Plugin: (Google Updater) - C:\Program Files (x86)\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
CHR Plugin: (Java(TM) Platform SE 7 U13) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (QUAKE LIVE) - C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
CHR Plugin: (Unity Player) - C:\Users\Suiolirim\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll => Keine Datei
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Suiolirim\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll => Keine Datei
CHR Plugin: (Google Update) - C:\Users\Suiolirim\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll => Keine Datei
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei
CHR Plugin: (Java Deployment Toolkit 7.0.130.20) - C:\Windows\SysWOW64\npDeployJava1.dll => Keine Datei
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Profile: C:\Users\Suiolirim\AppData\Local\Google\Chrome\User Data\Default [2016-12-27]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Suiolirim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-24]
StartMenuInternet: Google Chrome - C:\Users\Suiolirim\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-04-29] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5337600 2016-12-15] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [725976 2016-12-15] (AVG Technologies CZ, s.r.o.)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [69632 2008-07-14] () [Datei ist nicht signiert]
R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129992 2008-02-03] (EasyBits Sofware AS) [Datei ist nicht signiert]
S2 gupdate1c986c7e6048a9a; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-24] (Google Inc.)
R2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2013-02-08] (Hi-Rez Studios) [Datei ist nicht signiert]
R2 HP Health Check Service; c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-06-02] (Hewlett-Packard) [Datei ist nicht signiert]
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-03-17] (Hewlett-Packard Company) [Datei ist nicht signiert]
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3404560 2010-01-04] (INCA Internet Co., Ltd.) [Datei ist nicht signiert]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [289496 2013-10-16] (Realtek Semiconductor)
S3 ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [657408 2009-10-27] (Nokia) [Datei ist nicht signiert]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-21] (Microsoft Corporation)
S2 F-Secure Gatekeeper Handler Starter; "C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe" [X]
S3 FSDFWD; "C:\Program Files (x86)\F-Secure\FWES\Program\fsdfwd.exe" [X]
S2 FSMA; "C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE" [X]
S3 FSORSPClient; "C:\Program Files (x86)\F-Secure\ORSP Client\fsorsp.exe" [X]
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009.SP3c\RpcAgentSrv.exe [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2008-01-21] (Microsoft Corporation)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [312576 2016-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [298240 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [254208 2016-09-26] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [299264 2016-07-27] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
S1 Beep; kein ImagePath
S3 BrSerIf; C:\Windows\System32\DRIVERS\BrSerIf.sys [97280 2006-09-03] (Brother Industries Ltd.)
R1 FSES; C:\Windows\System32\drivers\fses.sys [46664 2011-04-30] (F-Secure Corporation)
R1 FSFW; C:\Windows\System32\drivers\fsdfw.sys [95784 2011-04-30] (F-Secure Corporation)
R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [42248 2012-11-15] (AnchorFree Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-12-24] (REALiX(tm))
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [89432 2012-08-13] (Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [613720 2012-11-15] (Kaspersky Lab)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-04-30] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-04-30] ()
S3 nmwcdcx64; C:\Windows\System32\drivers\ccdcmbox64.sys [25088 2009-10-06] (Nokia)
S3 nmwcdx64; C:\Windows\System32\drivers\ccdcmbx64.sys [18944 2009-10-06] (Nokia)
S3 NPPTNT2; C:\Windows\SysWOW64\npptNT2.sys [4774 2012-02-02] (INCA Internet Co., Ltd.) [Datei ist nicht signiert]
S4 nvrd64; C:\Windows\system32\drivers\nvrd64.sys [166944 2008-06-06] (NVIDIA Corporation)
R3 PdiPorts; C:\Windows\System32\DRIVERS\PdiPorts.sys [19248 2006-11-16] (Portrait Displays, Inc.)
R3 Ps2; C:\Windows\System32\DRIVERS\PS2.sys [21504 2006-09-07] ()
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [40712 2012-11-15] (Anchorfree Inc.)
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltx64j.sys [8704 2009-10-06] (Nokia)
U0 aswVmm; kein ImagePath
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [X]
S3 dump_wmimmc; \??\C:\ijji\ENGLISH\AVA\Binaries\GameGuard\dump_wmimmc.sys [X]
S3 EverestDriver; \??\C:\Program Files (x86)\Lavalys\EVEREST Corporate Edition\kerneld.amd64 [X]
S3 F-Secure Gatekeeper; \??\C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsgk.sys [X]
S1 F-Secure HIPS; \??\C:\Program Files (x86)\F-Secure\HIPS\drivers\fshs.sys [X]
S1 fsvista; \??\C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsvista.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 PCD5SRVC{8AAF211B-043E02A9-05040000}; \??\C:\PROGRA~1\PC-DOC~1\PCD5SRVC_x64.pkms [X]
S3 PcdrNdisuio; syswow64\drivers\pcdrndisuio.sys [X]
S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009.SP3c\WNt500x64\Sandra.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster\Driver\WinRing0x64.sys [X]
S3 X6va001; \??\C:\Users\SUIOLIRIM\AppData\Local\Temp\001408.tmp [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-12-27 12:34 - 2016-12-27 12:34 - 01496584 _____ C:\Users\Suiolirim\Downloads\gmer-2.2.19882 - CHIP-Installer.exe
2016-12-27 01:11 - 2016-12-27 01:33 - 00000000 ____D C:\Users\TEMP
2016-12-27 00:32 - 2016-10-07 17:12 - 02528768 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-12-27 00:32 - 2016-10-07 16:52 - 01544704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-12-27 00:27 - 2014-12-08 02:59 - 00306176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2016-12-27 00:27 - 2014-12-08 02:37 - 00399360 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2016-12-27 00:14 - 2016-03-10 18:07 - 00501760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-12-27 00:14 - 2016-03-10 17:43 - 00660480 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-12-27 00:09 - 2015-12-05 18:03 - 02873344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-12-27 00:09 - 2015-12-05 18:03 - 01567744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-12-27 00:09 - 2015-12-05 18:03 - 01548288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-12-27 00:09 - 2015-12-05 18:03 - 01377792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-12-27 00:09 - 2015-12-05 18:03 - 01326080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-12-27 00:09 - 2015-12-05 18:03 - 01314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-12-27 00:09 - 2015-12-05 18:03 - 01114624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-12-27 00:09 - 2015-12-05 18:03 - 00867328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-12-27 00:09 - 2015-12-05 18:03 - 00767488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-12-27 00:09 - 2015-12-05 18:03 - 00759296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-12-27 00:09 - 2015-12-05 18:03 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-12-27 00:09 - 2015-12-05 18:03 - 00605184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-12-27 00:09 - 2015-12-05 18:03 - 00506880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-12-27 00:09 - 2015-12-05 18:03 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-12-27 00:09 - 2015-12-05 18:03 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-12-27 00:09 - 2015-12-05 18:03 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-12-27 00:09 - 2015-12-05 18:03 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-12-27 00:09 - 2015-12-05 18:02 - 00613888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2VDEC.DLL
2016-12-27 00:09 - 2015-12-05 18:02 - 00606208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-12-27 00:09 - 2015-12-05 18:02 - 00506880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-12-27 00:09 - 2015-12-05 18:02 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-12-27 00:09 - 2015-12-05 18:02 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ADEC.DLL
2016-12-27 00:09 - 2015-12-05 18:02 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-12-27 00:09 - 2015-12-05 18:02 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-12-27 00:09 - 2015-12-05 18:02 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-12-27 00:09 - 2015-12-05 18:02 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-12-27 00:09 - 2015-12-05 18:02 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-12-27 00:09 - 2015-12-05 18:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-12-27 00:09 - 2015-12-05 18:02 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-12-27 00:09 - 2015-12-05 18:02 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-12-27 00:09 - 2015-12-05 18:02 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-12-27 00:09 - 2015-12-05 17:41 - 01886208 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-12-27 00:09 - 2015-12-05 17:41 - 01706496 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-12-27 00:09 - 2015-12-05 17:41 - 01539072 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-12-27 00:09 - 2015-12-05 17:41 - 01350656 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-12-27 00:09 - 2015-12-05 17:41 - 01127424 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-12-27 00:09 - 2015-12-05 17:41 - 01090560 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-12-27 00:09 - 2015-12-05 17:41 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-12-27 00:09 - 2015-12-05 17:41 - 00819200 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-12-27 00:09 - 2015-12-05 17:41 - 00732160 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-12-27 00:09 - 2015-12-05 17:41 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-12-27 00:09 - 2015-12-05 17:40 - 03548672 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-12-27 00:09 - 2015-12-05 17:40 - 01571328 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-12-27 00:09 - 2015-12-05 17:40 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2VDEC.DLL
2016-12-27 00:09 - 2015-12-05 17:40 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-12-27 00:09 - 2015-12-05 17:40 - 00620544 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-12-27 00:09 - 2015-12-05 17:40 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ADEC.DLL
2016-12-27 00:09 - 2015-12-05 17:40 - 00352256 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-12-27 00:09 - 2015-12-05 17:40 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-12-27 00:09 - 2015-12-05 17:40 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-12-27 00:09 - 2015-12-05 17:40 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-12-27 00:09 - 2015-12-05 17:40 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-12-27 00:09 - 2015-12-05 17:40 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-12-27 00:09 - 2015-12-05 17:40 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-12-27 00:09 - 2015-12-05 17:40 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-12-27 00:09 - 2015-12-05 17:39 - 01074176 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-12-27 00:09 - 2015-12-05 17:39 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-12-27 00:09 - 2015-12-05 17:39 - 00471040 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-12-27 00:09 - 2015-12-05 17:39 - 00278016 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-12-27 00:09 - 2015-12-05 17:39 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-12-27 00:09 - 2015-12-05 17:39 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-12-27 00:09 - 2015-12-05 17:39 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-12-27 00:09 - 2015-12-05 17:39 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-12-27 00:09 - 2015-12-05 17:22 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-12-27 00:09 - 2013-10-30 05:34 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-12-27 00:09 - 2013-10-30 03:33 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-12-27 00:06 - 2016-11-08 18:09 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-12-27 00:06 - 2016-11-08 18:02 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-12-27 00:04 - 2015-11-05 10:07 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2016-12-27 00:04 - 2015-11-05 09:55 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2016-12-27 00:04 - 2015-11-05 08:54 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-12-26 23:59 - 2016-09-10 17:44 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-12-26 23:59 - 2016-09-10 17:27 - 00075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-12-26 23:51 - 2015-07-10 20:37 - 02067968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-12-26 23:51 - 2015-07-10 20:35 - 02425344 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-12-26 23:39 - 2015-11-02 18:04 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2016-12-26 23:39 - 2015-11-02 17:44 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2016-12-26 23:38 - 2015-09-02 22:26 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-12-26 23:38 - 2015-09-02 22:26 - 01402368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-12-26 23:30 - 2016-03-18 19:15 - 01915392 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-12-26 23:30 - 2016-03-18 19:14 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-12-26 23:30 - 2016-03-18 18:10 - 01316864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-12-26 23:30 - 2016-03-18 18:10 - 00861696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-12-26 23:22 - 2016-10-04 15:41 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-12-26 23:17 - 2016-11-09 16:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-12-26 23:17 - 2016-11-09 16:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-12-26 23:15 - 2016-10-07 17:19 - 04692712 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-12-26 23:15 - 2016-08-12 20:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-12-26 23:15 - 2016-03-22 00:00 - 01589168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-12-26 23:15 - 2016-03-22 00:00 - 01171488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-12-26 23:11 - 2016-04-09 22:17 - 00975360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-12-26 23:11 - 2016-04-09 21:48 - 01209856 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-12-26 23:09 - 2016-03-18 19:15 - 00660480 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-12-26 23:09 - 2016-03-18 19:15 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-12-26 23:09 - 2016-03-18 18:10 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-12-26 23:06 - 2016-11-11 18:14 - 00820736 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-12-26 23:06 - 2016-11-11 17:59 - 00648704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-12-26 23:01 - 2016-10-27 17:16 - 00622592 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2016-12-26 23:01 - 2016-10-27 17:03 - 00502784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2016-12-26 22:59 - 2016-03-04 17:52 - 01253376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-12-26 22:59 - 2016-03-04 17:40 - 01875968 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-12-26 22:57 - 2015-05-31 09:11 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2016-12-26 22:57 - 2015-05-31 08:54 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2016-12-26 22:55 - 2015-10-10 16:48 - 00736192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-12-26 22:53 - 2016-06-25 17:04 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-12-26 22:53 - 2016-06-25 17:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-12-26 22:53 - 2016-06-25 17:04 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-12-26 22:53 - 2016-06-25 17:03 - 00161280 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-12-26 22:53 - 2016-06-25 17:03 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-12-26 22:53 - 2016-06-25 16:37 - 00626176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\localspl.dll
2016-12-26 22:53 - 2016-06-25 16:37 - 00443904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-12-26 22:53 - 2016-06-25 16:37 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-12-26 22:53 - 2016-06-25 16:09 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-12-26 22:53 - 2016-06-25 16:09 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-12-26 22:53 - 2016-06-25 15:40 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-12-26 22:43 - 2016-03-17 20:00 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-12-26 22:43 - 2016-03-17 18:45 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-12-26 22:43 - 2016-03-17 18:45 - 00105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-12-26 22:43 - 2016-02-06 03:12 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-12-26 22:43 - 2016-02-06 03:12 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-12-26 22:43 - 2016-02-06 03:02 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-12-26 22:43 - 2016-02-06 03:02 - 00234496 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-12-26 22:43 - 2016-02-06 03:02 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-12-26 22:43 - 2016-02-06 03:01 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-12-26 22:43 - 2016-02-06 01:48 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-12-26 22:43 - 2016-02-06 01:32 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-12-26 22:43 - 2016-02-06 01:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-12-26 22:43 - 2016-02-06 01:32 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-12-26 22:42 - 2014-06-15 23:18 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2016-12-26 22:42 - 2014-06-15 23:18 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2016-12-26 22:42 - 2014-06-13 19:22 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2016-12-26 22:42 - 2014-06-13 19:22 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2016-12-26 22:42 - 2014-06-13 18:36 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2016-12-26 22:42 - 2014-06-13 18:36 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2016-12-26 22:39 - 2015-05-04 23:51 - 10627584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-12-26 22:39 - 2015-05-04 23:50 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-12-26 22:39 - 2015-05-04 23:50 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-12-26 22:39 - 2015-05-04 23:50 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-12-26 22:39 - 2015-05-04 23:33 - 13427712 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-12-26 22:39 - 2015-05-04 23:33 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-12-26 22:39 - 2015-05-04 23:33 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-12-26 22:39 - 2015-05-04 23:32 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-12-26 22:39 - 2015-05-04 22:39 - 08147456 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-12-26 22:39 - 2015-05-04 22:21 - 08147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-12-26 22:37 - 2015-07-09 15:39 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2016-12-26 22:37 - 2015-07-09 15:39 - 00169472 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2016-12-26 22:37 - 2015-07-09 15:25 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2016-12-26 22:31 - 2015-07-18 16:41 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-12-26 22:26 - 2016-10-17 23:20 - 01040896 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-12-26 22:26 - 2016-10-17 23:20 - 00178688 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2016-12-26 22:26 - 2016-10-17 23:19 - 01019904 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2016-12-26 22:26 - 2016-10-17 23:19 - 00923136 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-12-26 22:26 - 2016-10-17 23:19 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2016-12-26 22:26 - 2016-10-17 23:19 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-12-26 22:26 - 2016-10-17 23:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2016-12-26 22:26 - 2016-10-17 23:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2016-12-26 22:26 - 2016-10-17 23:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2016-12-26 22:26 - 2016-10-17 23:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2016-12-26 22:26 - 2016-10-17 23:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2016-12-26 22:26 - 2016-10-17 23:19 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2016-12-26 22:26 - 2016-10-17 23:05 - 00807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-12-26 22:26 - 2016-10-17 23:04 - 00884224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2016-12-26 22:26 - 2016-10-17 23:04 - 00729600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2016-12-26 22:26 - 2016-10-17 23:04 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2016-12-26 22:26 - 2016-10-17 23:04 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2016-12-26 22:26 - 2016-10-17 23:04 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2016-12-26 22:26 - 2016-10-17 23:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2016-12-26 22:26 - 2016-10-17 23:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2016-12-26 22:26 - 2016-10-17 23:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2016-12-26 22:26 - 2016-10-17 23:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2016-12-26 22:26 - 2016-10-17 23:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2016-12-26 22:26 - 2016-10-17 23:04 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2016-12-26 22:26 - 2016-10-07 17:13 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-12-26 22:26 - 2016-10-07 17:11 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-12-26 22:26 - 2016-10-07 16:52 - 00573952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-12-26 22:26 - 2016-10-07 16:51 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-12-26 22:24 - 2016-02-06 03:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-12-26 22:24 - 2014-10-10 02:10 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2016-12-26 22:24 - 2014-10-10 02:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-12-26 22:24 - 2014-10-10 02:00 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-12-26 22:24 - 2014-10-10 00:53 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-12-26 22:24 - 2014-10-10 00:22 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-12-26 22:22 - 2016-08-03 17:23 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2016-12-26 22:22 - 2016-08-03 16:45 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2016-12-26 22:22 - 2016-08-03 15:41 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-12-26 22:22 - 2016-08-03 15:40 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-12-26 22:22 - 2016-08-03 15:40 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-12-26 22:20 - 2016-11-16 18:20 - 00364776 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-12-26 22:20 - 2016-05-10 16:55 - 00264704 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-12-26 22:20 - 2016-05-10 16:54 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-12-26 22:20 - 2016-05-10 16:54 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-12-26 22:20 - 2016-05-10 16:31 - 00377344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-12-26 22:20 - 2016-05-10 16:31 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-12-26 22:20 - 2016-05-10 16:31 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-12-26 22:20 - 2016-05-10 15:55 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-12-26 22:20 - 2016-05-10 15:55 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2016-12-26 22:20 - 2016-05-10 15:28 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2016-12-26 22:16 - 2014-06-26 23:17 - 01389200 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2016-12-26 22:16 - 2014-06-26 23:17 - 00619664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2016-12-26 22:16 - 2014-06-26 23:17 - 00171152 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2016-12-26 22:16 - 2014-06-26 23:17 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2016-12-26 22:16 - 2014-06-26 23:17 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2016-12-26 22:16 - 2014-06-26 23:17 - 00008848 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2016-12-26 22:16 - 2014-06-06 05:29 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2016-12-26 22:16 - 2014-06-06 05:28 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2016-12-26 22:12 - 2016-12-26 22:12 - 00541952 _____ C:\Users\Suiolirim\AppData\Local\dd_vstor40_lp_x64_deuMSI7623.txt
2016-12-26 22:12 - 2016-12-26 22:12 - 00013972 _____ C:\Users\Suiolirim\AppData\Local\dd_vstor40_lp_x64_deuUI7623.txt
2016-12-26 22:12 - 2015-07-29 01:46 - 11588096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-12-26 22:12 - 2015-07-29 01:31 - 12901888 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-12-26 22:12 - 2014-10-03 02:18 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-12-26 22:12 - 2014-10-03 02:17 - 00396800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-12-26 22:12 - 2014-10-03 02:17 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-12-26 22:12 - 2014-10-03 02:03 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-12-26 22:12 - 2014-10-03 02:02 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-12-26 22:12 - 2014-10-03 02:01 - 00474624 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-12-26 22:12 - 2014-10-03 02:01 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-12-26 22:12 - 2014-10-03 00:49 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\audiodg.exe
2016-12-26 22:11 - 2016-12-26 22:12 - 01303922 _____ C:\Users\Suiolirim\AppData\Local\dd_vstor40_x64MSI7583.txt
2016-12-26 22:11 - 2016-12-26 22:12 - 00014024 _____ C:\Users\Suiolirim\AppData\Local\dd_vstor40_x64UI7583.txt
2016-12-26 22:09 - 2015-04-24 16:54 - 00532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2016-12-26 22:09 - 2015-04-24 16:41 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2016-12-26 22:07 - 2015-11-10 18:03 - 01208832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-12-26 22:07 - 2015-11-10 18:03 - 00488448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-12-26 22:07 - 2015-11-10 17:40 - 01683968 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-12-26 22:07 - 2015-11-10 17:40 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-12-26 22:07 - 2015-01-29 02:35 - 00369664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2016-12-26 22:07 - 2015-01-29 02:33 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2016-12-26 22:06 - 2015-03-05 03:23 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2016-12-26 22:06 - 2015-03-05 02:58 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2016-12-26 22:06 - 2014-12-06 04:14 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2016-12-26 22:06 - 2014-12-06 04:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2016-12-26 22:06 - 2014-12-06 03:54 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-12-26 22:06 - 2014-12-06 03:54 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2016-12-26 22:06 - 2014-08-27 01:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2016-12-26 22:06 - 2014-08-27 01:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-12-26 22:05 - 2015-07-21 16:50 - 00154048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys
2016-12-26 22:05 - 2015-07-21 16:50 - 00068544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-12-26 22:05 - 2015-07-21 16:41 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-12-26 22:05 - 2015-07-21 16:40 - 00399360 _____ (Microsoft Corporation) C:\Windows\system32\emdmgmt.dll
2016-12-26 22:05 - 2015-04-11 00:33 - 00384512 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-12-26 22:05 - 2015-04-11 00:22 - 00279552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\services.exe
2016-12-26 22:05 - 2014-12-06 03:54 - 00178688 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-12-26 22:04 - 2015-11-13 17:56 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-12-26 22:04 - 2015-11-13 17:56 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-12-26 22:04 - 2015-11-13 17:42 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-12-26 22:04 - 2015-11-13 17:42 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-12-26 22:04 - 2015-11-13 16:27 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-12-26 22:03 - 2014-10-24 02:04 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2016-12-26 22:03 - 2014-10-24 01:39 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2016-12-26 22:02 - 2016-01-30 04:09 - 00429056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-12-26 22:02 - 2016-01-30 04:09 - 00324608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdohlp.dll
2016-12-26 22:02 - 2016-01-30 04:09 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2016-12-26 22:02 - 2016-01-30 04:09 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2016-12-26 22:02 - 2016-01-30 04:09 - 00217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2016-12-26 22:02 - 2016-01-30 04:09 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbeio.dll
2016-12-26 22:02 - 2016-01-30 04:08 - 00119296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrecst.dll
2016-12-26 22:02 - 2016-01-30 04:08 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSNP.ax
2016-12-26 22:02 - 2016-01-30 04:08 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mpeg2Data.ax
2016-12-26 22:02 - 2016-01-30 04:08 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSDvbNP.ax
2016-12-26 22:02 - 2016-01-30 04:08 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasads.dll
2016-12-26 22:02 - 2016-01-30 04:08 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasdatastore.dll
2016-12-26 22:02 - 2016-01-30 03:44 - 00560128 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-12-26 22:02 - 2016-01-30 03:44 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\sdohlp.dll
2016-12-26 22:02 - 2016-01-30 03:44 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2016-12-26 22:02 - 2016-01-30 03:44 - 00375808 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2016-12-26 22:02 - 2016-01-30 03:44 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2016-12-26 22:02 - 2016-01-30 03:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\sbeio.dll
2016-12-26 22:02 - 2016-01-30 03:44 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2016-12-26 22:02 - 2016-01-30 03:44 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2016-12-26 22:02 - 2016-01-30 03:43 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2016-12-26 22:02 - 2016-01-30 03:43 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2016-12-26 22:02 - 2016-01-30 03:43 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2016-12-26 22:02 - 2016-01-30 03:43 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iasdatastore.dll
2016-12-26 22:02 - 2016-01-30 02:45 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\iashost.exe
2016-12-26 22:02 - 2016-01-30 02:32 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iashost.exe
2016-12-26 22:02 - 2014-09-05 00:38 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2016-12-26 22:01 - 2015-08-05 16:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-12-26 22:00 - 2016-11-20 17:57 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-12-26 22:00 - 2016-11-20 15:16 - 00277504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2016-12-26 22:00 - 2016-11-20 15:13 - 00521448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-12-26 22:00 - 2016-11-20 15:13 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2016-12-26 22:00 - 2016-10-08 17:08 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-12-26 22:00 - 2016-10-08 17:07 - 01689600 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-12-26 22:00 - 2016-10-08 16:51 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-12-26 22:00 - 2016-08-10 17:12 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-12-26 22:00 - 2016-08-10 17:12 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-12-26 22:00 - 2016-08-10 16:44 - 00284160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-12-26 22:00 - 2016-08-10 16:43 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-12-26 22:00 - 2016-05-14 16:54 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-12-26 22:00 - 2016-05-14 16:41 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-12-26 22:00 - 2016-03-18 19:15 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-12-26 22:00 - 2016-02-06 03:12 - 00679424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-12-26 22:00 - 2016-02-06 03:11 - 00802304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-12-26 22:00 - 2016-02-06 03:01 - 01304576 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-12-26 22:00 - 2016-02-06 02:59 - 01067008 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-12-26 22:00 - 2015-06-27 15:30 - 00278016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-12-26 22:00 - 2015-06-27 15:30 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-12-26 22:00 - 2015-01-09 01:28 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-12-26 21:59 - 2016-11-08 18:10 - 03137536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-12-26 21:59 - 2016-11-08 18:01 - 02264576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-12-26 21:59 - 2015-10-13 15:45 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-12-26 21:59 - 2015-10-13 15:44 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-12-26 21:59 - 2015-06-17 16:18 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-12-26 21:59 - 2015-06-17 16:09 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-12-26 21:59 - 2014-06-02 22:30 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-12-26 21:59 - 2014-06-02 22:29 - 02280448 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-12-26 21:59 - 2014-06-02 22:29 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-12-26 21:59 - 2014-06-02 21:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-12-26 21:59 - 2014-06-02 11:31 - 00332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-12-26 21:59 - 2014-06-02 11:30 - 01993728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-12-26 21:56 - 2016-10-17 23:19 - 00975872 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-12-26 21:56 - 2016-10-17 23:04 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-12-26 21:56 - 2016-09-15 01:23 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-12-26 21:56 - 2016-09-15 01:01 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-12-26 21:56 - 2016-04-09 21:53 - 00901352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-12-26 21:56 - 2016-04-09 21:46 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-12-26 21:55 - 2016-05-12 16:56 - 00726016 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-12-26 21:55 - 2016-05-12 16:56 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-12-26 21:55 - 2016-05-12 16:56 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-12-26 21:55 - 2016-05-12 16:56 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-12-26 21:55 - 2016-05-12 16:56 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-12-26 21:55 - 2016-05-12 16:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-12-26 21:55 - 2016-05-12 16:34 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-12-26 21:55 - 2016-05-12 16:34 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2016-12-26 21:55 - 2016-05-12 16:33 - 00075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-12-26 21:55 - 2016-05-12 16:33 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-12-26 21:53 - 2016-02-02 16:44 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-12-26 21:49 - 2016-11-20 18:12 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-12-26 21:49 - 2016-11-20 17:55 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00015200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00015200 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-12-26 21:49 - 2015-11-20 15:15 - 00011104 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-12-26 21:49 - 2015-07-01 16:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-12-26 21:49 - 2015-07-01 16:43 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-12-26 21:17 - 2014-01-30 11:12 - 01111040 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2016-12-26 21:17 - 2014-01-30 08:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2016-12-26 21:17 - 2013-10-11 05:23 - 00781824 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2016-12-26 21:17 - 2013-10-11 05:23 - 00462848 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-12-26 21:17 - 2013-10-11 03:29 - 00217074 _____ C:\Windows\system32\WFP.TMF
2016-12-26 21:17 - 2013-10-11 03:07 - 00596480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2016-12-26 21:16 - 2016-11-09 01:44 - 18807296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-12-26 21:16 - 2016-11-09 01:41 - 02351104 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-12-26 21:16 - 2016-11-09 01:36 - 10941952 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-12-26 21:16 - 2016-11-09 01:35 - 01392640 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-12-26 21:16 - 2016-11-09 01:35 - 01390080 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-12-26 21:16 - 2016-11-09 01:35 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-12-26 21:16 - 2016-11-09 01:34 - 02158592 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-12-26 21:16 - 2016-11-09 01:34 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-12-26 21:16 - 2016-11-09 01:34 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-12-26 21:16 - 2016-11-09 01:34 - 00581120 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-12-26 21:16 - 2016-11-09 01:34 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2016-12-26 21:16 - 2016-11-09 01:34 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-12-26 21:16 - 2016-11-09 01:33 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-12-26 21:16 - 2016-11-09 01:33 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-12-26 21:16 - 2016-11-09 01:33 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-12-26 21:16 - 2016-11-09 01:33 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-12-26 21:16 - 2016-11-09 01:33 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-12-26 21:16 - 2016-11-09 01:33 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-12-26 21:16 - 2016-11-09 01:33 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-12-26 21:16 - 2016-11-09 01:33 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2016-12-26 21:16 - 2016-11-09 01:33 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2016-12-26 21:16 - 2016-11-09 01:33 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2016-12-26 21:16 - 2016-11-09 01:06 - 01815552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-12-26 21:16 - 2016-11-09 01:05 - 12841472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-12-26 21:16 - 2016-11-09 01:03 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-12-26 21:16 - 2016-11-09 01:02 - 09756160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-12-26 21:16 - 2016-11-09 01:01 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-12-26 21:16 - 2016-11-09 01:01 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-12-26 21:16 - 2016-11-09 01:00 - 01805312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-12-26 21:16 - 2016-11-09 01:00 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-12-26 21:16 - 2016-11-09 01:00 - 00429056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-12-26 21:16 - 2016-11-09 01:00 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2016-12-26 21:16 - 2016-11-09 01:00 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-12-26 21:16 - 2016-11-09 01:00 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-12-26 21:16 - 2016-11-09 00:59 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-12-26 21:16 - 2016-11-09 00:59 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-12-26 21:16 - 2016-11-09 00:59 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-12-26 21:16 - 2016-11-09 00:59 - 00354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-12-26 21:16 - 2016-11-09 00:59 - 00223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-12-26 21:16 - 2016-11-09 00:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-12-26 21:16 - 2016-11-09 00:59 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-12-26 21:16 - 2016-11-09 00:59 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2016-12-26 21:16 - 2016-11-09 00:59 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2016-12-26 21:16 - 2016-11-09 00:59 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2016-12-26 21:16 - 2014-04-05 10:10 - 01422784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-12-26 21:16 - 2013-10-03 16:02 - 01278976 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-12-26 21:16 - 2013-10-03 13:45 - 00993792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-12-26 21:15 - 2013-10-22 10:31 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2016-12-26 21:15 - 2013-10-22 08:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2016-12-26 21:15 - 2013-10-11 05:27 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2016-12-26 21:15 - 2013-10-11 05:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2016-12-26 21:15 - 2013-10-11 03:19 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2016-12-26 21:15 - 2013-10-11 03:19 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2016-12-26 21:15 - 2013-10-11 03:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2016-12-26 21:15 - 2013-10-11 03:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2016-12-26 21:15 - 2013-10-11 03:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshcon.dll
2016-12-26 21:15 - 2013-10-11 01:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2016-12-26 21:15 - 2013-10-11 01:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2016-12-26 18:22 - 2016-11-08 16:49 - 02804736 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-12-26 17:46 - 2016-09-08 15:39 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-12-26 17:46 - 2016-09-08 15:39 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-12-26 17:36 - 2016-12-26 17:36 - 00001628 _____ C:\Users\Suiolirim\Downloads\sg_backup_2016-12-26-1736.spg
2016-12-25 17:11 - 2016-12-25 17:11 - 00383208 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-12-25 17:11 - 2016-12-25 17:11 - 00306408 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-12-25 17:11 - 2016-12-25 17:11 - 00048128 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-12-25 17:11 - 2016-12-25 17:11 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 02002944 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 01561600 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 01268224 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 01172480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 01154560 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 01073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 00682496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 00486912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2016-12-25 17:10 - 2016-12-25 17:10 - 00160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2016-12-25 17:07 - 2016-12-25 17:07 - 00000041 _____ C:\Windows\woubak-pwrscheme-temp.txt
2016-12-25 17:07 - 2016-12-25 17:07 - 00000041 _____ C:\Windows\woubak-pwrscheme-act.txt
2016-12-24 20:29 - 2016-12-27 13:52 - 00002894 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Suiolirim)
2016-12-24 20:29 - 2016-12-24 20:31 - 00000000 ____D C:\Users\Suiolirim\AppData\LocalLow\IObit
2016-12-24 20:29 - 2016-12-24 20:30 - 00002083 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk
2016-12-24 20:29 - 2016-12-24 20:29 - 00027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2016-12-24 20:29 - 2016-12-24 20:29 - 00003262 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2016-12-24 20:29 - 2016-12-24 20:29 - 00000000 ____D C:\Windows\IObit
2016-12-24 20:29 - 2016-12-24 20:29 - 00000000 ____D C:\ProgramData\ProductData
2016-12-24 20:29 - 2016-12-24 20:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2016-12-24 20:28 - 2016-12-25 12:53 - 00000000 ____D C:\Users\Suiolirim\AppData\Roaming\IObit
2016-12-24 20:03 - 2016-12-24 20:03 - 00000000 ____D C:\Users\Suiolirim\AppData\Roaming\AVG
2016-12-24 20:02 - 2016-12-24 20:02 - 00000805 _____ C:\Users\Public\Desktop\AVG Protection.lnk
2016-12-24 20:02 - 2016-12-24 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-12-24 19:59 - 2016-12-24 19:59 - 00000000 ___HD C:\$AVG
2016-12-24 19:57 - 2016-12-27 14:18 - 00000000 ____D C:\ProgramData\MFAData
2016-12-24 19:57 - 2016-12-24 19:57 - 00000000 ____D C:\Users\Suiolirim\AppData\Local\MFAData
2016-12-24 19:52 - 2016-12-26 22:01 - 00003564 _____ C:\Windows\System32\Tasks\AVG EUpdate Task
2016-12-24 19:52 - 2016-12-24 19:57 - 00000000 ____D C:\Program Files (x86)\AVG
2016-12-24 19:52 - 2016-12-24 19:52 - 00000000 ____D C:\Users\Suiolirim\AppData\Local\CEF
2016-12-24 19:50 - 2016-12-24 20:03 - 00000000 ____D C:\Users\Suiolirim\AppData\Local\Avg
2016-12-24 19:50 - 2016-12-24 19:59 - 00000000 ____D C:\ProgramData\Avg
2016-12-24 19:50 - 2016-12-24 19:56 - 00000000 ____D C:\Users\Suiolirim\AppData\Local\AvgSetupLog
2016-12-24 18:53 - 2016-12-24 18:53 - 00003640 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1653470619-1168622029-2061882709-1000UA
2016-12-24 18:53 - 2016-12-24 18:53 - 00003368 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1653470619-1168622029-2061882709-1000Core
2016-12-24 17:57 - 2016-12-27 14:04 - 00000000 ____D C:\Users\Suiolirim\AppData\LocalLow\Mozilla
2016-12-24 17:56 - 2016-12-24 18:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-24 17:24 - 2016-12-24 17:25 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-12-24 17:24 - 2016-12-24 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-12-24 17:24 - 2016-12-24 17:24 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-12-24 17:24 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-12-24 17:24 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-12-01 02:18 - 2016-12-01 02:18 - 00875712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2016-12-01 02:18 - 2016-12-01 02:18 - 00536768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2016-12-01 02:18 - 2016-12-01 02:18 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2016-12-01 02:18 - 2016-12-01 02:18 - 00018088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110_clr0400.dll
2016-12-01 02:18 - 2016-12-01 02:18 - 00018088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2016-12-01 02:18 - 2016-12-01 02:18 - 00018088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110_clr0400.dll
2016-12-01 01:37 - 2016-12-01 01:37 - 00869576 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2016-12-01 01:37 - 2016-12-01 01:37 - 00678600 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2016-12-01 01:37 - 2016-12-01 01:37 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2016-12-01 01:37 - 2016-12-01 01:37 - 00018088 _____ (Microsoft Corporation) C:\Windows\system32\msvcr110_clr0400.dll
2016-12-01 01:37 - 2016-12-01 01:37 - 00018088 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2016-12-01 01:37 - 2016-12-01 01:37 - 00018088 _____ (Microsoft Corporation) C:\Windows\system32\msvcp110_clr0400.dll
2016-11-30 08:04 - 2016-11-30 08:04 - 00298240 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx64.sys
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-12-27 14:21 - 2013-10-30 09:29 - 00000000 ____D C:\FRST
2016-12-27 13:39 - 2009-02-04 13:54 - 00001064 _____ C:\Windows\Tasks\Google Software Updater.job
2016-12-27 13:31 - 2010-02-11 14:51 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2016-12-27 13:31 - 2006-11-02 16:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-27 13:31 - 2006-11-02 16:22 - 00003744 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-27 13:31 - 2006-11-02 16:22 - 00003744 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-27 13:30 - 2006-11-02 16:42 - 00032510 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-12-27 13:24 - 2013-10-29 21:41 - 00000000 ____D C:\Windows\ERUNT
2016-12-27 13:15 - 2008-09-13 06:16 - 00696342 _____ C:\Windows\system32\perfh007.dat
2016-12-27 13:15 - 2008-09-13 06:16 - 00156498 _____ C:\Windows\system32\perfc007.dat
2016-12-27 13:15 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\inf
2016-12-27 13:15 - 2006-11-02 13:46 - 01632730 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-27 12:48 - 2009-07-06 19:46 - 01608186 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-12-27 01:32 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\rescache
2016-12-27 01:07 - 2009-02-02 17:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-12-27 00:37 - 2006-11-02 16:07 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-12-27 00:37 - 2006-11-02 16:07 - 00000000 ____D C:\Program Files\Windows Journal
2016-12-27 00:37 - 2006-11-02 14:33 - 00000000 ____D C:\Program Files\Common Files\System
2016-12-27 00:36 - 2013-10-31 16:07 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-12-27 00:36 - 2006-11-02 16:07 - 00000000 ____D C:\Program Files\Windows Collaboration
2016-12-26 23:29 - 2013-07-15 18:55 - 00000000 ____D C:\Windows\system32\MRT
2016-12-26 23:23 - 2006-11-02 13:35 - 135632432 ____C (Microsoft Corporation) C:\Windows\system32\mrt.exe
2016-12-26 22:24 - 2010-06-05 13:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-12-26 18:26 - 2006-11-02 16:21 - 00463984 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-26 18:23 - 2006-11-02 14:34 - 00000000 ____D C:\Windows\tracing
2016-12-25 15:26 - 2013-06-10 15:07 - 00000000 ____D C:\Program Files (x86)\DevPro
2016-12-25 15:17 - 2009-02-02 15:45 - 00000000 ____D C:\Users\Suiolirim
2016-12-25 15:12 - 2010-08-06 15:08 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-12-25 15:09 - 2011-09-19 15:13 - 00000000 ____D C:\Program Files (x86)\Steam
2016-12-25 15:08 - 2008-09-12 20:53 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-12-25 15:03 - 2011-05-08 15:32 - 00000000 ____D C:\Users\Suiolirim\AppData\Local\Unity
2016-12-25 15:02 - 2009-02-15 14:57 - 00000000 ____D C:\Users\Suiolirim\AppData\LocalLow\Macromedia
2016-12-25 15:02 - 2009-02-02 16:04 - 00000000 ____D C:\Users\Suiolirim\AppData\LocalLow\Adobe
2016-12-25 15:02 - 2009-02-02 16:01 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2016-12-25 15:02 - 2008-09-12 20:56 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-12-24 20:29 - 2011-03-02 13:42 - 00000000 ____D C:\ProgramData\IObit
2016-12-24 20:29 - 2011-03-02 13:41 - 00000000 ____D C:\Program Files (x86)\IObit
2016-12-24 20:02 - 2011-04-22 15:49 - 00000000 ____D C:\Users\Suiolirim\AppData\Roaming\TuneUp Software
2016-12-24 19:50 - 2009-05-23 09:33 - 00000000 ____D C:\Users\Suiolirim\AppData\Local\Downloaded Installations
2016-12-24 18:58 - 2013-02-08 16:54 - 00000000 ____D C:\ProgramData\AVAST Software
2016-12-24 18:58 - 2013-02-08 16:54 - 00000000 ____D C:\Program Files\AVAST Software
2016-12-24 18:52 - 2013-02-28 15:51 - 00292704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.148260198865912
2016-12-24 18:52 - 2013-02-08 16:55 - 00513496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.148260198784910
2016-12-24 18:51 - 2013-02-08 16:55 - 00969560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.148260198497907
2016-12-24 18:40 - 2012-04-25 20:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-24 17:59 - 2011-10-08 14:11 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-24 17:46 - 2009-02-02 16:15 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-12-24 17:40 - 2010-05-26 13:15 - 00002059 _____ C:\Users\Suiolirim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-24 17:33 - 2009-02-02 15:46 - 00000000 ____D C:\Users\Suiolirim\AppData\Local\Adobe
2016-12-24 17:24 - 2013-01-06 19:32 - 00000903 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-12-24 17:24 - 2013-01-06 19:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2016-12-24 17:24 - 2009-05-20 15:05 - 00000000 ____D C:\Users\Suiolirim\AppData\Roaming\Malwarebytes
2016-12-24 17:24 - 2009-05-20 15:05 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-12-24 17:19 - 2011-06-15 13:27 - 00002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2016-12-24 17:18 - 2009-06-30 14:25 - 00003542 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-24 17:18 - 2009-06-30 14:25 - 00003414 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2013-03-08 16:33 - 2013-03-08 16:33 - 0000191 _____ () C:\Program Files\Common Files\TrackerSoftwareInstallerPDFX5SA.log
2011-03-13 12:04 - 2011-03-13 12:22 - 0000041 _____ () C:\Users\Suiolirim\AppData\Roaming\TheHunterSettings_live.cfg
2011-02-21 12:25 - 2015-04-06 15:39 - 0000254 _____ () C:\Users\Suiolirim\AppData\Roaming\wklnhst.dat
2009-03-08 16:26 - 2010-02-27 16:31 - 0001100 _____ () C:\Users\Suiolirim\AppData\Local\d3d8caps.dat
2009-05-09 19:07 - 2013-05-16 12:56 - 0001356 _____ () C:\Users\Suiolirim\AppData\Local\d3d9caps.dat
2009-02-22 20:10 - 2010-04-14 12:51 - 0001460 _____ () C:\Users\Suiolirim\AppData\Local\d3d9caps64.dat
2009-02-02 19:46 - 2009-12-20 19:22 - 0007168 _____ () C:\Users\Suiolirim\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-03-27 22:02 - 2015-04-09 13:40 - 0348394 _____ () C:\Users\Suiolirim\AppData\Local\dd_depcheck_NETFX_EXP_35.txt
2010-03-27 22:02 - 2010-03-27 22:02 - 0000002 _____ () C:\Users\Suiolirim\AppData\Local\dd_dotnetfx35error.txt
2010-03-27 22:02 - 2015-04-09 13:40 - 0240504 _____ () C:\Users\Suiolirim\AppData\Local\dd_dotnetfx35install.txt
2009-06-09 13:57 - 2009-06-09 13:57 - 0402640 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI0710.txt
2013-02-08 16:54 - 2013-02-08 16:54 - 0364352 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI08CA.txt
2009-06-09 14:00 - 2009-06-09 14:00 - 0415660 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI08CC.txt
2010-04-02 18:56 - 2010-04-02 18:58 - 0418332 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI110D.txt
2010-04-02 18:58 - 2010-04-02 18:58 - 0407074 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI1295.txt
2010-03-30 13:17 - 2010-03-30 13:17 - 0442364 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI2358.txt
2011-09-16 15:05 - 2011-09-16 15:05 - 0512626 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI24ED.txt
2011-05-18 11:52 - 2011-05-18 11:52 - 0361952 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI3D99.txt
2010-08-06 15:09 - 2010-08-06 15:09 - 0427316 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI57C6.txt
2011-05-06 16:16 - 2011-05-06 16:16 - 0366200 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI5DE5.txt
2009-10-12 06:43 - 2009-10-12 06:43 - 0366808 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI60F5.txt
2010-08-01 09:57 - 2010-08-01 09:57 - 0353238 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI62B5.txt
2010-08-01 09:57 - 2010-08-01 09:57 - 0400340 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI62BC.txt
2011-05-04 11:26 - 2011-05-04 11:26 - 0360800 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI639F.txt
2009-04-04 11:15 - 2009-04-04 11:15 - 0417434 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI6604.txt
2011-05-12 20:38 - 2011-05-12 20:38 - 0427518 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI7AB9.txt
2011-04-19 15:13 - 2011-04-19 15:13 - 0364108 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistMSI7CE1.txt
2009-06-09 13:57 - 2009-06-09 13:57 - 0012046 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI0710.txt
2013-02-08 16:54 - 2013-02-08 16:54 - 0014102 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI08CA.txt
2009-06-09 14:00 - 2009-06-09 14:00 - 0012158 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI08CC.txt
2010-04-02 18:56 - 2010-04-02 18:58 - 0016562 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI110D.txt
2010-04-02 18:58 - 2010-04-02 18:58 - 0016042 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI1295.txt
2010-03-30 13:17 - 2010-03-30 13:17 - 0013882 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI2358.txt
2011-09-16 14:31 - 2011-09-16 15:06 - 0016292 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI24ED.txt
2011-05-18 11:52 - 2011-05-18 11:52 - 0013346 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI3D99.txt
2010-08-06 15:09 - 2010-08-06 15:09 - 0013538 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI57C6.txt
2011-05-06 16:16 - 2011-05-06 16:16 - 0015098 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI5DE5.txt
2009-10-12 06:43 - 2009-10-12 06:43 - 0011170 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI60F5.txt
2010-08-01 09:57 - 2010-08-01 09:57 - 0014622 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI62B5.txt
2010-08-01 09:57 - 2010-08-01 09:57 - 0014390 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI62BC.txt
2011-05-04 11:26 - 2011-05-04 11:26 - 0013298 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI639F.txt
2009-04-04 11:15 - 2009-04-04 11:15 - 0011410 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI6604.txt
2011-05-12 20:38 - 2011-05-12 20:38 - 0014288 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI7AB9.txt
2011-04-19 15:13 - 2011-04-19 15:13 - 0014346 _____ () C:\Users\Suiolirim\AppData\Local\dd_vcredistUI7CE1.txt
2016-12-26 22:12 - 2016-12-26 22:12 - 0541952 _____ () C:\Users\Suiolirim\AppData\Local\dd_vstor40_lp_x64_deuMSI7623.txt
2016-12-26 22:12 - 2016-12-26 22:12 - 0013972 _____ () C:\Users\Suiolirim\AppData\Local\dd_vstor40_lp_x64_deuUI7623.txt
2016-12-26 22:11 - 2016-12-26 22:12 - 1303922 _____ () C:\Users\Suiolirim\AppData\Local\dd_vstor40_x64MSI7583.txt
2016-12-26 22:11 - 2016-12-26 22:12 - 0014024 _____ () C:\Users\Suiolirim\AppData\Local\dd_vstor40_x64UI7583.txt
2011-04-03 19:15 - 2011-04-03 19:15 - 0000096 _____ () C:\Users\Suiolirim\AppData\Local\fusioncache.dat
2010-03-27 22:02 - 2015-04-09 13:40 - 0006904 _____ () C:\Users\Suiolirim\AppData\Local\uxeventlog.txt
2011-10-15 14:44 - 2011-10-15 14:45 - 0001850 _____ () C:\ProgramData\1318686248.2288.bin
2011-04-19 16:50 - 2011-04-27 12:01 - 1555999 _____ () C:\ProgramData\bdinstall.bin
2008-09-12 21:06 - 2008-09-12 21:06 - 0000349 _____ () C:\ProgramData\hpzinstall.log
2009-12-18 20:20 - 2009-12-18 20:20 - 0000000 _____ () C:\ProgramData\leverage.drm.log
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Suiolirim\hash.dat
Einige mit null Byte Größe Dateien/Ordner:
==========================
C:\Windows\SysWOW64\runouce.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-12-27 13:43
==================== Ende von FRST.txt ============================
|
| Themen zu Windows Vista: AVG findet einen Rootkit |
| adobe, antivirus, avast, avg, combofix, defender, desktop, driver booster, entfernen, error, google, home, installation, kaspersky, mozilla, prozesse, realtek, registry, rootkit, scan, software, systemüberprüfung, teamspeak, vista, warnung, windows |
Baum-Darstellung