Zurück   Trojaner-Board > Web/PC > Alles rund um Windows

Alles rund um Windows: Seltsames Verhalten nach Bootvorgang Win 7

Windows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows.

Antwort
Alt 02.01.2017, 02:00   #1
PCNutzer
 
Seltsames Verhalten nach Bootvorgang Win 7 - Standard

Problem: Seltsames Verhalten nach Bootvorgang Win 7



Hallo,

nach dem Start meines PCs spielte die Maus und die Tastatur verrückt. Explorer Fenster öffneten sich selbständig und eine Bedienung des Rechners war nicht mehr möglich.
Nach einem Neustart waren dies Probleme nicht mehr vorhanden.

Seltsamerweise brachte die Windows Systemwiederherstellung keine Besserung da sie mit einem unbekannten Fehler abgeschlossen wurde. Also habe ich diese Rückgängi gemacht (fehlerfei, also Stand wie ohne sie auszuführen)
Schlussendlich wurde die "Settings" Datei meines WebDAV Programms (CarotDAV) zerstört, dieser habe ich auch wiederhergestellt.

FRST.txt
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 01-01-2017
durchgeführt von MAIN (Administrator) auf MAIN-PC (02-01-2017 01:15:29)
Gestartet von C:\Users\MAIN\Downloads
Geladene Profile: MAIN (Verfügbare Profile: MAIN & User2)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(ESET) C:\Program Files\ESET\ESET Internet Security\ekrn.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Micron Technology, Inc.) C:\Program Files\Crucial\Crucial Storage Executive\cache\MicronCacheMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(ESET) C:\Program Files\ESET\ESET Internet Security\egui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Flux Software LLC) C:\Users\MAIN\AppData\Local\FluxSoftware\Flux\flux.exe
() C:\Windows\System32\PnkBstrA.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIGCE.EXE
(Duplicati Team) C:\Program Files\Duplicati 2\Duplicati.GUI.TrayIcon.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Rei Software) C:\Program Files (x86)\Rei Software\CarotDAV\CarotDAV.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(PortableApps.com) C:\Users\MAIN\Downloads\WiresharkPortable_2.2.3.paf.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12446824 2016-11-19] (Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [571192 2014-08-14] (Acronis)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2016-11-19] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2779136 2016-06-11] (Dominik Reichl)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5356288 2015-07-24] (Acronis)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [693336 2015-07-20] (Acronis International GmbH)
HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\...\Run: [f.lux] => C:\Users\MAIN\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation)
HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [9161720 2016-12-23] (Binary Fortress Software)
HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\...\Run: [Epson Stylus SX420W(Netzwerk)] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE [224768 2016-12-10] (SEIKO EPSON CORPORATION)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CarotDAV.lnk [2016-12-07]
ShortcutTarget: CarotDAV.lnk -> C:\Program Files (x86)\Rei Software\CarotDAV\CarotDAV.exe (Rei Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Duplicati 2.lnk [2016-12-07]
ShortcutTarget: Duplicati 2.lnk -> C:\Program Files\Duplicati 2\Duplicati.GUI.TrayIcon.exe (Duplicati Team)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2017-01-01]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
GroupPolicy: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.111.1
Tcpip\..\Interfaces\{67E0DE87-E516-4391-BD33-96F59988E73C}: [DhcpNameServer] 192.168.111.1

Internet Explorer:
==================
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-12-04] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-12-04] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-04] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-12-04] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-07] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-12-04] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-12-04] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-07] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-04] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-04] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-04] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-04] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 78m7dka4.default
FF ProfilePath: C:\Users\MAIN\AppData\Roaming\Mozilla\Firefox\Profiles\78m7dka4.default [2017-01-01]
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-12-04] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-04] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxps://www.google.de/
CHR Profile: C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default [2017-01-02]
CHR Extension: (Google Präsentationen) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-07]
CHR Extension: (Google Docs) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-07]
CHR Extension: (Google Drive) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-07]
CHR Extension: (ColorZilla) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2016-12-26]
CHR Extension: (YouTube) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-07]
CHR Extension: (uBlock Origin) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-12-20]
CHR Extension: (Google Tabellen) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-07]
CHR Extension: (Google Docs Offline) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-07]
CHR Extension: (Helium Backup) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpglbgbpeobllokpmeagpoagjbfknanl [2016-12-07]
CHR Extension: (WhatFont) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2016-12-07]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-07]
CHR Extension: (Google Mail) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-07]
CHR Extension: (Chrome Media Router) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-14]
CHR Extension: (Privacy Badger) - C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2016-12-16]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3698888 2016-12-04] (Microsoft Corporation)
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [5098008 2016-12-23] (Binary Fortress Software)
R2 ekrn; C:\Program Files\ESET\ESET Internet Security\ekrn.exe [2815520 2016-10-11] (ESET)
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Datei ist nicht signiert]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-05] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
R2 MicronCacheMonitor; C:\Program Files\Crucial\Crucial Storage Executive\cache\MicronCacheMonitor.exe [689152 2016-07-26] (Micron Technology, Inc.) [Datei ist nicht signiert]
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-01] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [37504 2016-11-03] (The OpenVPN Project)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2016-12-07] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2016-12-07] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-12-10] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-12-08] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R0 asstor64; C:\Windows\System32\DRIVERS\asstor64.sys [84816 2015-11-12] (Asmedia Technology)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [232072 2016-10-13] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [212096 2016-10-13] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [177792 2016-10-13] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [48768 2016-10-13] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [76416 2016-10-13] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [59528 2016-10-13] (ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [91784 2016-10-13] (ESET)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [296736 2016-12-07] (Acronis International GmbH)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-09-01] (Intel Corporation)
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-02-03] ()
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2016-03-29] (Intel Corporation)
R0 mticache; C:\Windows\System32\Drivers\mticache.sys [61512 2015-07-13] (Micron Technology, Inc.) [Datei ist nicht signiert]
R1 mtihint; C:\Windows\system32\Drivers\mtihint.sys [18504 2015-07-13] (Micron Technology, Inc.) [Datei ist nicht signiert]
R3 Serenum; C:\Windows\System32\DRIVERS\nuvserenum.sys [23552 2013-11-25] (Windows (R) Win 7 DDK provider)
R3 Serial; C:\Windows\System32\DRIVERS\nuvserial.sys [86016 2013-11-25] (Nuvoton Technology Corp.)
R3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [41816 2016-11-03] (SteelSeries ApS)
R3 sshid; C:\Windows\System32\DRIVERS\sshid.sys [52960 2016-12-07] (SteelSeries ApS)
R2 tib; C:\Windows\System32\DRIVERS\tib.sys [1058632 2016-12-07] (Acronis International GmbH)
R2 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [248648 2016-12-07] (Acronis International GmbH)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-02 01:15 - 2017-01-02 01:15 - 00020123 _____ C:\Users\MAIN\Downloads\FRST.txt
2017-01-02 01:15 - 2017-01-02 01:15 - 00000000 ____D C:\FRST
2017-01-02 01:14 - 2017-01-02 01:15 - 00000000 ____D C:\Users\MAIN\Downloads\WiresharkPortable
2017-01-02 01:13 - 2017-01-02 01:13 - 02418176 _____ (Farbar) C:\Users\MAIN\Downloads\FRST64.exe
2017-01-02 01:08 - 2017-01-02 01:08 - 46083968 _____ (PortableApps.com) C:\Users\MAIN\Downloads\WiresharkPortable_2.2.3.paf.exe
2017-01-02 01:07 - 2017-01-02 01:08 - 70336512 _____ C:\Users\MAIN\Downloads\MessageAnalyzer64.msi
2017-01-01 23:32 - 2017-01-01 23:32 - 00013669 _____ C:\Users\MAIN\Desktop\freefixer-log.txt
2017-01-01 23:26 - 2017-01-01 23:41 - 00000000 ____D C:\Users\MAIN\AppData\Local\FreeFixer
2017-01-01 23:26 - 2017-01-01 23:26 - 02569628 _____ C:\Users\MAIN\Downloads\freefixer_portable.zip
2017-01-01 23:26 - 2017-01-01 23:26 - 00000000 ____D C:\Users\MAIN\Downloads\freefixer_portable
2017-01-01 23:26 - 2017-01-01 23:26 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\FreeFixer
2017-01-01 23:23 - 2017-01-01 23:23 - 00005656 _____ C:\Users\MAIN\Desktop\cc_20170101_232324.reg
2017-01-01 23:21 - 2017-01-01 23:21 - 00000000 ____D C:\Users\MAIN\Downloads\ccsetup523
2017-01-01 23:18 - 2017-01-01 23:18 - 07165735 _____ C:\Users\MAIN\Downloads\ccsetup523.zip
2017-01-01 23:03 - 2017-01-01 23:13 - 00000000 ____D C:\Users\MAIN\Desktop\CarotDAV1.13.2
2017-01-01 22:59 - 2017-01-01 23:13 - 00000000 ____D C:\Users\MAIN\Downloads\CarotDAV1.13.2
2017-01-01 22:59 - 2017-01-01 22:59 - 01538416 _____ C:\Users\MAIN\Downloads\CarotDAV1.13.2.zip
2017-01-01 22:55 - 2017-01-01 22:56 - 00000000 ____D C:\ProgramData\HitmanPro
2017-01-01 22:55 - 2017-01-01 22:55 - 00000000 ____D C:\Program Files\HitmanPro
2017-01-01 22:55 - 2016-11-14 15:14 - 11581544 _____ (SurfRight B.V.) C:\Users\MAIN\Desktop\HitmanPro_x64.exe
2017-01-01 22:54 - 2017-01-01 22:54 - 14579832 _____ C:\Users\MAIN\Downloads\HitmanPro15.zip
2016-12-31 18:22 - 2016-12-31 18:22 - 00000000 ____D C:\Users\User2\AppData\Roaming\SumatraPDF
2016-12-31 18:05 - 2016-12-31 18:05 - 00062122 _____ C:\Users\User2\Documents\ProjectG.Y.M.pdf
2016-12-30 17:56 - 2016-12-30 17:56 - 00029649 _____ C:\Users\User2\Downloads\document.png
2016-12-30 14:23 - 2016-12-30 14:23 - 01733280 _____ C:\Users\User2\Desktop\AnyDesk.exe
2016-12-30 14:23 - 2016-12-30 14:23 - 00000000 ____D C:\Users\User2\AppData\Roaming\AnyDesk
2016-12-30 14:20 - 2016-12-07 20:28 - 01321324 _____ C:\Users\User2\Desktop\12 - fxhiJB3.jpg
2016-12-30 14:06 - 2016-12-30 14:06 - 00158896 _____ C:\Users\User2\Documents\Tasse.jpg
2016-12-30 13:27 - 2016-12-30 13:27 - 00140771 _____ C:\Users\User2\Downloads\Weiterversicherung als freiwilliges Mitglied.pdf
2016-12-30 13:26 - 2016-12-30 13:26 - 00136974 _____ C:\Users\User2\Downloads\23221800000093.pdf
2016-12-27 22:32 - 2017-01-01 23:13 - 00000000 ____D C:\Users\User2\AppData\Local\KeePass
2016-12-27 22:30 - 2017-01-01 23:13 - 00000000 ____D C:\Users\User2\Documents\DisplayFusion Backups
2016-12-27 22:15 - 2016-12-27 22:15 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2016-12-27 16:38 - 2016-12-27 16:38 - 00018359 _____ C:\Users\User2\Downloads\Organisation Referat.docx
2016-12-26 15:08 - 2016-12-26 15:08 - 00000000 ____D C:\Users\MAIN\AppData\Local\KeePass
2016-12-26 14:54 - 2016-12-26 14:54 - 00000000 ____D C:\Users\MAIN\Documents\DisplayFusion Backups
2016-12-22 23:36 - 2016-12-22 23:36 - 00779247 _____ C:\Users\User2\Downloads\SEM.pptx
2016-12-22 21:55 - 2016-12-22 21:55 - 00000000 ____D C:\Users\User2\Documents\Benutzerdefinierte Office-Vorlagen
2016-12-22 21:26 - 2016-12-22 21:26 - 00660644 _____ C:\Users\User2\Documents\10732568.jpg
2016-12-22 20:50 - 2016-12-22 20:50 - 00005327 _____ C:\Users\User2\Documents\logo.jpg
2016-12-22 20:27 - 2016-12-22 20:27 - 04167067 _____ C:\Users\User2\Downloads\Temp_ 16_9 .pptx
2016-12-18 17:10 - 2016-12-18 17:10 - 00004489 _____ C:\Users\MAIN\Desktop\baiv_40.gif
2016-12-17 19:13 - 2016-12-17 19:13 - 00000000 ____D C:\Users\MAIN\Desktop\Spiele
2016-12-17 18:09 - 2016-12-17 18:09 - 00002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-12-17 18:09 - 2016-12-17 18:09 - 00002506 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-12-17 18:09 - 2016-12-17 18:09 - 00002502 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-12-17 18:09 - 2016-12-17 18:09 - 00002481 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-12-17 18:09 - 2016-12-17 18:09 - 00002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2016-12-17 18:09 - 2016-12-17 18:09 - 00002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-12-17 18:09 - 2016-12-17 18:09 - 00002423 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-12-17 18:09 - 2016-12-17 18:09 - 00002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-12-17 18:09 - 2016-12-17 18:09 - 00002392 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-12-17 18:09 - 2016-12-17 18:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2016-12-17 18:08 - 2016-12-29 17:31 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-12-17 18:03 - 2017-01-01 23:13 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-12-15 17:11 - 2017-01-01 22:44 - 00524288 ___SH C:\Windows\system32\config\components{43a92491-c2e0-11e6-b33d-bc5ff45a56c1}.TMContainer00000000000000000001.regtrans-ms
2016-12-15 17:11 - 2017-01-01 22:44 - 00065536 ___SH C:\Windows\system32\config\components{43a92491-c2e0-11e6-b33d-bc5ff45a56c1}.TM.blf
2016-12-15 17:11 - 2016-12-15 17:11 - 00524288 ___SH C:\Windows\system32\config\components{43a92491-c2e0-11e6-b33d-bc5ff45a56c1}.TMContainer00000000000000000002.regtrans-ms
2016-12-15 17:04 - 2016-12-15 17:04 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_mticache_01011.Wdf
2016-12-15 17:04 - 2015-07-13 23:00 - 00061512 _____ (Micron Technology, Inc.) C:\Windows\system32\Drivers\mticache.sys
2016-12-15 17:04 - 2015-07-13 23:00 - 00018504 _____ (Micron Technology, Inc.) C:\Windows\system32\Drivers\mtihint.sys
2016-12-14 20:17 - 2016-12-14 20:18 - 00000000 ____D C:\Users\MAIN\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2016-12-14 20:17 - 2016-12-14 20:17 - 02721168 _____ (Microsoft Corporation) C:\Users\MAIN\Downloads\Windows7-USB-DVD1024-tool.exe
2016-12-14 20:17 - 2016-12-14 20:17 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2016-12-14 20:14 - 2016-12-14 20:14 - 00098304 _____ (Hewlett-Packard Company) C:\Users\MAIN\Downloads\HPUSBFW_v2.2.3.exe
2016-12-14 19:54 - 2016-12-31 11:57 - 00000488 _____ C:\ProgramData\ntuser.pol
2016-12-14 16:52 - 2016-12-14 20:17 - 00000000 ____D C:\Users\MAIN\AppData\Local\Apps
2016-12-14 16:52 - 2016-12-14 16:52 - 00000000 ____D C:\Users\MAIN\AppData\Local\Apps\2.0
2016-12-14 16:44 - 2016-12-14 16:44 - 00589969 _____ C:\Users\MAIN\Desktop\II Anleitung zur Verwendung des Oracle Developers am eigenen Rechner.pdf
2016-12-14 16:35 - 2016-12-14 17:24 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\SQL Developer
2016-12-14 16:35 - 2016-12-14 16:35 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\sqldeveloper
2016-12-14 14:43 - 2016-12-30 00:10 - 00000000 ____D C:\Users\User2\AppData\Roaming\steelseries-engine-3-client
2016-12-14 13:54 - 2016-12-14 13:54 - 07022734 _____ C:\Users\User2\Downloads\doc05117620161209105404.pdf
2016-12-13 20:54 - 2016-12-13 20:54 - 00000355 _____ C:\Users\User2\Desktop\Computer - Verknüpfung.lnk
2016-12-13 20:48 - 2016-11-21 19:16 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-12-13 20:48 - 2016-11-21 19:16 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-12-13 20:48 - 2016-11-21 19:12 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-12-13 20:48 - 2016-11-21 19:12 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-12-13 20:48 - 2016-11-21 19:12 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2016-12-13 20:48 - 2016-11-21 19:12 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-12-13 20:48 - 2016-11-20 17:20 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2016-12-13 20:48 - 2016-11-20 17:19 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-12-13 20:48 - 2016-11-20 17:19 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-12-13 20:48 - 2016-11-20 15:07 - 00467392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-12-13 20:48 - 2016-11-17 17:41 - 00370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-12-13 20:48 - 2016-11-15 00:27 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-12-13 20:48 - 2016-11-14 23:39 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-12-13 20:48 - 2016-11-12 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-12-13 20:48 - 2016-11-12 20:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-12-13 20:48 - 2016-11-12 20:21 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-12-13 20:48 - 2016-11-12 20:09 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-12-13 20:48 - 2016-11-12 20:08 - 25759744 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-12-13 20:48 - 2016-11-12 20:07 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-12-13 20:48 - 2016-11-12 19:53 - 06049280 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-12-13 20:48 - 2016-11-12 19:29 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-12-13 20:48 - 2016-11-12 19:20 - 02287616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-12-13 20:48 - 2016-11-12 19:17 - 20302848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-12-13 20:48 - 2016-11-12 19:14 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-12-13 20:48 - 2016-11-12 19:10 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-12-13 20:48 - 2016-11-12 19:08 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-12-13 20:48 - 2016-11-12 19:08 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-12-13 20:48 - 2016-11-12 18:41 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-12-13 20:48 - 2016-11-12 18:38 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-12-13 20:48 - 2016-11-12 18:37 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-12-13 20:48 - 2016-11-12 18:36 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-12-13 20:48 - 2016-11-12 18:36 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-12-13 20:48 - 2016-11-12 18:35 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-12-13 20:48 - 2016-11-12 18:21 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-12-13 20:48 - 2016-11-12 18:20 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-12-13 20:48 - 2016-11-12 18:11 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-12-13 20:48 - 2016-11-12 18:05 - 02444800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-12-13 20:48 - 2016-11-12 18:02 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-12-13 20:48 - 2016-11-12 18:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-12-13 20:48 - 2016-11-10 17:32 - 01009152 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-12-13 20:48 - 2016-11-10 17:19 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-12-13 20:48 - 2016-11-09 17:41 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-12-13 20:48 - 2016-11-09 17:33 - 03244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-12-13 20:48 - 2016-11-09 17:33 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-12-13 20:48 - 2016-11-09 17:33 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-12-13 20:48 - 2016-11-09 17:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-12-13 20:48 - 2016-11-09 17:02 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-12-13 20:48 - 2016-11-09 16:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-12-13 20:48 - 2016-11-06 17:33 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-12-13 20:48 - 2016-11-06 17:16 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-12-13 20:48 - 2016-11-06 17:01 - 03219456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-12-13 20:48 - 2016-10-27 16:33 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2016-12-13 20:48 - 2016-10-27 16:20 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2016-12-13 20:48 - 2016-10-11 16:40 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-12-13 20:48 - 2016-10-11 16:37 - 05547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-12-13 20:48 - 2016-10-11 16:37 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-12-13 20:48 - 2016-10-11 16:34 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-12-13 20:48 - 2016-10-11 16:32 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2016-12-13 20:48 - 2016-10-11 16:24 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-12-13 20:48 - 2016-10-11 16:24 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-12-13 20:48 - 2016-10-11 16:21 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-12-13 20:48 - 2016-10-11 16:18 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll
2016-12-13 20:48 - 2016-10-11 15:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2016-12-13 20:48 - 2016-10-11 14:18 - 00419648 _____ C:\Windows\SysWOW64\locale.nls
2016-12-13 20:48 - 2016-10-11 14:17 - 00419648 _____ C:\Windows\system32\locale.nls
2016-12-13 20:48 - 2016-10-08 14:06 - 00633296 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-12-13 20:48 - 2016-10-04 16:31 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-12-13 20:48 - 2016-10-04 16:31 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-12-13 20:48 - 2016-10-04 16:13 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-12-13 20:48 - 2016-10-04 16:13 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 01462272 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-12-13 20:47 - 2016-11-21 19:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-12-13 20:47 - 2016-11-20 17:20 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-12-13 20:47 - 2016-11-20 17:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-12-13 20:47 - 2016-11-20 17:20 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-12-13 20:47 - 2016-11-20 17:20 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-12-13 20:47 - 2016-11-20 17:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-12-13 20:47 - 2016-11-20 17:19 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-12-13 20:47 - 2016-11-20 17:19 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-12-13 20:47 - 2016-11-20 17:19 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-12-13 20:47 - 2016-11-20 17:19 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-12-13 20:47 - 2016-11-20 17:19 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-12-13 20:47 - 2016-11-20 17:19 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-12-13 20:47 - 2016-11-20 17:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-12-13 20:47 - 2016-11-20 17:19 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-12-13 20:47 - 2016-11-20 17:19 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-12-13 20:47 - 2016-11-20 17:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-12-13 20:47 - 2016-11-20 16:58 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-12-13 20:47 - 2016-11-20 16:57 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-12-13 20:47 - 2016-11-20 16:57 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-12-13 20:47 - 2016-11-20 16:57 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-12-13 20:47 - 2016-11-20 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-12-13 20:47 - 2016-11-20 16:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-12-13 20:47 - 2016-11-12 20:48 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-12-13 20:47 - 2016-11-12 20:48 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-12-13 20:47 - 2016-11-12 20:28 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-12-13 20:47 - 2016-11-12 20:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-12-13 20:47 - 2016-11-12 20:25 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-12-13 20:47 - 2016-11-12 20:15 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-12-13 20:47 - 2016-11-12 20:14 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-12-13 20:47 - 2016-11-12 20:08 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-12-13 20:47 - 2016-11-12 20:08 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-12-13 20:47 - 2016-11-12 20:07 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-12-13 20:47 - 2016-11-12 19:56 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-12-13 20:47 - 2016-11-12 19:52 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-12-13 20:47 - 2016-11-12 19:47 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-12-13 20:47 - 2016-11-12 19:41 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-12-13 20:47 - 2016-11-12 19:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-12-13 20:47 - 2016-11-12 19:35 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-12-13 20:47 - 2016-11-12 19:34 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-12-13 20:47 - 2016-11-12 19:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-12-13 20:47 - 2016-11-12 19:30 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-12-13 20:47 - 2016-11-12 19:29 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-12-13 20:47 - 2016-11-12 19:29 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-12-13 20:47 - 2016-11-12 19:28 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-12-13 20:47 - 2016-11-12 19:27 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-12-13 20:47 - 2016-11-12 19:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-12-13 20:47 - 2016-11-12 19:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-12-13 20:47 - 2016-11-12 19:15 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-12-13 20:47 - 2016-11-12 19:14 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-12-13 20:47 - 2016-11-12 19:14 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-12-13 20:47 - 2016-11-12 19:14 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-12-13 20:47 - 2016-11-12 19:11 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-12-13 20:47 - 2016-11-12 19:03 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-12-13 20:47 - 2016-11-12 18:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-12-13 20:47 - 2016-11-12 18:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-12-13 20:47 - 2016-11-12 18:52 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-12-13 20:47 - 2016-11-12 18:51 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-12-13 20:47 - 2016-11-12 18:49 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-12-13 20:47 - 2016-11-12 18:47 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-12-13 20:47 - 2016-11-12 18:40 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-12-13 20:47 - 2016-11-09 17:33 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-12-13 20:47 - 2016-11-09 17:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-12-13 20:47 - 2016-11-09 17:33 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-12-13 20:47 - 2016-11-09 17:17 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-12-13 20:47 - 2016-11-09 17:17 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-12-13 20:47 - 2016-11-09 17:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-12-13 20:47 - 2016-11-09 17:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-12-13 20:47 - 2016-10-11 16:32 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-12-13 20:47 - 2016-10-11 16:32 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-12-13 20:47 - 2016-10-11 16:32 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-12-13 20:47 - 2016-10-11 16:32 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-12-13 20:47 - 2016-10-11 16:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-12-13 20:47 - 2016-10-11 16:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-12-13 20:47 - 2016-10-11 16:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-12-13 20:47 - 2016-10-11 16:32 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 16:03 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-12-13 20:47 - 2016-10-11 16:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-12-13 20:47 - 2016-10-11 16:03 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-12-13 20:47 - 2016-10-11 15:59 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-12-13 20:47 - 2016-10-11 15:59 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-12-13 20:47 - 2016-10-11 15:55 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-12-13 20:47 - 2016-10-11 15:51 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-12-13 20:47 - 2016-10-11 15:51 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-12-13 20:47 - 2016-10-11 15:51 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-12-13 20:47 - 2016-10-11 15:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-12-13 20:47 - 2016-10-11 15:50 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 15:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 15:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-12-13 20:47 - 2016-10-11 15:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-12-13 20:47 - 2016-10-04 16:31 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-12-13 20:47 - 2016-10-04 16:31 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-12-13 20:47 - 2016-10-04 16:13 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-12-13 20:47 - 2016-10-04 16:13 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-12-12 21:17 - 2016-12-12 21:17 - 00000000 ____D C:\Users\MAIN\AppData\Local\Chromium
2016-12-12 21:16 - 2016-12-12 21:17 - 49941944 _____ C:\Users\MAIN\Desktop\torbrowser-install-6.0.4_de.exe
2016-12-10 18:52 - 2016-12-13 21:21 - 00000347 _____ C:\Users\MAIN\Desktop\new 1.txt
2016-12-10 16:52 - 2016-12-10 16:52 - 00000000 ____D C:\Users\MAIN\Documents\Aptana Studio 3 Workspace
2016-12-10 16:52 - 2016-12-10 16:52 - 00000000 ____D C:\Users\MAIN\Aptana Rubles
2016-12-10 16:32 - 2016-12-10 16:32 - 00076152 _____ C:\Windows\system32\PnkBstrA.exe
2016-12-10 16:23 - 2016-12-10 16:23 - 00000000 ____D C:\Users\MAIN\AppData\Local\PunkBuster
2016-12-10 16:20 - 2016-12-10 16:20 - 00000000 ____D C:\Users\MAIN\Documents\Battlefield 4
2016-12-10 16:20 - 2016-12-10 16:20 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-12-10 15:44 - 2016-12-10 15:45 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Notepad++
2016-12-10 15:44 - 2016-12-10 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-12-10 15:44 - 2016-12-10 15:44 - 00000000 ____D C:\Program Files\Notepad++
2016-12-10 15:01 - 2016-12-10 15:01 - 00001922 _____ C:\Users\MAIN\Desktop\DupTest2-duplicati-config (1).json
2016-12-10 13:49 - 2016-12-10 13:49 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\EPSON
2016-12-10 13:45 - 2016-12-10 13:45 - 00000000 ____D C:\Program Files\Common Files\EPSON
2016-12-10 13:45 - 2007-09-07 17:33 - 00135168 _____ (SEIKO EPSON CORPORATION) C:\Windows\SysWOW64\EEBAPI.dll
2016-12-10 13:45 - 2007-03-28 18:26 - 00065536 _____ (SEIKO EPSON CORPORATION) C:\Windows\SysWOW64\EEBUtil.dll
2016-12-10 13:45 - 2006-12-19 18:31 - 00110592 _____ (SEIKO EPSON CORPORATION) C:\Windows\SysWOW64\EEBDSCVR.dll
2016-12-10 13:45 - 2006-12-19 18:20 - 00077824 _____ (SEIKO EPSON CORPORATION) C:\Windows\SysWOW64\EBAPI.dll
2016-12-10 13:45 - 2003-12-17 01:01 - 00055808 _____ (SEIKO EPSON CORPORATION) C:\Windows\SysWOW64\EEBSDKIF.dll
2016-12-10 13:43 - 2016-12-10 13:45 - 00000000 ____D C:\ProgramData\EPSON
2016-12-10 13:43 - 2016-12-10 13:43 - 00000000 ____D C:\Program Files\EpsonNet
2016-12-10 13:43 - 2016-12-10 13:43 - 00000000 ____D C:\Program Files (x86)\EpsonNet
2016-12-10 13:43 - 2016-12-10 13:34 - 00118784 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ILMGCE.DLL
2016-12-10 13:43 - 2016-12-10 13:34 - 00088064 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_IBCBGCE.DLL
2016-12-10 13:43 - 2016-12-10 13:34 - 00010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL
2016-12-10 13:43 - 2012-11-12 20:41 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppui.dll
2016-12-10 13:43 - 2012-11-12 20:41 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppui.dll
2016-12-10 13:43 - 2012-11-12 15:15 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppmon.dll
2016-12-10 13:43 - 2012-11-12 15:15 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppmon.dll
2016-12-10 13:43 - 2012-10-22 17:19 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enspres.dll
2016-12-10 13:43 - 2012-10-22 17:19 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enpres.dll
2016-12-10 13:42 - 2016-12-10 13:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2016-12-10 13:42 - 2016-12-10 13:42 - 00000934 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2016-12-10 13:42 - 2016-12-10 13:42 - 00000000 ____D C:\Program Files (x86)\epson
2016-12-10 13:42 - 2011-08-10 00:00 - 00464384 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll
2016-12-10 13:42 - 2009-10-16 00:00 - 00132560 _____ (Seiko Epson Corporation) C:\Windows\system32\esdevapp.exe
2016-12-10 13:42 - 2009-10-16 00:00 - 00013824 _____ (Seiko Epson Corporation) C:\Windows\system32\esxcdev.dll
2016-12-10 12:20 - 2016-12-10 12:20 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-12-10 12:20 - 2016-12-10 12:20 - 00000000 ____D C:\Windows\system32\appraiser
2016-12-10 01:00 - 2012-07-26 04:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2016-12-10 01:00 - 2012-07-26 04:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2016-12-10 01:00 - 2012-07-26 04:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-12-10 01:00 - 2012-07-26 04:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2016-12-10 01:00 - 2012-07-26 04:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2016-12-10 01:00 - 2012-07-26 03:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2016-12-10 01:00 - 2012-07-26 03:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2016-12-10 01:00 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2016-12-10 00:55 - 2016-10-11 14:33 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2016-12-10 00:55 - 2016-10-11 14:06 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-12-10 00:55 - 2016-09-12 22:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-12-10 00:55 - 2016-09-12 22:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-12-10 00:55 - 2016-09-12 20:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-12-10 00:55 - 2016-09-12 19:43 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-12-10 00:55 - 2016-09-12 19:43 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-12-10 00:55 - 2016-09-09 16:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-12-10 00:55 - 2016-09-09 16:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-12-10 00:55 - 2016-09-09 16:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-12-10 00:55 - 2016-09-09 16:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-12-10 00:55 - 2016-09-09 16:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-12-10 00:55 - 2016-09-09 16:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-12-10 00:55 - 2016-09-09 16:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-12-10 00:55 - 2016-08-16 21:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-12-10 00:55 - 2016-08-16 21:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-12-10 00:55 - 2016-08-16 21:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-12-10 00:55 - 2016-08-16 21:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-12-10 00:55 - 2016-08-16 21:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-12-10 00:55 - 2016-08-16 21:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-12-10 00:55 - 2016-08-16 21:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-12-10 00:55 - 2016-05-13 23:09 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-12-10 00:55 - 2016-05-13 23:09 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-12-10 00:55 - 2016-05-13 23:09 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-12-10 00:55 - 2016-05-13 23:07 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-12-10 00:55 - 2016-05-13 22:55 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-12-10 00:55 - 2016-05-13 22:53 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-12-10 00:55 - 2016-05-13 22:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-12-10 00:55 - 2016-05-13 22:52 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-12-10 00:55 - 2016-05-13 22:52 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-12-10 00:55 - 2016-05-13 22:52 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-12-10 00:55 - 2016-05-13 22:52 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-12-10 00:55 - 2016-05-13 22:50 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-12-10 00:55 - 2016-05-13 22:38 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-12-10 00:55 - 2016-05-13 22:38 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-12-10 00:55 - 2016-05-13 22:38 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-12-10 00:55 - 2016-05-13 22:38 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-12-10 00:55 - 2016-05-12 16:18 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-12-10 00:55 - 2016-04-14 14:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-12-10 00:55 - 2016-04-14 14:21 - 00647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-12-10 00:55 - 2016-03-23 23:40 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-12-10 00:55 - 2015-07-30 19:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-12-10 00:55 - 2015-07-30 18:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-12-10 00:55 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2016-12-10 00:55 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2016-12-10 00:55 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2016-12-10 00:55 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2016-12-10 00:55 - 2014-07-09 03:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2016-12-10 00:55 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2016-12-10 00:55 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2016-12-10 00:55 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2016-12-10 00:55 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2016-12-10 00:55 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2016-12-10 00:55 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2016-12-10 00:55 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2016-12-10 00:55 - 2011-03-11 07:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2016-12-10 00:55 - 2011-03-11 07:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2016-12-10 00:55 - 2011-03-11 07:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2016-12-10 00:55 - 2011-03-11 07:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2016-12-10 00:55 - 2011-03-11 07:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2016-12-10 00:55 - 2011-03-11 07:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-12-10 00:55 - 2011-03-11 07:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2016-12-10 00:55 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-12-10 00:55 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2016-12-10 00:54 - 2016-04-09 05:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-12-10 00:54 - 2016-04-09 04:52 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-12-10 00:54 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-12-10 00:54 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-12-10 00:54 - 2015-02-04 04:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2016-12-10 00:54 - 2015-02-04 03:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2016-12-10 00:33 - 2016-12-15 19:14 - 00000000 ____D C:\Users\MAIN\AppData\Local\CrashDumps
2016-12-10 00:33 - 2016-12-10 00:36 - 00000000 ____D C:\Users\MAIN\Documents\SART
2016-12-10 00:30 - 2016-12-10 00:30 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\MPC-HC
2016-12-10 00:26 - 2016-12-10 00:26 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2016-12-09 18:21 - 2016-12-09 18:22 - 00000000 ____D C:\Users\User2\Downloads\7190172-2e488643bebd8a4bf6bc358a18451665c4b37536
2016-12-09 18:16 - 2016-12-09 18:16 - 00115135 _____ C:\Users\User2\Downloads\html5bones-1.7.1.zip
2016-12-09 18:15 - 2016-12-09 18:15 - 00014138 _____ C:\Users\User2\Downloads\initializr-verekia-4.0.zip
2016-12-09 16:36 - 2016-12-09 16:36 - 00001971 _____ C:\Users\User2\Downloads\hauptlayout (3).css
2016-12-09 16:36 - 2016-12-09 16:36 - 00001971 _____ C:\Users\User2\Downloads\hauptlayout (2).css
2016-12-09 16:35 - 2016-12-09 16:35 - 00001971 _____ C:\Users\User2\Downloads\hauptlayout (1).css
2016-12-09 16:33 - 2016-12-09 16:33 - 00001971 _____ C:\Users\User2\Downloads\hauptlayout.css
2016-12-09 16:16 - 2016-12-09 16:16 - 00001976 _____ C:\Users\User2\Desktop\Duplicati 2.lnk
2016-12-09 15:56 - 2016-12-09 15:56 - 00496896 _____ C:\Users\User2\Downloads\flux-setup.exe
2016-12-09 15:56 - 2016-12-09 15:56 - 00002082 _____ C:\Users\User2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
2016-12-09 15:56 - 2016-12-09 15:56 - 00000000 ____D C:\Users\User2\AppData\Local\FluxSoftware
2016-12-09 15:40 - 2016-12-09 15:40 - 00007662 _____ C:\Users\User2\Downloads\edb.kdbx
2016-12-09 15:39 - 2016-12-13 21:24 - 00000000 ____D C:\Users\User2\.atom
2016-12-09 15:39 - 2016-12-09 19:41 - 00002164 _____ C:\Users\User2\Desktop\Atom.lnk
2016-12-09 15:39 - 2016-12-09 19:41 - 00000000 ____D C:\Users\User2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc
2016-12-09 15:39 - 2016-12-09 19:41 - 00000000 ____D C:\Users\User2\AppData\Local\atom
2016-12-09 15:39 - 2016-12-09 19:40 - 00000000 ____D C:\Users\User2\AppData\Local\SquirrelTemp
2016-12-09 15:39 - 2016-12-09 18:04 - 00000000 ____D C:\Users\User2\AppData\Roaming\Atom
2016-12-09 15:35 - 2016-12-09 15:36 - 98516992 _____ (GitHub Inc.) C:\Users\User2\Downloads\AtomSetup.exe
2016-12-09 15:32 - 2016-12-30 14:20 - 00000000 ____D C:\Users\User2\AppData\Roaming\KeePass
2016-12-09 15:31 - 2016-12-09 15:31 - 00000000 ____D C:\Users\User2\AppData\Roaming\iterate_GmbH
2016-12-09 15:31 - 2016-12-09 15:31 - 00000000 ____D C:\Users\User2\AppData\Roaming\Cyberduck
2016-12-09 15:27 - 2016-12-07 20:05 - 00001079 _____ C:\Users\User2\Desktop\Cyberduck.lnk
2016-12-09 15:27 - 2016-12-07 18:26 - 00000882 _____ C:\Users\User2\Desktop\GIMP 2.lnk
2016-12-09 15:20 - 2016-12-30 14:20 - 00000000 ____D C:\Users\User2\AppData\Local\DisplayFusion
2016-12-09 15:19 - 2016-12-09 15:19 - 00000000 ____D C:\Users\User2\AppData\Local\Steam
2016-12-09 15:19 - 2016-12-09 15:19 - 00000000 ____D C:\Users\User2\AppData\Local\CEF
2016-12-09 10:12 - 2016-12-09 10:12 - 00000000 ____D C:\Users\MAIN\Desktop\sqldeveloper-4.1.5.21.78-x64
2016-12-08 23:43 - 2016-12-23 18:39 - 00038590 _____ C:\Users\MAIN\Desktop\benni.kdbx
2016-12-08 23:02 - 2016-12-08 23:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
2016-12-08 23:02 - 2016-12-08 23:02 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2016-12-08 23:00 - 2017-01-01 23:50 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-12-08 23:00 - 2017-01-01 23:50 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-12-08 23:00 - 2016-12-08 23:01 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2016-12-08 23:00 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-12-08 23:00 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-12-08 23:00 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-12-08 23:00 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-12-08 23:00 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-12-08 23:00 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-12-08 23:00 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-12-08 23:00 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-12-08 23:00 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-12-08 23:00 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-12-08 23:00 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-12-08 23:00 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-12-08 23:00 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-12-08 23:00 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-12-08 23:00 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-12-08 23:00 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-12-08 23:00 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-12-08 23:00 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-12-08 23:00 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-12-08 23:00 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-12-08 23:00 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-12-08 23:00 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-12-08 23:00 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-12-08 23:00 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-12-08 23:00 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2016-12-08 23:00 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-12-08 23:00 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-12-08 23:00 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-12-08 23:00 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-12-08 23:00 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2016-12-08 23:00 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-12-08 23:00 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-12-08 23:00 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-12-08 23:00 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-12-08 23:00 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-12-08 23:00 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-12-08 23:00 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2016-12-08 23:00 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-12-08 23:00 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-12-08 23:00 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-12-08 23:00 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-12-08 23:00 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-12-08 23:00 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-12-08 23:00 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-12-08 23:00 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-12-08 23:00 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-12-08 23:00 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-12-08 23:00 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-12-08 23:00 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-12-08 23:00 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-12-08 23:00 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-12-08 23:00 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-12-08 23:00 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-12-08 23:00 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-12-08 23:00 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-12-08 23:00 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-12-08 23:00 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-12-08 23:00 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-12-08 23:00 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-12-08 23:00 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-12-08 23:00 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2016-12-08 23:00 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-12-08 23:00 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-12-08 23:00 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-12-08 23:00 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-12-08 23:00 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-12-08 23:00 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-12-08 23:00 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-12-08 23:00 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-12-08 23:00 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-12-08 23:00 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2016-12-08 23:00 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-12-08 23:00 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-12-08 23:00 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-12-08 23:00 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2016-12-08 23:00 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2016-12-08 23:00 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2016-12-08 23:00 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2016-12-08 23:00 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2016-12-08 23:00 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2016-12-08 23:00 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2016-12-08 23:00 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2016-12-08 23:00 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2016-12-08 23:00 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2016-12-08 23:00 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2016-12-08 23:00 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2016-12-08 23:00 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2016-12-08 23:00 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2016-12-08 23:00 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2016-12-08 23:00 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2016-12-08 23:00 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2016-12-08 23:00 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2016-12-08 23:00 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2016-12-08 23:00 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2016-12-08 23:00 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2016-12-08 23:00 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2016-12-08 23:00 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2016-12-08 23:00 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2016-12-08 23:00 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2016-12-08 23:00 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2016-12-08 23:00 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2016-12-08 23:00 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2016-12-08 23:00 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2016-12-08 23:00 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2016-12-08 23:00 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2016-12-08 23:00 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2016-12-08 23:00 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2016-12-08 23:00 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2016-12-08 23:00 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2016-12-08 23:00 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2016-12-08 23:00 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2016-12-08 23:00 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2016-12-08 23:00 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2016-12-08 23:00 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2016-12-08 23:00 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2016-12-08 23:00 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2016-12-08 23:00 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2016-12-08 23:00 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2016-12-08 23:00 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2016-12-08 23:00 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2016-12-08 23:00 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2016-12-08 23:00 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2016-12-08 23:00 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2016-12-08 23:00 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2016-12-08 23:00 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2016-12-08 23:00 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2016-12-08 23:00 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2016-12-08 23:00 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2016-12-08 23:00 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2016-12-08 23:00 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2016-12-08 23:00 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2016-12-08 23:00 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-12-08 23:00 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2016-12-08 23:00 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2016-12-08 23:00 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2016-12-08 23:00 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2016-12-08 23:00 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2016-12-08 23:00 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2016-12-08 23:00 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2016-12-08 23:00 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2016-12-08 23:00 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-12-08 23:00 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-12-08 23:00 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2016-12-08 23:00 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2016-12-08 23:00 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2016-12-08 23:00 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2016-12-08 23:00 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2016-12-08 23:00 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2016-12-08 23:00 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2016-12-08 23:00 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2016-12-08 23:00 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2016-12-08 23:00 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2016-12-08 23:00 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2016-12-08 23:00 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2016-12-08 23:00 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-12-08 23:00 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-12-08 23:00 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-12-08 23:00 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-12-08 23:00 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-12-08 23:00 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-12-08 23:00 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2016-12-08 23:00 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2016-12-08 23:00 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2016-12-08 23:00 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2016-12-08 23:00 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-12-08 23:00 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-12-08 23:00 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2016-12-08 23:00 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-12-08 23:00 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-12-08 23:00 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-12-08 23:00 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2016-12-08 23:00 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2016-12-08 23:00 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2016-12-08 23:00 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2016-12-08 23:00 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2016-12-08 23:00 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2016-12-08 20:32 - 2016-12-08 20:32 - 00002214 _____ C:\Users\MAIN\Desktop\OwnCloud Bensch.xml
2016-12-07 23:25 - 2017-01-01 23:06 - 01628899 ____H C:\Users\User2\AppData\Local\IconCache.db
2016-12-07 22:59 - 2016-12-07 22:59 - 00003224 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task
2016-12-07 22:59 - 2016-12-07 22:59 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Skype
2016-12-07 22:54 - 2016-12-07 22:59 - 00002176 _____ C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-12-07 22:54 - 2016-12-07 22:59 - 00000000 ___RD C:\Users\MAIN\OneDrive
2016-12-07 22:54 - 2016-12-07 22:54 - 00002124 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-12-07 22:54 - 2016-12-07 22:54 - 00002124 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-12-07 22:54 - 2016-12-07 22:54 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-12-07 22:54 - 2016-12-07 22:54 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-12-07 21:40 - 2016-12-07 21:40 - 00000000 ____D C:\Users\User2\AppData\Roaming\Intel Corporation
2016-12-07 21:39 - 2017-01-01 23:06 - 00000000 ____D C:\Users\User2\AppData\Roaming\Duplicati
2016-12-07 21:39 - 2016-12-13 23:14 - 00000000 ____D C:\Users\User2\AppData\Local\Google
2016-12-07 21:39 - 2016-12-07 21:39 - 00111056 _____ C:\Users\User2\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-07 21:39 - 2016-12-07 21:39 - 00001425 _____ C:\Users\User2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-12-07 21:39 - 2016-12-07 21:39 - 00000402 ___SH C:\Users\User2\Documents\desktop.ini
2016-12-07 21:39 - 2016-12-07 21:39 - 00000338 ___SH C:\Users\User2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-07 21:39 - 2016-12-07 21:39 - 00000282 ___SH C:\Users\User2\Downloads\desktop.ini
2016-12-07 21:39 - 2016-12-07 21:39 - 00000282 ___SH C:\Users\User2\Desktop\desktop.ini
2016-12-07 21:39 - 2016-12-07 21:39 - 00000174 ___SH C:\Users\User2\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
2016-12-07 21:39 - 2016-12-07 21:39 - 00000000 ___RD C:\Users\User2\Searches
2016-12-07 21:39 - 2016-12-07 21:39 - 00000000 ___RD C:\Users\User2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-07 21:39 - 2016-12-07 21:39 - 00000000 ___RD C:\Users\User2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-07 21:39 - 2016-12-07 21:39 - 00000000 ____D C:\Users\User2\AppData\Roaming\Rei Software
2016-12-07 21:39 - 2016-12-07 21:39 - 00000000 ____D C:\Users\User2\AppData\Roaming\Adobe
2016-12-07 21:38 - 2017-01-01 23:44 - 00262144 ___SH C:\Users\User2\ntuser.dat.LOG1
2016-12-07 21:38 - 2017-01-01 23:13 - 00000000 ___SD C:\Users\User2\AppData\Roaming\Microsoft
2016-12-07 21:38 - 2017-01-01 23:13 - 00000000 ___RD C:\Users\User2\Documents
2016-12-07 21:38 - 2017-01-01 23:13 - 00000000 ___RD C:\Users\User2\Desktop
2016-12-07 21:38 - 2017-01-01 23:13 - 00000000 ____D C:\Users\User2\AppData\Roaming
2016-12-07 21:38 - 2017-01-01 23:13 - 00000000 ____D C:\Users\User2\AppData\Local
2016-12-07 21:38 - 2017-01-01 23:13 - 00000000 ____D C:\Users\User2
2016-12-07 21:38 - 2017-01-01 23:06 - 01572864 ___SH C:\Users\User2\ntuser.dat
2016-12-07 21:38 - 2017-01-01 23:06 - 00000000 __SHD C:\Users\User2\IntelGraphicsProfiles
2016-12-07 21:38 - 2017-01-01 23:06 - 00000000 ____D C:\Users\User2\AppData\Local\Temp
2016-12-07 21:38 - 2016-12-31 18:33 - 00000000 ___RD C:\Users\User2\Pictures
2016-12-07 21:38 - 2016-12-31 18:24 - 00000000 ___RD C:\Users\User2\Downloads
2016-12-07 21:38 - 2016-12-27 22:11 - 00000000 ___RD C:\Users\User2\Music
2016-12-07 21:38 - 2016-12-22 20:17 - 00000000 ____D C:\Users\User2\AppData\Local\Microsoft
2016-12-07 21:38 - 2016-12-22 20:14 - 00000000 ____D C:\Users\User2\AppData\Local\VirtualStore
2016-12-07 21:38 - 2016-12-14 13:52 - 00000000 ____D C:\Users\User2\AppData\LocalLow\Mozilla
2016-12-07 21:38 - 2016-12-09 15:56 - 00000000 ___RD C:\Users\User2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-07 21:38 - 2016-12-07 23:25 - 00524288 ___SH C:\Users\User2\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
2016-12-07 21:38 - 2016-12-07 23:25 - 00524288 ___SH C:\Users\User2\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
2016-12-07 21:38 - 2016-12-07 23:25 - 00065536 ___SH C:\Users\User2\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
2016-12-07 21:38 - 2016-12-07 21:39 - 00000000 ___SD C:\Users\User2\AppData\LocalLow\Microsoft
2016-12-07 21:38 - 2016-12-07 21:39 - 00000000 ___RD C:\Users\User2\Videos
2016-12-07 21:38 - 2016-12-07 21:39 - 00000000 ___RD C:\Users\User2\Saved Games
2016-12-07 21:38 - 2016-12-07 21:39 - 00000000 ___RD C:\Users\User2\Links
2016-12-07 21:38 - 2016-12-07 21:39 - 00000000 ___RD C:\Users\User2\Favorites
2016-12-07 21:38 - 2016-12-07 21:39 - 00000000 ___RD C:\Users\User2\Contacts
2016-12-07 21:38 - 2016-12-07 21:38 - 00000020 ___SH C:\Users\User2\ntuser.ini
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Vorlagen
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Startmenü
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\SendTo
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Recent
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Netzwerkumgebung
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Lokale Einstellungen
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Eigene Dateien
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Druckumgebung
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Documents\Eigene Videos
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Documents\Eigene Musik
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Documents\Eigene Bilder
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Cookies
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\AppData\Local\Verlauf
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\AppData\Local\Temporary Internet Files
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\AppData\Local\Anwendungsdaten
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _SHDL C:\Users\User2\Anwendungsdaten
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 ___SH C:\Users\User2\ntuser.dat.LOG2
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 ___HD C:\Users\User2\AppData
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\iterate_GmbH
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Cyberduck
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 ____D C:\Users\User2\AppData\Roaming\Mozilla
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 ____D C:\Users\User2\AppData\Roaming\Identities
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 ____D C:\Users\User2\AppData\LocalLow
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 ____D C:\Users\User2\AppData\Local\Mozilla
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 ____D C:\Users\User2\AppData\Local\ESET
2016-12-07 21:38 - 2016-12-07 21:38 - 00000000 _____ C:\Users\User2\agent.log
2016-12-07 21:38 - 2010-11-21 08:00 - 00000000 ____D C:\Users\User2\AppData\Roaming\Media Center Programs
2016-12-07 21:38 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\User2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-07 21:38 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\User2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-12-07 21:24 - 2016-12-07 21:24 - 01058632 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2016-12-07 21:24 - 2016-12-07 21:24 - 00304416 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2016-12-07 21:24 - 2016-12-07 21:24 - 00296736 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\file_tracker.sys
2016-12-07 21:24 - 2016-12-07 21:24 - 00248648 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib_mounter.sys
2016-12-07 21:24 - 2016-12-07 21:24 - 00134432 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2016-12-07 21:24 - 2016-12-07 21:24 - 00001217 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis True Image 2015.lnk
2016-12-07 21:24 - 2016-12-07 21:24 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Acronis
2016-12-07 21:24 - 2016-12-07 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
2016-12-07 21:24 - 2016-12-07 21:24 - 00000000 ____D C:\ProgramData\Acronis
2016-12-07 21:24 - 2016-12-07 21:24 - 00000000 ____D C:\Program Files (x86)\Acronis
2016-12-07 21:18 - 2016-12-07 21:18 - 00000000 ____D C:\Users\MAIN\AppData\Local\ElevatedDiagnostics
2016-12-07 21:17 - 2016-12-07 21:17 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Sun
2016-12-07 20:35 - 2016-12-07 20:35 - 00002218 _____ C:\Users\Public\Desktop\tax 2017.lnk
2016-12-07 20:35 - 2016-12-07 20:35 - 00000000 ____D C:\Users\MAIN\AppData\Local\Buhl
2016-12-07 20:34 - 2016-12-07 20:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\tax 2017
2016-12-07 20:33 - 2016-12-07 20:35 - 00000000 ____D C:\ProgramData\Buhl Data Service GmbH
2016-12-07 20:33 - 2016-12-07 20:33 - 00000000 ____D C:\Program Files (x86)\Buhl finance
2016-12-07 20:21 - 2016-12-07 20:21 - 00000000 ____D C:\8db822a39ae729e1ee137579451b
2016-12-07 20:19 - 2017-01-01 23:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-12-07 20:19 - 2016-12-07 20:19 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-12-07 20:17 - 2016-11-20 21:26 - 2907316224 _____ C:\Users\MAIN\Desktop\ProfessionalRetail.img
2016-12-07 20:14 - 2016-12-07 20:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinCDEmu
2016-12-07 20:14 - 2016-12-07 20:14 - 00000000 ____D C:\Program Files (x86)\WinCDEmu
2016-12-07 20:05 - 2016-12-07 20:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cyberduck
2016-12-07 20:05 - 2016-12-07 20:05 - 00000000 ____D C:\ProgramData\Apple
2016-12-07 20:05 - 2016-12-07 20:05 - 00000000 ____D C:\Program Files\Bonjour
2016-12-07 20:05 - 2016-12-07 20:05 - 00000000 ____D C:\Program Files (x86)\Cyberduck
2016-12-07 20:05 - 2016-12-07 20:05 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-12-07 19:54 - 2016-12-07 19:54 - 00000000 ____D C:\Users\MAIN\AppData\Local\FileZilla
2016-12-07 19:53 - 2016-12-07 19:57 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\FileZilla
2016-12-07 19:53 - 2016-12-07 19:53 - 00000000 ____D C:\Users\MAIN\AppData\Local\Caphyon
2016-12-07 19:52 - 2016-12-07 19:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
2016-12-07 19:52 - 2016-12-07 19:52 - 00000000 ____D C:\Program Files (x86)\Git
2016-12-07 19:48 - 2016-12-07 19:48 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js
2016-12-07 19:48 - 2016-12-07 19:48 - 00000000 ____D C:\Program Files\nodejs
2016-12-07 19:36 - 2016-12-07 19:36 - 00000000 ____D C:\Users\MAIN\AppData\Local\ESET
2016-12-07 19:26 - 2016-12-07 19:27 - 00000000 ____D C:\Users\MAIN\Desktop\Dual Monitor Wallpapers - Imgur
2016-12-07 19:23 - 2016-12-07 19:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-12-07 19:08 - 2016-12-07 19:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Runtime Software
2016-12-07 19:08 - 2016-12-07 19:08 - 00000000 ____D C:\Program Files (x86)\Runtime Software
2016-12-07 19:07 - 2016-12-07 19:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2016-12-07 19:07 - 2016-12-07 19:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
2016-12-07 19:07 - 2016-12-07 19:07 - 00000000 ____D C:\Program Files\TAP-Windows
2016-12-07 19:07 - 2016-12-07 19:07 - 00000000 ____D C:\Program Files\OpenVPN
2016-12-07 18:51 - 2017-01-01 23:14 - 00000000 ____D C:\Users\MAIN\AppData\Local\DisplayFusion
2016-12-07 18:51 - 2016-12-30 14:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DisplayFusion
2016-12-07 18:51 - 2016-12-26 14:54 - 00001270 _____ C:\Users\User2\Desktop\DisplayFusion.lnk
2016-12-07 18:51 - 2016-12-26 14:54 - 00000000 ____D C:\Program Files (x86)\DisplayFusion
2016-12-07 18:51 - 2016-12-07 18:51 - 00000000 ____D C:\ProgramData\Binary Fortress Software
2016-12-07 18:49 - 2016-12-07 18:49 - 00000222 _____ C:\Users\MAIN\Desktop\DisplayFusion.url
2016-12-07 18:45 - 2016-12-12 21:17 - 00000000 ____D C:\Users\MAIN\AppData\Local\Steam
2016-12-07 18:45 - 2016-12-07 18:45 - 00000000 ____D C:\Users\MAIN\AppData\Local\CEF
2016-12-07 18:42 - 2017-01-01 23:44 - 00000000 ____D C:\Program Files (x86)\Steam
2016-12-07 18:42 - 2016-12-07 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-12-07 18:42 - 2016-12-07 18:43 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-12-07 18:39 - 2017-01-02 01:14 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Origin
2016-12-07 18:39 - 2016-12-07 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-12-07 18:39 - 2016-12-07 18:39 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps
2016-12-07 18:39 - 2016-12-07 18:39 - 00000000 ____D C:\Program Files (x86)\Origin
2016-12-07 18:37 - 2017-01-01 23:49 - 00000000 ____D C:\ProgramData\Origin
2016-12-07 18:37 - 2016-12-07 18:42 - 00000000 ____D C:\Users\MAIN\AppData\Local\Origin
2016-12-07 18:37 - 2016-12-07 18:37 - 00000000 ____D C:\Users\MAIN\.QtWebEngineProcess
2016-12-07 18:37 - 2016-12-07 18:37 - 00000000 ____D C:\Users\MAIN\.Origin
2016-12-07 18:35 - 2016-12-07 18:35 - 00000000 ____D C:\Program Files\Shotcut
2016-12-07 18:33 - 2016-12-07 18:33 - 00000000 ____D C:\Windows\ShellNew
2016-12-07 18:33 - 2016-12-07 18:33 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\KiTTY
2016-12-07 18:33 - 2016-12-07 18:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2016-12-07 18:33 - 2016-12-07 18:33 - 00000000 ____D C:\Program Files\AutoHotkey
2016-12-07 18:32 - 2016-12-07 21:45 - 00000000 ____D C:\ProgramData\Oracle
2016-12-07 18:32 - 2016-12-07 21:17 - 00269888 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2016-12-07 18:32 - 2016-12-07 21:17 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-12-07 18:32 - 2016-12-07 21:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-12-07 18:32 - 2016-12-07 18:32 - 00000000 ____D C:\ProgramData\Sun
2016-12-07 18:31 - 2016-12-10 17:24 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc
2016-12-07 18:31 - 2016-12-10 17:24 - 00000000 ____D C:\Users\MAIN\AppData\Local\atom
2016-12-07 18:31 - 2016-12-10 17:23 - 00000000 ____D C:\Users\MAIN\AppData\Local\SquirrelTemp
2016-12-07 18:31 - 2016-12-10 17:22 - 00000000 ____D C:\Users\MAIN\.atom
2016-12-07 18:31 - 2016-12-10 17:21 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Atom
2016-12-07 18:31 - 2016-12-07 21:17 - 00000000 ____D C:\Program Files (x86)\Java
2016-12-07 18:31 - 2016-12-07 18:32 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Appcelerator
2016-12-07 18:31 - 2016-12-07 18:31 - 00000000 ____D C:\Users\MAIN\AppData\LocalLow\Sun
2016-12-07 18:29 - 2016-12-07 18:30 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Dopamine
2016-12-07 18:29 - 2016-12-07 18:29 - 00000000 ____D C:\Program Files (x86)\Dopamine
2016-12-07 18:28 - 2016-12-07 20:30 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\SumatraPDF
2016-12-07 18:28 - 2016-12-07 18:28 - 00001879 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
2016-12-07 18:28 - 2016-12-07 18:28 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat
2016-12-07 18:28 - 2016-12-07 18:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat
2016-12-07 18:28 - 2016-12-07 18:28 - 00000000 ____D C:\Program Files\SumatraPDF
2016-12-07 18:28 - 2016-12-07 18:28 - 00000000 ____D C:\Program Files (x86)\WinDirStat
2016-12-07 18:27 - 2016-12-07 19:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape 0.91
2016-12-07 18:27 - 2016-12-07 18:27 - 00000895 _____ C:\Users\Public\Desktop\Inkscape 0.91.lnk
2016-12-07 18:27 - 2016-12-07 18:27 - 00000000 ____D C:\Program Files\Inkscape
2016-12-07 18:26 - 2016-12-07 18:26 - 00000894 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2016-12-07 18:26 - 2016-12-07 18:26 - 00000000 ____D C:\Windows\SysWOW64\ShellExt
2016-12-07 18:26 - 2016-12-07 18:26 - 00000000 ____D C:\Windows\system32\ShellExt
2016-12-07 18:26 - 2016-12-07 18:26 - 00000000 ____D C:\Program Files\GIMP 2
2016-12-07 18:20 - 2016-12-07 18:20 - 00000514 _____ C:\Users\MAIN\Desktop\bensch_owncloud.lnk
2016-12-07 18:18 - 2017-01-01 23:05 - 00002732 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CarotDAV.lnk
2016-12-07 18:16 - 2016-12-07 18:16 - 00002039 _____ C:\Users\Public\Desktop\Action!.lnk
2016-12-07 18:15 - 2016-12-09 10:25 - 00005012 _____ C:\Windows\windefendam.log
2016-12-07 18:15 - 2016-12-09 10:25 - 00000020 _____ C:\Windows\capsys184523.log
2016-12-07 18:14 - 2016-12-17 14:20 - 00003542 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-07 18:14 - 2016-12-17 14:20 - 00003414 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-07 18:14 - 2016-12-13 21:20 - 00002187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-07 18:14 - 2016-12-07 19:39 - 00000000 ____D C:\Users\MAIN\AppData\Local\Google
2016-12-07 18:14 - 2016-12-07 18:14 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-07 18:11 - 2016-12-07 18:11 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ICCWDT_01009.Wdf
2016-12-07 18:11 - 2015-09-23 21:51 - 00038680 _____ (Intel Corporation) C:\Windows\system32\Drivers\ICCWDT.sys
2016-12-07 18:11 - 2013-11-25 16:39 - 00086016 _____ (Nuvoton Technology Corp.) C:\Windows\system32\Drivers\nuvserial.sys
2016-12-07 18:11 - 2013-11-25 16:39 - 00023552 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\nuvserenum.sys
2016-12-07 18:10 - 2013-12-10 13:15 - 00795632 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2016-12-07 18:10 - 2013-12-10 13:15 - 00358896 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hub.sys
2016-12-07 18:08 - 2016-12-07 18:08 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-12-07 18:08 - 2016-03-29 06:01 - 00181304 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2016-12-07 18:08 - 2015-11-12 08:31 - 00084816 _____ (Asmedia Technology) C:\Windows\system32\Drivers\asstor64.sys
2016-12-07 18:07 - 2016-12-07 18:09 - 00524288 ___SH C:\Users\MAIN\ntuser.dat{70af6723-bc9f-11e6-8cf4-bc5ff45a56c1}.TMContainer00000000000000000002.regtrans-ms
2016-12-07 18:07 - 2016-12-07 18:09 - 00524288 ___SH C:\Users\MAIN\ntuser.dat{70af6723-bc9f-11e6-8cf4-bc5ff45a56c1}.TMContainer00000000000000000001.regtrans-ms
2016-12-07 18:07 - 2016-12-07 18:09 - 00065536 ___SH C:\Users\MAIN\ntuser.dat{70af6723-bc9f-11e6-8cf4-bc5ff45a56c1}.TM.blf
2016-12-07 18:06 - 2016-12-07 18:07 - 00524288 ___SH C:\Users\MAIN\ntuser.dat{70af66f2-bc9f-11e6-8cf4-bc5ff45a56c1}.TMContainer00000000000000000002.regtrans-ms
2016-12-07 18:06 - 2016-12-07 18:07 - 00524288 ___SH C:\Users\MAIN\ntuser.dat{70af66f2-bc9f-11e6-8cf4-bc5ff45a56c1}.TMContainer00000000000000000001.regtrans-ms
2016-12-07 18:06 - 2016-12-07 18:07 - 00065536 ___SH C:\Users\MAIN\ntuser.dat{70af66f2-bc9f-11e6-8cf4-bc5ff45a56c1}.TM.blf
2016-12-07 17:54 - 2012-09-01 18:01 - 00647736 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2016-12-07 17:54 - 2012-09-01 18:01 - 00028216 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2016-12-07 09:50 - 2016-12-14 20:59 - 00524288 ___SH C:\Windows\system32\config\components{163fe779-bc5a-11e6-aa04-bc5ff45a56c1}.TMContainer00000000000000000001.regtrans-ms
2016-12-07 09:50 - 2016-12-14 20:59 - 00065536 ___SH C:\Windows\system32\config\components{163fe779-bc5a-11e6-aa04-bc5ff45a56c1}.TM.blf
2016-12-07 09:50 - 2016-12-07 09:52 - 00524288 ___SH C:\Windows\system32\config\components{163fe779-bc5a-11e6-aa04-bc5ff45a56c1}.TMContainer00000000000000000002.regtrans-ms
2016-12-07 09:48 - 2013-10-29 22:15 - 00458960 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\k57nd60a.sys
2016-12-07 09:46 - 2017-01-01 23:28 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\steelseries-engine-3-client
2016-12-07 09:46 - 2014-02-03 08:46 - 00044744 _____ C:\Windows\system32\Drivers\ISCTD.sys
2016-12-07 09:46 - 2011-11-22 13:21 - 00130024 _____ (ASMedia Technology Inc) C:\Windows\system32\Drivers\asmthub3.sys
2016-12-07 09:45 - 2016-12-07 09:46 - 00524288 ___SH C:\Windows\system32\config\components{7b3fe936-bc59-11e6-a7ab-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
2016-12-07 09:45 - 2016-12-07 09:46 - 00524288 ___SH C:\Users\MAIN\ntuser.dat{16848f0e-bc59-11e6-a6bf-bc5ff45a56c1}.TMContainer00000000000000000002.regtrans-ms
2016-12-07 09:45 - 2016-12-07 09:46 - 00524288 ___SH C:\Users\MAIN\ntuser.dat{16848f0e-bc59-11e6-a6bf-bc5ff45a56c1}.TMContainer00000000000000000001.regtrans-ms
2016-12-07 09:45 - 2016-12-07 09:46 - 00065536 ___SH C:\Windows\system32\config\components{7b3fe936-bc59-11e6-a7ab-806e6f6e6963}.TM.blf
2016-12-07 09:45 - 2016-12-07 09:46 - 00065536 ___SH C:\Users\MAIN\ntuser.dat{16848f0e-bc59-11e6-a6bf-bc5ff45a56c1}.TM.blf
2016-12-07 09:45 - 2016-12-07 09:45 - 00524288 ___SH C:\Windows\system32\config\components{7b3fe936-bc59-11e6-a7ab-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
2016-12-07 09:43 - 2016-12-07 09:44 - 00524288 ___SH C:\Windows\system32\config\components{16848edf-bc59-11e6-a6bf-bc5ff45a56c1}.TMContainer00000000000000000002.regtrans-ms
2016-12-07 09:43 - 2016-12-07 09:44 - 00524288 ___SH C:\Windows\system32\config\components{16848edf-bc59-11e6-a6bf-bc5ff45a56c1}.TMContainer00000000000000000001.regtrans-ms
2016-12-07 09:43 - 2016-12-07 09:44 - 00065536 ___SH C:\Windows\system32\config\components{16848edf-bc59-11e6-a6bf-bc5ff45a56c1}.TM.blf
2016-12-07 09:42 - 2016-12-07 09:44 - 00524288 ___SH C:\Users\MAIN\ntuser.dat{16848ed1-bc59-11e6-a6bf-bc5ff45a56c1}.TMContainer00000000000000000002.regtrans-ms
2016-12-07 09:42 - 2016-12-07 09:44 - 00524288 ___SH C:\Users\MAIN\ntuser.dat{16848ed1-bc59-11e6-a6bf-bc5ff45a56c1}.TMContainer00000000000000000001.regtrans-ms
2016-12-07 09:42 - 2016-12-07 09:44 - 00065536 ___SH C:\Users\MAIN\ntuser.dat{16848ed1-bc59-11e6-a6bf-bc5ff45a56c1}.TM.blf
2016-12-07 09:25 - 2016-12-07 09:25 - 00000000 ____D C:\Users\MAIN\Documents\Action!
2016-12-07 09:25 - 2016-12-07 09:25 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\NVIDIA
2016-12-07 09:25 - 2016-12-07 09:25 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Mirillis
2016-12-07 09:25 - 2016-12-07 09:25 - 00000000 ____D C:\Users\MAIN\AppData\Local\Mirillis
2016-12-07 09:25 - 2016-12-07 09:25 - 00000000 ____D C:\ProgramData\Mirillis
2016-12-07 09:24 - 2016-12-07 09:28 - 00524288 ___SH C:\Users\MAIN\ntuser.dat{7e880750-bc56-11e6-bc0b-bc5ff45a56c1}.TMContainer00000000000000000002.regtrans-ms
2016-12-07 09:24 - 2016-12-07 09:28 - 00524288 ___SH C:\Users\MAIN\ntuser.dat{7e880750-bc56-11e6-bc0b-bc5ff45a56c1}.TMContainer00000000000000000001.regtrans-ms
2016-12-07 09:24 - 2016-12-07 09:28 - 00065536 ___SH C:\Users\MAIN\ntuser.dat{7e880750-bc56-11e6-bc0b-bc5ff45a56c1}.TM.blf
2016-12-07 09:23 - 2016-12-07 09:28 - 00524288 ___SH C:\Windows\system32\config\components{7e880718-bc56-11e6-bc0b-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
2016-12-07 09:23 - 2016-12-07 09:28 - 00065536 ___SH C:\Windows\system32\config\components{7e880718-bc56-11e6-bc0b-806e6f6e6963}.TM.blf
2016-12-07 09:23 - 2016-12-07 09:23 - 00524288 ___SH C:\Windows\system32\config\components{7e880718-bc56-11e6-bc0b-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
2016-12-07 09:14 - 2017-01-01 22:04 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\KeePass
2016-12-07 09:13 - 2016-12-07 09:13 - 00000000 ____D C:\ProgramData\ESET
2016-12-07 09:13 - 2016-12-07 09:13 - 00000000 ____D C:\Program Files\ESET
2016-12-07 09:05 - 2016-12-07 09:05 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Rei Software
2016-12-07 09:05 - 2016-12-07 09:05 - 00000000 ____D C:\Program Files (x86)\Rei Software
2016-12-07 09:03 - 2017-01-02 00:44 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Duplicati
2016-12-07 09:03 - 2016-12-07 09:45 - 00000000 ____D C:\Program Files\Duplicati 2
2016-12-07 09:03 - 2016-12-07 09:03 - 00001976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Duplicati 2.lnk
2016-12-07 09:03 - 2016-12-07 09:03 - 00000000 ____D C:\ProgramData\Duplicati
2016-12-07 09:01 - 2017-01-01 23:27 - 00028894 _____ C:\Windows\DirectX.log
2016-12-07 09:01 - 2016-12-07 09:45 - 00000000 ____D C:\ProgramData\SteelSeries
2016-12-07 09:01 - 2016-12-07 09:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2016-12-07 09:01 - 2016-12-07 09:45 - 00000000 ____D C:\Program Files\DIFX
2016-12-07 09:01 - 2016-12-07 09:44 - 00000000 ____D C:\Program Files\SteelSeries
2016-12-07 09:01 - 2016-12-07 09:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_sshid_01011.Wdf
2016-12-07 09:01 - 2016-12-07 09:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ssdevfactory_01011.Wdf
2016-12-07 09:01 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-12-07 09:01 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-12-07 09:01 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
         

Alt 02.01.2017, 02:02   #2
PCNutzer
 
Seltsames Verhalten nach Bootvorgang Win 7 - Standard

Seltsames Verhalten nach Bootvorgang Win 7 Anleitung / Hilfe



FRST.txt (2)
Code:
ATTFilter
2016-12-07 09:01 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-12-07 09:01 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-12-07 09:01 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-12-07 09:00 - 2016-12-07 09:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux (64 bits)
2016-12-07 09:00 - 2016-12-07 09:45 - 00000000 ____D C:\Program Files\Avidemux 2.6 - 64 bits
2016-12-07 09:00 - 2016-12-07 09:24 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\avidemux
2016-12-07 08:59 - 2016-12-07 09:45 - 00000000 ____D C:\Program Files (x86)\KeePass Password Safe 2
2016-12-07 08:59 - 2016-12-07 08:59 - 00001121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2016-12-07 08:58 - 2016-12-07 09:45 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
2016-12-07 08:58 - 2016-12-07 09:45 - 00000000 ____D C:\Users\MAIN\AppData\Local\FluxSoftware
2016-12-07 08:55 - 2016-12-07 09:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2016-12-07 08:55 - 2016-12-07 09:44 - 00000000 ____D C:\Program Files (x86)\Mirillis
2016-12-07 08:48 - 2016-12-07 08:48 - 03746093 _____ C:\Users\MAIN\Downloads\SDI_R524.zip
2016-12-07 08:44 - 2017-01-01 23:40 - 00000000 ____D C:\Users\MAIN\AppData\LocalLow\Mozilla
2016-12-07 08:44 - 2017-01-01 23:13 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-07 08:44 - 2017-01-01 23:13 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-07 08:44 - 2016-12-07 09:45 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Mozilla
2016-12-07 08:44 - 2016-12-07 09:45 - 00000000 ____D C:\Users\MAIN\AppData\Local\Mozilla
2016-12-07 08:42 - 2016-12-07 09:45 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crucial Storage Executive
2016-12-07 08:42 - 2016-12-07 09:44 - 00000000 ____D C:\Program Files\Crucial
2016-12-07 08:41 - 2016-12-07 19:48 - 00000000 ____D C:\Windows\system32\appmgmt
2016-12-07 08:40 - 2016-12-07 08:40 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Toshiba Corporation
2016-12-07 08:40 - 2016-12-07 08:40 - 00000000 ____D C:\ProgramData\Toshiba Corporation
2016-12-07 08:36 - 2016-12-07 09:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-12-07 08:36 - 2016-12-07 09:45 - 00000000 ____D C:\Program Files\7-Zip
2016-12-07 08:35 - 2016-12-14 21:00 - 00000000 ____D C:\Users\MAIN\Desktop\Programme
2016-12-07 08:35 - 2016-12-07 08:35 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-12-06 23:14 - 2017-01-01 23:44 - 00000000 __SHD C:\Users\MAIN\IntelGraphicsProfiles
2016-12-06 23:14 - 2016-12-06 23:14 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-12-06 23:14 - 2016-12-06 23:14 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Adobe
2016-12-06 22:52 - 2015-07-30 14:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-12-06 22:52 - 2015-07-30 14:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-12-06 22:50 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2016-12-06 22:46 - 2016-12-06 22:46 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2016-12-06 22:46 - 2016-12-06 22:46 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2016-12-06 22:46 - 2016-12-06 22:46 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2016-12-06 22:46 - 2016-12-06 22:46 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2016-12-06 22:46 - 2016-12-06 22:46 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2016-12-06 22:46 - 2016-12-06 22:46 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2016-12-06 22:46 - 2016-12-06 22:46 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2016-12-06 22:46 - 2016-12-06 22:46 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2016-12-06 22:46 - 2016-12-06 22:46 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2016-12-06 22:46 - 2016-12-06 22:46 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2016-12-06 22:46 - 2016-12-06 22:46 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2016-12-06 22:46 - 2016-12-06 22:46 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2016-12-06 22:46 - 2016-12-06 22:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2016-12-06 22:46 - 2016-12-06 22:46 - 00016303 _____ C:\Windows\SysWOW64\ieuinit.inf
2016-12-06 22:46 - 2016-12-06 22:46 - 00016303 _____ C:\Windows\system32\ieuinit.inf
2016-12-06 22:46 - 2016-12-06 22:46 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2016-12-06 22:46 - 2016-12-06 22:46 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2016-12-06 22:46 - 2016-12-06 22:46 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2016-12-06 22:46 - 2016-12-06 22:46 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2016-12-06 22:42 - 2016-12-06 22:50 - 00016163 _____ C:\Windows\IE11_main.log
2016-12-06 22:42 - 2016-12-06 22:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-12-06 22:42 - 2016-12-06 22:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-12-06 22:36 - 2016-12-13 23:02 - 00000000 ____D C:\Windows\system32\MRT
2016-12-06 22:36 - 2016-12-13 23:01 - 135632432 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-12-06 22:22 - 2012-07-26 05:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2016-12-06 22:22 - 2012-07-26 03:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2016-12-06 22:22 - 2012-06-02 15:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2016-12-06 22:15 - 2016-12-17 18:18 - 00000000 ____D C:\Program Files (x86)\Microsoft.NET
2016-12-06 22:15 - 2016-12-06 22:15 - 00000000 ____D C:\Windows\Migration
2016-12-06 21:56 - 2012-03-01 07:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2016-12-06 21:56 - 2012-03-01 07:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2016-12-06 21:56 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2016-12-06 21:50 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2016-12-06 21:50 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2016-12-06 21:50 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2016-12-06 21:50 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2016-12-06 21:50 - 2014-06-30 23:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2016-12-06 21:50 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2016-12-06 21:50 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2016-12-06 21:50 - 2014-06-06 07:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2016-12-06 21:50 - 2014-03-09 22:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2016-12-06 21:50 - 2014-03-09 22:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2016-12-06 21:50 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2016-12-06 21:50 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2016-12-06 21:49 - 2016-08-12 17:26 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-12-06 21:49 - 2016-08-12 17:26 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-12-06 21:49 - 2016-08-12 17:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-12-06 21:49 - 2016-06-26 01:27 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-12-06 21:49 - 2016-06-26 01:27 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-12-06 21:49 - 2016-06-26 01:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-12-06 21:49 - 2016-06-26 01:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-12-06 21:49 - 2016-06-25 20:53 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-12-06 21:49 - 2016-06-25 20:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-12-06 21:49 - 2016-06-25 20:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-12-06 21:49 - 2016-06-25 20:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-12-06 21:49 - 2016-03-17 23:56 - 02084864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-12-06 21:49 - 2016-03-17 23:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-12-06 21:49 - 2016-03-16 19:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-12-06 21:49 - 2016-03-16 19:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-12-06 21:49 - 2016-03-16 19:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-12-06 21:49 - 2016-03-06 19:53 - 01885696 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-12-06 21:49 - 2016-03-06 19:53 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-12-06 21:49 - 2016-03-06 19:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-12-06 21:49 - 2016-03-06 19:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2016-12-06 21:49 - 2016-02-05 19:56 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2016-12-06 21:49 - 2016-02-05 19:54 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-12-06 21:49 - 2016-02-05 18:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2016-12-06 21:49 - 2016-02-02 19:57 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-12-06 21:49 - 2016-01-21 01:51 - 00073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-12-06 21:49 - 2016-01-11 20:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-12-06 21:49 - 2015-11-19 15:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-12-06 21:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-12-06 21:49 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-12-06 21:49 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-12-06 21:49 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-12-06 21:49 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-12-06 21:49 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-12-06 21:49 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-12-06 21:49 - 2015-11-11 19:53 - 01735680 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-12-06 21:49 - 2015-08-05 18:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-12-06 21:49 - 2015-07-23 01:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-12-06 21:49 - 2015-07-22 18:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2016-12-06 21:49 - 2015-07-15 19:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-12-06 21:49 - 2015-07-15 04:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-12-06 21:49 - 2015-07-10 18:51 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-12-06 21:49 - 2015-07-10 18:51 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2016-12-06 21:49 - 2015-07-10 18:51 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2016-12-06 21:49 - 2015-07-10 18:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-12-06 21:49 - 2015-07-10 18:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2016-12-06 21:49 - 2015-07-10 18:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2016-12-06 21:49 - 2015-06-03 21:21 - 00451080 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-12-06 21:49 - 2015-06-02 01:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2016-12-06 21:49 - 2015-06-02 00:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2016-12-06 21:49 - 2015-05-25 19:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2016-12-06 21:49 - 2015-05-25 19:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2016-12-06 21:49 - 2015-05-25 19:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2016-12-06 21:49 - 2015-05-25 19:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2016-12-06 21:49 - 2015-05-25 19:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2016-12-06 21:49 - 2015-05-25 19:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2016-12-06 21:49 - 2015-05-25 19:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2016-12-06 21:49 - 2015-05-25 19:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2016-12-06 21:49 - 2015-05-25 19:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2016-12-06 21:49 - 2015-05-25 19:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2016-12-06 21:49 - 2015-05-25 19:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2016-12-06 21:49 - 2015-05-25 19:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2016-12-06 21:49 - 2015-04-13 04:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-12-06 21:49 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-12-06 21:49 - 2014-12-11 18:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2016-12-06 21:49 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-12-06 21:49 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2016-12-06 21:49 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2016-12-06 21:49 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2016-12-06 21:49 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2016-12-06 21:49 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2016-12-06 21:49 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2016-12-06 21:49 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2016-12-06 21:49 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2016-12-06 21:49 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2016-12-06 21:49 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2016-12-06 21:49 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2016-12-06 21:49 - 2014-03-04 10:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2016-12-06 21:49 - 2014-03-04 10:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2016-12-06 21:49 - 2014-03-04 10:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2016-12-06 21:49 - 2014-03-04 10:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2016-12-06 21:49 - 2014-03-04 10:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2016-12-06 21:49 - 2014-03-04 10:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2016-12-06 21:49 - 2014-03-04 10:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2016-12-06 21:49 - 2014-03-04 10:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2016-12-06 21:49 - 2014-03-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2016-12-06 21:49 - 2014-03-04 10:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2016-12-06 21:49 - 2014-03-04 10:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2016-12-06 21:49 - 2014-03-04 10:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2016-12-06 21:49 - 2014-03-04 10:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2016-12-06 21:49 - 2014-03-04 10:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2016-12-06 21:49 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-12-06 21:49 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2016-12-06 21:49 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2016-12-06 21:49 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2016-12-06 21:49 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2016-12-06 21:49 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2016-12-06 21:49 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2016-12-06 21:49 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2016-12-06 21:49 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2016-12-06 21:49 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2016-12-06 21:49 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2016-12-06 21:49 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2016-12-06 21:49 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2016-12-06 21:49 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2016-12-06 21:49 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2016-12-06 21:49 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2016-12-06 21:49 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2016-12-06 21:49 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2016-12-06 21:49 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2016-12-06 21:49 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2016-12-06 21:49 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2016-12-06 21:49 - 2013-04-26 00:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-12-06 21:49 - 2013-03-31 23:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-12-06 21:49 - 2013-03-19 06:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2016-12-06 21:49 - 2012-12-07 14:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2016-12-06 21:49 - 2012-12-07 14:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2016-12-06 21:49 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2016-12-06 21:49 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2016-12-06 21:49 - 2012-12-07 12:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2016-12-06 21:49 - 2012-12-07 12:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2016-12-06 21:49 - 2012-12-07 12:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2016-12-06 21:49 - 2012-12-07 12:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2016-12-06 21:49 - 2012-12-07 12:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2016-12-06 21:49 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2016-12-06 21:49 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2016-12-06 21:49 - 2012-12-07 12:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2016-12-06 21:49 - 2012-12-07 12:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2016-12-06 21:49 - 2012-12-07 12:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2016-12-06 21:49 - 2012-12-07 12:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2016-12-06 21:49 - 2012-12-07 12:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2016-12-06 21:49 - 2012-12-07 12:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2016-12-06 21:49 - 2012-12-07 12:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2016-12-06 21:49 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2016-12-06 21:49 - 2012-10-09 19:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2016-12-06 21:49 - 2012-10-09 19:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2016-12-06 21:49 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2016-12-06 21:49 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2016-12-06 21:49 - 2012-10-03 18:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2016-12-06 21:49 - 2012-10-03 18:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2016-12-06 21:49 - 2012-10-03 18:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2016-12-06 21:49 - 2012-10-03 18:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2016-12-06 21:49 - 2012-10-03 18:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-12-06 21:49 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2016-12-06 21:49 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2016-12-06 21:49 - 2012-01-04 11:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-12-06 21:49 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-12-06 21:49 - 2011-06-16 06:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2016-12-06 21:49 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2016-12-06 21:49 - 2011-06-15 11:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2016-12-06 21:49 - 2011-06-15 11:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2016-12-06 21:49 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2016-12-06 21:49 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2016-12-06 21:49 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2016-12-06 21:49 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2016-12-06 21:49 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2016-12-06 21:49 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2016-12-06 21:49 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2016-12-06 21:49 - 2011-05-04 06:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-12-06 21:49 - 2011-05-04 06:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-12-06 21:49 - 2011-05-04 06:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2016-12-06 21:49 - 2011-05-04 06:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2016-12-06 21:49 - 2011-05-04 06:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2016-12-06 21:49 - 2011-05-04 06:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2016-12-06 21:49 - 2011-05-04 06:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2016-12-06 21:49 - 2011-05-04 06:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-12-06 21:49 - 2011-05-04 06:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2016-12-06 21:49 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-12-06 21:49 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-12-06 21:49 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2016-12-06 21:49 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2016-12-06 21:49 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2016-12-06 21:49 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2016-12-06 21:49 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2016-12-06 21:49 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-12-06 21:49 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2016-12-06 21:49 - 2010-12-23 11:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2016-12-06 21:49 - 2010-12-23 11:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2016-12-06 21:49 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2016-12-06 21:49 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2016-12-06 21:48 - 2016-07-07 16:36 - 01896168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-12-06 21:48 - 2016-07-07 16:36 - 00377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-12-06 21:48 - 2016-07-07 16:36 - 00287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-12-06 21:48 - 2016-07-07 16:08 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2016-12-06 21:48 - 2016-05-11 18:02 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-12-06 21:48 - 2016-05-11 16:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-12-06 21:48 - 2016-04-09 08:01 - 00986344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-12-06 21:48 - 2016-04-09 08:01 - 00264936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-12-06 21:48 - 2016-04-09 07:57 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-12-06 21:48 - 2016-03-16 01:16 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-12-06 21:48 - 2016-03-16 01:16 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-12-06 21:48 - 2016-03-16 00:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-12-06 21:48 - 2016-02-05 02:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-12-06 21:48 - 2016-02-04 19:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-12-06 21:48 - 2016-02-03 19:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-12-06 21:48 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-12-06 21:48 - 2015-12-08 20:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-12-06 21:48 - 2015-11-11 19:53 - 00525312 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-12-06 21:48 - 2015-11-11 19:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-12-06 21:48 - 2015-11-11 19:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-12-06 21:48 - 2015-11-05 20:05 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2016-12-06 21:48 - 2015-11-05 20:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2016-12-06 21:48 - 2015-11-05 10:53 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-12-06 21:48 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2016-12-06 21:48 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2016-12-06 21:48 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2016-12-06 21:48 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2016-12-06 21:48 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2016-12-06 21:48 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2016-12-06 21:48 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2016-12-06 21:48 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-12-06 21:48 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-12-06 21:48 - 2015-07-09 18:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-12-06 21:48 - 2015-07-09 18:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2016-12-06 21:48 - 2015-07-09 18:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2016-12-06 21:48 - 2015-07-09 18:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2016-12-06 21:48 - 2015-07-09 18:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-12-06 21:48 - 2015-07-09 18:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2016-12-06 21:48 - 2015-07-09 18:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2016-12-06 21:48 - 2015-04-24 19:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2016-12-06 21:48 - 2015-04-24 18:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2016-12-06 21:48 - 2015-02-03 04:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2016-12-06 21:48 - 2015-02-03 04:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2016-12-06 21:48 - 2015-01-29 04:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-12-06 21:48 - 2015-01-29 04:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2016-12-06 21:48 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2016-12-06 21:48 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2016-12-06 21:48 - 2014-06-18 03:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2016-12-06 21:48 - 2014-06-18 02:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2016-12-06 21:48 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2016-12-06 21:48 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2016-12-06 21:48 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2016-12-06 21:48 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2016-12-06 21:48 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2016-12-06 21:48 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2016-12-06 21:48 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2016-12-06 21:48 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2016-12-06 21:48 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2016-12-06 21:48 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2016-12-06 21:48 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2016-12-06 21:48 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2016-12-06 21:48 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-12-06 21:48 - 2013-02-12 05:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2016-12-06 21:48 - 2012-11-02 06:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2016-12-06 21:48 - 2012-11-02 06:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2016-12-06 21:48 - 2012-08-21 22:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2016-12-06 21:48 - 2012-07-04 21:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2016-12-06 21:48 - 2012-03-17 08:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2016-12-06 21:48 - 2011-12-30 07:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2016-12-06 21:48 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2016-12-06 21:48 - 2011-08-17 06:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2016-12-06 21:48 - 2011-08-17 06:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2016-12-06 21:48 - 2011-08-17 05:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2016-12-06 21:48 - 2011-08-17 05:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2016-12-06 21:48 - 2011-03-11 07:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2016-12-06 21:48 - 2011-03-11 07:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2016-12-06 21:48 - 2011-03-11 06:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2016-12-06 21:48 - 2011-03-11 06:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2016-12-06 21:48 - 2011-03-03 07:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-12-06 21:48 - 2011-03-03 07:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2016-12-06 21:48 - 2011-03-03 07:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2016-12-06 21:48 - 2011-03-03 06:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2016-12-06 21:48 - 2011-03-03 06:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2016-12-06 21:47 - 2016-12-06 21:47 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\nomacs
2016-12-06 21:47 - 2016-12-06 21:47 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\nomacs - Image Lounge
2016-12-06 21:46 - 2016-12-06 21:47 - 00000000 ____D C:\Program Files\nomacs
2016-12-06 21:46 - 2016-12-06 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
2016-12-06 21:46 - 2016-12-06 21:46 - 00000000 ____D C:\Program Files\MPC-HC
2016-12-06 21:46 - 2016-11-02 16:36 - 00382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-12-06 21:46 - 2016-11-02 16:32 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-12-06 21:46 - 2016-11-02 16:32 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-12-06 21:46 - 2016-11-02 16:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-12-06 21:46 - 2016-11-02 16:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-12-06 21:46 - 2016-11-02 16:22 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-12-06 21:46 - 2016-11-02 16:16 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-12-06 21:46 - 2016-11-02 16:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-12-06 21:46 - 2016-11-02 16:16 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-12-06 21:46 - 2016-11-02 15:53 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-12-06 21:46 - 2016-10-15 16:31 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-12-06 21:46 - 2016-10-15 16:31 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-12-06 21:46 - 2016-10-15 16:13 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-12-06 21:46 - 2016-10-15 16:13 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-12-06 21:46 - 2016-10-11 16:31 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2016-12-06 21:46 - 2016-10-11 16:31 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-12-06 21:46 - 2016-10-11 16:31 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-12-06 21:46 - 2016-10-11 16:31 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2016-12-06 21:46 - 2016-10-11 16:31 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-12-06 21:46 - 2016-10-11 16:31 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2016-12-06 21:46 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2016-12-06 21:46 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2016-12-06 21:46 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2016-12-06 21:46 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2016-12-06 21:46 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2016-12-06 21:46 - 2016-10-11 16:31 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2016-12-06 21:46 - 2016-10-11 16:18 - 01027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2016-12-06 21:46 - 2016-10-11 16:18 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-12-06 21:46 - 2016-10-11 16:18 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2016-12-06 21:46 - 2016-10-11 16:18 - 00430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2016-12-06 21:46 - 2016-10-11 16:18 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2016-12-06 21:46 - 2016-10-11 16:18 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2016-12-06 21:46 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2016-12-06 21:46 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2016-12-06 21:46 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2016-12-06 21:46 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2016-12-06 21:46 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2016-12-06 21:46 - 2016-10-11 16:18 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2016-12-06 21:46 - 2016-10-07 16:32 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-12-06 21:46 - 2016-10-07 16:32 - 00877056 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-12-06 21:46 - 2016-10-07 16:32 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-12-06 21:46 - 2016-10-07 16:12 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-12-06 21:46 - 2016-10-07 16:12 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-12-06 21:46 - 2016-10-07 16:12 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-12-06 21:46 - 2016-10-05 15:54 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-12-06 21:46 - 2016-09-15 15:56 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-12-06 21:46 - 2016-09-12 22:08 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-12-06 21:46 - 2016-09-12 21:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-12-06 21:46 - 2016-09-09 19:20 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-12-06 21:46 - 2016-09-09 19:00 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-12-06 21:46 - 2016-09-08 21:34 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-12-06 21:46 - 2016-09-08 21:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-12-06 21:46 - 2016-09-08 21:34 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-12-06 21:46 - 2016-09-08 21:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-12-06 21:46 - 2016-09-08 15:55 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-12-06 21:46 - 2016-09-08 15:55 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-12-06 21:46 - 2016-08-22 17:19 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-12-06 21:46 - 2016-08-12 18:02 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-12-06 21:46 - 2016-08-12 18:02 - 12574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-12-06 21:46 - 2016-08-12 18:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-12-06 21:46 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-12-06 21:46 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-12-06 21:46 - 2016-08-12 17:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-12-06 21:46 - 2016-08-12 17:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-12-06 21:46 - 2016-08-12 17:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-12-06 21:46 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-12-06 21:46 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-12-06 21:46 - 2016-08-12 17:26 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-12-06 21:46 - 2016-08-06 16:31 - 02023424 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-12-06 21:46 - 2016-08-06 16:31 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-12-06 21:46 - 2016-08-06 16:31 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-12-06 21:46 - 2016-08-06 16:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-12-06 21:46 - 2016-08-06 16:31 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-12-06 21:46 - 2016-08-06 16:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-12-06 21:46 - 2016-08-06 16:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-12-06 21:46 - 2016-08-06 16:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-12-06 21:46 - 2016-08-06 16:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-12-06 21:46 - 2016-08-06 16:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-12-06 21:46 - 2016-08-06 16:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2016-12-06 21:46 - 2016-08-06 16:01 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-12-06 21:46 - 2016-08-06 16:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-12-06 21:46 - 2016-08-06 15:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-12-06 21:46 - 2016-08-06 15:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-12-06 21:46 - 2016-08-06 15:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2016-12-06 21:46 - 2016-06-14 18:21 - 00094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-12-06 21:46 - 2016-06-14 18:16 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-12-06 21:46 - 2016-06-14 18:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-12-06 21:46 - 2016-06-14 18:11 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-12-06 21:46 - 2016-06-14 16:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2016-12-06 21:46 - 2016-06-14 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-12-06 21:46 - 2016-06-14 16:15 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-12-06 21:46 - 2016-06-14 16:15 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-12-06 21:46 - 2016-06-14 16:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-12-06 21:46 - 2016-06-14 16:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-12-06 21:46 - 2016-06-14 16:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-12-06 21:46 - 2016-06-14 16:00 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-12-06 21:46 - 2016-06-14 16:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-12-06 21:46 - 2016-05-12 14:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-12-06 21:46 - 2016-05-12 14:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-12-06 21:46 - 2016-03-23 23:43 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2016-12-06 21:46 - 2016-03-23 23:40 - 00546656 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-12-06 21:46 - 2016-01-22 07:18 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-12-06 21:46 - 2016-01-22 07:18 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-12-06 21:46 - 2016-01-22 07:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-12-06 21:46 - 2016-01-22 07:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-12-06 21:45 - 2016-12-06 21:45 - 00000000 ____D C:\Users\MAIN\AppData\Local\Programs
2016-12-06 21:45 - 2016-07-22 15:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-12-06 21:45 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-12-06 21:45 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-12-06 21:45 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-12-06 21:45 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-12-06 21:45 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-12-06 21:45 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-12-06 21:45 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-12-06 21:45 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-12-06 21:45 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-12-06 21:45 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-12-06 21:45 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-12-06 21:45 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-12-06 21:45 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-12-06 21:45 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-12-06 21:45 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-12-06 21:45 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-12-06 21:45 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-12-06 21:45 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-12-06 21:45 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-12-06 21:45 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-12-06 21:45 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-12-06 21:45 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-12-06 21:45 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-12-06 21:45 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-12-06 21:45 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-12-06 21:45 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-12-06 21:45 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-12-06 21:45 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-12-06 21:45 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-12-06 21:45 - 2015-12-08 20:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-12-06 21:45 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-12-06 21:45 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-12-06 21:45 - 2015-12-08 20:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-12-06 21:45 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-12-06 21:45 - 2015-12-08 20:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-12-06 21:45 - 2015-12-08 20:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-12-06 21:45 - 2015-12-08 19:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-12-06 21:45 - 2015-12-08 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-12-06 21:45 - 2015-12-08 19:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-12-06 21:44 - 2016-12-10 15:09 - 00000000 ____D C:\Users\MAIN\Desktop\PC_neu
2016-12-06 21:44 - 2016-11-19 17:03 - 00000187 _____ C:\Users\MAIN\Desktop\key1.key
2016-12-06 21:42 - 2016-08-29 16:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-12-06 21:42 - 2016-08-29 16:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-12-06 21:42 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-12-06 21:42 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-12-06 21:42 - 2016-08-29 16:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-12-06 21:42 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-12-06 21:42 - 2016-05-12 18:15 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-12-06 21:42 - 2016-05-12 18:14 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-12-06 21:42 - 2016-05-12 18:14 - 00793088 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-12-06 21:42 - 2016-05-12 18:14 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-12-06 21:42 - 2016-05-12 18:14 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-12-06 21:42 - 2016-05-12 18:14 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-12-06 21:42 - 2016-05-12 18:14 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-12-06 21:42 - 2016-05-12 18:14 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-12-06 21:42 - 2016-05-12 16:18 - 00591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-12-06 21:42 - 2016-05-12 16:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-12-06 21:42 - 2016-05-12 16:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-12-06 21:42 - 2016-05-12 16:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2016-12-06 21:42 - 2016-05-12 16:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-12-06 21:42 - 2016-05-12 16:06 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2016-12-06 21:42 - 2016-05-12 15:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-12-06 21:42 - 2016-05-12 15:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2016-12-06 21:42 - 2016-05-11 18:02 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-12-06 21:42 - 2016-05-11 18:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-12-06 21:42 - 2016-05-11 18:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-12-06 21:42 - 2016-05-11 16:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-12-06 21:42 - 2016-05-11 16:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-12-06 21:42 - 2016-05-11 16:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-12-06 21:42 - 2016-05-11 16:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2016-12-06 21:42 - 2016-05-11 16:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2016-12-06 21:42 - 2016-05-11 15:58 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-12-06 21:42 - 2016-03-09 20:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-12-06 21:42 - 2016-03-09 19:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-12-06 21:42 - 2016-03-09 19:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-12-06 21:42 - 2016-03-09 19:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-12-06 21:42 - 2016-02-09 10:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-12-06 21:42 - 2015-11-03 20:04 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2016-12-06 21:42 - 2015-11-03 19:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2016-12-06 21:42 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-12-06 21:42 - 2015-08-27 19:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-12-06 21:42 - 2015-08-27 19:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2016-12-06 21:42 - 2015-08-27 18:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-12-06 21:42 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2016-12-06 21:42 - 2015-04-11 04:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2016-12-06 21:42 - 2015-03-04 05:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2016-12-06 21:42 - 2015-03-04 05:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2016-12-06 21:42 - 2015-02-25 04:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-12-06 21:42 - 2014-12-08 04:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2016-12-06 21:42 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2016-12-06 21:42 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2016-12-06 21:42 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2016-12-06 21:42 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2016-12-06 21:42 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2016-12-06 21:42 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2016-12-06 21:42 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2016-12-06 21:42 - 2014-07-17 03:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2016-12-06 21:42 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-12-06 21:42 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2016-12-06 21:42 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2016-12-06 21:42 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2016-12-06 21:42 - 2014-07-17 02:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2016-12-06 21:42 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2016-12-06 21:42 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2016-12-06 21:42 - 2014-02-04 03:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2016-12-06 21:42 - 2014-02-04 03:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-12-06 21:42 - 2014-02-04 03:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2016-12-06 21:42 - 2014-02-04 03:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2016-12-06 21:42 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2016-12-06 21:42 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2016-12-06 21:42 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2016-12-06 21:42 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2016-12-06 21:42 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-12-06 21:42 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2016-12-06 21:42 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2016-12-06 21:42 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2016-12-06 21:42 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2016-12-06 21:42 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2016-12-06 21:42 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2016-12-06 21:42 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2016-12-06 21:42 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2016-12-06 21:42 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2016-12-06 21:42 - 2013-07-26 03:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2016-12-06 21:42 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2016-12-06 21:42 - 2013-05-13 06:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2016-12-06 21:42 - 2013-05-13 04:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2016-12-06 21:42 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2016-12-06 21:42 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2016-12-06 21:42 - 2013-05-10 06:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2016-12-06 21:42 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2016-12-06 21:42 - 2013-01-24 07:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2016-12-06 21:42 - 2012-11-23 04:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2016-12-06 21:42 - 2012-09-25 23:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2016-12-06 21:42 - 2012-09-25 23:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2016-12-06 21:42 - 2012-07-04 23:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2016-12-06 21:42 - 2012-07-04 23:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2016-12-06 21:42 - 2012-07-04 23:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2016-12-06 21:42 - 2012-07-04 22:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2016-12-06 21:42 - 2012-07-04 22:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2016-12-06 21:42 - 2012-06-06 07:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2016-12-06 21:42 - 2012-06-06 06:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2016-12-06 21:42 - 2012-04-26 06:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2016-12-06 21:42 - 2012-04-26 06:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2016-12-06 21:42 - 2011-12-16 09:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2016-12-06 21:42 - 2011-12-16 08:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2016-12-06 21:42 - 2011-08-27 06:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2016-12-06 21:42 - 2011-08-27 05:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2016-12-06 21:42 - 2011-05-24 12:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2016-12-06 21:42 - 2011-05-24 11:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2016-12-06 21:42 - 2011-05-24 11:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2016-12-06 21:42 - 2011-05-24 11:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2016-12-06 21:42 - 2011-05-24 11:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2016-12-06 21:42 - 2011-02-18 11:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2016-12-06 21:42 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2016-12-06 21:42 - 2011-02-12 12:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2016-12-06 21:42 - 2011-02-05 18:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2016-12-06 21:42 - 2011-02-05 18:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2016-12-06 21:42 - 2011-02-05 18:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2016-12-06 21:40 - 2016-11-19 16:03 - 80335280 _____ C:\Users\MAIN\Downloads\SteelSeriesEngine3.9.2Setup.exe
2016-12-06 21:38 - 2012-02-17 07:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2016-12-06 21:38 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2016-12-06 21:38 - 2012-02-17 05:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2016-12-06 21:37 - 2016-11-19 16:06 - 00015208 _____ C:\Windows\system32\Drivers\nvflash.sys
2016-12-06 21:36 - 2017-01-01 23:04 - 00000000 ____D C:\Users\MAIN\Desktop\CarotDAV
2016-12-06 21:36 - 2016-12-06 21:36 - 00000355 _____ C:\Users\MAIN\Desktop\Arbeitsplatz.lnk
2016-12-06 21:35 - 2016-12-06 21:35 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Intel Corporation
2016-12-06 21:34 - 2016-12-06 21:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-12-06 21:16 - 2016-12-13 23:00 - 01595318 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-12-06 21:08 - 2016-12-06 21:08 - 00000000 ____D C:\cba815b0c3f34c564d4336d4
2016-12-06 20:49 - 2016-12-01 18:04 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-12-06 20:48 - 2017-01-01 23:43 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-06 20:48 - 2016-12-06 20:48 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-12-06 20:48 - 2016-12-01 18:33 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-12-06 20:48 - 2016-12-01 18:32 - 06384576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-12-06 20:48 - 2016-12-01 18:32 - 02475968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-12-06 20:48 - 2016-12-01 18:32 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-12-06 20:48 - 2016-12-01 18:32 - 00546752 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-12-06 20:48 - 2016-12-01 18:32 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-12-06 20:48 - 2016-12-01 18:32 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-12-06 20:48 - 2016-12-01 18:32 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-12-06 20:48 - 2016-11-30 10:34 - 07607057 _____ C:\Windows\system32\nvcoproc.bin
2016-12-06 20:48 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-12-06 20:48 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-12-06 20:48 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-12-06 20:48 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-12-06 20:48 - 2015-08-27 18:20 - 00072704 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-12-06 20:48 - 2015-08-27 18:20 - 00069120 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-12-06 20:47 - 2016-12-06 20:49 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-12-06 20:47 - 2016-12-06 20:49 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-12-06 20:45 - 2016-12-08 23:01 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-06 20:44 - 2016-12-02 21:42 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-12-06 20:44 - 2016-12-02 21:42 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-12-06 20:44 - 2016-12-02 21:42 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 35222976 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 34703416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 28137920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 19948848 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 17440744 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 17373312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 14410120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 14055360 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-12-06 20:44 - 2016-12-01 20:52 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 10795312 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 10346208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 09151400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 08913328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 08754160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 03941536 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 03645496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 03479560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 03206592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 01951680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437619.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437619.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 01036736 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00974272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00943552 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00895424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00683824 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00573072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00491536 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00438208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00407064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00390200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00170872 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00148200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-12-06 20:44 - 2016-12-01 20:52 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-12-06 20:44 - 2016-12-01 20:52 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-12-06 20:44 - 2016-12-01 20:52 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-12-06 20:43 - 2016-12-06 20:49 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-12-06 20:37 - 2016-12-06 20:37 - 00000000 __SHD C:\Users\MAIN\AppData\LocalLow\Microsoft
2016-12-06 20:36 - 2016-12-06 20:36 - 00000000 ____D C:\NVIDIA
2016-12-06 20:34 - 2016-12-07 09:14 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{4a8d7170-bbe8-11e6-9e3d-bc5ff45a56c1}.TMContainer00000000000000000001.regtrans-ms
2016-12-06 20:34 - 2016-12-07 09:14 - 00065536 ___SH C:\Windows\system32\config\COMPONENTS{4a8d7170-bbe8-11e6-9e3d-bc5ff45a56c1}.TM.blf
2016-12-06 20:34 - 2016-12-06 23:11 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{4a8d7170-bbe8-11e6-9e3d-bc5ff45a56c1}.TMContainer00000000000000000002.regtrans-ms
2016-12-06 20:33 - 2016-12-06 20:33 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2016-12-06 20:31 - 2016-11-19 16:12 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll
2016-12-06 20:30 - 2016-12-06 20:30 - 00000000 ____D C:\Program Files\Broadcom
2016-12-06 20:27 - 2016-12-06 20:27 - 00000000 ____D C:\Users\MAIN\Desktop\Treiber
2016-12-06 20:27 - 2016-11-19 16:14 - 00020024 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2016-12-06 20:27 - 2016-11-19 16:12 - 00416072 _____ (ASMedia Technology Inc) C:\Windows\system32\Drivers\asmtxhci.sys
2016-12-06 20:19 - 2016-12-06 20:19 - 00000000 _____ C:\Users\MAIN\agent.log
2016-12-06 20:11 - 2016-12-06 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Asmedia Technology
2016-12-06 20:10 - 2017-01-01 23:27 - 00025094 _____ C:\Windows\DPINST.LOG
2016-12-06 20:10 - 2016-12-06 20:10 - 00000000 ____D C:\Program Files (x86)\ASM106xSATA
2016-12-06 20:07 - 2016-12-06 20:07 - 00003212 _____ C:\Windows\System32\Tasks\{4A61AADF-1985-4E67-9208-75B0B7E57578}
2016-12-06 20:07 - 2016-12-06 20:07 - 00000000 _____ C:\Windows\SysWOW64\agent.log
2016-12-06 20:06 - 2017-01-01 23:46 - 00000018 _____ C:\Windows\SysWOW64\log.txt
2016-12-06 20:06 - 2017-01-01 23:44 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2016-12-06 20:06 - 2016-12-31 12:12 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2016-12-06 20:06 - 2016-12-06 22:20 - 00000000 ____D C:\Program Files\Intel
2016-12-06 20:06 - 2016-12-06 20:57 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-12-06 20:06 - 2016-12-06 20:06 - 00003492 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2016-12-06 20:06 - 2016-12-06 20:06 - 00003188 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2016-12-06 20:06 - 2016-12-06 20:06 - 00000000 ____D C:\ProgramData\Intel
2016-12-06 20:06 - 2012-07-18 06:57 - 00015168 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
2016-12-06 20:05 - 2016-12-06 22:20 - 00000000 ____D C:\Program Files (x86)\Intel
2016-12-06 20:05 - 2016-12-06 20:05 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\InstallShield
2016-12-06 20:05 - 2016-12-06 20:05 - 00000000 ____D C:\Intel
2016-12-06 20:05 - 2012-07-02 10:16 - 00062784 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys
2016-12-06 20:03 - 2016-12-10 13:43 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-12-06 20:03 - 2016-12-06 20:07 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-12-06 20:03 - 2016-12-06 20:03 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-12-06 20:03 - 2016-12-06 20:03 - 00000000 ____D C:\Program Files\Realtek
2016-12-06 20:03 - 2016-12-06 20:03 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-12-06 20:03 - 2016-11-19 16:30 - 02603864 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2016-12-06 20:03 - 2016-11-19 16:30 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-12-06 20:03 - 2016-11-19 16:29 - 04739304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-12-06 20:03 - 2016-11-19 16:29 - 02652264 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-12-06 20:03 - 2016-11-19 16:29 - 02261764 _____ C:\Windows\system32\Drivers\rtvienna.dat
2016-12-06 20:03 - 2016-11-19 16:29 - 01560168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-12-06 20:03 - 2016-11-19 16:29 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-12-06 20:03 - 2016-11-19 16:29 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-12-06 20:03 - 2016-11-19 16:29 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-12-06 20:03 - 2016-11-19 16:29 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-12-06 20:03 - 2016-11-19 16:29 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 03845736 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 01247848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00894040 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00823912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00750680 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00626264 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00561752 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00223608 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-12-06 20:03 - 2016-11-19 16:28 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00100968 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00080984 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-12-06 20:03 - 2016-11-19 16:28 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2016-12-06 20:03 - 2016-11-19 16:27 - 02131288 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2016-12-06 20:03 - 2016-11-19 16:27 - 00958296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-12-06 20:03 - 2016-11-19 16:27 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-12-06 20:03 - 2016-11-19 16:25 - 02528832 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-12-06 20:03 - 2016-11-19 16:24 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-12-06 20:03 - 2016-11-19 16:24 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-12-06 20:03 - 2012-05-25 18:06 - 01706640 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-12-06 19:57 - 2017-01-01 23:13 - 00000000 __SHD C:\Windows\Installer
2016-12-06 19:44 - 2016-12-07 20:30 - 00110176 _____ C:\Users\MAIN\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-06 19:15 - 2016-12-06 19:15 - 00000000 ____D C:\Users\MAIN\AppData\Local\Diagnostics
2016-12-06 18:16 - 2017-01-02 01:15 - 02621440 ___SH C:\Users\MAIN\ntuser.dat
2016-12-06 18:16 - 2017-01-02 01:15 - 00262144 ___SH C:\Users\MAIN\ntuser.dat.LOG1
2016-12-06 18:16 - 2017-01-02 01:15 - 00000000 ___RD C:\Users\MAIN\Downloads
2016-12-06 18:16 - 2017-01-02 01:15 - 00000000 ____D C:\Users\MAIN\AppData\Local\Temp
2016-12-06 18:16 - 2017-01-02 00:59 - 01834733 _____ C:\Windows\WindowsUpdate.log
2016-12-06 18:16 - 2017-01-01 23:48 - 00000000 ___RD C:\Users\MAIN\Desktop
2016-12-06 18:16 - 2017-01-01 23:43 - 04271683 ____H C:\Users\MAIN\AppData\Local\IconCache.db
2016-12-06 18:16 - 2017-01-01 23:26 - 00000000 ____D C:\Users\MAIN\AppData\Roaming
2016-12-06 18:16 - 2017-01-01 23:26 - 00000000 ____D C:\Users\MAIN\AppData\Local
2016-12-06 18:16 - 2017-01-01 23:14 - 00000000 ____D C:\Users\MAIN
2016-12-06 18:16 - 2016-12-26 14:54 - 00000000 ___RD C:\Users\MAIN\Documents
2016-12-06 18:16 - 2016-12-22 20:17 - 00000000 ____D C:\Users\MAIN\AppData\Local\Microsoft
2016-12-06 18:16 - 2016-12-14 20:17 - 00000000 ___RD C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-06 18:16 - 2016-12-12 21:26 - 00000000 ___SD C:\Users\MAIN\AppData\Roaming\Microsoft
2016-12-06 18:16 - 2016-12-10 16:51 - 00000000 ____D C:\Users\MAIN\AppData\Local\VirtualStore
2016-12-06 18:16 - 2016-12-10 13:58 - 00000000 ___RD C:\Users\MAIN\Pictures
2016-12-06 18:16 - 2016-12-07 22:59 - 00000000 ___RD C:\Users\MAIN\Links
2016-12-06 18:16 - 2016-12-07 21:45 - 00000000 ____D C:\Users\MAIN\AppData\LocalLow
2016-12-06 18:16 - 2016-12-07 20:32 - 00000000 ___RD C:\Users\MAIN\Searches
2016-12-06 18:16 - 2016-12-06 23:14 - 00001425 _____ C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-12-06 18:16 - 2016-12-06 23:14 - 00000476 ___SH C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-06 18:16 - 2016-12-06 23:14 - 00000402 ___SH C:\Users\MAIN\Documents\desktop.ini
2016-12-06 18:16 - 2016-12-06 23:14 - 00000282 ___SH C:\Users\MAIN\Downloads\desktop.ini
2016-12-06 18:16 - 2016-12-06 23:14 - 00000282 ___SH C:\Users\MAIN\Desktop\desktop.ini
2016-12-06 18:16 - 2016-12-06 23:14 - 00000174 ___SH C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
2016-12-06 18:16 - 2016-12-06 23:14 - 00000000 ___RD C:\Users\MAIN\Videos
2016-12-06 18:16 - 2016-12-06 23:14 - 00000000 ___RD C:\Users\MAIN\Saved Games
2016-12-06 18:16 - 2016-12-06 23:14 - 00000000 ___RD C:\Users\MAIN\Music
2016-12-06 18:16 - 2016-12-06 23:14 - 00000000 ___RD C:\Users\MAIN\Favorites
2016-12-06 18:16 - 2016-12-06 23:14 - 00000000 ___RD C:\Users\MAIN\Contacts
2016-12-06 18:16 - 2016-12-06 23:14 - 00000000 ___RD C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-06 18:16 - 2016-12-06 23:14 - 00000000 ___RD C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-06 18:16 - 2016-12-06 21:34 - 00000000 ____D C:\Windows\SoftwareDistribution
2016-12-06 18:16 - 2016-12-06 18:16 - 00524288 ___SH C:\Users\MAIN\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
2016-12-06 18:16 - 2016-12-06 18:16 - 00524288 ___SH C:\Users\MAIN\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
2016-12-06 18:16 - 2016-12-06 18:16 - 00065536 ___SH C:\Users\MAIN\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
2016-12-06 18:16 - 2016-12-06 18:16 - 00000020 ___SH C:\Users\MAIN\ntuser.ini
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Vorlagen
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Startmenü
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\SendTo
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Recent
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Netzwerkumgebung
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Lokale Einstellungen
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Eigene Dateien
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Druckumgebung
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Documents\Eigene Videos
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Documents\Eigene Musik
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Documents\Eigene Bilder
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Cookies
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\AppData\Local\Verlauf
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\AppData\Local\Temporary Internet Files
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\AppData\Local\Anwendungsdaten
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\MAIN\Anwendungsdaten
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Programme
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\ProgramData\Vorlagen
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\ProgramData\Startmenü
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\ProgramData\Favoriten
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\ProgramData\Dokumente
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 _SHDL C:\Dokumente und Einstellungen
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 __SHD C:\Recovery
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 ___SH C:\Users\MAIN\ntuser.dat.LOG2
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 ___HD C:\Users\MAIN\AppData
2016-12-06 18:16 - 2016-12-06 18:16 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Identities
2016-12-06 18:16 - 2010-11-21 08:00 - 00000000 ____D C:\Users\MAIN\AppData\Roaming\Media Center Programs
2016-12-06 18:16 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-06 18:16 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-12-06 18:14 - 2016-12-06 18:14 - 00001355 _____ C:\Windows\TSSysprep.log
2016-12-06 18:14 - 2016-12-06 18:14 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-12-06 18:14 - 2016-12-06 18:14 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-12-06 18:13 - 2017-01-01 23:43 - 4204974080 ___SH C:\hiberfil.sys
2016-12-06 18:13 - 2017-01-01 23:43 - 4174979072 ___SH C:\pagefile.sys
2016-12-06 18:13 - 2017-01-01 23:27 - 00000000 __SHD C:\System Volume Information
2016-12-06 18:13 - 2016-12-06 19:47 - 00000000 ____D C:\Windows\Prefetch
2016-12-06 18:13 - 2016-12-06 18:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-12-06 18:12 - 2016-12-06 23:13 - 00000000 __SHD C:\Boot
2016-12-06 18:12 - 2016-12-06 18:16 - 00000000 ____D C:\Windows\Panther
2016-12-06 18:12 - 2016-12-06 18:12 - 00008192 __RSH C:\BOOTSECT.BAK
2016-12-06 18:12 - 2010-11-21 04:23 - 00383786 __RSH C:\bootmgr

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-01 23:52 - 2009-07-14 05:45 - 00022000 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-01 23:52 - 2009-07-14 05:45 - 00022000 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-01 23:50 - 2010-11-21 07:50 - 00699726 _____ C:\Windows\system32\perfh007.dat
2017-01-01 23:50 - 2010-11-21 07:50 - 00149364 _____ C:\Windows\system32\perfc007.dat
2017-01-01 23:50 - 2009-07-14 06:13 - 01621742 _____ C:\Windows\system32\PerfStringBackup.INI
2017-01-01 23:50 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-01-01 23:43 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-01 23:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2017-01-01 23:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2016-12-26 15:36 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\config\RegBack
2016-12-22 20:17 - 2009-07-14 04:20 - 00000000 ___SD C:\ProgramData\Microsoft
2016-12-19 07:00 - 2009-07-14 05:45 - 00424696 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-18 16:00 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\Fonts
2016-12-17 18:20 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\assembly
2016-12-17 18:08 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-12-17 14:20 - 2009-07-14 04:20 - 00000000 ___RD C:\Program Files (x86)
2016-12-16 08:26 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-12-14 19:54 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-12-14 19:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2016-12-13 23:14 - 2009-07-14 03:34 - 00189440 ____H C:\Users\Default\NTUSER.DAT.LOG1
2016-12-13 23:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\en-US
2016-12-13 23:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\de-DE
2016-12-13 23:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\en-US
2016-12-13 23:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\de-DE
2016-12-13 23:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Boot
2016-12-13 23:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppPatch
2016-12-13 23:13 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Internet Explorer
2016-12-13 23:13 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files (x86)\Internet Explorer
2016-12-10 15:44 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Desktop
2016-12-10 13:45 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files
2016-12-10 13:42 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\twain_32
2016-12-10 12:20 - 2010-11-21 08:00 - 00000000 ____D C:\Windows\ehome
2016-12-10 12:20 - 2010-11-21 07:49 - 00000000 ____D C:\Windows\system32\Drivers\de-DE
2016-12-10 12:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-12-09 09:41 - 2009-07-14 04:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-08 23:02 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-12-08 23:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\LogFiles
2016-12-07 22:59 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Tasks
2016-12-07 22:54 - 2009-07-14 04:20 - 00000000 ___RD C:\Users\Default\Links
2016-12-07 22:54 - 2009-07-14 04:20 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-07 22:54 - 2009-07-14 04:20 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-07 21:38 - 2009-07-14 04:20 - 00000000 ___RD C:\Users
2016-12-07 21:38 - 2009-07-14 04:18 - 00000000 __SHD C:\$Recycle.Bin
2016-12-07 20:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Logs
2016-12-07 09:45 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\security
2016-12-07 09:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2016-12-07 00:57 - 2016-11-03 22:25 - 01804680 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-12-07 00:57 - 2016-10-05 02:09 - 00052960 _____ (SteelSeries ApS) C:\Windows\system32\Drivers\sshid.sys
2016-12-07 00:57 - 2016-10-05 02:09 - 00026192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\hidkmdf.sys
2016-12-06 23:11 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Media Player
2016-12-06 23:11 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Defender
2016-12-06 23:11 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Media Player
2016-12-06 23:11 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\zh-TW
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\zh-CN
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\wbem
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sv-SE
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\ru-RU
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\pt-PT
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\pt-BR
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\pl-PL
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\nl-NL
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\nb-NO
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\migration
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\ko-KR
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\ja-JP
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\it-IT
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\hu-HU
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\fr-FR
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\fi-FI
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\es-ES
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\el-GR
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\da-DK
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\cs-CZ
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\zh-TW
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\zh-HK
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\zh-CN
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\tr-TR
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sv-SE
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\ru-RU
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\pt-PT
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\pt-BR
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\pl-PL
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\nl-NL
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\nb-NO
         
__________________


Alt 02.01.2017, 02:11   #3
PCNutzer
 
Seltsames Verhalten nach Bootvorgang Win 7 - Standard

Seltsames Verhalten nach Bootvorgang Win 7 Details



FRST.txt (3)
Code:
ATTFilter
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\migration
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\ko-KR
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\ja-JP
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\it-IT
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\hu-HU
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\fr-FR
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\fi-FI
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\es-ES
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\el-GR
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\da-DK
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\cs-CZ
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\CodeIntegrity
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2016-12-06 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2016-12-06 22:36 - 2009-07-14 05:45 - 00000000 ____D C:\Windows\debug
2016-12-06 20:49 - 2009-07-14 04:20 - 00000000 ___RD C:\Users\Public\Pictures
2016-12-06 20:48 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2016-12-06 20:36 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-12-06 20:12 - 2009-07-14 05:54 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{016888b9-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
2016-12-06 20:12 - 2009-07-14 05:54 - 00065536 ___SH C:\Windows\system32\config\COMPONENTS{016888b9-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
2016-12-06 19:58 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\restore
2016-12-06 19:15 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-12-06 18:16 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2016-12-06 18:16 - 2009-07-14 04:20 - 00000000 ___RD C:\Users\Public\Documents
2016-12-06 18:16 - 2009-07-14 04:20 - 00000000 ___RD C:\Users\Default\Documents
2016-12-06 18:16 - 2009-07-14 04:20 - 00000000 ____D C:\Users\Default\AppData\Local
2016-12-06 18:16 - 2009-07-14 04:20 - 00000000 ____D C:\Users\Default User\AppData\Local
2016-12-06 18:16 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Windows NT
2016-12-06 18:14 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-06 18:14 - 2009-07-14 06:01 - 00177271 _____ C:\Windows\SysWOW64\license.rtf
2016-12-06 18:14 - 2009-07-14 06:01 - 00177271 _____ C:\Windows\system32\license.rtf
2016-12-06 18:14 - 2009-07-14 05:54 - 00001130 ___SH C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-06 18:14 - 2009-07-14 05:46 - 00002790 _____ C:\Windows\DtcInstall.log
2016-12-06 18:14 - 2009-07-14 04:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-06 18:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-12-06 18:13 - 2010-11-21 08:00 - 00000000 ____D C:\Windows\CSC
2016-12-06 18:12 - 2009-07-14 06:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2016-12-06 18:12 - 2009-07-14 06:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-12-06 18:12 - 2009-07-14 03:34 - 00262144 ___SH C:\Users\Default\NTUSER.DAT

Einige Dateien in TEMP:
====================
C:\Users\MAIN\AppData\Local\Temp\7z.dll
C:\Users\MAIN\AppData\Local\Temp\917b0b87-3358-4e79-93de-3dfc2fc99ed0.exe
C:\Users\MAIN\AppData\Local\Temp\jre-8u111-windows-au.exe
C:\Users\MAIN\AppData\Local\Temp\proxy_vole537765627773149244.dll
C:\Users\MAIN\AppData\Local\Temp\sevnz.exe
C:\Users\MAIN\AppData\Local\Temp\sonarinst.exe
C:\Users\MAIN\AppData\Local\Temp\_is5418.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2016-12-26 15:36

==================== Ende von FRST.txt ============================
         
Addition.txt
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 01-01-2017
durchgeführt von MAIN (02-01-2017 01:15:46)
Gestartet von C:\Users\MAIN\Downloads
Windows 7 Professional Service Pack 1 (X64) (2016-12-06 17:16:12)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1734866949-3719978331-2999139344-500 - Administrator - Disabled)
user2 (S-1-5-21-1734866949-3719978331-2999139344-1001 - Limited - Enabled) => C:\Users\user2
Gast (S-1-5-21-1734866949-3719978331-2999139344-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1734866949-3719978331-2999139344-1003 - Limited - Enabled)
MAIN (S-1-5-21-1734866949-3719978331-2999139344-1000 - Administrator - Enabled) => C:\Users\MAIN

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: ESET Internet Security 10.0.369.1 (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Internet Security 10.0.369.1 (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personal Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Acronis True Image 2015 (HKLM-x32\...\{12889D0E-B7E0-4504-9F6C-7B4F1FC03CE5}) (Version: 18.0.4061 - Acronis)
Action! (HKLM-x32\...\Mirillis Action!) (Version: 2.0.7 - Mirillis)
Ansel (Version: 376.19 - NVIDIA Corporation) Hidden
Aptana Studio (HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\...\Aptana Studio 3.6.0) (Version: 3.6.0 - Appcelerator)
Aptana Studio (x32 Version: 3.6.0 - Appcelerator) Hidden
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.1.000 - Asmedia Technology)
Atom (HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\...\atom) (Version: 1.12.7 - GitHub Inc.)
AutoHotkey 1.1.24.03 (HKLM-x32\...\AutoHotkey) (Version: 1.1.24.03 - Lexikos)
Avidemux 2.6 - 64 bits (HKLM-x32\...\Avidemux 2.6 - 64 bits (64-bit)) (Version: 2.6.15.161119 - )
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bonjour (Version: 3.1.0.1 - Apple Inc.) Hidden
Broadcom NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 14.8.5.1 - Broadcom Corporation)
CarotDAV (HKLM-x32\...\{8BD99D72-EA11-49B9-8705-C2EB278F6BD8}) (Version: 1.13.2 - Rei Software)
Crucial Storage Executive (HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\...\Crucial Storage Executive 3.34.062016.09) (Version: 3.34.062016.09 - Crucial)
Cyberduck (HKLM-x32\...\{c587986c-32e3-4766-ad76-5160aae67dbb}) (Version: 5.2.3.21496 - iterate GmbH)
Cyberduck (x32 Version: 5.2.3.21496 - iterate GmbH) Hidden
DisplayFusion (HKLM\...\Steam App 227260) (Version:  - Binary Fortress Software)
DisplayFusion 8.1.2 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 8.1.2.0 - Binary Fortress Software)
Dopamine (HKLM-x32\...\{0FF448E4-B205-4B3A-921E-9E533120B3FC}) (Version: 1.1.711.1 - Digimezzo)
DriveImage XML (Private Edition) (HKLM-x32\...\{F7E1CA14-B39D-452A-960B-39423DDDD933}) (Version: 2.50.000 - Runtime Software)
Duplicati 2 (HKLM\...\{ECC63A05-1D24-4B10-8CF5-3E9832E76D6E}) (Version: 2.0.0.7 - Duplicati Team)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON SX420W Series Printer Uninstall (HKLM\...\EPSON SX420W Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
EpsonNet Setup 3.3 (HKLM-x32\...\{C9D8A041-2963-4B31-8FFC-1500F3DB9293}) (Version: 3.3b - SEIKO EPSON CORPORATION)
ESET Internet Security (HKLM\...\{B27EE9E3-A00D-45E8-9869-5D518C4F7CCF}) (Version: 10.0.369.1 - ESET, spol. s r.o.)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
f.lux (HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\...\Flux) (Version:  - )
GIMP 2.8.18 (HKLM\...\GIMP-2_is1) (Version: 2.8.18 - The GIMP Team)
Git version 1.8.4-preview20130916 (HKLM-x32\...\Git_is1) (Version: 1.8.4-preview20130916 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HashCheck Shell Extension (HKLM\...\HashCheck Shell Extension) (Version: 2.4.0.55 - )
Inkscape 0.91 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.91 - inkscape.org)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36354 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.6.245 - Intel Corporation)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
KeePass Password Safe 2.34 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.34 - Dominik Reichl)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.7571.2075 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\...\OneDriveSetup.exe) (Version: 17.3.6517.0809 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Mozilla Firefox 50.1.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 de)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
Node.js (HKLM\...\{FB6D97D6-6D59-45A8-B378-DDDD8107B961}) (Version: 0.10.36 - Joyent, Inc. and other Node contributors)
nomacs | Image Lounge (HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\...\{8133a9de-aea5-426d-bab5-2fc4b7783233}) (Version: 3.4.0 - nomacs)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.2.2 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 376.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.19 - NVIDIA Corporation)
NVIDIA Grafiktreiber 376.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.19 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
OpenVPN 2.3.13-I601  (HKLM\...\OpenVPN) (Version: 2.3.13-I601 - )
Origin (HKLM-x32\...\Origin) (Version: 10.3.3.1921 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6559 - Realtek Semiconductor Corp.)
Shotcut (HKLM-x32\...\Shotcut) (Version:  - )
Sonic & All-Stars Racing Transformed (HKLM\...\Steam App 212480) (Version:  - Sumo Digital)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.9.6 (HKLM\...\SteelSeries Engine 3) (Version: 3.9.6 - SteelSeries ApS)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
tax 2017 (HKLM-x32\...\{B0AB97B4-F1E7-4CD6-A93B-1ADC1A4E19E8}) (Version: 24.00.1375 - Buhl Data Service GmbH)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)
WinDirStat 1.1.2 (HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\...\WinDirStat) (Version:  - )
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Driver Package - Microsoft (xusb21) XnaComposite  (08/13/2009 2.1.0.1349) (HKLM\...\0AEBEF6F936CFE16E003F7E141631FAB754D9816) (Version: 08/13/2009 2.1.0.1349 - Microsoft)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1734866949-3719978331-2999139344-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\MAIN\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-1734866949-3719978331-2999139344-1000_Classes\CLSID\{3D3B1846-CC43-42AE-BFF9-D914083C2BA3}\InprocServer32 -> C:\Program Files\SumatraPDF\PdfPreview.dll ()
CustomCLSID: HKU\S-1-5-21-1734866949-3719978331-2999139344-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1734866949-3719978331-2999139344-1000_Classes\CLSID\{ca586c80-7c84-4b88-8537-726724df6929}\InprocServer32 -> C:\Program Files (x86)\Git\git-cheetah\git_shell_ext64.dll ()

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {01319E47-C3E2-41E9-851D-E3EEE08B3FFA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-04] (Microsoft Corporation)
Task: {0F1B43A2-A635-41E4-9C64-9DDFEB945C25} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-12-04] (Microsoft Corporation)
Task: {26D6009D-8769-40E1-B052-DBE51A3BCDB9} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16] (Intel Corporation)
Task: {2B2460E7-E33B-41C9-A77A-EAC0DFC4B8EC} - System32\Tasks\{4A61AADF-1985-4E67-9208-75B0B7E57578} => pcalua.exe -a "D:\Treiber\INTEL ASROCK\BSOD Treiber\64bit_Vista_Win7_Win8_R270.exe" -d "D:\Treiber\INTEL ASROCK\BSOD Treiber"
Task: {79BF2EA3-7002-40D6-9F8D-32BF5A462822} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-12-04] (Microsoft Corporation)
Task: {AA60510D-BDC6-4AD7-9465-32BD970C2D79} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-04] (Microsoft Corporation)
Task: {BD9304EB-74FD-494A-A3D1-38DEFF021035} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-07] (Google Inc.)
Task: {C86001B2-96DB-49EA-B8C6-4D30CD444E39} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-04] (Microsoft Corporation)
Task: {D23102C8-45DE-435A-B2F8-55B0A1F79ACD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-07] (Google Inc.)
Task: {D82DCA25-65D4-415C-BAFB-ACA81D68DDAB} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16] (Intel Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js\Node.js command prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files\nodejs\nodevars.bat"
ShortcutWithArgument: C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Helium Backup.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=gpglbgbpeobllokpmeagpoagjbfknanl

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-12-06 20:48 - 2016-12-01 18:32 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-07 22:59 - 2016-12-07 22:59 - 01864384 _____ () C:\Users\MAIN\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2016-12-10 16:32 - 2016-12-10 16:32 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2016-12-07 18:39 - 2016-12-07 18:39 - 00022024 _____ () C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
2016-12-13 21:20 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-13 21:20 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2015-07-23 18:06 - 2015-07-23 18:06 - 00037696 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll
2015-07-23 18:06 - 2015-07-23 18:06 - 00034624 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2016-12-14 14:08 - 2016-12-14 14:08 - 00016384 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\de06ef1fd6e99aeb6076c943581cd44b\PSIClient.ni.dll
2015-07-23 18:13 - 2015-07-23 18:13 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2015-07-23 18:07 - 2015-07-23 18:07 - 00129344 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll
2016-12-06 20:06 - 2012-07-18 06:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-12-07 22:59 - 2016-12-07 22:59 - 01383616 _____ () C:\Users\MAIN\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2016-12-07 18:39 - 2016-12-07 18:39 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2016-12-07 18:39 - 2016-12-07 18:39 - 00012288 _____ () C:\Program Files (x86)\Origin\libEGL.DLL
2017-01-02 01:14 - 2017-01-02 01:14 - 00011776 _____ () C:\Users\MAIN\AppData\Local\Temp\nst8191.tmp\System.dll
2017-01-02 01:14 - 2017-01-02 01:14 - 00009728 _____ () C:\Users\MAIN\AppData\Local\Temp\nst8191.tmp\nsDialogs.dll
2017-01-02 01:14 - 2017-01-02 01:14 - 00002560 _____ () C:\Users\MAIN\AppData\Local\Temp\nst8191.tmp\w7tbp.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MAIN\AppData\Local\DisplayFusion\Wallpaper_1
DNS Servers: 192.168.111.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [TCP Query User{2477687B-3073-49B2-B763-EC77381A178F}C:\program files\crucial\crucial storage executive\java\bin\javaw.exe] => C:\program files\crucial\crucial storage executive\java\bin\javaw.exe
FirewallRules: [UDP Query User{89233C7A-4C87-4D4B-8D66-8317C48C41DD}C:\program files\crucial\crucial storage executive\java\bin\javaw.exe] => C:\program files\crucial\crucial storage executive\java\bin\javaw.exe
FirewallRules: [{7C239AB9-181B-43D1-9736-CDD4260152DF}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8A6C1B87-FE67-4E25-BB6F-4D8F47C7CCEE}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3F1DC1CF-0BCA-4DA1-9D45-F8EC6C2C57B9}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2BC3EC15-D452-404D-8A5E-89DC98559C38}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E8C6C8BB-76AE-4B0A-9481-185D568F80DA}] => C:\Program Files (x86)\Steam\steamapps\common\DisplayFusion\DisplayFusionLauncher.exe
FirewallRules: [{B2C7D53E-11D5-436A-BD2B-A2AFCA8DC590}] => C:\Program Files (x86)\Steam\steamapps\common\DisplayFusion\DisplayFusionLauncher.exe
FirewallRules: [{348E524B-F5C4-43FE-8730-20E2E41F21EF}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{491F6A41-CB1F-47E7-A63C-36BBAF92DA8D}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F53A2971-CEAA-4365-8C92-F7CD1764BD37}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{AD97A2B1-568B-49E2-ADD0-EB47BA88A077}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{EC935555-38BD-42D0-BDFD-799E940130A3}] => C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{73882C3E-A0C4-40C0-B7DE-C67EECA0BA61}] => C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{1AC63A5C-C13D-497C-AAF1-D9C495378057}] => C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{A1C7C23D-39CF-4000-896E-A5E8348876F9}] => C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{83A0BC79-FAA0-4ADB-83C5-9C69511EE916}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{62D72773-93A7-4894-B4A4-857634C84C33}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{5C93FA58-121C-4C7E-9FB7-F8D525016D74}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{416EF882-1F81-4017-8678-2DF409137595}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3E3746CD-DE65-428E-9F0F-B326351892E1}] => C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{2938C504-1431-4E7F-AE82-7009C14FF6E3}] => C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{F528000D-AABE-43D9-946C-20AE373B0B30}] => C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{8B86F66C-F5D5-4BBA-8080-4677439B44B4}] => C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{4DCDCDB2-FABC-4348-8A96-CEE1D48D84A6}] => C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{3F0786E6-2B7B-4511-881D-4FD899EEAA85}] => C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{E3144753-1521-48F4-AEAA-F944D3968E43}] => C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe
FirewallRules: [{487D5351-4528-416B-8770-A533F198C89B}] => C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe
FirewallRules: [{F8B40666-C235-4B5E-8B37-7CABC265F072}] => C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe
FirewallRules: [{7AAF92CD-F4C9-476F-9A85-B6481AF240F0}] => C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe
FirewallRules: [{E84AF053-91FE-45A6-80BC-CB5D0CB7E813}] => C:\Program Files (x86)\EpsonNet\EpsonNet Setup\tool10\ENEasyApp.exe
FirewallRules: [{0B888C1C-E7D3-46BE-AD4B-C1DC8AF4F927}] => C:\Program Files (x86)\EpsonNet\EpsonNet Setup\tool10\ENEasyApp.exe
FirewallRules: [{BC5211ED-FCA4-4EF8-9A6D-2CC9AFE62AEB}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{32A8D957-A7B9-488F-B9DA-6FE796E379B0}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{41818DE4-1552-4427-B756-612886339ED0}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{32024CD3-81F3-4A55-80A5-E095661C881A}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{53D09C9B-B41A-4199-A577-0EAD24200A90}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{0F9B6882-14AD-4028-A1AF-6678775BF583}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{8BFB0E83-1B46-48B6-844E-786F2F14629B}] => C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{D10B797E-E0A6-45B7-A46D-37C3ABD6726E}] => C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe

==================== Wiederherstellungspunkte =========================

20-12-2016 21:45:21 Windows Update
27-12-2016 16:26:59 Windows Update
01-01-2017 23:09:09 Wiederherstellungsvorgang
01-01-2017 23:12:28 Windows Update
01-01-2017 23:17:46 Windows Update
01-01-2017 23:27:50 DirectX wurde installiert

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: asmthub3
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/01/2017 11:45:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/01/2017 11:17:26 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile  1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (01/01/2017 11:17:24 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile  1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (01/01/2017 11:17:24 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile  1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (01/01/2017 11:15:55 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/01/2017 11:14:44 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe

Error: (01/01/2017 11:14:44 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\steam.exe

Error: (01/01/2017 11:12:31 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/01/2017 11:11:20 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe

Error: (01/01/2017 11:11:20 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\steam.exe


Systemfehler:
=============
Error: (01/01/2017 11:44:28 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
cdrom

Error: (01/01/2017 11:44:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (01/01/2017 11:44:28 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht.

Error: (01/01/2017 11:14:55 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143 = In der Endpunktzuordnung sind keine weiteren Endpunkte verfügbar..

Error: (01/01/2017 11:14:41 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
cdrom

Error: (01/01/2017 11:14:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (01/01/2017 11:14:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht.

Error: (01/01/2017 11:14:09 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Windows-Firewall" wurde mit folgendem dienstspezifischem Fehler beendet: Zugriff verweigert
.

Error: (01/01/2017 11:11:31 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143 = In der Endpunktzuordnung sind keine weiteren Endpunkte verfügbar..

Error: (01/01/2017 11:11:17 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
cdrom


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 33%
Installierter physikalischer RAM: 16269.57 MB
Verfügbarer physikalischer RAM: 10812.83 MB
Summe virtueller Speicher: 32537.32 MB
Verfügbarer virtueller Speicher: 27158.1 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:489.05 GB) (Free:333.99 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive e: (BACKUPUSB) (Removable) (Total:1.86 GB) (Free:1.86 GB) FAT

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 489 GB) (Disk ID: 900B2CBA)
Partition 1: (Active) - (Size=489 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 1.9 GB) (Disk ID: 868B829E)
Partition 1: (Not Active) - (Size=1.9 GB) - (Type=06)

==================== Ende von Addition.txt ============================
         
mbam.txt
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 02.01.2017
Suchlaufzeit: 01:37
Protokolldatei: mb.txt
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2017.01.01.03
Rootkit-Datenbank: v2016.11.20.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: MAIN

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 325773
Abgelaufene Zeit: 2 Min., 40 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
         
eset.txt
Code:
ATTFilter
Zeit;Geprfte Ordner;Geprft;Infiziert;Ges„ubert;Status
02.01.2017 01:24:14;Arbeitsspeicher;Bootsektor;C:\Bootsektor;C:\;570116;0;0;Abgeschlossen
         
__________________

Alt 02.01.2017, 02:12   #4
PCNutzer
 
Seltsames Verhalten nach Bootvorgang Win 7 - Standard

Lösung: Seltsames Verhalten nach Bootvorgang Win 7



OTL.txt
Code:
ATTFilter
OTL logfile created on: 02.01.2017 01:39:10 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\MAIN\Downloads
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18537)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
15,89 Gb Total Physical Memory | 10,21 Gb Available Physical Memory | 64,24% Memory free
31,77 Gb Paging File | 25,92 Gb Available in Paging File | 81,57% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 489,05 Gb Total Space | 333,91 Gb Free Space | 68,28% Space Free | Partition Type: NTFS
Drive E: | 1,86 Gb Total Space | 1,86 Gb Free Space | 99,73% Space Free | Partition Type: FAT
 
Computer Name: MAIN-PC | User Name: MAIN | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\MAIN\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis)
PRC - C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
PRC - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Electronic Arts)
PRC - C:\Program Files (x86)\Origin\QtWebEngineProcess.exe ()
PRC - C:\Program Files (x86)\Rei Software\CarotDAV\CarotDAV.exe (Rei Software)
PRC - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe (Binary Fortress Software)
PRC - C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Malwarebytes)
PRC - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
PRC - C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis International GmbH)
PRC - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis)
PRC - C:\Users\MAIN\AppData\Local\FluxSoftware\Flux\flux.exe (Flux Software LLC)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe (SEIKO EPSON CORPORATION)
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\e1941f80d62ffa57ce9738febfa098be\System.ServiceModel.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\c4402d4b4964c9abd161c185c85ba12a\System.IdentityModel.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\c4175f38130bf0c2dac7b7837f82e00b\System.ServiceModel.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMcfeeca6f#\84b656036448188e4fef95e2ab2ef483\IAStorDataMgrSvcInterfaces.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorCommon\dea381e2d84c5316a25d825c081a11dc\IAStorCommon.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorUtil\6a8fbb12302346ac68d942319bef9e2c\IAStorUtil.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\51bba9729fa33d00fb3f5498d07fbde0\System.ServiceModel.Internals.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\eb4c22a56dfee4cdbe62aae589add10a\SMDiagnostics.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\8d1828b7cc6780ad2eaca89d9b73af42\System.Runtime.Serialization.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\3a1bc90e9941e53f2c1d7a730bd53a3d\System.Security.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\0fab00859ac0f599e69bc12e0cc2c497\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\e4b51f793514a0d7324ef02828145130\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\6ad7bdc64040bfda8aa2c21b1e4394b0\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\4d0104bb5509d906f129d54b070d1bd6\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V9921e851#\15f9e369e77bb2a9bb860b07bfe2ccc1\Microsoft.VisualBasic.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\b9870cb10462b6962e0488ffd2472045\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\fa3dc2466256e6a142ad7475ca5a1890\System.Xaml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\c55a38896fef55fafafd1be9c8437243\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System\e49af6abc3fb5dda64392cae6ca45db9\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\02795048c7ede81af33acdb56f905958\mscorlib.ni.dll ()
MOD - C:\Users\MAIN\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll ()
MOD - C:\Program Files (x86)\Origin\libGLESv2.dll ()
MOD - C:\Program Files (x86)\Origin\QtWebEngineProcess.exe ()
MOD - C:\Program Files (x86)\Origin\libEGL.DLL ()
MOD - C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll ()
MOD - C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll ()
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - (PnkBstrA) -- C:\Windows\SysNative\PnkBstrA.exe ()
SRV:64bit: - (IEEtwCollectorService) -- C:\Windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
SRV:64bit: - (igfxCUIService1.0.0.0) -- C:\Windows\SysNative\igfxCUIService.exe (Intel Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (DisplayFusionService) -- C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe (Binary Fortress Software)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (afcdpsrv) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis)
SRV - (Origin Web Helper Service) -- C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Electronic Arts)
SRV - (Origin Client Service) -- C:\Program Files (x86)\Origin\OriginClientService.exe (Electronic Arts)
SRV - (NVDisplay.ContainerLocalSystem) -- C:\Programme\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (OpenVPNService) -- C:\Programme\OpenVPN\bin\openvpnserv.exe (The OpenVPN Project)
SRV - (osppsvc) -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
SRV - (ekrn) -- C:\Programme\ESET\ESET Internet Security\ekrn.exe (ESET)
SRV - (MicronCacheMonitor) -- C:\Programme\Crucial\Crucial Storage Executive\cache\MicronCacheMonitor.exe (Micron Technology, Inc.)
SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
SRV - (syncagentsrv) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis)
SRV - (AcrSch2Svc) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Acronis)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
SRV - (Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
SRV - (Intel(R) -- C:\Programme\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation)
SRV - (EpsonBidirectionalService) -- C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe (SEIKO EPSON CORPORATION)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes)
DRV:64bit: - (file_tracker) -- C:\Windows\SysNative\drivers\file_tracker.sys (Acronis International GmbH)
DRV:64bit: - (tib) -- C:\Windows\SysNative\drivers\tib.sys (Acronis International GmbH)
DRV:64bit: - (snapman) -- C:\Windows\SysNative\drivers\snapman.sys (Acronis International GmbH)
DRV:64bit: - (tib_mounter) -- C:\Windows\SysNative\drivers\tib_mounter.sys (Acronis International GmbH)
DRV:64bit: - (fltsrv) -- C:\Windows\SysNative\drivers\fltsrv.sys (Acronis International GmbH)
DRV:64bit: - (sshid) -- C:\Windows\SysNative\drivers\sshid.sys (SteelSeries ApS)
DRV:64bit: - (hidkmdf) -- C:\Windows\SysNative\drivers\hidkmdf.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:64bit: - (MBfilt) -- C:\Windows\SysNative\drivers\MBfilt64.sys (Creative Technology Ltd.)
DRV:64bit: - (iusb3hcs) -- C:\Windows\SysNative\drivers\iusb3hcs.sys (Intel Corporation)
DRV:64bit: - (asmtxhci) -- C:\Windows\SysNative\drivers\asmtxhci.sys (ASMedia Technology Inc)
DRV:64bit: - (ssdevfactory) -- C:\Windows\SysNative\drivers\ssdevfactory.sys (SteelSeries ApS)
DRV:64bit: - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
DRV:64bit: - (edevmon) -- C:\Windows\SysNative\drivers\edevmon.sys (ESET)
DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
DRV:64bit: - (epfwwfp) -- C:\Windows\SysNative\drivers\epfwwfp.sys (ESET)
DRV:64bit: - (epfw) -- C:\Windows\SysNative\drivers\epfw.sys (ESET)
DRV:64bit: - (EpfwLWF) -- C:\Windows\SysNative\drivers\EpfwLWF.sys (ESET)
DRV:64bit: - (ekbdflt) -- C:\Windows\SysNative\drivers\ekbdflt.sys (ESET)
DRV:64bit: - (xusb21) -- C:\Windows\SysNative\drivers\xusb21.sys (Microsoft Corporation)
DRV:64bit: - (tap0901) -- C:\Windows\SysNative\drivers\tap0901.sys (The OpenVPN Project)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\TeeDriverx64.sys (Intel Corporation)
DRV:64bit: - (asstor64) -- C:\Windows\SysNative\drivers\asstor64.sys (Asmedia Technology)
DRV:64bit: - (BazisVirtualCDBus) -- C:\Windows\SysNative\drivers\BazisVirtualCDBus.sys (Sysprogs OU)
DRV:64bit: - (ICCWDT) -- C:\Windows\SysNative\drivers\ICCWDT.sys (Intel Corporation)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation)
DRV:64bit: - (mticache) -- C:\Windows\SysNative\drivers\mticache.sys (Micron Technology, Inc.)
DRV:64bit: - (mtihint) -- C:\Windows\SysNative\drivers\mtihint.sys (Micron Technology, Inc.)
DRV:64bit: - (ISCT) -- C:\Windows\SysNative\drivers\ISCTD.sys ()
DRV:64bit: - (iusb3hub) -- C:\Windows\SysNative\drivers\iusb3hub.sys (Intel Corporation)
DRV:64bit: - (iusb3xhc) -- C:\Windows\SysNative\drivers\iusb3xhc.sys (Intel Corporation)
DRV:64bit: - (Serial) -- C:\Windows\SysNative\drivers\nuvserial.sys (Nuvoton Technology Corp.)
DRV:64bit: - (Serenum) -- C:\Windows\SysNative\drivers\nuvserenum.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (k57nd60a) -- C:\Windows\SysNative\drivers\k57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (iaStorA) -- C:\Windows\SysNative\drivers\iaStorA.sys (Intel Corporation)
DRV:64bit: - (iaStorF) -- C:\Windows\SysNative\drivers\iaStorF.sys (Intel Corporation)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (asmthub3) -- C:\Windows\SysNative\drivers\asmthub3.sys (ASMedia Technology Inc)
DRV:64bit: - (asahci64) -- C:\Windows\SysNative\drivers\asahci64.sys (Asmedia Technology)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 6E 40 CE 26 F8 4F D2 01  [binary data]
IE - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 6A 27 B0 1F 7F 64 D2 01  [binary data]
IE - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
FF - prefs.js..browser.search.countryCode: "DE"
FF - prefs.js..browser.search.region: "DE"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:50.1.0
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.3.0: C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.111.2: C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.111.2: C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 50.1.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 50.1.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 50.1.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 50.1.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2016.12.07 08:44:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MAIN\AppData\Roaming\mozilla\Extensions
[2016.12.08 20:46:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MAIN\AppData\Roaming\mozilla\Firefox\Profiles\78m7dka4.default\extensions
[2017.01.01 23:41:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
 
========== Chrome  ==========
 
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp\2.0_0\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm\1.10.4_1\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpglbgbpeobllokpmeagpoagjbfknanl\1.0.1.5_0\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm\2.0.6_0\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5516.1005.0.3_0\
CHR - Extension: No name found = C:\Users\MAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp\2016.12.15.1_0\
 
O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis International GmbH)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4 - HKLM..\Run: [KeePass 2 PreLoad] C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe (Dominik Reichl)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000..\Run: [DisplayFusion] C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe (Binary Fortress Software)
O4 - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000..\Run: [Epson Stylus SX420W(Netzwerk)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE /FU "C:\Windows\TEMP\E_S9FB9.tmp" /EF "HKCU" File not found
O4 - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000..\Run: [f.lux] C:\Users\MAIN\AppData\Local\FluxSoftware\Flux\flux.exe (Flux Software LLC)
O4 - HKU\S-1-5-21-1734866949-3719978331-2999139344-1000..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutorun = 158
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15:64bit: - ..Trusted Domains: eset.com ([help] http in Trusted sites)
O15 - HKLM\..Trusted Domains: eset.com ([help] http in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.111.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{67E0DE87-E516-4391-BD33-96F59988E73C}: DhcpNameServer = 192.168.111.1
O18:64bit: - Protocol\Handler\mso-minsb.16 - No CLSID value found
O18:64bit: - Protocol\Handler\mso-minsb-roaming.16 - No CLSID value found
O18:64bit: - Protocol\Handler\osf.16 - No CLSID value found
O18:64bit: - Protocol\Handler\osf-roaming.16 - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2017.01.02 01:35:04 | 000,192,216 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2017.01.02 01:34:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
[2017.01.02 01:34:54 | 000,140,672 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2017.01.02 01:34:54 | 000,064,896 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2017.01.02 01:34:54 | 000,027,008 | ---- | C] (Malwarebytes) -- C:\Windows\SysNative\drivers\mbam.sys
[2017.01.02 01:34:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ Malwarebytes Anti-Malware 
[2017.01.02 01:34:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2017.01.02 01:26:51 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Desktop\Logs
[2017.01.02 01:15:24 | 000,000,000 | ---D | C] -- C:\FRST
[2017.01.01 23:26:41 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\FreeFixer
[2017.01.01 23:26:41 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\FreeFixer
[2017.01.01 23:03:30 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Desktop\CarotDAV1.13.2
[2017.01.01 22:55:25 | 000,000,000 | ---D | C] -- C:\Program Files\HitmanPro
[2017.01.01 22:55:17 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
[2017.01.01 22:55:14 | 011,581,544 | ---- | C] (SurfRight B.V.) -- C:\Users\MAIN\Desktop\HitmanPro_x64.exe
[2016.12.29 17:31:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2016.12.26 15:08:17 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\KeePass
[2016.12.26 14:54:53 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Documents\DisplayFusion Backups
[2016.12.17 19:13:26 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Desktop\Spiele
[2016.12.17 18:09:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
[2016.12.17 18:08:20 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1991-06.com.microsoft
[2016.12.17 18:03:54 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office 15
[2016.12.15 17:04:39 | 000,061,512 | ---- | C] (Micron Technology, Inc.) -- C:\Windows\SysNative\drivers\mticache.sys
[2016.12.15 17:04:39 | 000,018,504 | ---- | C] (Micron Technology, Inc.) -- C:\Windows\SysNative\drivers\mtihint.sys
[2016.12.14 20:17:34 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
[2016.12.14 16:52:41 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Apps
[2016.12.14 16:35:53 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\SQL Developer
[2016.12.14 16:35:52 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\sqldeveloper
[2016.12.13 20:48:01 | 006,049,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2016.12.13 20:48:01 | 003,244,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2016.12.13 20:48:01 | 001,483,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2016.12.13 20:48:01 | 000,633,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2016.12.13 20:48:00 | 005,547,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2016.12.13 20:48:00 | 004,000,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2016.12.13 20:48:00 | 003,944,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2016.12.13 20:48:00 | 002,131,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2016.12.13 20:48:00 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2016.12.13 20:48:00 | 001,941,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2016.12.13 20:48:00 | 001,732,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2016.12.13 20:48:00 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2016.12.13 20:48:00 | 001,212,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2016.12.13 20:48:00 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2016.12.13 20:48:00 | 001,009,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2016.12.13 20:48:00 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2016.12.13 20:48:00 | 000,806,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2016.12.13 20:48:00 | 000,802,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
[2016.12.13 20:48:00 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2016.12.13 20:48:00 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2016.12.13 20:48:00 | 000,706,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2016.12.13 20:48:00 | 000,663,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2016.12.13 20:48:00 | 000,631,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2016.12.13 20:48:00 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2016.12.13 20:48:00 | 000,576,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2016.12.13 20:48:00 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msihnd.dll
[2016.12.13 20:48:00 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2016.12.13 20:48:00 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2016.12.13 20:48:00 | 000,404,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2016.12.13 20:48:00 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdedit.exe
[2016.12.13 20:48:00 | 000,342,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2016.12.13 20:48:00 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2016.12.13 20:48:00 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcrypt.dll
[2016.12.13 20:48:00 | 000,114,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2016.12.13 20:48:00 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hlink.dll
[2016.12.13 20:48:00 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nlsbres.dll
[2016.12.13 20:48:00 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nlsbres.dll
[2016.12.13 20:47:59 | 001,806,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2016.12.13 20:47:59 | 001,462,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2016.12.13 20:47:59 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2016.12.13 20:47:59 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2016.12.13 20:47:59 | 000,880,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\advapi32.dll
[2016.12.13 20:47:59 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2016.12.13 20:47:59 | 000,725,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2016.12.13 20:47:59 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2016.12.13 20:47:59 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2016.12.13 20:47:59 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2016.12.13 20:47:59 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2016.12.13 20:47:59 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2016.12.13 20:47:59 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2016.12.13 20:47:59 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2016.12.13 20:47:59 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2016.12.13 20:47:59 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msihnd.dll
[2016.12.13 20:47:59 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2016.12.13 20:47:59 | 000,312,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2016.12.13 20:47:59 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2016.12.13 20:47:59 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2016.12.13 20:47:59 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2016.12.13 20:47:59 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2016.12.13 20:47:59 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpchttp.dll
[2016.12.13 20:47:59 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2016.12.13 20:47:59 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2016.12.13 20:47:59 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidpolicyconverter.exe
[2016.12.13 20:47:59 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2016.12.13 20:47:59 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2016.12.13 20:47:59 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
[2016.12.13 20:47:59 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2016.12.13 20:47:59 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2016.12.13 20:47:59 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2016.12.13 20:47:59 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2016.12.13 20:47:59 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2016.12.13 20:47:59 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2016.12.13 20:47:59 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2016.12.13 20:47:59 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2016.12.13 20:47:59 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2016.12.13 20:47:59 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2016.12.13 20:47:59 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2016.12.13 20:47:59 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2016.12.13 20:47:59 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2016.12.13 20:47:59 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
[2016.12.13 20:47:59 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
[2016.12.13 20:47:59 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2016.12.13 20:47:59 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2016.12.13 20:47:59 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidapi.dll
[2016.12.13 20:47:59 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appidapi.dll
[2016.12.13 20:47:59 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll
[2016.12.13 20:47:59 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
[2016.12.13 20:47:59 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2016.12.13 20:47:59 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2016.12.13 20:47:59 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2016.12.13 20:47:59 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptbase.dll
[2016.12.13 20:47:59 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2016.12.13 20:47:59 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2016.12.13 20:47:59 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2016.12.13 20:47:59 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2016.12.13 20:47:59 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2016.12.13 20:47:59 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidcertstorecheck.exe
[2016.12.13 20:47:59 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2016.12.13 20:47:59 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2016.12.13 20:47:59 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2016.12.13 20:47:59 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2016.12.13 20:47:59 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2016.12.13 20:47:59 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2016.12.13 20:47:59 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2016.12.13 20:47:59 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2016.12.13 20:47:59 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2016.12.13 20:47:59 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2016.12.13 20:47:59 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2016.12.13 20:47:59 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2016.12.13 20:47:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2016.12.13 20:47:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2016.12.13 20:47:59 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2016.12.13 20:47:58 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
[2016.12.13 20:47:58 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
[2016.12.13 20:47:58 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
[2016.12.13 20:47:58 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
[2016.12.13 20:47:58 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
[2016.12.13 20:47:58 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
[2016.12.13 20:47:58 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msimsg.dll
[2016.12.13 20:47:58 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msimsg.dll
[2016.12.13 20:47:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2016.12.12 21:17:38 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Chromium
[2016.12.10 16:52:04 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Aptana Rubles
[2016.12.10 16:52:01 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Documents\Aptana Studio 3 Workspace
[2016.12.10 16:23:13 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\PunkBuster
[2016.12.10 16:20:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2016.12.10 16:20:07 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Documents\Battlefield 4
[2016.12.10 15:44:33 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Notepad++
[2016.12.10 15:44:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
[2016.12.10 15:44:33 | 000,000,000 | ---D | C] -- C:\Program Files\Notepad++
[2016.12.10 13:49:01 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\EPSON
[2016.12.10 13:45:53 | 000,135,168 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysWow64\EEBAPI.dll
[2016.12.10 13:45:53 | 000,110,592 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysWow64\EEBDSCVR.dll
[2016.12.10 13:45:53 | 000,077,824 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysWow64\EBAPI.dll
[2016.12.10 13:45:53 | 000,065,536 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysWow64\EEBUtil.dll
[2016.12.10 13:45:53 | 000,055,808 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysWow64\EEBSDKIF.dll
[2016.12.10 13:45:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EPSON
[2016.12.10 13:43:49 | 000,558,592 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\ensppmon.dll
[2016.12.10 13:43:49 | 000,558,592 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\enppmon.dll
[2016.12.10 13:43:49 | 000,535,552 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\ensppui.dll
[2016.12.10 13:43:49 | 000,535,552 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\enppui.dll
[2016.12.10 13:43:49 | 000,219,648 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\enspres.dll
[2016.12.10 13:43:49 | 000,219,648 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\enpres.dll
[2016.12.10 13:43:49 | 000,000,000 | ---D | C] -- C:\Program Files\EpsonNet
[2016.12.10 13:43:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EpsonNet
[2016.12.10 13:43:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\EPSON
[2016.12.10 13:43:05 | 000,118,784 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\E_ILMGCE.DLL
[2016.12.10 13:43:05 | 000,088,064 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\E_IBCBGCE.DLL
[2016.12.10 13:43:05 | 000,010,752 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\SysNative\E_GCINST.DLL
[2016.12.10 13:43:04 | 000,000,000 | ---D | C] -- C:\ProgramData\EPSON
[2016.12.10 13:42:55 | 000,464,384 | ---- | C] (Seiko Epson Corporation) -- C:\Windows\SysNative\esxw2ud.dll
[2016.12.10 13:42:55 | 000,132,560 | ---- | C] (Seiko Epson Corporation) -- C:\Windows\SysNative\esdevapp.exe
[2016.12.10 13:42:55 | 000,013,824 | ---- | C] (Seiko Epson Corporation) -- C:\Windows\SysNative\esxcdev.dll
[2016.12.10 13:42:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
[2016.12.10 13:42:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\epson
[2016.12.10 12:20:41 | 000,000,000 | --SD | C] -- C:\Windows\SysNative\CompatTel
[2016.12.10 12:20:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appraiser
[2016.12.10 01:00:40 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2016.12.10 01:00:40 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2016.12.10 01:00:40 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2016.12.10 01:00:40 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2016.12.10 00:55:59 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2016.12.10 00:55:59 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDYAK.DLL
[2016.12.10 00:55:59 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDYAK.DLL
[2016.12.10 00:55:59 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTAT.DLL
[2016.12.10 00:55:59 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTAT.DLL
[2016.12.10 00:55:59 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDRU1.DLL
[2016.12.10 00:55:59 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBASH.DLL
[2016.12.10 00:55:59 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDRU1.DLL
[2016.12.10 00:55:59 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDRU.DLL
[2016.12.10 00:55:59 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDRU.DLL
[2016.12.10 00:55:59 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBASH.DLL
[2016.12.10 00:55:53 | 001,629,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2016.12.10 00:55:53 | 001,239,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aitstatic.exe
[2016.12.10 00:55:53 | 001,226,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2016.12.10 00:55:53 | 000,586,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
[2016.12.10 00:55:53 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
[2016.12.10 00:55:53 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
[2016.12.10 00:55:53 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\centel.dll
[2016.12.10 00:55:53 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll
[2016.12.10 00:55:53 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2016.12.10 00:55:53 | 000,077,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CompatTelRunner.exe
[2016.12.10 00:55:51 | 003,156,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2016.12.10 00:55:51 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2016.12.10 00:55:51 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2016.12.10 00:55:51 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2016.12.10 00:55:51 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2016.12.10 00:55:51 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2016.12.10 00:55:51 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2016.12.10 00:55:51 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2016.12.10 00:55:51 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSetupUI.dll
[2016.12.10 00:55:51 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2016.12.10 00:55:51 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2016.12.10 00:55:50 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2016.12.10 00:55:50 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2016.12.10 00:55:50 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2016.12.10 00:55:50 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wu.upgrade.ps.dll
[2016.12.10 00:55:39 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2016.12.10 00:55:39 | 000,007,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2016.12.10 00:55:37 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2016.12.10 00:55:37 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2016.12.10 00:55:37 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
[2016.12.10 00:55:37 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe
[2016.12.10 00:55:37 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
[2016.12.10 00:55:37 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
[2016.12.10 00:55:27 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2016.12.10 00:55:25 | 000,647,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2016.12.10 00:55:17 | 001,648,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2016.12.10 00:55:17 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2016.12.10 00:55:17 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2016.12.10 00:54:24 | 002,777,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2016.12.10 00:54:24 | 002,285,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2016.12.10 00:54:13 | 001,424,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2016.12.10 00:54:12 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2016.12.10 00:54:12 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2016.12.10 00:33:14 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\CrashDumps
[2016.12.10 00:33:06 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Documents\SART
[2016.12.10 00:30:08 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\MPC-HC
[2016.12.09 10:12:35 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Desktop\sqldeveloper-4.1.5.21.78-x64
[2016.12.08 23:02:03 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller
[2016.12.08 23:02:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
[2016.12.08 23:02:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Battlelog Web Plugins
[2016.12.08 23:00:54 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2016.12.08 23:00:54 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2016.12.08 23:00:54 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2016.12.08 23:00:54 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2016.12.08 23:00:54 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2016.12.08 23:00:54 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2016.12.08 23:00:54 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2016.12.08 23:00:54 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2016.12.08 23:00:54 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2016.12.08 23:00:54 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2016.12.08 23:00:53 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2016.12.08 23:00:53 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2016.12.08 23:00:53 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2016.12.08 23:00:53 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2016.12.08 23:00:53 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2016.12.08 23:00:53 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2016.12.08 23:00:53 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2016.12.08 23:00:53 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2016.12.08 23:00:53 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2016.12.08 23:00:53 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2016.12.08 23:00:53 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2016.12.08 23:00:53 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2016.12.08 23:00:52 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2016.12.08 23:00:52 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2016.12.08 23:00:52 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2016.12.08 23:00:52 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2016.12.08 23:00:52 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2016.12.08 23:00:52 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2016.12.08 23:00:52 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2016.12.08 23:00:52 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2016.12.08 23:00:52 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2016.12.08 23:00:52 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2016.12.08 23:00:51 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2016.12.08 23:00:51 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2016.12.08 23:00:51 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2016.12.08 23:00:51 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2016.12.08 23:00:51 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2016.12.08 23:00:51 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2016.12.08 23:00:51 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2016.12.08 23:00:51 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2016.12.08 23:00:50 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2016.12.08 23:00:50 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2016.12.08 23:00:50 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2016.12.08 23:00:50 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2016.12.08 23:00:50 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2016.12.08 23:00:50 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2016.12.08 23:00:50 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2016.12.08 23:00:50 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2016.12.08 23:00:50 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2016.12.08 23:00:50 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2016.12.08 23:00:50 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2016.12.08 23:00:50 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2016.12.08 23:00:50 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2016.12.08 23:00:50 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2016.12.08 23:00:49 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2016.12.08 23:00:49 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2016.12.08 23:00:49 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2016.12.08 23:00:49 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2016.12.08 23:00:49 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2016.12.08 23:00:49 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2016.12.08 23:00:49 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2016.12.08 23:00:49 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2016.12.08 23:00:49 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2016.12.08 23:00:49 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2016.12.08 23:00:49 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2016.12.08 23:00:49 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2016.12.08 23:00:49 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2016.12.08 23:00:49 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2016.12.08 23:00:49 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2016.12.08 23:00:49 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2016.12.08 23:00:49 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2016.12.08 23:00:49 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2016.12.08 23:00:48 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2016.12.08 23:00:48 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2016.12.08 23:00:48 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2016.12.08 23:00:48 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2016.12.08 23:00:48 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2016.12.08 23:00:48 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2016.12.08 23:00:48 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2016.12.08 23:00:48 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2016.12.08 23:00:48 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2016.12.08 23:00:48 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2016.12.08 23:00:48 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2016.12.08 23:00:48 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2016.12.08 23:00:48 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2016.12.08 23:00:48 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2016.12.08 23:00:47 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2016.12.08 23:00:47 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2016.12.08 23:00:47 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2016.12.08 23:00:47 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2016.12.08 23:00:47 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2016.12.08 23:00:47 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2016.12.08 23:00:47 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2016.12.08 23:00:47 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2016.12.08 23:00:47 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2016.12.08 23:00:47 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2016.12.08 23:00:47 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2016.12.08 23:00:47 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2016.12.08 23:00:47 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2016.12.08 23:00:47 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2016.12.08 23:00:46 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2016.12.08 23:00:46 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2016.12.08 23:00:46 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2016.12.08 23:00:46 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2016.12.08 23:00:46 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2016.12.08 23:00:46 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2016.12.08 23:00:46 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2016.12.08 23:00:46 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2016.12.08 23:00:45 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2016.12.08 23:00:45 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2016.12.08 23:00:45 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2016.12.08 23:00:45 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2016.12.08 23:00:45 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2016.12.08 23:00:45 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2016.12.08 23:00:45 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2016.12.08 23:00:45 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2016.12.08 23:00:45 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2016.12.08 23:00:45 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2016.12.08 23:00:45 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2016.12.08 23:00:45 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2016.12.08 23:00:45 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2016.12.08 23:00:45 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2016.12.08 23:00:45 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2016.12.08 23:00:45 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2016.12.08 23:00:44 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2016.12.08 23:00:44 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2016.12.08 23:00:44 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2016.12.08 23:00:44 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2016.12.08 23:00:44 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2016.12.08 23:00:44 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2016.12.08 23:00:44 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2016.12.08 23:00:44 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2016.12.08 23:00:44 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2016.12.08 23:00:44 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2016.12.08 23:00:43 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2016.12.08 23:00:43 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2016.12.08 23:00:43 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2016.12.08 23:00:43 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2016.12.08 23:00:43 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2016.12.08 23:00:43 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2016.12.08 23:00:43 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2016.12.08 23:00:43 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2016.12.08 23:00:43 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2016.12.08 23:00:43 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2016.12.08 23:00:43 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2016.12.08 23:00:43 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2016.12.08 23:00:42 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2016.12.08 23:00:42 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2016.12.08 23:00:42 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2016.12.08 23:00:42 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2016.12.08 23:00:42 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2016.12.08 23:00:42 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2016.12.08 23:00:42 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2016.12.08 23:00:42 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2016.12.08 23:00:42 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2016.12.08 23:00:42 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2016.12.08 23:00:42 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2016.12.08 23:00:42 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2016.12.08 23:00:41 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2016.12.08 23:00:41 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2016.12.08 23:00:40 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2016.12.08 23:00:40 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2016.12.08 23:00:40 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2016.12.08 23:00:40 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2016.12.08 23:00:40 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2016.12.08 23:00:40 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2016.12.08 23:00:40 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2016.12.08 23:00:40 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2016.12.08 23:00:40 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2016.12.08 23:00:40 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2016.12.08 23:00:39 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2016.12.08 23:00:39 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2016.12.08 23:00:39 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2016.12.08 23:00:39 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2016.12.08 23:00:39 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2016.12.08 23:00:39 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2016.12.07 22:59:03 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Skype
[2016.12.07 22:54:36 | 000,000,000 | R--D | C] -- C:\Users\MAIN\OneDrive
[2016.12.07 22:54:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft OneDrive
[2016.12.07 22:54:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft OneDrive
[2016.12.07 21:38:31 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\iterate_GmbH
[2016.12.07 21:38:29 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Cyberduck
[2016.12.07 21:24:53 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Acronis
[2016.12.07 21:24:39 | 000,296,736 | ---- | C] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\file_tracker.sys
[2016.12.07 21:24:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Acronis
[2016.12.07 21:24:38 | 001,058,632 | ---- | C] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\tib.sys
[2016.12.07 21:24:38 | 000,304,416 | ---- | C] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\snapman.sys
[2016.12.07 21:24:38 | 000,248,648 | ---- | C] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\tib_mounter.sys
[2016.12.07 21:24:38 | 000,134,432 | ---- | C] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\fltsrv.sys
[2016.12.07 21:24:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
[2016.12.07 21:24:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Acronis
[2016.12.07 21:24:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Acronis
[2016.12.07 21:18:41 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\ElevatedDiagnostics
[2016.12.07 21:17:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2016.12.07 21:17:39 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Sun
[2016.12.07 20:35:03 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Buhl
[2016.12.07 20:34:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\tax 2017
[2016.12.07 20:33:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Buhl finance
[2016.12.07 20:33:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Buhl Data Service GmbH
[2016.12.07 20:21:10 | 000,000,000 | ---D | C] -- C:\8db822a39ae729e1ee137579451b
[2016.12.07 20:19:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2016.12.07 20:14:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinCDEmu
[2016.12.07 20:14:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinCDEmu
[2016.12.07 20:05:24 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2016.12.07 20:05:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2016.12.07 20:05:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2016.12.07 20:05:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cyberduck
[2016.12.07 20:05:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cyberduck
[2016.12.07 19:54:30 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\FileZilla
[2016.12.07 19:53:41 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Caphyon
[2016.12.07 19:53:09 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\FileZilla
[2016.12.07 19:52:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
[2016.12.07 19:52:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Git
[2016.12.07 19:48:52 | 000,000,000 | ---D | C] -- C:\Program Files\nodejs
[2016.12.07 19:48:52 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js
[2016.12.07 19:36:49 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\ESET
[2016.12.07 19:26:54 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Desktop\Dual Monitor Wallpapers - Imgur
[2016.12.07 19:23:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2016.12.07 19:08:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Runtime Software
[2016.12.07 19:08:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Runtime Software
[2016.12.07 19:07:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
[2016.12.07 19:07:19 | 000,000,000 | ---D | C] -- C:\Program Files\TAP-Windows
[2016.12.07 19:07:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
[2016.12.07 19:07:18 | 000,000,000 | ---D | C] -- C:\Program Files\OpenVPN
[2016.12.07 18:51:45 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\DisplayFusion
[2016.12.07 18:51:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Binary Fortress Software
[2016.12.07 18:51:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DisplayFusion
[2016.12.07 18:51:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DisplayFusion
[2016.12.07 18:45:57 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Steam
[2016.12.07 18:45:57 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\CEF
[2016.12.07 18:42:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2016.12.07 18:42:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
[2016.12.07 18:42:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2016.12.07 18:42:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin Games
[2016.12.07 18:39:39 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Origin
[2016.12.07 18:39:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2016.12.07 18:39:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin
[2016.12.07 18:39:29 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps
[2016.12.07 18:37:19 | 000,000,000 | ---D | C] -- C:\Users\MAIN\.QtWebEngineProcess
[2016.12.07 18:37:19 | 000,000,000 | ---D | C] -- C:\Users\MAIN\.Origin
[2016.12.07 18:37:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2016.12.07 18:37:17 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Origin
[2016.12.07 18:35:30 | 000,000,000 | ---D | C] -- C:\Program Files\Shotcut
[2016.12.07 18:33:50 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\KiTTY
[2016.12.07 18:33:09 | 000,000,000 | ---D | C] -- C:\Windows\ShellNew
[2016.12.07 18:33:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
[2016.12.07 18:33:09 | 000,000,000 | ---D | C] -- C:\Program Files\AutoHotkey
[2016.12.07 18:32:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2016.12.07 18:32:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2016.12.07 18:32:03 | 000,269,888 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2016.12.07 18:32:01 | 000,097,856 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2016.12.07 18:32:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2016.12.07 18:31:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2016.12.07 18:31:22 | 000,000,000 | ---D | C] -- C:\Users\MAIN\.atom
[2016.12.07 18:31:21 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc
[2016.12.07 18:31:21 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Atom
[2016.12.07 18:31:18 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\atom
[2016.12.07 18:31:17 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\SquirrelTemp
[2016.12.07 18:31:08 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Appcelerator
[2016.12.07 18:29:19 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Dopamine
[2016.12.07 18:29:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dopamine
[2016.12.07 18:28:45 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\SumatraPDF
[2016.12.07 18:28:45 | 000,000,000 | ---D | C] -- C:\Program Files\SumatraPDF
[2016.12.07 18:28:09 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat
[2016.12.07 18:28:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat
[2016.12.07 18:28:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinDirStat
[2016.12.07 18:27:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape 0.91
[2016.12.07 18:27:06 | 000,000,000 | ---D | C] -- C:\Program Files\Inkscape
[2016.12.07 18:26:40 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ShellExt
[2016.12.07 18:26:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\ShellExt
[2016.12.07 18:26:20 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP 2
[2016.12.07 18:14:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2016.12.07 18:14:32 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Google
[2016.12.07 18:11:01 | 000,086,016 | ---- | C] (Nuvoton Technology Corp.) -- C:\Windows\SysNative\drivers\nuvserial.sys
[2016.12.07 18:11:01 | 000,038,680 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\ICCWDT.sys
[2016.12.07 18:11:01 | 000,023,552 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\drivers\nuvserenum.sys
[2016.12.07 18:10:35 | 000,795,632 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iusb3xhc.sys
[2016.12.07 18:10:35 | 000,358,896 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iusb3hub.sys
[2016.12.07 18:08:52 | 000,084,816 | ---- | C] (Asmedia Technology) -- C:\Windows\SysNative\drivers\asstor64.sys
[2016.12.07 18:08:50 | 000,181,304 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\TeeDriverx64.sys
[2016.12.07 17:54:44 | 000,647,736 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iaStorA.sys
[2016.12.07 17:54:44 | 000,028,216 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iaStorF.sys
[2016.12.07 09:48:58 | 000,458,960 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\k57nd60a.sys
[2016.12.07 09:46:40 | 000,130,024 | ---- | C] (ASMedia Technology Inc) -- C:\Windows\SysNative\drivers\asmthub3.sys
[2016.12.07 09:46:05 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\steelseries-engine-3-client
[2016.12.07 09:25:05 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Mirillis
[2016.12.07 09:25:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Mirillis
[2016.12.07 09:25:04 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\NVIDIA
[2016.12.07 09:25:04 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Documents\Action!
[2016.12.07 09:25:02 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Mirillis
[2016.12.07 09:14:00 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\KeePass
[2016.12.07 09:13:35 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2016.12.07 09:13:35 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2016.12.07 09:05:23 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Rei Software
[2016.12.07 09:05:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rei Software
[2016.12.07 09:03:17 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Duplicati
[2016.12.07 09:03:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Duplicati
[2016.12.07 09:03:14 | 000,000,000 | ---D | C] -- C:\Program Files\Duplicati 2
[2016.12.07 09:01:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
[2016.12.07 09:01:28 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2016.12.07 09:01:24 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2016.12.07 09:01:24 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2016.12.07 09:01:24 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2016.12.07 09:01:24 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2016.12.07 09:01:24 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2016.12.07 09:01:24 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2016.12.07 09:01:18 | 000,000,000 | ---D | C] -- C:\ProgramData\SteelSeries
[2016.12.07 09:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\SteelSeries
[2016.12.07 09:00:30 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\avidemux
[2016.12.07 09:00:26 | 000,000,000 | ---D | C] -- C:\Program Files\Avidemux 2.6 - 64 bits
[2016.12.07 09:00:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux (64 bits)
[2016.12.07 08:59:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\KeePass Password Safe 2
[2016.12.07 08:58:06 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
[2016.12.07 08:58:04 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\FluxSoftware
[2016.12.07 08:55:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
[2016.12.07 08:55:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mirillis
[2016.12.07 08:44:34 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Mozilla
[2016.12.07 08:44:34 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Mozilla
[2016.12.07 08:44:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2016.12.07 08:44:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2016.12.07 08:42:31 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crucial Storage Executive
[2016.12.07 08:42:29 | 000,000,000 | ---D | C] -- C:\Program Files\Crucial
[2016.12.07 08:41:13 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2016.12.07 08:40:28 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Toshiba Corporation
[2016.12.07 08:40:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Toshiba Corporation
[2016.12.07 08:36:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2016.12.07 08:36:16 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2016.12.07 08:35:58 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Desktop\Programme
[2016.12.06 23:14:57 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\IntelGraphicsProfiles
[2016.12.06 23:14:57 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Adobe
[2016.12.06 22:52:16 | 000,124,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2016.12.06 22:52:16 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2016.12.06 22:50:34 | 000,028,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEUDINIT.EXE
[2016.12.06 22:46:26 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2016.12.06 22:46:25 | 000,942,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jsIntl.dll
[2016.12.06 22:46:25 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jsIntl.dll
[2016.12.06 22:46:25 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2016.12.06 22:46:25 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2016.12.06 22:46:25 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2016.12.06 22:46:25 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2016.12.06 22:46:25 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2016.12.06 22:46:25 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2016.12.06 22:46:25 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2016.12.06 22:46:25 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2016.12.06 22:46:25 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2016.12.06 22:46:25 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2016.12.06 22:46:25 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2016.12.06 22:46:25 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2016.12.06 22:46:25 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2016.12.06 22:46:25 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2016.12.06 22:46:25 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2016.12.06 22:46:25 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2016.12.06 22:46:25 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2016.12.06 22:46:25 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2016.12.06 22:46:25 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2016.12.06 22:46:25 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2016.12.06 22:46:25 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2016.12.06 22:46:25 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2016.12.06 22:46:25 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2016.12.06 22:46:25 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2016.12.06 22:46:25 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2016.12.06 22:46:25 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2016.12.06 22:46:25 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2016.12.06 22:46:25 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2016.12.06 22:46:25 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2016.12.06 22:46:25 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2016.12.06 22:46:25 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2016.12.06 22:46:25 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2016.12.06 22:46:25 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2016.12.06 22:46:25 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2016.12.06 22:42:47 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2016.12.06 22:42:47 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2016.12.06 22:42:47 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2016.12.06 22:42:47 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2016.12.06 22:42:47 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2016.12.06 22:42:47 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2016.12.06 22:42:47 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2016.12.06 22:42:47 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2016.12.06 22:42:47 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2016.12.06 22:42:47 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2016.12.06 22:42:47 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2016.12.06 22:42:47 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2016.12.06 22:42:47 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2016.12.06 22:42:47 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2016.12.06 22:42:47 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2016.12.06 22:42:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2016.12.06 22:42:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2016.12.06 22:42:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2016.12.06 22:42:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2016.12.06 22:42:47 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2016.12.06 22:36:34 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2016.12.06 22:22:39 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2016.12.06 22:22:39 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2016.12.06 22:20:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel
[2016.12.06 22:15:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2016.12.06 22:15:46 | 000,000,000 | ---D | C] -- C:\Windows\Migration
[2016.12.06 21:56:16 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
[2016.12.06 21:50:51 | 001,389,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardagt.exe
[2016.12.06 21:50:51 | 000,619,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardagt.exe
[2016.12.06 21:50:51 | 000,171,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\infocardapi.dll
[2016.12.06 21:50:51 | 000,099,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\infocardapi.dll
[2016.12.06 21:50:51 | 000,008,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardres.dll
[2016.12.06 21:50:51 | 000,008,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardres.dll
[2016.12.06 21:50:49 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TsWpfWrp.exe
[2016.12.06 21:50:49 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsWpfWrp.exe
[2016.12.06 21:50:06 | 000,950,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perftrack.dll
[2016.12.06 21:50:06 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powertracker.dll
[2016.12.06 21:49:56 | 002,084,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2016.12.06 21:49:56 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapistub.dll
[2016.12.06 21:49:56 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapi32.dll
[2016.12.06 21:49:56 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mapistub.dll
[2016.12.06 21:49:56 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fixmapi.exe
[2016.12.06 21:49:56 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fixmapi.exe
[2016.12.06 21:49:52 | 000,404,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tracerpt.exe
[2016.12.06 21:49:52 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tracerpt.exe
[2016.12.06 21:49:52 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sechost.dll
[2016.12.06 21:49:52 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logman.exe
[2016.12.06 21:49:52 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logman.exe
[2016.12.06 21:49:52 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\typeperf.exe
[2016.12.06 21:49:52 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\relog.exe
[2016.12.06 21:49:52 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\typeperf.exe
[2016.12.06 21:49:52 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\relog.exe
[2016.12.06 21:49:52 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskperf.exe
[2016.12.06 21:49:52 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskperf.exe
[2016.12.06 21:49:46 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\basesrv.dll
[2016.12.06 21:49:44 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msorcl32.dll
[2016.12.06 21:49:44 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mtxoci.dll
[2016.12.06 21:49:44 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mtxoci.dll
[2016.12.06 21:49:40 | 000,994,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ucrtbase.dll
[2016.12.06 21:49:40 | 000,922,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ucrtbase.dll
[2016.12.06 21:49:40 | 000,066,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-private-l1-1-0.dll
[2016.12.06 21:49:40 | 000,063,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-private-l1-1-0.dll
[2016.12.06 21:49:40 | 000,022,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-math-l1-1-0.dll
[2016.12.06 21:49:40 | 000,020,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-math-l1-1-0.dll
[2016.12.06 21:49:40 | 000,019,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-multibyte-l1-1-0.dll
[2016.12.06 21:49:40 | 000,019,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-multibyte-l1-1-0.dll
[2016.12.06 21:49:40 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-string-l1-1-0.dll
[2016.12.06 21:49:40 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-string-l1-1-0.dll
[2016.12.06 21:49:40 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-stdio-l1-1-0.dll
[2016.12.06 21:49:40 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-stdio-l1-1-0.dll
[2016.12.06 21:49:40 | 000,016,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-runtime-l1-1-0.dll
[2016.12.06 21:49:40 | 000,016,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-runtime-l1-1-0.dll
[2016.12.06 21:49:40 | 000,015,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-convert-l1-1-0.dll
[2016.12.06 21:49:40 | 000,015,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-convert-l1-1-0.dll
[2016.12.06 21:49:40 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-time-l1-1-0.dll
[2016.12.06 21:49:40 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-time-l1-1-0.dll
[2016.12.06 21:49:40 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-2-0.dll
[2016.12.06 21:49:40 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-2-0.dll
[2016.12.06 21:49:40 | 000,013,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-filesystem-l1-1-0.dll
[2016.12.06 21:49:40 | 000,013,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-filesystem-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-process-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-process-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-heap-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-heap-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-conio-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-conio-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-utility-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-utility-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-locale-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-locale-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-environment-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-environment-l1-1-0.dll
[2016.12.06 21:49:40 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-2-0.dll
[2016.12.06 21:49:40 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-2-0.dll
[2016.12.06 21:49:40 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-1.dll
[2016.12.06 21:49:40 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-1.dll
[2016.12.06 21:49:40 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l2-1-0.dll
[2016.12.06 21:49:40 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l2-1-0.dll
[2016.12.06 21:49:40 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-timezone-l1-1-0.dll
[2016.12.06 21:49:40 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-timezone-l1-1-0.dll
[2016.12.06 21:49:40 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l2-1-0.dll
[2016.12.06 21:49:40 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l2-1-0.dll
[2016.12.06 21:49:40 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-2-0.dll
[2016.12.06 21:49:40 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-2-0.dll
[2016.12.06 21:49:38 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sbe.dll
[2016.12.06 21:49:37 | 002,746,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2016.12.06 21:49:37 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2016.12.06 21:49:37 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
[2016.12.06 21:49:37 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wpc.dll
[2016.12.06 21:49:37 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Wpc.dll
[2016.12.06 21:49:37 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2016.12.06 21:49:37 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2016.12.06 21:49:37 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cero.rs
[2016.12.06 21:49:37 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cero.rs
[2016.12.06 21:49:37 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\esrb.rs
[2016.12.06 21:49:37 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysNative\esrb.rs
[2016.12.06 21:49:37 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\fpb.rs
[2016.12.06 21:49:37 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysNative\fpb.rs
[2016.12.06 21:49:37 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc-nz.rs
[2016.12.06 21:49:37 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc-nz.rs
[2016.12.06 21:49:37 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegibbfc.rs
[2016.12.06 21:49:37 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegibbfc.rs
[2016.12.06 21:49:37 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\csrr.rs
[2016.12.06 21:49:37 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysNative\csrr.rs
[2016.12.06 21:49:37 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cob-au.rs
[2016.12.06 21:49:37 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cob-au.rs
[2016.12.06 21:49:37 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\usk.rs
[2016.12.06 21:49:37 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysNative\usk.rs
[2016.12.06 21:49:37 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc.rs
[2016.12.06 21:49:37 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc.rs
[2016.12.06 21:49:37 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\grb.rs
[2016.12.06 21:49:37 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysNative\grb.rs
[2016.12.06 21:49:37 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-pt.rs
[2016.12.06 21:49:37 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-pt.rs
[2016.12.06 21:49:37 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-fi.rs
[2016.12.06 21:49:37 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-fi.rs
[2016.12.06 21:49:37 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi.rs
[2016.12.06 21:49:37 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi.rs
[2016.12.06 21:49:37 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\djctq.rs
[2016.12.06 21:49:37 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysNative\djctq.rs
[2016.12.06 21:49:34 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2016.12.06 21:49:34 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2016.12.06 21:49:34 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2016.12.06 21:49:34 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2016.12.06 21:49:34 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2016.12.06 21:49:34 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2016.12.06 21:49:34 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2016.12.06 21:49:34 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2016.12.06 21:49:34 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2016.12.06 21:49:34 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2016.12.06 21:49:34 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2016.12.06 21:49:34 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2016.12.06 21:49:34 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2016.12.06 21:49:33 | 001,031,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWorkspace.dll
[2016.12.06 21:49:33 | 000,793,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TSWorkspace.dll
[2016.12.06 21:49:30 | 000,970,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2016.12.06 21:49:30 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntprint.dll
[2016.12.06 21:49:30 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntprint.dll
[2016.12.06 21:49:30 | 000,254,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cewmdm.dll
[2016.12.06 21:49:30 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cewmdm.dll
[2016.12.06 21:49:30 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetpp.dll
[2016.12.06 21:49:30 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntprint.exe
[2016.12.06 21:49:30 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntprint.exe
[2016.12.06 21:49:30 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnpinst.exe
[2016.12.06 21:49:30 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetppui.dll
[2016.12.06 21:49:29 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2016.12.06 21:49:29 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2016.12.06 21:49:29 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2016.12.06 21:49:29 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2016.12.06 21:49:29 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2016.12.06 21:49:29 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2016.12.06 21:49:29 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2016.12.06 21:49:29 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
         

Alt 02.01.2017, 02:16   #5
PCNutzer
 
Seltsames Verhalten nach Bootvorgang Win 7 - Standard

Wie Seltsames Verhalten nach Bootvorgang Win 7



OTL.txt (2)
Code:
ATTFilter
[2016.12.06 21:49:29 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2016.12.06 21:49:29 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2016.12.06 21:49:28 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2016.12.06 21:49:28 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2016.12.06 21:49:28 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2016.12.06 21:49:27 | 003,722,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2016.12.06 21:49:27 | 003,221,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2016.12.06 21:49:27 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2016.12.06 21:49:27 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2016.12.06 21:49:27 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2016.12.06 21:49:27 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2016.12.06 21:49:26 | 001,943,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2016.12.06 21:49:26 | 001,131,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2016.12.06 21:49:26 | 000,156,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscorier.dll
[2016.12.06 21:49:26 | 000,156,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscorier.dll
[2016.12.06 21:49:26 | 000,081,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscories.dll
[2016.12.06 21:49:26 | 000,073,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscories.dll
[2016.12.06 21:49:26 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2016.12.06 21:49:25 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll
[2016.12.06 21:49:25 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll
[2016.12.06 21:49:25 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
[2016.12.06 21:49:24 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2016.12.06 21:49:24 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2016.12.06 21:49:24 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2016.12.06 21:49:23 | 000,328,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\services.exe
[2016.12.06 21:49:20 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2016.12.06 21:49:20 | 000,626,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2016.12.06 21:49:20 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2016.12.06 21:49:20 | 000,572,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2016.12.06 21:49:20 | 000,553,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2016.12.06 21:49:20 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2016.12.06 21:49:20 | 000,528,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdrm.dll
[2016.12.06 21:49:20 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2016.12.06 21:49:20 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2016.12.06 21:49:20 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2016.12.06 21:49:20 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2016.12.06 21:49:20 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2016.12.06 21:49:20 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2016.12.06 21:49:20 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2016.12.06 21:49:20 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2016.12.06 21:49:20 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2016.12.06 21:49:20 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2016.12.06 21:49:18 | 000,879,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdh.dll
[2016.12.06 21:49:18 | 000,635,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdh.dll
[2016.12.06 21:49:15 | 000,722,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\objsel.dll
[2016.12.06 21:49:15 | 000,538,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\objsel.dll
[2016.12.06 21:49:15 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cngprovider.dll
[2016.12.06 21:49:15 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adprovider.dll
[2016.12.06 21:49:15 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\capiprovider.dll
[2016.12.06 21:49:15 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpapiprovider.dll
[2016.12.06 21:49:15 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cngprovider.dll
[2016.12.06 21:49:15 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adprovider.dll
[2016.12.06 21:49:15 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\capiprovider.dll
[2016.12.06 21:49:15 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpapiprovider.dll
[2016.12.06 21:49:15 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dimsroam.dll
[2016.12.06 21:49:15 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wincredprovider.dll
[2016.12.06 21:49:15 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dimsroam.dll
[2016.12.06 21:49:15 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wincredprovider.dll
[2016.12.06 21:49:12 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2016.12.06 21:49:12 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2016.12.06 21:49:11 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2016.12.06 21:49:11 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2016.12.06 21:49:11 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2016.12.06 21:49:11 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2016.12.06 21:49:11 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2016.12.06 21:49:08 | 000,451,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2016.12.06 21:49:08 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapibase.dll
[2016.12.06 21:49:08 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tbs.dll
[2016.12.06 21:49:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tbs.dll
[2016.12.06 21:49:07 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2016.12.06 21:49:00 | 001,735,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comsvcs.dll
[2016.12.06 21:48:59 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
[2016.12.06 21:48:59 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
[2016.12.06 21:48:59 | 001,242,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\comsvcs.dll
[2016.12.06 21:48:59 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2016.12.06 21:48:59 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2016.12.06 21:48:59 | 000,525,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\catsrvut.dll
[2016.12.06 21:48:59 | 000,487,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\catsrvut.dll
[2016.12.06 21:48:58 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\osk.exe
[2016.12.06 21:48:58 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\osk.exe
[2016.12.06 21:48:58 | 000,264,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2016.12.06 21:48:58 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2016.12.06 21:48:58 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2016.12.06 21:48:57 | 002,543,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdshext.dll
[2016.12.06 21:48:56 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2016.12.06 21:48:55 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wer.dll
[2016.12.06 21:48:55 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wer.dll
[2016.12.06 21:48:53 | 001,632,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2016.12.06 21:48:53 | 001,372,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2016.12.06 21:48:53 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll
[2016.12.06 21:48:53 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ubpm.dll
[2016.12.06 21:48:53 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2016.12.06 21:48:53 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmapi.dll
[2016.12.06 21:48:52 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\credui.dll
[2016.12.06 21:48:52 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmartcardCredentialProvider.dll
[2016.12.06 21:48:52 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
[2016.12.06 21:48:51 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2016.12.06 21:48:51 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2016.12.06 21:48:50 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2016.12.06 21:48:50 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usb8023.sys
[2016.12.06 21:48:48 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rmcast.sys
[2016.12.06 21:48:48 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshrm.dll
[2016.12.06 21:48:48 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshrm.dll
[2016.12.06 21:48:37 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apphelp.dll
[2016.12.06 21:48:37 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdbinst.exe
[2016.12.06 21:48:37 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sdbinst.exe
[2016.12.06 21:48:37 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shimeng.dll
[2016.12.06 21:48:30 | 000,377,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2016.12.06 21:48:30 | 000,287,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2016.12.06 21:48:26 | 000,624,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2016.12.06 21:48:26 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2016.12.06 21:48:25 | 000,760,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
[2016.12.06 21:48:25 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samlib.dll
[2016.12.06 21:48:25 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2016.12.06 21:48:25 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidparse.sys
[2016.12.06 21:48:23 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\notepad.exe
[2016.12.06 21:48:22 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2016.12.06 21:48:22 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2016.12.06 21:48:22 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2016.12.06 21:48:22 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2016.12.06 21:48:22 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2016.12.06 21:48:21 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
[2016.12.06 21:48:21 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2016.12.06 21:48:21 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
[2016.12.06 21:48:21 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2016.12.06 21:48:20 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnet.dll
[2016.12.06 21:48:20 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfds.dll
[2016.12.06 21:48:20 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnet.dll
[2016.12.06 21:48:20 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfds.dll
[2016.12.06 21:47:30 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\nomacs
[2016.12.06 21:47:18 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\nomacs - Image Lounge
[2016.12.06 21:46:41 | 000,000,000 | ---D | C] -- C:\Program Files\nomacs
[2016.12.06 21:46:16 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2016.12.06 21:46:16 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2016.12.06 21:46:16 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2016.12.06 21:46:16 | 000,535,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2016.12.06 21:46:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
[2016.12.06 21:46:10 | 000,000,000 | ---D | C] -- C:\Program Files\MPC-HC
[2016.12.06 21:46:07 | 014,632,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2016.12.06 21:46:07 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2016.12.06 21:46:07 | 004,121,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2016.12.06 21:46:07 | 001,386,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagtrack.dll
[2016.12.06 21:46:07 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UtcResources.dll
[2016.12.06 21:46:06 | 003,209,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2016.12.06 21:46:06 | 001,573,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2016.12.06 21:46:06 | 001,329,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2016.12.06 21:46:06 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmv2clt.dll
[2016.12.06 21:46:06 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmv2clt.dll
[2016.12.06 21:46:06 | 000,842,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\blackbox.dll
[2016.12.06 21:46:06 | 000,782,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmsdk.dll
[2016.12.06 21:46:06 | 000,756,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2016.12.06 21:46:06 | 000,744,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\blackbox.dll
[2016.12.06 21:46:06 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmsdk.dll
[2016.12.06 21:46:06 | 000,461,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scavengeui.dll
[2016.12.06 21:46:05 | 012,574,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2016.12.06 21:46:05 | 012,574,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2016.12.06 21:46:05 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2016.12.06 21:46:05 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptui.dll
[2016.12.06 21:46:05 | 001,005,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptui.dll
[2016.12.06 21:46:05 | 000,878,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IMJP10K.DLL
[2016.12.06 21:46:05 | 000,877,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2016.12.06 21:46:05 | 000,632,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\evr.dll
[2016.12.06 21:46:05 | 000,546,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2016.12.06 21:46:05 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2016.12.06 21:46:05 | 000,499,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AUDIOKSE.dll
[2016.12.06 21:46:05 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmmgrtn.dll
[2016.12.06 21:46:05 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2016.12.06 21:46:05 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\evr.dll
[2016.12.06 21:46:05 | 000,457,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2016.12.06 21:46:05 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AUDIOKSE.dll
[2016.12.06 21:46:05 | 000,440,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll
[2016.12.06 21:46:05 | 000,433,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2016.12.06 21:46:05 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmmgrtn.dll
[2016.12.06 21:46:05 | 000,382,696 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2016.12.06 21:46:05 | 000,371,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2016.12.06 21:46:05 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2016.12.06 21:46:05 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSManMigrationPlugin.dll
[2016.12.06 21:46:05 | 000,310,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WsmWmiPl.dll
[2016.12.06 21:46:05 | 000,308,456 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2016.12.06 21:46:05 | 000,297,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcryptprimitives.dll
[2016.12.06 21:46:05 | 000,295,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2016.12.06 21:46:05 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDump.dll
[2016.12.06 21:46:05 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSManHTTPConfig.exe
[2016.12.06 21:46:05 | 000,249,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bcryptprimitives.dll
[2016.12.06 21:46:05 | 000,249,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSManMigrationPlugin.dll
[2016.12.06 21:46:05 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WsmWmiPl.dll
[2016.12.06 21:46:05 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2016.12.06 21:46:05 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSManHTTPConfig.exe
[2016.12.06 21:46:05 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WsmAuto.dll
[2016.12.06 21:46:05 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tintlgnt.ime
[2016.12.06 21:46:05 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cintlgnt.ime
[2016.12.06 21:46:05 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WsmAuto.dll
[2016.12.06 21:46:05 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pintlgnt.ime
[2016.12.06 21:46:05 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tintlgnt.ime
[2016.12.06 21:46:05 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cintlgnt.ime
[2016.12.06 21:46:05 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2016.12.06 21:46:05 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
[2016.12.06 21:46:05 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adsmsext.dll
[2016.12.06 21:46:05 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pintlgnt.ime
[2016.12.06 21:46:05 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptsp.dll
[2016.12.06 21:46:05 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adsmsext.dll
[2016.12.06 21:46:04 | 001,148,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IMJP10.IME
[2016.12.06 21:46:04 | 001,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IMJP10.IME
[2016.12.06 21:46:04 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IMJP10K.DLL
[2016.12.06 21:46:04 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscp.dll
[2016.12.06 21:46:04 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscp.dll
[2016.12.06 21:46:04 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imkr80.ime
[2016.12.06 21:46:04 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imkr80.ime
[2016.12.06 21:46:04 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msnetobj.dll
[2016.12.06 21:46:04 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msnetobj.dll
[2016.12.06 21:46:04 | 000,246,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\input.dll
[2016.12.06 21:46:04 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll
[2016.12.06 21:46:04 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quick.ime
[2016.12.06 21:46:04 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qintlgnt.ime
[2016.12.06 21:46:04 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\phon.ime
[2016.12.06 21:46:04 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\chajei.ime
[2016.12.06 21:46:04 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quick.ime
[2016.12.06 21:46:04 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qintlgnt.ime
[2016.12.06 21:46:04 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\phon.ime
[2016.12.06 21:46:04 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\chajei.ime
[2016.12.06 21:46:04 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfps.dll
[2016.12.06 21:46:04 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2016.12.06 21:46:04 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\INETRES.dll
[2016.12.06 21:46:04 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2016.12.06 21:46:04 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rrinstaller.exe
[2016.12.06 21:46:04 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WsmRes.dll
[2016.12.06 21:46:04 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WsmRes.dll
[2016.12.06 21:46:04 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rrinstaller.exe
[2016.12.06 21:46:04 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2016.12.06 21:46:04 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
[2016.12.06 21:46:04 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcadm.dll
[2016.12.06 21:46:04 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2016.12.06 21:46:04 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfpmp.exe
[2016.12.06 21:46:04 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfpmp.exe
[2016.12.06 21:46:04 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
[2016.12.06 21:46:04 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsmprovhost.exe
[2016.12.06 21:46:04 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsmplpxy.dll
[2016.12.06 21:46:04 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsmprovhost.exe
[2016.12.06 21:46:04 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcawrk.exe
[2016.12.06 21:46:04 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmmsp.dll
[2016.12.06 21:46:04 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsmplpxy.dll
[2016.12.06 21:46:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
[2016.12.06 21:46:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcalua.exe
[2016.12.06 21:46:04 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcaevts.dll
[2016.12.06 21:46:04 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2016.12.06 21:46:04 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
[2016.12.06 21:46:04 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
[2016.12.06 21:46:04 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
[2016.12.06 21:46:04 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2016.12.06 21:46:04 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mferror.dll
[2016.12.06 21:46:04 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mferror.dll
[2016.12.06 21:45:49 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Programs
[2016.12.06 21:45:42 | 001,888,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2016.12.06 21:45:42 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2016.12.06 21:45:42 | 001,307,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2adec.dll
[2016.12.06 21:45:42 | 001,232,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMADMOD.DLL
[2016.12.06 21:45:42 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSMPEG2ENC.DLL
[2016.12.06 21:45:42 | 001,153,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMADMOE.DLL
[2016.12.06 21:45:42 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMSPDMOD.DLL
[2016.12.06 21:45:42 | 000,970,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2adec.dll
[2016.12.06 21:45:42 | 000,902,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMADMOD.DLL
[2016.12.06 21:45:42 | 000,829,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSMPEG2ENC.DLL
[2016.12.06 21:45:42 | 000,739,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMSPDMOD.DLL
[2016.12.06 21:45:42 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVSDECD.DLL
[2016.12.06 21:45:42 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVSDECD.DLL
[2016.12.06 21:45:41 | 001,955,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVENCOD.DLL
[2016.12.06 21:45:41 | 001,575,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMSPDMOE.DLL
[2016.12.06 21:45:41 | 001,568,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVENCOD.DLL
[2016.12.06 21:45:41 | 001,325,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMSPDMOE.DLL
[2016.12.06 21:45:41 | 001,026,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2016.12.06 21:45:41 | 001,010,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcmde.dll
[2016.12.06 21:45:41 | 000,815,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMADMOE.DLL
[2016.12.06 21:45:41 | 000,740,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
[2016.12.06 21:45:41 | 000,665,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVXENCD.DLL
[2016.12.06 21:45:41 | 000,653,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MP4SDECD.DLL
[2016.12.06 21:45:41 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVXENCD.DLL
[2016.12.06 21:45:41 | 000,609,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFWMAAEC.DLL
[2016.12.06 21:45:41 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFWMAAEC.DLL
[2016.12.06 21:45:41 | 000,447,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVSENCD.DLL
[2016.12.06 21:45:41 | 000,415,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MP4SDECD.DLL
[2016.12.06 21:45:41 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SysFxUI.dll
[2016.12.06 21:45:41 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVSENCD.DLL
[2016.12.06 21:45:41 | 000,292,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VIDRESZR.DLL
[2016.12.06 21:45:41 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qasf.dll
[2016.12.06 21:45:41 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksproxy.ax
[2016.12.06 21:45:41 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MPG4DECD.DLL
[2016.12.06 21:45:41 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MP43DECD.DLL
[2016.12.06 21:45:41 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys
[2016.12.06 21:45:41 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RESAMPLEDMO.DLL
[2016.12.06 21:45:41 | 000,224,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MPG4DECD.DLL
[2016.12.06 21:45:41 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MP43DECD.DLL
[2016.12.06 21:45:41 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RESAMPLEDMO.DLL
[2016.12.06 21:45:41 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qasf.dll
[2016.12.06 21:45:41 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksproxy.ax
[2016.12.06 21:45:41 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\COLORCNV.DLL
[2016.12.06 21:45:41 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VIDRESZR.DLL
[2016.12.06 21:45:41 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\COLORCNV.DLL
[2016.12.06 21:45:41 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys
[2016.12.06 21:45:41 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MP3DMOD.DLL
[2016.12.06 21:45:41 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MP3DMOD.DLL
[2016.12.06 21:45:41 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\devenum.dll
[2016.12.06 21:45:41 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfvdsp.dll
[2016.12.06 21:45:41 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devenum.dll
[2016.12.06 21:45:41 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfvdsp.dll
[2016.12.06 21:45:41 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksuser.dll
[2016.12.06 21:45:40 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2016.12.06 21:45:40 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2016.12.06 21:44:17 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Desktop\PC_neu
[2016.12.06 21:42:54 | 003,229,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2016.12.06 21:42:54 | 002,972,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2016.12.06 21:42:54 | 001,867,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2016.12.06 21:42:54 | 001,499,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2016.12.06 21:42:53 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2016.12.06 21:42:50 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpprefcl.dll
[2016.12.06 21:42:50 | 000,591,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpprefcl.dll
[2016.12.06 21:42:50 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\polstore.dll
[2016.12.06 21:42:50 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\polstore.dll
[2016.12.06 21:42:50 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winipsec.dll
[2016.12.06 21:42:50 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpapi.dll
[2016.12.06 21:42:50 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FwRemoteSvr.dll
[2016.12.06 21:42:50 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winipsec.dll
[2016.12.06 21:42:50 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FwRemoteSvr.dll
[2016.12.06 21:42:50 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpscript.dll
[2016.12.06 21:42:50 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpscript.dll
[2016.12.06 21:42:50 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpscript.exe
[2016.12.06 21:42:50 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpscript.exe
[2016.12.06 21:42:48 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ws2_32.dll
[2016.12.06 21:42:48 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netbtugc.exe
[2016.12.06 21:42:48 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netbtugc.exe
[2016.12.06 21:42:48 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml6r.dll
[2016.12.06 21:42:48 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml6r.dll
[2016.12.06 21:42:46 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2016.12.06 21:42:46 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
[2016.12.06 21:42:46 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
[2016.12.06 21:42:45 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2016.12.06 21:42:45 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2016.12.06 21:42:45 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2016.12.06 21:42:44 | 000,190,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2016.12.06 21:42:44 | 000,069,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\stream.sys
[2016.12.06 21:42:44 | 000,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2016.12.06 21:42:44 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iologmsg.dll
[2016.12.06 21:42:44 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iologmsg.dll
[2016.12.06 21:42:43 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\charmap.exe
[2016.12.06 21:42:43 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\charmap.exe
[2016.12.06 21:42:42 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rastls.dll
[2016.12.06 21:42:42 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastls.dll
[2016.12.06 21:42:34 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptdlg.dll
[2016.12.06 21:42:34 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptdlg.dll
[2016.12.06 21:42:30 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2016.12.06 21:42:29 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2016.12.06 21:42:22 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2016.12.06 21:42:22 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2016.12.06 21:42:21 | 001,051,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2016.12.06 21:42:21 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsta.dll
[2016.12.06 21:42:21 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2016.12.06 21:42:21 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2016.12.06 21:42:21 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2016.12.06 21:42:18 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2016.12.06 21:42:18 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2016.12.06 21:42:17 | 000,396,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2016.12.06 21:42:17 | 000,316,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2016.12.06 21:42:17 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InkEd.dll
[2016.12.06 21:42:17 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InkEd.dll
[2016.12.06 21:42:15 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2016.12.06 21:42:15 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2016.12.06 21:42:15 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2016.12.06 21:42:15 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2016.12.06 21:42:15 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2016.12.06 21:42:14 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
[2016.12.06 21:42:13 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2016.12.06 21:42:12 | 001,192,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe
[2016.12.06 21:42:12 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe
[2016.12.06 21:42:12 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certenc.dll
[2016.12.06 21:42:12 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certenc.dll
[2016.12.06 21:42:11 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scesrv.dll
[2016.12.06 21:42:11 | 000,308,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scesrv.dll
[2016.12.06 21:42:10 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\els.dll
[2016.12.06 21:42:10 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\els.dll
[2016.12.06 21:42:09 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2016.12.06 21:42:06 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scrrun.dll
[2016.12.06 21:42:06 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrrun.dll
[2016.12.06 21:42:06 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscript.exe
[2016.12.06 21:42:06 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshom.ocx
[2016.12.06 21:42:06 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscript.exe
[2016.12.06 21:42:06 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshom.ocx
[2016.12.06 21:42:05 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\clfsw32.dll
[2016.12.06 21:42:05 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\clfsw32.dll
[2016.12.06 21:42:03 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2016.12.06 21:42:03 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2016.12.06 21:42:00 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshwfp.dll
[2016.12.06 21:42:00 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll
[2016.12.06 21:42:00 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FWPUCLNT.DLL
[2016.12.06 21:42:00 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL
[2016.12.06 21:38:32 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2016.12.06 21:38:32 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2016.12.06 21:36:24 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Desktop\CarotDAV
[2016.12.06 21:35:52 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Intel Corporation
[2016.12.06 21:34:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2016.12.06 21:16:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel Corporation
[2016.12.06 21:08:07 | 000,000,000 | ---D | C] -- C:\cba815b0c3f34c564d4336d4
[2016.12.06 20:49:41 | 000,134,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2016.12.06 20:48:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VulkanRT
[2016.12.06 20:48:46 | 006,384,576 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2016.12.06 20:48:46 | 002,475,968 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2016.12.06 20:48:46 | 001,762,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2016.12.06 20:48:46 | 000,546,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshext.dll
[2016.12.06 20:48:46 | 000,393,784 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2016.12.06 20:48:46 | 000,083,512 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshextr.dll
[2016.12.06 20:48:46 | 000,069,568 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2016.12.06 20:48:41 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2016.12.06 20:48:40 | 000,072,704 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2016.12.06 20:48:40 | 000,069,120 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2016.12.06 20:47:55 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2016.12.06 20:47:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2016.12.06 20:45:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2016.12.06 20:44:02 | 034,703,416 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2016.12.06 20:44:02 | 028,137,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2016.12.06 20:44:02 | 019,948,848 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2016.12.06 20:44:02 | 017,440,744 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2016.12.06 20:44:02 | 017,373,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2016.12.06 20:44:02 | 014,410,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2016.12.06 20:44:02 | 010,912,744 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvptxJitCompiler.dll
[2016.12.06 20:44:02 | 010,795,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2016.12.06 20:44:02 | 010,346,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2016.12.06 20:44:02 | 009,151,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2016.12.06 20:44:02 | 008,913,328 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvptxJitCompiler.dll
[2016.12.06 20:44:02 | 008,754,160 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2016.12.06 20:44:02 | 003,941,536 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2016.12.06 20:44:02 | 003,645,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2016.12.06 20:44:02 | 003,479,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2016.12.06 20:44:02 | 003,206,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2016.12.06 20:44:02 | 001,951,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6437619.dll
[2016.12.06 20:44:02 | 001,595,456 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420103.dll
[2016.12.06 20:44:02 | 001,586,744 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6437619.dll
[2016.12.06 20:44:02 | 001,036,736 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2016.12.06 20:44:02 | 000,974,272 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2016.12.06 20:44:02 | 000,943,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2016.12.06 20:44:02 | 000,895,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2016.12.06 20:44:02 | 000,683,824 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvfatbinaryLoader.dll
[2016.12.06 20:44:02 | 000,573,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvfatbinaryLoader.dll
[2016.12.06 20:44:02 | 000,521,096 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll
[2016.12.06 20:44:02 | 000,491,536 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2016.12.06 20:44:02 | 000,438,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFROpenGL.dll
[2016.12.06 20:44:02 | 000,435,904 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll
[2016.12.06 20:44:02 | 000,407,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2016.12.06 20:44:02 | 000,390,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFROpenGL.dll
[2016.12.06 20:44:02 | 000,212,936 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2016.12.06 20:44:02 | 000,170,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2016.12.06 20:44:02 | 000,153,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll
[2016.12.06 20:44:02 | 000,148,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2016.12.06 20:44:02 | 000,131,536 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll
[2016.12.06 20:44:02 | 000,046,024 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2016.12.06 20:43:25 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2016.12.06 20:36:47 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2016.12.06 20:31:17 | 000,041,984 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\USB3Ver.dll
[2016.12.06 20:30:29 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom
[2016.12.06 20:27:59 | 000,416,072 | ---- | C] (ASMedia Technology Inc) -- C:\Windows\SysNative\drivers\asmtxhci.sys
[2016.12.06 20:27:59 | 000,020,024 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iusb3hcs.sys
[2016.12.06 20:27:34 | 000,000,000 | ---D | C] -- C:\Users\MAIN\Desktop\Treiber
[2016.12.06 20:11:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Asmedia Technology
[2016.12.06 20:10:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASM106xSATA
[2016.12.06 20:06:58 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
[2016.12.06 20:06:54 | 000,015,168 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\IntelMEFWVer.dll
[2016.12.06 20:06:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2016.12.06 20:06:50 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2016.12.06 20:06:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent
[2016.12.06 20:05:07 | 000,062,784 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\HECIx64.sys
[2016.12.06 20:05:07 | 000,000,000 | ---D | C] -- C:\Intel
[2016.12.06 20:05:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2016.12.06 20:05:05 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\InstallShield
[2016.12.06 20:03:43 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2016.12.06 20:03:43 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2016.12.06 20:03:15 | 002,603,864 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2016.12.06 20:03:15 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2016.12.06 20:03:15 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2016.12.06 20:03:15 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2016.12.06 20:03:15 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2016.12.06 20:03:14 | 003,845,736 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
[2016.12.06 20:03:14 | 002,652,264 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2016.12.06 20:03:14 | 001,560,168 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2016.12.06 20:03:14 | 001,247,848 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2016.12.06 20:03:14 | 000,823,912 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2016.12.06 20:03:14 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2016.12.06 20:03:14 | 000,331,880 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2016.12.06 20:03:14 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2016.12.06 20:03:14 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2016.12.06 20:03:14 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2016.12.06 20:03:14 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2016.12.06 20:03:14 | 000,014,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll
[2016.12.06 20:03:13 | 000,894,040 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBAPO64.dll
[2016.12.06 20:03:13 | 000,750,680 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBAPO32.dll
[2016.12.06 20:03:13 | 000,626,264 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBTHX64.dll
[2016.12.06 20:03:13 | 000,561,752 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBTHX32.dll
[2016.12.06 20:03:13 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2016.12.06 20:03:13 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2016.12.06 20:03:13 | 000,100,968 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
[2016.12.06 20:03:13 | 000,080,984 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBWrp64.dll
[2016.12.06 20:03:13 | 000,032,344 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\drivers\MBfilt64.sys
[2016.12.06 20:03:12 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2016.12.06 20:03:12 | 000,958,296 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2016.12.06 20:03:12 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2016.12.06 20:03:11 | 002,528,832 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2016.12.06 20:03:10 | 000,200,800 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2016.12.06 20:03:10 | 000,108,960 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2016.12.06 20:03:10 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2016.12.06 20:03:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2016.12.06 20:03:07 | 001,706,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2016.12.06 20:03:07 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2016.12.06 20:03:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2016.12.06 19:57:59 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2016.12.06 19:15:21 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Diagnostics
[2016.12.06 18:16:22 | 000,000,000 | R--D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2016.12.06 18:16:22 | 000,000,000 | R--D | C] -- C:\Users\MAIN\Searches
[2016.12.06 18:16:22 | 000,000,000 | R--D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2016.12.06 18:16:17 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Identities
[2016.12.06 18:16:16 | 000,000,000 | R--D | C] -- C:\Users\MAIN\Contacts
[2016.12.06 18:16:15 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\VirtualStore
[2016.12.06 18:16:13 | 000,000,000 | --SD | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft
[2016.12.06 18:16:13 | 000,000,000 | R--D | C] -- C:\Users\MAIN\Videos
[2016.12.06 18:16:13 | 000,000,000 | R--D | C] -- C:\Users\MAIN\Saved Games
[2016.12.06 18:16:13 | 000,000,000 | R--D | C] -- C:\Users\MAIN\Pictures
[2016.12.06 18:16:13 | 000,000,000 | R--D | C] -- C:\Users\MAIN\Music
[2016.12.06 18:16:13 | 000,000,000 | R--D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2016.12.06 18:16:13 | 000,000,000 | R--D | C] -- C:\Users\MAIN\Links
[2016.12.06 18:16:13 | 000,000,000 | R--D | C] -- C:\Users\MAIN\Favorites
[2016.12.06 18:16:13 | 000,000,000 | R--D | C] -- C:\Users\MAIN\Downloads
[2016.12.06 18:16:13 | 000,000,000 | R--D | C] -- C:\Users\MAIN\Documents
[2016.12.06 18:16:13 | 000,000,000 | R--D | C] -- C:\Users\MAIN\Desktop
[2016.12.06 18:16:13 | 000,000,000 | R--D | C] -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Vorlagen
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\AppData\Local\Verlauf
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\AppData\Local\Temporary Internet Files
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Startmenü
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\SendTo
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Recent
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Netzwerkumgebung
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Lokale Einstellungen
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Documents\Eigene Videos
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Documents\Eigene Musik
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Eigene Dateien
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Documents\Eigene Bilder
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Druckumgebung
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Cookies
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\AppData\Local\Anwendungsdaten
[2016.12.06 18:16:13 | 000,000,000 | -HSD | C] -- C:\Users\MAIN\Anwendungsdaten
[2016.12.06 18:16:13 | 000,000,000 | -H-D | C] -- C:\Users\MAIN\AppData
[2016.12.06 18:16:13 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Temp
[2016.12.06 18:16:13 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Local\Microsoft
[2016.12.06 18:16:13 | 000,000,000 | ---D | C] -- C:\Users\MAIN\AppData\Roaming\Media Center Programs
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\Recovery
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\Programme
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2016.12.06 18:16:11 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2016.12.06 18:16:10 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2016.12.06 18:13:13 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2016.12.06 18:13:06 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2016.12.06 18:12:51 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2016.12.06 18:12:46 | 000,000,000 | -HSD | C] -- C:\Boot
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2017.01.02 01:35:49 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2017.01.02 01:34:56 | 000,001,122 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
[2017.01.01 23:52:19 | 000,022,000 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2017.01.01 23:52:19 | 000,022,000 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2017.01.01 23:50:53 | 000,226,168 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2017.01.01 23:50:47 | 000,214,392 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2017.01.01 23:50:21 | 001,621,742 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2017.01.01 23:50:21 | 000,699,726 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2017.01.01 23:50:21 | 000,654,564 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2017.01.01 23:50:21 | 000,149,364 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2017.01.01 23:50:21 | 000,121,934 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2017.01.01 23:44:02 | 000,000,828 | ---- | M] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2017.01.01 23:43:55 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2017.01.01 23:43:51 | 4204,974,078 | -HS- | M] () -- C:\hiberfil.sys
[2017.01.01 23:28:02 | 000,002,238 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk
[2017.01.01 23:23:30 | 000,005,656 | ---- | M] () -- C:\Users\MAIN\Desktop\cc_20170101_232324.reg
[2016.12.31 12:12:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[2016.12.31 11:57:18 | 000,000,488 | ---- | M] () -- C:\ProgramData\ntuser.pol
[2016.12.27 22:15:32 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.12.23 18:39:44 | 000,038,590 | ---- | M] () -- C:\Users\MAIN\Desktop\benni.kdbx
[2016.12.19 07:00:33 | 000,424,696 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2016.12.18 17:10:50 | 000,004,489 | ---- | M] () -- C:\Users\MAIN\Desktop\baiv_40.gif
[2016.12.15 17:04:39 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_mticache_01011.Wdf
[2016.12.14 16:44:39 | 000,589,969 | ---- | M] () -- C:\Users\MAIN\Desktop\II Anleitung zur Verwendung des Oracle Developers am eigenen Rechner.pdf
[2016.12.13 23:00:59 | 001,595,318 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2016.12.12 21:17:35 | 049,941,944 | ---- | M] () -- C:\Users\MAIN\Desktop\torbrowser-install-6.0.4_de.exe
[2016.12.10 16:32:35 | 000,076,152 | ---- | M] () -- C:\Windows\SysNative\PnkBstrA.exe
[2016.12.10 15:01:09 | 000,001,922 | ---- | M] () -- C:\Users\MAIN\Desktop\DupTest2-duplicati-config (1).json
[2016.12.10 13:42:55 | 000,000,934 | ---- | M] () -- C:\Users\Public\Desktop\EPSON Scan.lnk
[2016.12.10 13:34:05 | 000,118,784 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\E_ILMGCE.DLL
[2016.12.10 13:34:05 | 000,088,064 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Windows\SysNative\E_IBCBGCE.DLL
[2016.12.10 13:34:05 | 000,010,752 | ---- | M] (SEIKO EPSON CORP.) -- C:\Windows\SysNative\E_GCINST.DLL
[2016.12.10 00:26:25 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_xusb21_01009.Wdf
[2016.12.08 23:01:41 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2016.12.08 20:32:08 | 000,002,214 | ---- | M] () -- C:\Users\MAIN\Desktop\OwnCloud Bensch.xml
[2016.12.07 21:24:39 | 000,296,736 | ---- | M] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\file_tracker.sys
[2016.12.07 21:24:38 | 001,058,632 | ---- | M] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\tib.sys
[2016.12.07 21:24:38 | 000,304,416 | ---- | M] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\snapman.sys
[2016.12.07 21:24:38 | 000,248,648 | ---- | M] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\tib_mounter.sys
[2016.12.07 21:24:38 | 000,134,432 | ---- | M] (Acronis International GmbH) -- C:\Windows\SysNative\drivers\fltsrv.sys
[2016.12.07 21:17:33 | 000,269,888 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2016.12.07 21:17:33 | 000,097,856 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2016.12.07 20:35:02 | 000,002,218 | ---- | M] () -- C:\Users\Public\Desktop\tax 2017.lnk
[2016.12.07 18:49:47 | 000,000,222 | ---- | M] () -- C:\Users\MAIN\Desktop\DisplayFusion.url
[2016.12.07 18:27:11 | 000,000,895 | ---- | M] () -- C:\Users\Public\Desktop\Inkscape 0.91.lnk
[2016.12.07 18:24:52 | 000,001,637 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CarotDAV.lnk
[2016.12.07 18:20:48 | 000,000,514 | ---- | M] () -- C:\Users\MAIN\Desktop\bensch_owncloud.lnk
[2016.12.07 18:16:38 | 000,002,039 | ---- | M] () -- C:\Users\Public\Desktop\Action!.lnk
[2016.12.07 18:11:08 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ICCWDT_01009.Wdf
[2016.12.07 18:08:51 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2016.12.07 09:03:15 | 000,001,982 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Duplicati 2.lnk
[2016.12.07 09:01:26 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_sshid_01011.Wdf
[2016.12.07 09:01:24 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ssdevfactory_01011.Wdf
[2016.12.07 08:35:09 | 000,000,144 | ---- | M] () -- C:\Windows\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
[2016.12.07 00:57:30 | 001,804,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WdfCoInstaller01011.dll
[2016.12.07 00:57:30 | 000,052,960 | ---- | M] (SteelSeries ApS) -- C:\Windows\SysNative\drivers\sshid.sys
[2016.12.07 00:57:30 | 000,026,192 | ---- | M] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\drivers\hidkmdf.sys
[2016.12.06 23:14:56 | 000,000,451 | ---- | M] () -- C:\Windows\SysNative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
[2016.12.06 22:46:26 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2016.12.06 22:46:25 | 000,942,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jsIntl.dll
[2016.12.06 22:46:25 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jsIntl.dll
[2016.12.06 22:46:25 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2016.12.06 22:46:25 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2016.12.06 22:46:25 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2016.12.06 22:46:25 | 000,235,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2016.12.06 22:46:25 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2016.12.06 22:46:25 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2016.12.06 22:46:25 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2016.12.06 22:46:25 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2016.12.06 22:46:25 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2016.12.06 22:46:25 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2016.12.06 22:46:25 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2016.12.06 22:46:25 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2016.12.06 22:46:25 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2016.12.06 22:46:25 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2016.12.06 22:46:25 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2016.12.06 22:46:25 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2016.12.06 22:46:25 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2016.12.06 22:46:25 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2016.12.06 22:46:25 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2016.12.06 22:46:25 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2016.12.06 22:46:25 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2016.12.06 22:46:25 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2016.12.06 22:46:25 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2016.12.06 22:46:25 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2016.12.06 22:46:25 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2016.12.06 22:46:25 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2016.12.06 22:46:25 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2016.12.06 22:46:25 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2016.12.06 22:46:25 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2016.12.06 22:46:25 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2016.12.06 22:46:25 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2016.12.06 22:46:25 | 000,016,303 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2016.12.06 22:46:25 | 000,016,303 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2016.12.06 22:46:25 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2016.12.06 22:46:25 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2016.12.06 22:46:25 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2016.12.06 22:42:47 | 001,682,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2016.12.06 22:42:47 | 001,238,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2016.12.06 22:42:47 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2016.12.06 22:42:47 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2016.12.06 22:42:47 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2016.12.06 22:42:47 | 000,363,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2016.12.06 22:42:47 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2016.12.06 22:42:47 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2016.12.06 22:42:47 | 000,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2016.12.06 22:42:47 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2016.12.06 22:42:47 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2016.12.06 22:42:47 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2016.12.06 22:42:47 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2016.12.06 22:42:47 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2016.12.06 22:42:47 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2016.12.06 22:42:47 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2016.12.06 22:42:47 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2016.12.06 22:42:47 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2016.12.06 22:42:47 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2016.12.06 22:42:47 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2016.12.06 22:42:47 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2016.12.06 21:36:01 | 000,000,355 | ---- | M] () -- C:\Users\MAIN\Desktop\Arbeitsplatz.lnk
[2016.12.06 20:33:25 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iusb3hcs_01009.Wdf
[2016.12.06 18:14:28 | 000,177,271 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2016.12.06 18:14:28 | 000,177,271 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2016.12.06 18:13:30 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.12.06 18:12:47 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2017.01.02 01:34:56 | 000,001,122 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
[2017.01.01 23:23:28 | 000,005,656 | ---- | C] () -- C:\Users\MAIN\Desktop\cc_20170101_232324.reg
[2016.12.27 22:15:32 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.12.18 17:10:50 | 000,004,489 | ---- | C] () -- C:\Users\MAIN\Desktop\baiv_40.gif
[2016.12.17 18:09:31 | 000,002,509 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
[2016.12.17 18:09:31 | 000,002,506 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
[2016.12.17 18:09:31 | 000,002,502 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
[2016.12.17 18:09:31 | 000,002,481 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
[2016.12.17 18:09:31 | 000,002,459 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
[2016.12.17 18:09:31 | 000,002,456 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
[2016.12.17 18:09:31 | 000,002,423 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
[2016.12.17 18:09:31 | 000,002,420 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
[2016.12.17 18:09:31 | 000,002,392 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
[2016.12.15 17:04:39 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_mticache_01011.Wdf
[2016.12.14 19:54:06 | 000,000,488 | ---- | C] () -- C:\ProgramData\ntuser.pol
[2016.12.14 16:44:39 | 000,589,969 | ---- | C] () -- C:\Users\MAIN\Desktop\II Anleitung zur Verwendung des Oracle Developers am eigenen Rechner.pdf
[2016.12.12 21:16:06 | 049,941,944 | ---- | C] () -- C:\Users\MAIN\Desktop\torbrowser-install-6.0.4_de.exe
[2016.12.10 16:32:36 | 000,076,152 | ---- | C] () -- C:\Windows\SysNative\PnkBstrA.exe
[2016.12.10 15:01:09 | 000,001,922 | ---- | C] () -- C:\Users\MAIN\Desktop\DupTest2-duplicati-config (1).json
[2016.12.10 13:42:55 | 000,000,934 | ---- | C] () -- C:\Users\Public\Desktop\EPSON Scan.lnk
[2016.12.10 01:00:40 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2016.12.10 00:26:25 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_xusb21_01009.Wdf
[2016.12.09 09:41:09 | 000,001,637 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CarotDAV.lnk
[2016.12.08 23:43:53 | 000,038,590 | ---- | C] () -- C:\Users\MAIN\Desktop\benni.kdbx
[2016.12.08 23:00:55 | 000,226,168 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2016.12.08 23:00:55 | 000,214,392 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2016.12.08 23:00:55 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2016.12.08 20:32:07 | 000,002,214 | ---- | C] () -- C:\Users\MAIN\Desktop\OwnCloud Bensch.xml
[2016.12.07 22:54:36 | 000,002,176 | ---- | C] () -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
[2016.12.07 21:24:36 | 000,001,217 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis True Image 2015.lnk
[2016.12.07 20:35:02 | 000,002,218 | ---- | C] () -- C:\Users\Public\Desktop\tax 2017.lnk
[2016.12.07 20:17:49 | 2907,316,224 | ---- | C] () -- C:\Users\MAIN\Desktop\ProfessionalRetail.img
[2016.12.07 18:49:47 | 000,000,222 | ---- | C] () -- C:\Users\MAIN\Desktop\DisplayFusion.url
[2016.12.07 18:28:45 | 000,001,879 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
[2016.12.07 18:27:11 | 000,000,895 | ---- | C] () -- C:\Users\Public\Desktop\Inkscape 0.91.lnk
[2016.12.07 18:26:29 | 000,000,894 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
[2016.12.07 18:20:48 | 000,000,514 | ---- | C] () -- C:\Users\MAIN\Desktop\bensch_owncloud.lnk
[2016.12.07 18:18:07 | 000,002,732 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CarotDAV.lnk
[2016.12.07 18:16:38 | 000,002,039 | ---- | C] () -- C:\Users\Public\Desktop\Action!.lnk
[2016.12.07 18:14:42 | 000,002,187 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
[2016.12.07 18:11:08 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ICCWDT_01009.Wdf
[2016.12.07 18:08:51 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2016.12.07 09:46:37 | 000,044,744 | ---- | C] () -- C:\Windows\SysNative\drivers\ISCTD.sys
[2016.12.07 09:03:15 | 000,001,982 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Duplicati 2.lnk
[2016.12.07 09:03:15 | 000,001,976 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Duplicati 2.lnk
[2016.12.07 09:01:33 | 000,002,238 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk
[2016.12.07 09:01:26 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_sshid_01011.Wdf
[2016.12.07 09:01:24 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ssdevfactory_01011.Wdf
[2016.12.07 08:59:15 | 000,001,121 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
[2016.12.07 08:35:09 | 000,000,144 | ---- | C] () -- C:\Windows\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
[2016.12.06 23:14:56 | 000,000,451 | ---- | C] () -- C:\Windows\SysNative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
[2016.12.06 22:46:25 | 000,016,303 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2016.12.06 22:46:25 | 000,016,303 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2016.12.06 22:22:39 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2016.12.06 21:44:44 | 000,000,187 | ---- | C] () -- C:\Users\MAIN\Desktop\key1.key
[2016.12.06 21:37:18 | 000,015,208 | ---- | C] () -- C:\Windows\SysNative\drivers\nvflash.sys
[2016.12.06 21:36:01 | 000,000,355 | ---- | C] () -- C:\Users\MAIN\Desktop\Arbeitsplatz.lnk
[2016.12.06 21:16:18 | 001,595,318 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2016.12.06 20:48:48 | 000,269,600 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1.dll
[2016.12.06 20:48:48 | 000,261,920 | ---- | C] () -- C:\Windows\SysNative\vulkan-1.dll
[2016.12.06 20:48:48 | 000,125,216 | ---- | C] () -- C:\Windows\SysNative\vulkaninfo.exe
[2016.12.06 20:48:48 | 000,110,880 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo.exe
[2016.12.06 20:48:46 | 007,607,057 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2016.12.06 20:48:41 | 000,001,951 | ---- | C] () -- C:\Windows\NvContainerRecovery.bat
[2016.12.06 20:44:02 | 040,125,496 | ---- | C] () -- C:\Windows\SysNative\nvcompiler.dll
[2016.12.06 20:44:02 | 035,222,976 | ---- | C] () -- C:\Windows\SysWow64\nvcompiler.dll
[2016.12.06 20:44:02 | 000,041,344 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2016.12.06 20:44:02 | 000,000,669 | ---- | C] () -- C:\Windows\SysNative\nv-vk64.json
[2016.12.06 20:44:02 | 000,000,669 | ---- | C] () -- C:\Windows\SysWow64\nv-vk32.json
[2016.12.06 20:33:25 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iusb3hcs_01009.Wdf
[2016.12.06 20:06:59 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[2016.12.06 20:06:59 | 000,000,828 | ---- | C] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2016.12.06 20:03:14 | 002,261,764 | ---- | C] () -- C:\Windows\SysNative\drivers\rtvienna.dat
[2016.12.06 20:03:13 | 000,223,608 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2016.12.06 18:16:23 | 000,001,425 | ---- | C] () -- C:\Users\MAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2016.12.06 18:14:26 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2016.12.06 18:14:25 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2016.12.06 18:13:30 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.12.06 18:13:06 | 4204,974,078 | -HS- | C] () -- C:\hiberfil.sys
[2016.12.06 18:12:47 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2016.12.06 18:12:46 | 000,383,786 | RHS- | C] () -- C:\bootmgr
[2016.09.09 19:25:58 | 000,269,600 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1-1-0-26-0.dll
[2016.09.09 19:25:28 | 000,110,880 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo-1-1-0-26-0.exe
[2015.08.27 18:20:08 | 000,194,560 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2015.08.27 18:20:08 | 000,154,096 | ---- | C] () -- C:\Windows\SysWow64\igdail32.dll
 
========== ZeroAccess Check ==========
 
[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2016.08.29 16:31:19 | 014,183,424 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2016.08.29 16:12:50 | 012,880,384 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2016.12.30 14:23:18 | 000,000,000 | ---D | M] -- C:\Users\user2\AppData\Roaming\AnyDesk
[2016.12.09 18:04:17 | 000,000,000 | ---D | M] -- C:\Users\user2\AppData\Roaming\Atom
[2016.12.09 15:31:20 | 000,000,000 | ---D | M] -- C:\Users\user2\AppData\Roaming\Cyberduck
[2017.01.01 23:06:06 | 000,000,000 | ---D | M] -- C:\Users\user2\AppData\Roaming\Duplicati
[2016.12.09 15:31:20 | 000,000,000 | ---D | M] -- C:\Users\user2\AppData\Roaming\iterate_GmbH
[2016.12.30 14:20:57 | 000,000,000 | ---D | M] -- C:\Users\user2\AppData\Roaming\KeePass
[2016.12.07 21:39:05 | 000,000,000 | ---D | M] -- C:\Users\user2\AppData\Roaming\Rei Software
[2016.12.30 00:10:05 | 000,000,000 | ---D | M] -- C:\Users\user2\AppData\Roaming\steelseries-engine-3-client
[2016.12.31 18:22:39 | 000,000,000 | ---D | M] -- C:\Users\user2\AppData\Roaming\SumatraPDF
[2016.12.07 21:24:59 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\Acronis
[2016.12.07 18:32:06 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\Appcelerator
[2016.12.10 17:21:58 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\Atom
[2016.12.07 09:24:58 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\avidemux
[2016.12.07 21:38:31 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\Cyberduck
[2016.12.07 18:30:27 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\Dopamine
[2017.01.02 00:44:32 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\Duplicati
[2016.12.10 13:49:01 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\EPSON
[2016.12.07 19:57:10 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\FileZilla
[2017.01.01 23:26:41 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\FreeFixer
[2016.12.07 21:38:31 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\iterate_GmbH
[2017.01.01 22:04:17 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\KeePass
[2016.12.07 18:33:52 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\KiTTY
[2016.12.07 09:25:05 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\Mirillis
[2016.12.10 00:30:08 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\MPC-HC
[2016.12.06 21:47:30 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\nomacs
[2016.12.10 15:45:16 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\Notepad++
[2017.01.02 01:44:03 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\Origin
[2016.12.07 09:05:23 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\Rei Software
[2016.12.14 17:24:10 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\SQL Developer
[2016.12.14 16:35:52 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\sqldeveloper
[2017.01.01 23:28:53 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\steelseries-engine-3-client
[2016.12.07 20:30:48 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\SumatraPDF
[2016.12.07 08:40:28 | 000,000,000 | ---D | M] -- C:\Users\MAIN\AppData\Roaming\Toshiba Corporation
 
========== Purity Check ==========
 
 

< End of report >
         


Alt 31.01.2017, 13:20   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Seltsames Verhalten nach Bootvorgang Win 7 - Standard

Wo Seltsames Verhalten nach Bootvorgang Win 7 Lösung!



Dein Thema wurde übersehen weil du dir selbst geantwortet hast. Brauchst du noch Hilfe?
__________________
--> Seltsames Verhalten nach Bootvorgang Win 7

Alt 02.02.2017, 10:38   #7
PCNutzer
 
Seltsames Verhalten nach Bootvorgang Win 7 - Standard

Seltsames Verhalten nach Bootvorgang Win 7



Wäre super wenn jemand ein paar Takte dazu sagen könnte. danke

Alt 02.02.2017, 10:48   #8
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Seltsames Verhalten nach Bootvorgang Win 7 - Standard

Seltsames Verhalten nach Bootvorgang Win 7



Mit Malware hast das ganz wohl nix zu tun. Ich verschiebe nach Windows.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 02.02.2017, 11:09   #9
purzelbär
Gesperrt
 
Seltsames Verhalten nach Bootvorgang Win 7 - Standard

Seltsames Verhalten nach Bootvorgang Win 7



PCNutzer, deaktiviere mal unter Systemsteuerung/System und Sicherheit/Verwaltung/Dienste den Dienst für den veralteten Spywareschutz Windows Defender(so wie auf meinm Bild), den brauchst du nicht das Teil ist veraltet und überholt und kann zu Komplikationen mit installierten Virenschutz Programmen führen.

Alt 02.02.2017, 11:37   #10
PCNutzer
 
Seltsames Verhalten nach Bootvorgang Win 7 - Standard

Seltsames Verhalten nach Bootvorgang Win 7 [gelöst]



Danke für den Tip Mal sehen ob die Verzögerung beim Starten wegfällt

Antwort

Themen zu Seltsames Verhalten nach Bootvorgang Win 7
.dll, administrator, bonjour, ccsetup, computer, defender, desktop, duplicati, excel, explorer, fehler, google, homepage, launch, maus, mozilla, netzwerk, neustart, prozesse, realtek, registry, scan, security, seltsames verhalten, software, tastatur, temp, ublock, ublock origin, usb, windows



Ähnliche Themen: Seltsames Verhalten nach Bootvorgang Win 7


  1. Windows 10: Seltsames Verhalten vom PC
    Log-Analyse und Auswertung - 30.11.2016 (3)
  2. Seltsames Verhalten der svchost.exe
    Log-Analyse und Auswertung - 10.03.2015 (4)
  3. Seltsames Verhalten Chrome unter OSX Mavericks
    Alles rund um Mac OSX & Linux - 16.11.2014 (9)
  4. Seltsames Verhalten bei versehentlichem Bootversuch von Speicherkarte
    Alles rund um Mac OSX & Linux - 04.10.2014 (21)
  5. Firefox 29 Update, seltsames Verhalten
    Diskussionsforum - 23.05.2014 (2)
  6. Windwos XP: Seltsames Verhalten von Google Chrome. Virus?
    Plagegeister aller Art und deren Bekämpfung - 06.01.2014 (8)
  7. Win 7 zeigt seltsames Verhalten
    Log-Analyse und Auswertung - 05.11.2012 (1)
  8. Seltsames Verhalten von WinXP SP3 - neu installation
    Alles rund um Windows - 12.03.2009 (1)
  9. seltsames Verhalten eines geblockten MSN-Kontakts
    Log-Analyse und Auswertung - 14.04.2008 (1)
  10. seltsames Verhalten des PC, Virus?
    Plagegeister aller Art und deren Bekämpfung - 08.05.2007 (9)
  11. Seltsames Verhalten des PC Speakers
    Plagegeister aller Art und deren Bekämpfung - 19.03.2007 (1)
  12. Trojaner? Seltsames verhalten Rechnerbetrieb
    Log-Analyse und Auswertung - 10.05.2006 (8)
  13. Bitte LOG prüfen - Seltsames Compi Verhalten
    Log-Analyse und Auswertung - 15.10.2005 (4)
  14. Seltsames verhalten von WinXP Prof
    Plagegeister aller Art und deren Bekämpfung - 26.06.2005 (7)
  15. Seltsames Verhalten beim KAV update
    Antiviren-, Firewall- und andere Schutzprogramme - 22.06.2005 (15)
  16. Seltsames Verhalten von Win XP
    Plagegeister aller Art und deren Bekämpfung - 11.02.2004 (3)
  17. Seltsames Verhalten nach KAV-Installation
    Antiviren-, Firewall- und andere Schutzprogramme - 11.12.2003 (12)

Zum Thema Seltsames Verhalten nach Bootvorgang Win 7 - Hallo, nach dem Start meines PCs spielte die Maus und die Tastatur verrückt. Explorer Fenster öffneten sich selbständig und eine Bedienung des Rechners war nicht mehr möglich. Nach einem Neustart - Seltsames Verhalten nach Bootvorgang Win 7...
Archiv
Du betrachtest: Seltsames Verhalten nach Bootvorgang Win 7 auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.