Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Yahoo anstelle von Google (https://www.trojaner-board.de/172634-yahoo-anstelle-google.html)

opecgreen 02.11.2015 20:40
Yahoo anstelle von Google
 
Hallo an alle,

ich hoffe ihr könnt mir helfen.
Ich denke das ich mir beim Download von der Chip Seite irgend etwas mit eingefangen bzw. ungewollt mit auf meinem Laptop installiert habe.
Wenn ich nun über Chrome zur Google Startseite gehen will, öffnet es mir nach ein paar Sekunden automatisch Yahoo als Suchmaschine.
Änderungen unter Einstellungen für die Startseite wieder auf Google bzw. Yahoo löschen haben nichts geholfen.

Könnt ihr mir weiterhelfen wieder mit Google und nicht mit Yahoo "arbeiten" zu können?

Danke!

schrauber 02.11.2015 20:49
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


opecgreen 02.11.2015 21:02
Danke für die Antwort.

Anbei die Scans:

FRST

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-10-2015
durchgeführt von Karsten (Administrator) auf KARSTI (02-11-2015 20:58:54)
Gestartet von C:\Users\Karsten\Desktop
Geladene Profile: Karsten (Verfügbare Profile: Karsten)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Hanwang Technology Co.,Ltd. ) C:\Program Files\ASUS\ASUS FaceID\HWFaceKeyService.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSUP.exe
() C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Printer SSW2\Status Monitor\dlp4db.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
() C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\2\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\5\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\6\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\10\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\8\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
() C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1pl.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDFViewer\PdfPro7Hook.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSTS.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHCM.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ASUS) C:\Program Files\ASUS\ASUS GPU Tweak\GPUTweak.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3216032 2013-12-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [179976 2013-09-10] (cyberlink)
HKLM-x32\...\Run: [ASUS InstantKey] => C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [13936 2014-01-20] (ASUS)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM-x32\...\Run: [LauncherC1765nf] => C:\Program Files (x86)\Dell Printers\Printer SSW\Launcher\dlm1launcher.exe [2471928 2013-08-13] (Dell Inc.)
HKLM-x32\...\Run: [StatusAutoRunC1765nf] => C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1pl.exe [3846856 2014-07-23] (Dell Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDFViewer\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [DLDPHSTS] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSTS.exe [32768 2015-09-10] (Dell Inc.)
HKLM-x32\...\Run: [DLDPHCM] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHCM.exe [610816 2015-09-10] (Dell Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [18248 2013-05-29] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [36168 2013-05-29] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2068856 2011-10-12] (Flexera Software LLC.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2978658392-3849539983-600884974-1002\...\Run: [84B3173D6E287946C6B27EA653492ABDA603F8CD._service_run] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-10-20] (Google Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 185.27.121.36 185.27.120.43
Tcpip\..\Interfaces\{64972B4D-73C7-4E60-8989-5133E3878D81}: [DhcpNameServer] 185.27.121.36 185.27.120.43

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB
HKU\S-1-5-21-2978658392-3849539983-600884974-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB
HKU\S-1-5-21-2978658392-3849539983-600884974-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQoJAwBBEQFAbVxZWQ9cFQZHcBRaUltCDAZGcVhZWQBDEA1HIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQoJAwBBEQFAbVxZWQ9cFQZHcBRaUltCDAZGcVhZWQBDEA1HIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2978658392-3849539983-600884974-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQoJAwBBEQFAbVxZWQ9cFQZHcBRaUltCDAZGcVhZWQBDEA1HIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2978658392-3849539983-600884974-1002 -> OldSearch URL =
SearchScopes: HKU\S-1-5-21-2978658392-3849539983-600884974-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQoJAwBBEQFAbVxZWQ9cFQZHcBRaUltCDAZGcVhZWQBDEA1HIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2978658392-3849539983-600884974-1002 -> {38AAF493-3C2D-45DB-ACDC-50B82EE45D64} URL = hxxp://search.yahoo.com/yhs/search?hspart=ddc&hsimp=yhs-ddc_bd&type=bl-bir-dd__alt__ddc_dss_bd_com&p={searchTerms}
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDFViewer\Bin\PlusIEContextMenu.dll [2011-06-30] (Zeon Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll Keine Datei
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll Keine Datei

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-13] (Google Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDFViewer\bin\nppdf.dll [2011-07-15] (Zeon Corporation)
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-10-13] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-10-13] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-10-13] [ist nicht signiert]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR RestoreOnStartup: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR StartupUrls: Default -> "hxxp://google.de/"
CHR Profile: C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-13]
CHR Extension: (Google-Suche) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Kaspersky Protection) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-10-13]
CHR Extension: (Google Docs Offline) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-13]
CHR Extension: (AdBlock) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-10-13]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-13]
CHR Extension: (Google Mail) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-13]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 0127531427311436mcinstcleanup; C:\Windows\TEMP\012753~1.EXE [851136 2014-08-08] (McAfee, Inc.)
R2 ASUS FaceID Service; C:\Program Files\ASUS\ASUS FaceID\HWFaceKeyService.exe [261648 2013-10-24] (Hanwang Technology Co.,Ltd. )
R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS)
R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-07-09] (Kaspersky Lab ZAO)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [243464 2013-09-10] (CyberLink)
R2 DLDPHSUP; C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSUP.exe [17408 2015-09-10] (Dell Inc.) [Datei ist nicht signiert]
R2 DLNBDB; C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe [243912 2014-07-23] ()
R2 DLNCDB; C:\Program Files (x86)\Dell Printers\Printer SSW2\Status Monitor\dlp4db.exe [277360 2015-02-09] (Dell Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [129992 2014-01-19] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-11-20] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
R2 Service Mgr ResultsHub; C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe [1048288 2015-11-02] () <==== ACHTUNG
R2 Update Mgr ResultsHub; C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe [612576 2015-11-02] () <==== ACHTUNG
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2013-11-20] (Intel® Corporation)
S2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [70928 2014-02-13] (ASUS Corporation)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-11-07] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1411384 2013-11-07] (Motorola Solutions, Inc.)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-07-09] (Kaspersky Lab UK Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [149448 2013-11-23] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-07-09] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [64368 2015-07-09] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [159960 2015-07-09] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [226480 2015-07-09] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [817848 2015-10-14] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39792 2015-07-09] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [40304 2015-07-09] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [39792 2015-07-09] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-07-09] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [77680 2015-07-09] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [85360 2015-07-09] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [190648 2015-10-14] (Kaspersky Lab ZAO)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3609568 2013-12-25] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44024 2015-02-04] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [264000 2015-02-04] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-02 20:58 - 2015-11-02 20:59 - 00026808 _____ C:\Users\Karsten\Desktop\FRST.txt
2015-11-02 20:10 - 2015-11-02 20:14 - 00000278 _____ C:\Users\Karsten\Desktop\Search.txt
2015-11-02 20:05 - 2015-11-02 20:58 - 00000000 ____D C:\FRST
2015-11-01 14:25 - 2015-11-01 14:25 - 02198016 _____ (Farbar) C:\Users\Karsten\Desktop\FRST64.exe
2015-10-29 21:08 - 2015-07-05 11:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-10-29 20:37 - 2015-08-03 22:15 - 00074928 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-29 20:37 - 2015-08-03 22:15 - 00065600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-10-29 20:37 - 2015-08-01 15:22 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-29 20:37 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tzsync.exe
2015-10-29 20:37 - 2015-07-10 19:19 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-10-29 20:37 - 2015-07-10 18:14 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-10-29 20:37 - 2015-07-10 18:13 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-10-29 20:37 - 2015-07-10 17:31 - 06213120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-10-29 20:37 - 2014-10-29 03:46 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-29 20:37 - 2014-10-29 03:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-29 20:37 - 2014-10-29 03:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-29 20:37 - 2014-10-29 03:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-10-29 20:37 - 2014-10-29 02:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-29 20:36 - 2015-05-03 16:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-10-29 20:36 - 2015-05-03 15:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-10-14 18:55 - 2015-10-14 18:55 - 00001037 _____ C:\Users\Karsten\Desktop\PH 12 - Verknüpfung.lnk
2015-10-13 13:50 - 2015-10-13 13:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-13 13:49 - 2015-11-02 20:56 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-13 13:49 - 2015-11-02 19:54 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-13 13:49 - 2015-10-13 13:49 - 00004098 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-10-13 13:49 - 2015-10-13 13:49 - 00003862 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-10-13 13:22 - 2015-10-13 13:22 - 00002165 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2015-10-13 13:22 - 2015-10-13 13:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2015-10-13 13:22 - 2013-05-06 07:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2015-10-13 13:21 - 2015-10-13 13:21 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2015-10-13 13:20 - 2015-10-14 18:42 - 00817848 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2015-10-13 13:20 - 2015-07-09 18:11 - 00226480 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klhk.sys
2015-10-13 13:20 - 2015-07-09 18:11 - 00159960 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2015-10-10 11:37 - 2015-10-10 11:37 - 00929872 _____ (Google Inc.) C:\Users\Karsten\Downloads\ChromeSetup.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-02 20:59 - 2015-07-17 14:06 - 00000000 ____D C:\Users\Karsten\AppData\Local\Dell Printer Hub
2015-11-02 20:58 - 2015-03-22 19:58 - 00000074 _____ C:\Users\Karsten\AppData\Roaming\sp_data.sys
2015-11-02 20:56 - 2015-03-26 20:39 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-11-02 20:41 - 2015-03-25 19:51 - 00000000 ____D C:\Users\Karsten\AppData\Roaming\ClassicShell
2015-11-02 20:02 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sru
2015-11-02 19:56 - 2015-08-28 15:33 - 00000000 ____D C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656
2015-11-02 19:50 - 2014-06-20 18:33 - 01124896 _____ C:\Windows\WindowsUpdate.log
2015-11-02 19:35 - 2015-03-22 20:03 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2978658392-3849539983-600884974-1002
2015-11-02 19:33 - 2015-03-22 20:07 - 00003930 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{06957B63-8A92-4FAD-B716-A205A87C1587}
2015-10-29 22:01 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache
2015-10-29 22:01 - 2013-08-22 15:46 - 00029241 _____ C:\Windows\setupact.log
2015-10-29 21:51 - 2013-12-13 12:04 - 00765582 _____ C:\Windows\system32\perfh007.dat
2015-10-29 21:51 - 2013-12-13 12:04 - 00159366 _____ C:\Windows\system32\perfc007.dat
2015-10-29 21:51 - 2013-12-13 05:09 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-29 21:47 - 2013-08-22 16:37 - 00003223 _____ C:\Windows\DtcInstall.log
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-29 21:46 - 2013-08-22 21:59 - 00000000 ____D C:\Program Files\Windows Journal
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\WinStore
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\sppui
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\setup
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\setup
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Com
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\MediaViewer
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\IME
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\WindowsPowerShell
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Portable Devices
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-10-29 21:46 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-29 21:46 - 2013-08-22 15:44 - 00484280 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Sysprep
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\oobe
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\servicing
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ___SD C:\Windows\system32\dsc
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sppui
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\migwiz
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\FileManager
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Camera
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2015-10-29 21:45 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Dism
2015-10-29 21:34 - 2013-08-22 16:36 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-10-29 21:34 - 2013-08-22 16:36 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2015-10-29 21:33 - 2013-12-13 04:57 - 00202938 _____ C:\Windows\PFRO.log
2015-10-29 21:32 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-10-29 21:32 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-10-29 21:26 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2015-10-29 20:54 - 2015-03-26 21:04 - 00000000 ____D C:\Windows\system32\MRT
2015-10-29 20:21 - 2015-06-13 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Printers
2015-10-29 20:20 - 2014-06-20 18:26 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-10-25 14:27 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2015-10-14 18:55 - 2015-03-25 20:41 - 00141312 ___SH C:\Users\Karsten\Desktop\Thumbs.db
2015-10-14 18:53 - 2015-06-22 18:56 - 00000000 ____D C:\Users\Karsten\Downloads\Bilder
2015-10-14 18:42 - 2015-07-09 18:11 - 00190648 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2015-10-14 18:37 - 2015-04-09 19:21 - 00565760 ___SH C:\Users\Karsten\Downloads\Thumbs.db
2015-10-13 13:50 - 2015-03-22 20:10 - 00000000 ____D C:\Program Files (x86)\Google
2015-10-13 13:50 - 2015-03-22 20:09 - 00000000 ____D C:\Users\Karsten\AppData\Local\Google
2015-10-13 13:49 - 2015-08-28 15:34 - 00000000 ____D C:\ProgramData\Results Hub
2015-10-13 13:48 - 2015-08-28 15:33 - 00000000 ____D C:\Program Files (x86)\Results Hub
2015-10-13 13:21 - 2013-08-22 16:36 - 00000000 ___HD C:\Windows\ELAMBKUP

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-03-22 19:58 - 2015-11-02 20:58 - 0000074 _____ () C:\Users\Karsten\AppData\Roaming\sp_data.sys
2014-06-20 18:29 - 2014-06-20 18:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-12-13 05:09 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-12-13 05:09 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-12-13 05:09 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

Einige Dateien in TEMP:
====================
C:\Users\Karsten\AppData\Local\Temp\autorun.dll
C:\Users\Karsten\AppData\Local\Temp\dlm1AnotherRegister.exe
C:\Users\Karsten\AppData\Local\Temp\dlp4AnotherRegister.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-10-29 21:43

==================== Ende von FRST.txt ============================
Addition:

Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-10-2015
durchgeführt von Karsten (2015-11-02 20:59:10)
Gestartet von C:\Users\Karsten\Desktop
Windows 8.1 (X64) (2015-03-22 18:57:53)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2978658392-3849539983-600884974-500 - Administrator - Disabled)
Gast (S-1-5-21-2978658392-3849539983-600884974-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2978658392-3849539983-600884974-1004 - Limited - Enabled)
Karsten (S-1-5-21-2978658392-3849539983-600884974-1002 - Administrator - Enabled) => C:\Users\Karsten

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Out of date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Asus FaceID (HKLM-x32\...\{C4071085-DDF0-403F-90F9-27582FC22C9B}) (Version: 7.6.8.3 - ASUS)
ASUS GPU Tweak (HKLM\...\{7353D4C7-43E9-46A3-A1FF-79DD94A386F2}) (Version: 1.0.9 - ASUS)
ASUS Instant Key (HKLM-x32\...\{D97A1B80-131F-4692-9543-E652956D8B99}) (Version: 1.1.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.2.7 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.6 - ASUS)
ASUS ROG Gaming Mouse (HKLM-x32\...\{3B9E171F-A955-4834-B877-447C0A437260}) (Version: 2.00.026 - ASUS)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 1.0.2 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.10 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0021 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.8 - ASUS)
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5712.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.5712.52 - CyberLink Corp.) Hidden
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.311 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0031 - ASUS)
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
Dell C1765 Color MFP (HKLM-x32\...\InstallShield_{74A03F3A-8732-427C-B9F5-CE510DA5BAA8}) (Version: 1.052.0 - Dell Inc.)
Dell C1765 Color MFP (x32 Version: 1.052.0 - Dell Inc.) Hidden
Dell Color MFP E525w (HKLM-x32\...\InstallShield_{B2300F1D-160E-4B02-9BAF-49226EABE953}) (Version: 1.024.2015 - Dell Inc.)
Dell Color MFP E525w (x32 Version: 1.024.2015 - Dell Inc.) Hidden
Dell Printer Hub (HKLM-x32\...\InstallShield_{98F3B1BD-3D7C-42EC-8149-18E3FE9ECE22}) (Version: 2.0.0.38 - Dell Inc.)
Dell Printer Hub (x32 Version: 2.0.0.38 - Dell Inc.) Hidden
Dell System Detect (HKU\S-1-5-21-2978658392-3849539983-600884974-1002\...\73f463568823ebbe) (Version: 6.2.0.5 - Dell)
E514dw_E515dn_E515dw Scan Plugin (x32 Version: 2.0.0.31 - Dell Inc.) Hidden
E525w Scan Plugin (x32 Version: 2.0.0.31 - Dell Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3355 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1347.2) (HKLM\...\{302600C1-6BDF-4FD1-1312-148929CC1385}) (Version: 17.0.1312.0414 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{eff1d9d1-41fa-49ef-a986-082bfe49c293}) (Version: 16.8.0 - Intel Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{02FECEE0-16B2-43DB-BC3B-C844477FC142}) (Version: 15.0.2.396 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.2.396 - Kaspersky Lab) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4048 (HKLM\...\{91415F19-4C22-3609-A105-92ED3522D83C}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 (HKLM-x32\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Nuance PaperPort 14 (HKLM-x32\...\{08BCE67B-6305-4D8A-B749-F381E7E3DDA2}) (Version: 14.5.0000 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM-x32\...\{FC984E39-43D0-4AB2-ACC7-A7B87977B009}) (Version: 7.20.3274 - Nuance Communications, Inc.)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.88 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.39048 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7213 - Realtek Semiconductor Corp.)
Results Hub (HKLM-x32\...\Results Hub) (Version: 2.0.5718.10203 - Results Hub) <==== ACHTUNG
Scansoft PDF Professional (x32 Version:  - ) Hidden
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
Windows Driver Package - ASUS (ATP) Mouse  (01/07/2014 1.0.0.197) (HKLM\...\2BEE838DC3D664A0CAB23AEA0332BB3877ED0685) (Version: 01/07/2014 1.0.0.197 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Wiederherstellungspunkte =========================

24-09-2015 19:48:14 Sprachpaketdeinstallation
29-10-2015 20:19:54 Installiert Dell MFP E514dw Scan Button Manager

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {1AF59636-575F-4EDB-857C-FB3480B62BF6} - System32\Tasks\ASUS GPUTweak => C:\Program Files\ASUS\ASUS GPU Tweak\GPUTweak.exe [2014-03-06] (ASUS)
Task: {210F6440-1420-457D-A459-7531AEE42BC0} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86) [2015-10-13] ()
Task: {3C13A97C-3742-4A34-9C0E-2BF20D86062B} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2013-08-29] (ASUS)
Task: {3D9C54A6-B6B0-447D-9FD8-7896A01064B3} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2013-10-07] (ASUS)
Task: {45268BA7-2E3F-4D13-81A4-9169476C0539} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-13] (Google Inc.)
Task: {4ADE3D75-DAE7-41E8-B56A-8870D3D91AF9} - System32\Tasks\ASUS InstantOn Config => C:\Program Files\ASUS\P4G\InsOnCfg.exe
Task: {4C376F17-16B3-4BCF-9AEC-0FD352C27110} - System32\Tasks\P4GIntlCtrl => C:\Program Files\ASUS\P4G\IntlDPST.exe [2013-08-29] ()
Task: {4C4535D8-77CB-4D73-A5E6-C37C00A72FB4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-13] (Google Inc.)
Task: {539B9AE5-D654-4CAE-A38F-C830F279221D} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [2013-10-07] (ASUSTeK Computer Inc.)
Task: {7A7E2AC7-2E14-4F97-AC74-4D54E83D8BFB} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2014-02-13] (AsusTek)
Task: {8325B6BD-B363-4993-8AE2-97430025474A} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-21] (Realtek Semiconductor)
Task: {8F2A92B7-8E3C-407C-8C23-1AF21CE93B89} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2013-11-04] ()
Task: {CF811DC7-7FFC-4D17-9782-9D7366F33227} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2013-11-27] ()
Task: {CFDBDAAB-E787-4F8F-851B-59CF2B5C77E5} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86) [2015-10-13] ()
Task: {E78C3BE1-EFD7-4238-9162-283A29DB7F76} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-01-16] (ASUSTek Computer Inc.)
Task: {EA296010-A106-44C2-A86F-3396B5E683C5} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-31] (Realtek Semiconductor)
Task: {F7AC940C-B2D5-4564-8D6B-C3F3E1E5668F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-10-02] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-07-17 14:04 - 2015-01-20 12:20 - 00019456 _____ () C:\Windows\System32\dlt6p4zlm.dll
2015-07-17 14:04 - 2015-01-20 09:21 - 00018432 _____ () C:\Windows\System32\dltpp4zLM.DLL
2014-06-20 18:37 - 2013-08-26 16:29 - 00755728 _____ () C:\Windows\SYSTEM32\sqlite3.dll
2014-07-23 18:25 - 2014-07-23 18:25 - 00243912 _____ () C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe
2015-08-28 10:45 - 2015-11-02 19:51 - 00612576 _____ () C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe
2015-08-28 14:40 - 2015-11-02 19:56 - 01048288 _____ () C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe
2015-11-02 19:56 - 2015-11-02 19:56 - 01723616 _____ () C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\2\plugin.exe
2015-11-02 19:56 - 2015-11-02 19:56 - 01264352 _____ () C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\plugin.exe
2015-11-02 19:56 - 2015-11-02 19:56 - 01296096 _____ () C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\5\plugin.exe
2015-11-02 19:56 - 2015-11-02 19:56 - 01203936 _____ () C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\6\plugin.exe
2015-11-02 19:56 - 2015-11-02 19:56 - 01002720 _____ () C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\10\plugin.exe
2015-11-02 19:56 - 2015-11-02 19:56 - 01255648 _____ () C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\8\plugin.exe
2015-11-02 19:56 - 2015-11-02 19:56 - 00989408 _____ () C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\plugin.exe
2014-06-20 18:38 - 2015-03-13 17:16 - 00118472 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-08-29 16:01 - 2013-08-29 16:01 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2014-06-20 18:38 - 2013-05-15 14:39 - 00463872 _____ () C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
2014-03-06 16:42 - 2014-03-06 16:42 - 00011264 _____ () C:\Program Files\ASUS\ASUS GPU Tweak\WMIProc.dll
2014-03-06 16:42 - 2014-03-06 16:42 - 00320000 _____ () C:\Program Files\ASUS\ASUS GPU Tweak\NavpiWrapper.dll
2014-12-23 15:54 - 2014-12-23 15:54 - 01272616 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\kpcengine.2.3.dll
2014-06-20 18:26 - 2013-09-03 16:52 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-10-08 20:41 - 2013-10-08 20:41 - 00037968 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2013-09-09 18:23 - 2013-09-09 18:23 - 00162816 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-10-25 12:56 - 2015-10-20 15:08 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\libglesv2.dll
2015-10-25 12:56 - 2015-10-20 15:08 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-2978658392-3849539983-600884974-1002\...\dell.com -> dell.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2978658392-3849539983-600884974-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Karsten\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 185.27.121.36 - 185.27.120.43
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{546E9E1C-53CF-4146-B76E-EF2017C30E20}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{AAEA246B-0227-4303-80BA-5FCA70C19B24}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{E5084067-B33F-4986-A7E8-480E84D77650}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{D3D3D6FD-70F7-4227-A235-1798AE0EA8FD}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{4C919120-88B6-471C-B9BA-BA10C4C6F613}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{A27C32FB-004B-42F8-BA74-4FDA088D152D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3A043396-74B5-44D1-8012-F714BE1FB15D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CB7F5CB0-4DA4-4F93-B283-8AA2C597762E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A1392198-92F8-436B-B879-0687E6B07EC7}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{F4A8DED7-4641-47EA-B739-32E01EF866AE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C72F0EEE-D554-4579-B5D7-78377DFF4AD2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3C49068B-A9C1-4F5C-9A84-5AF6BBA75038}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/02/2015 07:30:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LogonUI.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f6c5
Name des fehlerhaften Moduls: user32.dll, Version: 6.3.9600.17238, Zeitstempel: 0x53d0ceb9
Ausnahmecode: 0xc00000fd
Fehleroffset: 0x000000000000231d
ID des fehlerhaften Prozesses: 0xda4
Startzeit der fehlerhaften Anwendung: 0xLogonUI.exe0
Pfad der fehlerhaften Anwendung: LogonUI.exe1
Pfad des fehlerhaften Moduls: LogonUI.exe2
Berichtskennung: LogonUI.exe3
Vollständiger Name des fehlerhaften Pakets: LogonUI.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LogonUI.exe5

Error: (10/29/2015 09:57:49 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.

Error: (10/29/2015 09:57:03 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.

Error: (10/29/2015 09:46:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: 012753~1.EXE, Version: 8.6.154.0, Zeitstempel: 0x53e5162a
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00b32978
ID des fehlerhaften Prozesses: 0x6e4
Startzeit der fehlerhaften Anwendung: 0x012753~1.EXE0
Pfad der fehlerhaften Anwendung: 012753~1.EXE1
Pfad des fehlerhaften Moduls: 012753~1.EXE2
Berichtskennung: 012753~1.EXE3
Vollständiger Name des fehlerhaften Pakets: 012753~1.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: 012753~1.EXE5

Error: (10/29/2015 09:33:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: 012753~1.EXE, Version: 8.6.154.0, Zeitstempel: 0x53e5162a
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00822978
ID des fehlerhaften Prozesses: 0x6f0
Startzeit der fehlerhaften Anwendung: 0x012753~1.EXE0
Pfad der fehlerhaften Anwendung: 012753~1.EXE1
Pfad des fehlerhaften Moduls: 012753~1.EXE2
Berichtskennung: 012753~1.EXE3
Vollständiger Name des fehlerhaften Pakets: 012753~1.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: 012753~1.EXE5

Error: (10/29/2015 09:32:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: 012753~1.EXE, Version: 8.6.154.0, Zeitstempel: 0x53e5162a
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00db2978
ID des fehlerhaften Prozesses: 0x708
Startzeit der fehlerhaften Anwendung: 0x012753~1.EXE0
Pfad der fehlerhaften Anwendung: 012753~1.EXE1
Pfad des fehlerhaften Moduls: 012753~1.EXE2
Berichtskennung: 012753~1.EXE3
Vollständiger Name des fehlerhaften Pakets: 012753~1.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: 012753~1.EXE5

Error: (10/29/2015 08:20:46 PM) (Source: MsiInstaller) (EventID: 1002) (User: Karsti)
Description: Nicht erwarteter oder fehlender Wert (Name: "PackageCode", Wert: "GUID") für Schlüssel "HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219".

Error: (10/28/2015 10:06:59 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (10/28/2015 09:44:39 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (10/25/2015 02:28:31 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.


Systemfehler:
=============
Error: (10/29/2015 10:01:34 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073712 fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB3063843)

Error: (10/29/2015 10:01:34 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073712 fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB3083711)

Error: (10/29/2015 10:01:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073712 fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB3080800)

Error: (10/29/2015 10:01:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073712 fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB3079318)

Error: (10/29/2015 10:01:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073712 fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB3038701)

Error: (10/29/2015 10:01:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073712 fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB3059316)

Error: (10/29/2015 10:01:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073712 fehlgeschlagen: Sicherheitsupdate für Windows 8.1 für x64-basierte Systeme (KB3078601)

Error: (10/29/2015 10:01:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073712 fehlgeschlagen: Sicherheitsupdate für Windows 8.1 für x64-basierte Systeme (KB3072633)

Error: (10/29/2015 10:01:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073712 fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB3060383)

Error: (10/29/2015 10:01:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073712 fehlgeschlagen: Sicherheitsupdate für Windows 8.1 für x64-basierte Systeme (KB3084135)


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7-4700HQ CPU @ 2.40GHz
Prozentuale Nutzung des RAM: 13%
Installierter physikalischer RAM: 16267.02 MB
Verfügbarer physikalischer RAM: 14085.9 MB
Summe virtueller Speicher: 18699.02 MB
Verfügbarer virtueller Speicher: 16473.05 MB

==================== Laufwerke ================================

Drive c: (Programme) (Fixed) (Total:95.39 GB) (Free:37.9 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (Privat) (Fixed) (Total:121.98 GB) (Free:33.64 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 14585E05)

Partition: GPT.

==================== Ende von Addition.txt ============================

schrauber 03.11.2015 21:01
Lade Dir bitte von hier Revo Uninstaller Download Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
  • Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
  • Klicke auf Optionen und wähle als Sprache Deutsch.
  • Suche im Uninstallerfeld nach den Programmen:

    Results Hub



  • Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
  • Wähle anschließend den Modus "Moderat" aus.
  • Reste löschen:
    Klicke auf dann auf und dann auf .

 





Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

opecgreen 05.11.2015 12:02
Danke!

Dann will ich mal:

Revo ist ausgeführt und eine Datei Result Hub gelöscht.

Hier die Textdatein der MBAM

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org


Protection, 05.11.2015 11:23, SYSTEM, KARSTI, Protection, Malware Protection, Starting,
Protection, 05.11.2015 11:23, SYSTEM, KARSTI, Protection, Malware Protection, Started,
Protection, 05.11.2015 11:23, SYSTEM, KARSTI, Protection, Malicious Website Protection, Starting,
Protection, 05.11.2015 11:23, SYSTEM, KARSTI, Protection, Malicious Website Protection, Started,
Update, 05.11.2015 11:23, SYSTEM, KARSTI, Manual, Remediation Database, 2015.9.16.1, 2015.11.4.1,
Update, 05.11.2015 11:23, SYSTEM, KARSTI, Manual, Rootkit Database, 2015.9.18.1, 2015.11.4.2,
Update, 05.11.2015 11:23, SYSTEM, KARSTI, Manual, Domain Database, 2015.9.22.3, 2015.11.5.5,
Update, 05.11.2015 11:23, SYSTEM, KARSTI, Manual, IP Database, 2015.9.21.2, 2015.11.4.1,
Update, 05.11.2015 11:23, SYSTEM, KARSTI, Manual, Malware Database, 2015.9.22.5, 2015.11.5.2,
Protection, 05.11.2015 11:23, SYSTEM, KARSTI, Protection, Refresh, Starting,
Protection, 05.11.2015 11:23, SYSTEM, KARSTI, Protection, Malicious Website Protection, Stopping,
Protection, 05.11.2015 11:23, SYSTEM, KARSTI, Protection, Malicious Website Protection, Stopped,
Protection, 05.11.2015 11:23, SYSTEM, KARSTI, Protection, Refresh, Success,
Protection, 05.11.2015 11:23, SYSTEM, KARSTI, Protection, Malicious Website Protection, Starting,
Protection, 05.11.2015 11:23, SYSTEM, KARSTI, Protection, Malicious Website Protection, Started,
Detection, 05.11.2015 11:28, SYSTEM, KARSTI, Protection, Malware-Schutz, Datei, PUP.Optional.Yontoo, C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.upd, Quarantäne, [3630dc9ebad148ee73f13e04fc050ef2]
Scan, 05.11.2015 11:29, SYSTEM, KARSTI, Manual, Start: 05.11.2015 11:23, Dauer: 3 Min. 35 Sek., Bedrohungssuchlauf, Abgeschlossen, 0 Malware-Erkennung, 54 Nicht-Malware-Erkennungen,
Detection, 05.11.2015 11:29, SYSTEM, KARSTI, Protection, Malware-Schutz, Datei, PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe, Quarantine Failed, 5, Zugriff verweigert  , [2343f88299f21d1999cb58ea50b130d0]
Detection, 05.11.2015 11:29, SYSTEM, KARSTI, Protection, Malware-Schutz, Datei, PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe, Quarantine Failed, 5, Zugriff verweigert  , [ea7cd6a492f9c4726df7063c7c85cb35]
Protection, 05.11.2015 11:30, SYSTEM, KARSTI, Protection, Malware Protection, Starting,
Protection, 05.11.2015 11:30, SYSTEM, KARSTI, Protection, Malware Protection, Started,
Protection, 05.11.2015 11:30, SYSTEM, KARSTI, Protection, Malicious Website Protection, Starting,
Protection, 05.11.2015 11:30, SYSTEM, KARSTI, Protection, Malicious Website Protection, Started,
Protection, 05.11.2015 11:45, SYSTEM, KARSTI, Protection, Malware Protection, Starting,
Protection, 05.11.2015 11:45, SYSTEM, KARSTI, Protection, Malware Protection, Started,
Protection, 05.11.2015 11:45, SYSTEM, KARSTI, Protection, Malicious Website Protection, Starting,
Protection, 05.11.2015 11:45, SYSTEM, KARSTI, Protection, Malicious Website Protection, Started,
Protection, 05.11.2015 11:55, SYSTEM, KARSTI, Protection, Malware Protection, Starting,
Protection, 05.11.2015 11:55, SYSTEM, KARSTI, Protection, Malware Protection, Started,
Protection, 05.11.2015 11:55, SYSTEM, KARSTI, Protection, Malicious Website Protection, Starting,
Protection, 05.11.2015 11:55, SYSTEM, KARSTI, Protection, Malicious Website Protection, Started,

(end)
und der Scan:

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 05.11.2015
Suchlaufzeit: 11:23
Protokolldatei: Scan MBAM.txt
Administrator: Ja

Version: 2.2.0.1024
Malware-Datenbank: v2015.11.05.02
Rootkit-Datenbank: v2015.11.04.02
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: Karsten

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 322364
Abgelaufene Zeit: 3 Min., 35 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 11
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe, 8420, Löschen bei Neustart, [590dc9b19af1c96d8dd76cd604fdd927]
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\10\Plugin.exe, 3140, Löschen bei Neustart, [1d490377216a0135640044fe738e946c]
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\8\Plugin.exe, 7540, Löschen bei Neustart, [72f497e32863ec4af66e162c5fa201ff]
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe, 5068, Löschen bei Neustart, [2c3a87f3701b31059aca330f99686c94]
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe, 11508, Löschen bei Neustart, [2c3a87f3701b31059aca330f99686c94]
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\2\Plugin.exe, 1368, Löschen bei Neustart, [6105097153383bfb1f4584bed22f916f]
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\6\Plugin.exe, 8008, Löschen bei Neustart, [a6c086f44f3c3df90d57fc460ef30bf5]
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe, 4836, Löschen bei Neustart, [c89ecbaf95f691a50e5644fee918ff01]
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe, 5016, Löschen bei Neustart, [c89ecbaf95f691a50e5644fee918ff01]
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\5\Plugin.exe, 2892, Löschen bei Neustart, [83e34c2ea8e359dd76eeee5437ca6799]
PUP.Optional.Yontoo, C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe, 7656, Löschen bei Neustart, [55115c1e018a83b3550ffc4657aa837d]

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 9
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Service Mgr ResultsHub, In Quarantäne, [590dc9b19af1c96d8dd76cd604fdd927],
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Mgr ResultsHub, In Quarantäne, [55115c1e018a83b3550ffc4657aa837d],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{99415057-7C50-439D-AA20-02D83C071B61}, In Quarantäne, [b6b0a6d42368ea4cf3d6f80c7f839967],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{99415057-7C50-439D-AA20-02D83C071B61}, In Quarantäne, [b6b0a6d42368ea4cf3d6f80c7f839967],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}, In Quarantäne, [73f3cfabf497aa8ce6e41de724de24dc],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}, In Quarantäne, [73f3cfabf497aa8ce6e41de724de24dc],
PUP.Optional.Yontoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, In Quarantäne, [cd99502a4249c373f8039ffd5ba87789],
PUP.Optional.BDYahoo, HKU\S-1-5-21-2978658392-3849539983-600884974-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{38AAF493-3C2D-45DB-ACDC-50B82EE45D64}, In Quarantäne, [ea7c176313787bbb81ae97be0003fc04],
PUP.Optional.Yontoo, HKU\S-1-5-21-2978658392-3849539983-600884974-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, In Quarantäne, [fe682456ddaefb3bb9415d3fed16748c],

Registrierungswerte: 7
PUP.Optional.Yontoo.ChrPRST, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DoNotAskAgain, searchinterneat-a.akamaihd.net, In Quarantäne, [c5a1fb7f1e6dae8865a2039c61a2c838]
PUP.Optional.Yontoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQoJAwBBEQFAbVxZWQ9cFQZHcBRaUltCDAZGcVhZWQBDEA1HIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}, In Quarantäne, [cd99502a4249c373f8039ffd5ba87789]
PUP.Optional.PluginContainer, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Service Mgr ResultsHub|ImagePath, "C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe", In Quarantäne, [4c1a88f24942290d7732c9b463a00000]
PUP.Optional.Updater, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Mgr ResultsHub|ImagePath, "C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe", In Quarantäne, [fe681367e0ab3ff7e418385756adca36]
PUP.Optional.Yontoo.ChrPRST, HKU\S-1-5-21-2978658392-3849539983-600884974-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DoNotAskAgain, searchinterneat-a.akamaihd.net, In Quarantäne, [580e9fdb1b7062d4ba77633b699ab050]
PUP.Optional.BDYahoo, HKU\S-1-5-21-2978658392-3849539983-600884974-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{38AAF493-3C2D-45DB-ACDC-50B82EE45D64}|URL, hxxp://search.yahoo.com/yhs/search?hspart=ddc&hsimp=yhs-ddc_bd&type=bl-bir-dd__alt__ddc_dss_bd_com&p={searchTerms}, In Quarantäne, [ea7c176313787bbb81ae97be0003fc04]
PUP.Optional.Yontoo, HKU\S-1-5-21-2978658392-3849539983-600884974-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQoJAwBBEQFAbVxZWQ9cFQZHcBRaUltCDAZGcVhZWQBDEA1HIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}, In Quarantäne, [fe682456ddaefb3bb9415d3fed16748c]

Registrierungsdaten: 2
PUP.Optional.Yontoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB, Gut: (www.google.com), Schlecht: (hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB),Ersetzt,[3f271d5de9a2c86e1de873d336ce7090]
PUP.Optional.Yontoo, HKU\S-1-5-21-2978658392-3849539983-600884974-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB, Gut: (www.google.com), Schlecht: (hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB),Ersetzt,[c6a0f08ad6b555e18882390d6a9a649c]

Ordner: 13
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656, Löschen bei Neustart, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer, In Quarantäne, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins, Löschen bei Neustart, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\10, Löschen bei Neustart, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\2, Löschen bei Neustart, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3, Löschen bei Neustart, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\5, Löschen bei Neustart, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\6, Löschen bei Neustart, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7, Löschen bei Neustart, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\resources, In Quarantäne, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\8, Löschen bei Neustart, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.ResultsHub, C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656, Löschen bei Neustart, [f96d1664cebd72c43a744a2138ca41bf],
PUP.Optional.ResultsHub, C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater, In Quarantäne, [f96d1664cebd72c43a744a2138ca41bf],

Dateien: 12
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe, Löschen bei Neustart, [590dc9b19af1c96d8dd76cd604fdd927],
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\10\Plugin.exe, Löschen bei Neustart, [1d490377216a0135640044fe738e946c],
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\8\Plugin.exe, Löschen bei Neustart, [72f497e32863ec4af66e162c5fa201ff],
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe, Löschen bei Neustart, [2c3a87f3701b31059aca330f99686c94],
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\2\Plugin.exe, Löschen bei Neustart, [6105097153383bfb1f4584bed22f916f],
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\6\Plugin.exe, Löschen bei Neustart, [a6c086f44f3c3df90d57fc460ef30bf5],
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe, Löschen bei Neustart, [c89ecbaf95f691a50e5644fee918ff01],
PUP.Optional.Yontoo, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\5\Plugin.exe, Löschen bei Neustart, [83e34c2ea8e359dd76eeee5437ca6799],
PUP.Optional.Yontoo, C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe, Löschen bei Neustart, [55115c1e018a83b3550ffc4657aa837d],
PUP.Optional.Yontoo, C:\ods.exe, In Quarantäne, [fd6916640a810531273d6ed4a45d1be5],
PUP.Optional.ResultsHub, C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\temp, In Quarantäne, [095df288bad15adc86279ccf0002c63a],
PUP.Optional.Yontoo, C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences, Gut: ("session":{"restore_on_startup":4,"startup_urls":["https://www.malwarebytes.org/restorebrowser/"]}}), Schlecht: ("session":{"restore_on_startup":4,"restore_on_startup_migrated":true,"startup_urls":["hxxp://google.de/"],"urls_to_restore_on_startup":["hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"]},"sync":{"remaining_rollback_tries":0}}), Ersetzt,[4a1c017923681521d981551bcf35ea16]

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

dann noch Adw Cleaner:

Code:
# AdwCleaner v5.016 - Bericht erstellt am 05/11/2015 um 11:44:21
# Aktualisiert am 01/11/2015 von Xplode
# Datenbank : 2015-11-03.2 [Server]
# Betriebssystem : Windows 8.1  (x64)
# Benutzername : Karsten - KARSTI
# Gestartet von : C:\Users\Karsten\Desktop\AdwCleaner_5.016.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****


***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\Program Files (x86)\Results Hub
[-] Ordner Gelöscht : C:\ProgramData\Results Hub
[-] Ordner Gelöscht : C:\Users\Karsten\AppData\Roaming\RPEng

***** [ Dateien ] *****


***** [ DLLs ] *****


***** [ Verknüpfungen ] *****


***** [ Geplante Tasks ] *****


***** [ Registrierungsdatenbank ] *****

[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Installer

***** [ Internetbrowser ] *****

[-] [C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : searchinterneat-a.akamaihd.net
[-] [C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Gelöscht : hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB
[-] [C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Gelöscht : fmlgoencnlndpglbocajlimaikjohmab

*************************

:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Chrome Richtlinien gelöscht

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1561 Bytes] ##########
und noch JRT:

Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.4 (09.28.2015:1)
OS: Windows 8.1 x64
Ran by Karsten on 05.11.2015 at 11:48:16,31
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully deleted: [Service] 0127531427311436mcinstcleanup [Reboot required]



~~~ Tasks



~~~ Registry Values



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] C:\Users\Karsten\AppData\Roaming\sp_data.sys



~~~ Folders



~~~ Chrome


[C:\Users\Karsten\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\Karsten\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\Karsten\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\Karsten\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[
  fmlgoencnlndpglbocajlimaikjohmab
]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 05.11.2015 at 11:49:56,69
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
und als letztes der neue FRST log:

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-10-2015
durchgeführt von Karsten (Administrator) auf KARSTI (05-11-2015 11:51:27)
Gestartet von C:\Users\Karsten\Desktop
Geladene Profile: Karsten (Verfügbare Profile: Karsten)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3216032 2013-12-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [179976 2013-09-10] (cyberlink)
HKLM-x32\...\Run: [ASUS InstantKey] => C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [13936 2014-01-20] (ASUS)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM-x32\...\Run: [LauncherC1765nf] => C:\Program Files (x86)\Dell Printers\Printer SSW\Launcher\dlm1launcher.exe [2471928 2013-08-13] (Dell Inc.)
HKLM-x32\...\Run: [StatusAutoRunC1765nf] => C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1pl.exe [3846856 2014-07-23] (Dell Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDFViewer\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [DLDPHSTS] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSTS.exe [32768 2015-09-10] (Dell Inc.)
HKLM-x32\...\Run: [DLDPHCM] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHCM.exe [610816 2015-09-10] (Dell Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [18248 2013-05-29] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [36168 2013-05-29] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2068856 2011-10-12] (Flexera Software LLC.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2978658392-3849539983-600884974-1002\...\Run: [84B3173D6E287946C6B27EA653492ABDA603F8CD._service_run] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-10-20] (Google Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 185.27.121.36 185.27.120.43
Tcpip\..\Interfaces\{64972B4D-73C7-4E60-8989-5133E3878D81}: [DhcpNameServer] 185.27.121.36 185.27.120.43

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-2978658392-3849539983-600884974-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2978658392-3849539983-600884974-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2978658392-3849539983-600884974-1002 -> OldSearch URL =
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDFViewer\Bin\PlusIEContextMenu.dll [2011-06-30] (Zeon Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll Keine Datei
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll Keine Datei

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-13] (Google Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDFViewer\bin\nppdf.dll [2011-07-15] (Zeon Corporation)
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-10-13] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-10-13] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-10-13] [ist nicht signiert]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR RestoreOnStartup: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR StartupUrls: Default -> "hxxp://google.de/","hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR Profile: C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-13]
CHR Extension: (Google-Suche) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Kaspersky Protection) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-10-13]
CHR Extension: (Google Docs Offline) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-13]
CHR Extension: (AdBlock) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-10-13]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-13]
CHR Extension: (Google Mail) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-13]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 ASUS FaceID Service; C:\Program Files\ASUS\ASUS FaceID\HWFaceKeyService.exe [261648 2013-10-24] (Hanwang Technology Co.,Ltd. )
S2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS)
R3 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-07-09] (Kaspersky Lab ZAO)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [243464 2013-09-10] (CyberLink)
S2 DLDPHSUP; C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSUP.exe [17408 2015-09-10] (Dell Inc.) [Datei ist nicht signiert]
S2 DLNBDB; C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe [243912 2014-07-23] ()
S2 DLNCDB; C:\Program Files (x86)\Dell Printers\Printer SSW2\Status Monitor\dlp4db.exe [277360 2015-02-09] (Dell Inc.)
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
S2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [129992 2014-01-19] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-11-20] ()
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2013-11-20] (Intel® Corporation)
S2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [70928 2014-02-13] (ASUS Corporation)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-11-07] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1411384 2013-11-07] (Motorola Solutions, Inc.)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-07-09] (Kaspersky Lab UK Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [149448 2013-11-23] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-07-09] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [64368 2015-07-09] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [159960 2015-07-09] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [226480 2015-07-09] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [817848 2015-10-14] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39792 2015-07-09] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [40304 2015-07-09] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [39792 2015-07-09] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-07-09] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [77680 2015-07-09] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [85360 2015-07-09] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [190648 2015-10-14] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-05] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3609568 2013-12-25] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44024 2015-02-04] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [264000 2015-02-04] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-05 11:51 - 2015-11-05 11:51 - 00020480 _____ C:\Users\Karsten\Desktop\FRST.txt
2015-11-05 11:49 - 2015-11-05 11:50 - 00001260 _____ C:\Users\Karsten\Desktop\JRT.txt
2015-11-05 11:47 - 2015-11-05 11:47 - 01798976 _____ (Malwarebytes) C:\Users\Karsten\Desktop\JRT.exe
2015-11-05 11:46 - 2015-11-05 11:46 - 00001640 _____ C:\Users\Karsten\Desktop\AdwCleaner[C1].txt
2015-11-05 11:41 - 2015-11-05 11:41 - 01708032 _____ C:\Users\Karsten\Desktop\AdwCleaner_5.016.exe
2015-11-05 11:39 - 2015-11-05 11:44 - 00000000 ____D C:\AdwCleaner
2015-11-05 11:23 - 2015-11-05 11:45 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-05 11:23 - 2015-11-05 11:23 - 00001123 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-05 11:23 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-11-05 11:23 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-11-05 11:23 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-11-05 11:22 - 2015-11-05 11:22 - 22908888 _____ (Malwarebytes ) C:\Users\Karsten\Downloads\mbam-setup-2.2.0.1024.exe
2015-11-05 11:18 - 2015-11-05 11:18 - 00001289 _____ C:\Users\Karsten\Desktop\Revo Uninstaller.lnk
2015-11-05 11:18 - 2015-11-05 11:18 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-11-05 11:17 - 2015-11-05 11:17 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Karsten\Desktop\revosetup95.exe
2015-11-02 20:05 - 2015-11-05 11:51 - 00000000 ____D C:\FRST
2015-11-01 14:25 - 2015-11-01 14:25 - 02198016 _____ (Farbar) C:\Users\Karsten\Desktop\FRST64.exe
2015-10-29 21:08 - 2015-07-05 11:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-10-29 20:37 - 2015-08-03 22:15 - 00074928 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-29 20:37 - 2015-08-03 22:15 - 00065600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-10-29 20:37 - 2015-08-01 15:22 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-29 20:37 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tzsync.exe
2015-10-29 20:37 - 2015-07-10 19:19 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-10-29 20:37 - 2015-07-10 18:14 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-10-29 20:37 - 2015-07-10 18:13 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-10-29 20:37 - 2015-07-10 17:31 - 06213120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-10-29 20:37 - 2014-10-29 03:46 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-29 20:37 - 2014-10-29 03:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-29 20:37 - 2014-10-29 03:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-29 20:37 - 2014-10-29 03:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-10-29 20:37 - 2014-10-29 02:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-29 20:36 - 2015-05-03 16:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-10-29 20:36 - 2015-05-03 15:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-10-14 18:55 - 2015-10-14 18:55 - 00001037 _____ C:\Users\Karsten\Desktop\PH 12 - Verknüpfung.lnk
2015-10-13 13:50 - 2015-10-13 13:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-13 13:49 - 2015-11-05 11:45 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-13 13:49 - 2015-11-03 21:54 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-13 13:49 - 2015-10-13 13:49 - 00004098 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-10-13 13:49 - 2015-10-13 13:49 - 00003862 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-10-13 13:22 - 2015-10-13 13:22 - 00002165 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2015-10-13 13:22 - 2015-10-13 13:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2015-10-13 13:22 - 2013-05-06 07:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2015-10-13 13:21 - 2015-10-13 13:21 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2015-10-13 13:20 - 2015-10-14 18:42 - 00817848 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2015-10-13 13:20 - 2015-07-09 18:11 - 00226480 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klhk.sys
2015-10-13 13:20 - 2015-07-09 18:11 - 00159960 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2015-10-10 11:37 - 2015-10-10 11:37 - 00929872 _____ (Google Inc.) C:\Users\Karsten\Downloads\ChromeSetup.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-05 11:50 - 2015-03-22 20:03 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2978658392-3849539983-600884974-1002
2015-11-05 11:50 - 2013-12-13 12:04 - 00765582 _____ C:\Windows\system32\perfh007.dat
2015-11-05 11:50 - 2013-12-13 12:04 - 00159366 _____ C:\Windows\system32\perfc007.dat
2015-11-05 11:50 - 2013-12-13 05:09 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-05 11:48 - 2015-07-17 14:06 - 00000000 ____D C:\Users\Karsten\AppData\Local\Dell Printer Hub
2015-11-05 11:46 - 2015-03-26 20:39 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-11-05 11:45 - 2013-12-13 04:57 - 00221592 _____ C:\Windows\PFRO.log
2015-11-05 11:45 - 2013-08-22 15:46 - 00030732 _____ C:\Windows\setupact.log
2015-11-05 11:45 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-05 11:18 - 2014-06-20 18:33 - 01173115 _____ C:\Windows\WindowsUpdate.log
2015-11-05 11:10 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sru
2015-11-05 11:01 - 2015-03-22 20:07 - 00003930 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{06957B63-8A92-4FAD-B716-A205A87C1587}
2015-11-02 20:41 - 2015-03-25 19:51 - 00000000 ____D C:\Users\Karsten\AppData\Roaming\ClassicShell
2015-10-29 22:01 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache
2015-10-29 21:47 - 2013-08-22 16:37 - 00003223 _____ C:\Windows\DtcInstall.log
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-29 21:46 - 2013-08-22 21:59 - 00000000 ____D C:\Program Files\Windows Journal
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\WinStore
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\sppui
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\setup
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\setup
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Com
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\MediaViewer
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\IME
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\WindowsPowerShell
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Portable Devices
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-10-29 21:46 - 2013-08-22 15:44 - 00484280 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Sysprep
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\oobe
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\servicing
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ___SD C:\Windows\system32\dsc
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sppui
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\migwiz
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\FileManager
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Camera
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2015-10-29 21:45 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Dism
2015-10-29 21:34 - 2013-08-22 16:36 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-10-29 21:34 - 2013-08-22 16:36 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2015-10-29 21:32 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-10-29 21:32 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-10-29 21:26 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2015-10-29 20:54 - 2015-03-26 21:04 - 00000000 ____D C:\Windows\system32\MRT
2015-10-29 20:21 - 2015-06-13 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Printers
2015-10-29 20:20 - 2014-06-20 18:26 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-10-25 14:27 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2015-10-14 18:55 - 2015-03-25 20:41 - 00141312 ___SH C:\Users\Karsten\Desktop\Thumbs.db
2015-10-14 18:53 - 2015-06-22 18:56 - 00000000 ____D C:\Users\Karsten\Downloads\Bilder
2015-10-14 18:42 - 2015-07-09 18:11 - 00190648 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2015-10-14 18:37 - 2015-04-09 19:21 - 00565760 ___SH C:\Users\Karsten\Downloads\Thumbs.db
2015-10-13 13:50 - 2015-03-22 20:10 - 00000000 ____D C:\Program Files (x86)\Google
2015-10-13 13:50 - 2015-03-22 20:09 - 00000000 ____D C:\Users\Karsten\AppData\Local\Google
2015-10-13 13:21 - 2013-08-22 16:36 - 00000000 ___HD C:\Windows\ELAMBKUP

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-06-20 18:29 - 2014-06-20 18:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-12-13 05:09 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-12-13 05:09 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-12-13 05:09 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

Einige Dateien in TEMP:
====================
C:\Users\Karsten\AppData\Local\Temp\autorun.dll
C:\Users\Karsten\AppData\Local\Temp\dlm1AnotherRegister.exe
C:\Users\Karsten\AppData\Local\Temp\dlp4AnotherRegister.exe
C:\Users\Karsten\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-10-29 21:43

==================== Ende von FRST.txt ============================
Ich hoffe das alles funktioniert hat. Wenn nicht versuche ich es noch mal.

Danke

schrauber 05.11.2015 21:49

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

opecgreen 06.11.2015 12:38
Danke,

hier schon mal die txt von Eset:

Code:
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=e5484c0fc1aa7a4a996b25348f4590cb
# end=init
# utc_time=2015-11-06 10:03:09
# local_time=2015-11-06 11:03:09 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 26596
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=e5484c0fc1aa7a4a996b25348f4590cb
# end=updated
# utc_time=2015-11-06 10:06:47
# local_time=2015-11-06 11:06:47 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=e5484c0fc1aa7a4a996b25348f4590cb
# engine=26596
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-11-06 10:19:11
# local_time=2015-11-06 11:19:11 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='Kaspersky Internet Security'
# compatibility_mode=1302 16777213 100 100 82594 74383981 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 653586 23887543 0 0
# scanned=45345
# found=0
# cleaned=0
# scan_time=743
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=e5484c0fc1aa7a4a996b25348f4590cb
# end=init
# utc_time=2015-11-06 10:19:36
# local_time=2015-11-06 11:19:36 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
esets_scanner_update returned -1 esets_gle=53251
Update Finalize
Updated modules version: 26596
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=e5484c0fc1aa7a4a996b25348f4590cb
# end=updated
# utc_time=2015-11-06 10:20:17
# local_time=2015-11-06 11:20:17 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=e5484c0fc1aa7a4a996b25348f4590cb
# engine=26596
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-11-06 11:06:28
# local_time=2015-11-06 12:06:28 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='Kaspersky Internet Security'
# compatibility_mode=1302 16777213 100 100 89031 74386818 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 660023 23890380 0 0
# scanned=232294
# found=3
# cleaned=0
# scan_time=2770
sh=47B19AB97028D8925579BED54EFEE88C8107D6B6 ft=1 fh=34f71966959b3eb8 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Karsten\AppData\Local\Temp\DMR\dmr_72.exe"
sh=E8E98317C288613EF9EFDA6CF0C79B0C31401E22 ft=1 fh=010a7a71a4ca018b vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Karsten\Downloads\Classic Shell.exe"
sh=E8E98317C288613EF9EFDA6CF0C79B0C31401E22 ft=1 fh=010a7a71a4ca018b vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="D:\safe\Downloads\Classic Shell.exe"

ESET gelöscht und Papierkorb ist auch leer.

Das Ergebnis von Security Check:

Code:
Results of screen317's Security Check version 1.009 
  x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````
Windows Defender             
Kaspersky Internet Security 
 Antivirus up to date! 
`````````Anti-malware/Other Utilities Check:`````````
 Google Chrome (46.0.2490.71)
 Google Chrome (46.0.2490.80)
````````Process Check: objlist.exe by Laurent```````` 
 Malwarebytes Anti-Malware mbamservice.exe 
 Malwarebytes Anti-Malware mbam.exe 
 Malwarebytes Anti-Malware mbamscheduler.exe 
 Kaspersky Lab Kaspersky Internet Security 15.0.2 avp.exe 
 Kaspersky Lab Kaspersky Internet Security 15.0.2 avpui.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````

und die aktuelle FRST:

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-11-2015
durchgeführt von Karsten (Administrator) auf KARSTI (06-11-2015 12:18:51)
Gestartet von C:\Users\Karsten\Desktop
Geladene Profile: Karsten (Verfügbare Profile: Karsten)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Hanwang Technology Co.,Ltd. ) C:\Program Files\ASUS\ASUS FaceID\HWFaceKeyService.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSUP.exe
() C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Printer SSW2\Status Monitor\dlp4db.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
konnte nicht auf den Prozess zugreifen -> LogonUI.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
() C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDFViewer\PdfPro7Hook.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSTS.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHCM.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUS) C:\Program Files\ASUS\ASUS GPU Tweak\GPUTweak.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3216032 2013-12-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [179976 2013-09-10] (cyberlink)
HKLM-x32\...\Run: [ASUS InstantKey] => C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [13936 2014-01-20] (ASUS)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM-x32\...\Run: [LauncherC1765nf] => C:\Program Files (x86)\Dell Printers\Printer SSW\Launcher\dlm1launcher.exe [2471928 2013-08-13] (Dell Inc.)
HKLM-x32\...\Run: [StatusAutoRunC1765nf] => C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1pl.exe [3846856 2014-07-23] (Dell Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDFViewer\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [DLDPHSTS] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSTS.exe [32768 2015-09-10] (Dell Inc.)
HKLM-x32\...\Run: [DLDPHCM] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHCM.exe [610816 2015-09-10] (Dell Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [18248 2013-05-29] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [36168 2013-05-29] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2068856 2011-10-12] (Flexera Software LLC.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2978658392-3849539983-600884974-1002\...\Run: [84B3173D6E287946C6B27EA653492ABDA603F8CD._service_run] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-10-20] (Google Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 185.27.121.36 185.27.120.43
Tcpip\..\Interfaces\{64972B4D-73C7-4E60-8989-5133E3878D81}: [DhcpNameServer] 185.27.121.36 185.27.120.43

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-2978658392-3849539983-600884974-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2978658392-3849539983-600884974-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2978658392-3849539983-600884974-1002 -> OldSearch URL =
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDFViewer\Bin\PlusIEContextMenu.dll [2011-06-30] (Zeon Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll Keine Datei
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll Keine Datei

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-13] (Google Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDFViewer\bin\nppdf.dll [2011-07-15] (Zeon Corporation)
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-10-13] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-10-13] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-10-13] [ist nicht signiert]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR RestoreOnStartup: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR StartupUrls: Default -> "hxxp://google.de/","hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR Profile: C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-13]
CHR Extension: (Google-Suche) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Kaspersky Protection) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-10-13]
CHR Extension: (Google Docs Offline) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-13]
CHR Extension: (AdBlock) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-10-13]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-13]
CHR Extension: (Google Mail) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-13]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 ASUS FaceID Service; C:\Program Files\ASUS\ASUS FaceID\HWFaceKeyService.exe [261648 2013-10-24] (Hanwang Technology Co.,Ltd. )
R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS)
R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-07-09] (Kaspersky Lab ZAO)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [243464 2013-09-10] (CyberLink)
R2 DLDPHSUP; C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSUP.exe [17408 2015-09-10] (Dell Inc.) [Datei ist nicht signiert]
R2 DLNBDB; C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe [243912 2014-07-23] ()
R2 DLNCDB; C:\Program Files (x86)\Dell Printers\Printer SSW2\Status Monitor\dlp4db.exe [277360 2015-02-09] (Dell Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [129992 2014-01-19] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-11-20] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2013-11-20] (Intel® Corporation)
S2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [70928 2014-02-13] (ASUS Corporation)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-11-07] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1411384 2013-11-07] (Motorola Solutions, Inc.)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-07-09] (Kaspersky Lab UK Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [149448 2013-11-23] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-07-09] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [64368 2015-07-09] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [159960 2015-07-09] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [226480 2015-07-09] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [817848 2015-10-14] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39792 2015-07-09] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [40304 2015-07-09] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [39792 2015-07-09] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-07-09] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [77680 2015-07-09] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [85360 2015-07-09] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [190648 2015-10-14] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-06] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3609568 2013-12-25] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44024 2015-02-04] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [264000 2015-02-04] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-06 12:18 - 2015-11-06 12:18 - 02198528 _____ (Farbar) C:\Users\Karsten\Desktop\FRST64.exe
2015-11-06 12:17 - 2015-11-06 12:18 - 00025407 _____ C:\Users\Karsten\Desktop\FRST.txt
2015-11-06 12:17 - 2015-11-06 12:17 - 00030970 _____ C:\Users\Karsten\Desktop\Addition.txt
2015-11-06 12:17 - 2015-11-06 12:17 - 00000000 ____D C:\Users\Karsten\Desktop\FRST-OlderVersion
2015-11-06 12:15 - 2015-11-06 12:15 - 00852720 _____ C:\Users\Karsten\Desktop\SecurityCheck.exe
2015-11-06 11:14 - 2015-11-06 11:14 - 00002058 _____ C:\Users\Karsten\Desktop\Male Weare.txt
2015-11-06 11:02 - 2015-11-06 11:02 - 02870984 _____ (ESET) C:\Users\Karsten\Desktop\esetsmartinstaller_deu.exe
2015-11-05 12:14 - 2015-11-06 11:02 - 00000074 _____ C:\Users\Karsten\AppData\Roaming\sp_data.sys
2015-11-05 11:56 - 2015-11-05 11:56 - 00011243 _____ C:\MBAM Scan.txt
2015-11-05 11:47 - 2015-11-05 11:47 - 01798976 _____ (Malwarebytes) C:\Users\Karsten\Desktop\JRT.exe
2015-11-05 11:46 - 2015-11-05 11:46 - 00001640 _____ C:\Users\Karsten\Desktop\AdwCleaner[C1].txt
2015-11-05 11:41 - 2015-11-05 11:41 - 01708032 _____ C:\Users\Karsten\Desktop\AdwCleaner_5.016.exe
2015-11-05 11:39 - 2015-11-05 11:44 - 00000000 ____D C:\AdwCleaner
2015-11-05 11:23 - 2015-11-06 11:02 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-05 11:23 - 2015-11-05 11:23 - 00001123 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-05 11:23 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-11-05 11:23 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-11-05 11:23 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-11-05 11:22 - 2015-11-05 11:22 - 22908888 _____ (Malwarebytes ) C:\Users\Karsten\Downloads\mbam-setup-2.2.0.1024.exe
2015-11-05 11:18 - 2015-11-05 11:18 - 00001289 _____ C:\Users\Karsten\Desktop\Revo Uninstaller.lnk
2015-11-05 11:18 - 2015-11-05 11:18 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-11-05 11:17 - 2015-11-05 11:17 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Karsten\Desktop\revosetup95.exe
2015-11-02 20:05 - 2015-11-06 12:18 - 00000000 ____D C:\FRST
2015-10-29 21:08 - 2015-07-05 11:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-10-29 20:37 - 2015-08-03 22:15 - 00074928 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-29 20:37 - 2015-08-03 22:15 - 00065600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-10-29 20:37 - 2015-08-01 15:22 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-29 20:37 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tzsync.exe
2015-10-29 20:37 - 2015-07-10 19:19 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-10-29 20:37 - 2015-07-10 18:14 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-10-29 20:37 - 2015-07-10 18:13 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-10-29 20:37 - 2015-07-10 17:31 - 06213120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-10-29 20:37 - 2014-10-29 03:46 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-29 20:37 - 2014-10-29 03:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-29 20:37 - 2014-10-29 03:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-29 20:37 - 2014-10-29 03:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-10-29 20:37 - 2014-10-29 02:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-29 20:36 - 2015-05-03 16:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-10-29 20:36 - 2015-05-03 15:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-10-14 18:55 - 2015-10-14 18:55 - 00001037 _____ C:\Users\Karsten\Desktop\PH 12 - Verknüpfung.lnk
2015-10-13 13:50 - 2015-10-13 13:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-13 13:49 - 2015-11-06 11:54 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-13 13:49 - 2015-11-06 11:01 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-13 13:49 - 2015-10-13 13:49 - 00004098 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-10-13 13:49 - 2015-10-13 13:49 - 00003862 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-10-13 13:22 - 2015-10-13 13:22 - 00002165 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2015-10-13 13:22 - 2015-10-13 13:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2015-10-13 13:22 - 2013-05-06 07:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2015-10-13 13:21 - 2015-10-13 13:21 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2015-10-13 13:20 - 2015-10-14 18:42 - 00817848 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2015-10-13 13:20 - 2015-07-09 18:11 - 00226480 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klhk.sys
2015-10-13 13:20 - 2015-07-09 18:11 - 00159960 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2015-10-10 11:37 - 2015-10-10 11:37 - 00929872 _____ (Google Inc.) C:\Users\Karsten\Downloads\ChromeSetup.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-06 12:18 - 2015-07-17 14:06 - 00000000 ____D C:\Users\Karsten\AppData\Local\Dell Printer Hub
2015-11-06 12:15 - 2015-03-25 20:41 - 00136704 ___SH C:\Users\Karsten\Desktop\Thumbs.db
2015-11-06 12:05 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sru
2015-11-06 11:21 - 2014-06-20 18:33 - 01215177 _____ C:\Windows\WindowsUpdate.log
2015-11-06 11:12 - 2015-03-22 20:03 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2978658392-3849539983-600884974-1002
2015-11-06 11:04 - 2015-03-22 20:07 - 00003930 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{06957B63-8A92-4FAD-B716-A205A87C1587}
2015-11-06 11:01 - 2015-03-26 20:39 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-11-05 12:26 - 2013-12-13 12:04 - 00765582 _____ C:\Windows\system32\perfh007.dat
2015-11-05 12:26 - 2013-12-13 12:04 - 00159366 _____ C:\Windows\system32\perfc007.dat
2015-11-05 12:26 - 2013-12-13 05:09 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-05 12:22 - 2013-08-22 15:46 - 00031080 _____ C:\Windows\setupact.log
2015-11-05 12:22 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-05 12:20 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-11-05 11:45 - 2013-12-13 04:57 - 00221592 _____ C:\Windows\PFRO.log
2015-11-02 20:41 - 2015-03-25 19:51 - 00000000 ____D C:\Users\Karsten\AppData\Roaming\ClassicShell
2015-10-29 22:01 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache
2015-10-29 21:47 - 2013-08-22 16:37 - 00003223 _____ C:\Windows\DtcInstall.log
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-29 21:46 - 2013-08-22 21:59 - 00000000 ____D C:\Program Files\Windows Journal
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\WinStore
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\sppui
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\setup
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\setup
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Com
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\MediaViewer
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\IME
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\WindowsPowerShell
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Portable Devices
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-10-29 21:46 - 2013-08-22 15:44 - 00484280 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Sysprep
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\oobe
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\servicing
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ___SD C:\Windows\system32\dsc
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sppui
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\migwiz
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\FileManager
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Camera
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2015-10-29 21:45 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Dism
2015-10-29 21:34 - 2013-08-22 16:36 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-10-29 21:34 - 2013-08-22 16:36 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2015-10-29 21:32 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-10-29 21:26 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2015-10-29 20:54 - 2015-03-26 21:04 - 00000000 ____D C:\Windows\system32\MRT
2015-10-29 20:21 - 2015-06-13 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Printers
2015-10-29 20:20 - 2014-06-20 18:26 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-10-25 14:27 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2015-10-14 18:53 - 2015-06-22 18:56 - 00000000 ____D C:\Users\Karsten\Downloads\Bilder
2015-10-14 18:42 - 2015-07-09 18:11 - 00190648 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2015-10-14 18:37 - 2015-04-09 19:21 - 00565760 ___SH C:\Users\Karsten\Downloads\Thumbs.db
2015-10-13 13:50 - 2015-03-22 20:10 - 00000000 ____D C:\Program Files (x86)\Google
2015-10-13 13:50 - 2015-03-22 20:09 - 00000000 ____D C:\Users\Karsten\AppData\Local\Google
2015-10-13 13:21 - 2013-08-22 16:36 - 00000000 ___HD C:\Windows\ELAMBKUP

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-11-05 12:14 - 2015-11-06 11:02 - 0000074 _____ () C:\Users\Karsten\AppData\Roaming\sp_data.sys
2014-06-20 18:29 - 2014-06-20 18:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-12-13 05:09 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-12-13 05:09 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-12-13 05:09 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

Einige Dateien in TEMP:
====================
C:\Users\Karsten\AppData\Local\Temp\autorun.dll
C:\Users\Karsten\AppData\Local\Temp\dlm1AnotherRegister.exe
C:\Users\Karsten\AppData\Local\Temp\dlp4AnotherRegister.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-10-29 21:43

==================== Ende von FRST.txt ============================
Die Malware hat mir gerade drei Bedrohungen gemeldet.
Anbei mal die txt des Scans:

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 06.11.2015
Suchlaufzeit: 11:02
Protokolldatei: txt scan mw.txt
Administrator: Ja

Version: 2.2.0.1024
Malware-Datenbank: v2015.11.06.02
Rootkit-Datenbank: v2015.11.04.02
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: Karsten

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 322568
Abgelaufene Zeit: 7 Min., 57 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 1
PUP.Optional.ResultsHub, HKLM\SOFTWARE\WOW6432NODE\RESULTSHUB, , [b218bac04843ee481838691ab25150b0],

Registrierungswerte: 1
PUP.Optional.ResultsHub, HKLM\SOFTWARE\WOW6432NODE\RESULTSHUB|cg, 31b9004c-ea86-43d0-b3b3-3e1aa89218db, , [b218bac04843ee481838691ab25150b0]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 1
PUP.Optional.Yontoo, C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences, Gut: ("session":{"restore_on_startup":4,"startup_urls":["https://www.malwarebytes.org/restorebrowser/"]}}), Schlecht: ("session":{"restore_on_startup":4,"restore_on_startup_migrated":true,"startup_urls":["hxxp://google.de/","hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"],"urls_to_restore_on_startup":["hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"]},"sync":{"remaining_rollback_tries":0}}), ,[b01aa0dafb90b97d64efcaa87490dd23]

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

Yahoo kommt immer noch anstelle Google - auch wenn ich die Startseite ändere.

Noch irgendwelche Ideen bzw. Ratschläge?

Danke

schrauber 07.11.2015 12:58
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
C:\Users\Karsten\AppData\Local\Temp\DMR\dmr_72.exe

C:\Users\Karsten\Downloads\Classic Shell.exe

D:\safe\Downloads\Classic Shell.exe
2013-12-13 05:09 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-12-13 05:09 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-12-13 05:09 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS
CHR RestoreOnStartup: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR StartupUrls: Default -> "hxxp://google.de/","hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
Emptytemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.





Frisches FRST log bitte.

opecgreen 07.11.2015 19:01
Verstanden - sollte soweit geklappt haben.

hier die fixlog.txt:

Code:
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-11-2015
durchgeführt von Karsten (2015-11-07 18:59:36) Run:1
Gestartet von C:\Users\Karsten\Desktop
Geladene Profile: Karsten (Verfügbare Profile: Karsten)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
C:\Users\Karsten\AppData\Local\Temp\DMR\dmr_72.exe  C:\Users\Karsten\Downloads\Classic Shell.exe  D:\safe\Downloads\Classic Shell.exe 2013-12-13 05:09 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd 2013-12-13 05:09 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe 2013-12-13 05:09 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS CHR RestoreOnStartup: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB" CHR StartupUrls: Default -> "hxxp://google.de/","hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB" Emptytemp:
*****************


=========== "C:\Users\Karsten\AppData\Local\Temp\DMR\dmr_72.exe  C:\Users\Karsten\Downloads\Classic Shell.exe  D:\safe\Downloads\Classic Shell.exe 2013-12-13 05:09 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd 2013-12-13 05:09 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe 2013-12-13 05:09 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS CHR RestoreOnStartup: Default -> hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB" CHR StartupUrls: Default -> "hxxp://google.de/","hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB" Emptytemp:" ==========

nicht gefunden

========= Ende -> "C:\Users\Karsten\AppData\Local\Temp\DMR\dmr_72.exe  C:\Users\Karsten\Downloads\Classic Shell.exe  D:\safe\Downloads\Classic Shell.exe 2013-12-13 05:09 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd 2013-12-13 05:09 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe 2013-12-13 05:09 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS CHR RestoreOnStartup: Default -> hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB" CHR StartupUrls: Default -> "hxxp://google.de/","hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB" Emptytemp:" ========


==== Ende von Fixlog 18:59:37 ====

schrauber 08.11.2015 07:09
Das frische FRST Log? Besteht das Problem noch?

opecgreen 08.11.2015 19:35
Hallo Schrauber,

Problem besteht nach wie vor - die Suchmaschine ist Google, alle anderen gelöscht.
Aber Yahoo kommt beim Starten.

Anbei noch die aktuelle FRST:

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-11-2015
durchgeführt von Karsten (Administrator) auf KARSTI (08-11-2015 19:29:55)
Gestartet von C:\Users\Karsten\Desktop
Geladene Profile: Karsten (Verfügbare Profile: Karsten)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Hanwang Technology Co.,Ltd. ) C:\Program Files\ASUS\ASUS FaceID\HWFaceKeyService.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSUP.exe
() C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Printer SSW2\Status Monitor\dlp4db.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
() C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1pl.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDFViewer\PdfPro7Hook.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSTS.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHCM.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(ASUS) C:\Program Files\ASUS\ASUS GPU Tweak\GPUTweak.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3216032 2013-12-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [179976 2013-09-10] (cyberlink)
HKLM-x32\...\Run: [ASUS InstantKey] => C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [13936 2014-01-20] (ASUS)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM-x32\...\Run: [LauncherC1765nf] => C:\Program Files (x86)\Dell Printers\Printer SSW\Launcher\dlm1launcher.exe [2471928 2013-08-13] (Dell Inc.)
HKLM-x32\...\Run: [StatusAutoRunC1765nf] => C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1pl.exe [3846856 2014-07-23] (Dell Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDFViewer\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [DLDPHSTS] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSTS.exe [32768 2015-09-10] (Dell Inc.)
HKLM-x32\...\Run: [DLDPHCM] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHCM.exe [610816 2015-09-10] (Dell Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [18248 2013-05-29] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [36168 2013-05-29] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2068856 2011-10-12] (Flexera Software LLC.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2978658392-3849539983-600884974-1002\...\Run: [84B3173D6E287946C6B27EA653492ABDA603F8CD._service_run] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-10-20] (Google Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 185.27.121.36 185.27.120.43
Tcpip\..\Interfaces\{64972B4D-73C7-4E60-8989-5133E3878D81}: [DhcpNameServer] 185.27.121.36 185.27.120.43

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-2978658392-3849539983-600884974-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2978658392-3849539983-600884974-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2978658392-3849539983-600884974-1002 -> OldSearch URL =
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDFViewer\Bin\PlusIEContextMenu.dll [2011-06-30] (Zeon Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll Keine Datei
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll Keine Datei

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-13] (Google Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDFViewer\bin\nppdf.dll [2011-07-15] (Zeon Corporation)
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-10-13] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-10-13] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-10-13] [ist nicht signiert]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR RestoreOnStartup: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR StartupUrls: Default -> "hxxp://google.de/","hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR Profile: C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-13]
CHR Extension: (Google-Suche) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Kaspersky Protection) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-10-13]
CHR Extension: (Google Docs Offline) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-13]
CHR Extension: (AdBlock) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-10-13]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-13]
CHR Extension: (Google Mail) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-13]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 ASUS FaceID Service; C:\Program Files\ASUS\ASUS FaceID\HWFaceKeyService.exe [261648 2013-10-24] (Hanwang Technology Co.,Ltd. )
R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS)
R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-07-09] (Kaspersky Lab ZAO)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [243464 2013-09-10] (CyberLink)
R2 DLDPHSUP; C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSUP.exe [17408 2015-09-10] (Dell Inc.) [Datei ist nicht signiert]
R2 DLNBDB; C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe [243912 2014-07-23] ()
R2 DLNCDB; C:\Program Files (x86)\Dell Printers\Printer SSW2\Status Monitor\dlp4db.exe [277360 2015-02-09] (Dell Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [129992 2014-01-19] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-11-20] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2013-11-20] (Intel® Corporation)
S2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [70928 2014-02-13] (ASUS Corporation)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-11-07] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1411384 2013-11-07] (Motorola Solutions, Inc.)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-07-09] (Kaspersky Lab UK Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [149448 2013-11-23] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-07-09] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [64368 2015-07-09] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [159960 2015-07-09] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [226480 2015-07-09] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [817848 2015-10-14] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39792 2015-07-09] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [40304 2015-07-09] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [39792 2015-07-09] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-07-09] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [77680 2015-07-09] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [85360 2015-07-09] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [190648 2015-10-14] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-08] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3609568 2013-12-25] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44024 2015-02-04] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [264000 2015-02-04] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-06 12:18 - 2015-11-06 12:18 - 02198528 _____ (Farbar) C:\Users\Karsten\Desktop\FRST64.exe
2015-11-06 12:17 - 2015-11-08 19:30 - 00024902 _____ C:\Users\Karsten\Desktop\FRST.txt
2015-11-06 12:17 - 2015-11-06 12:17 - 00000000 ____D C:\Users\Karsten\Desktop\FRST-OlderVersion
2015-11-06 12:15 - 2015-11-06 12:15 - 00852720 _____ C:\Users\Karsten\Desktop\SecurityCheck.exe
2015-11-06 11:14 - 2015-11-06 11:14 - 00002058 _____ C:\Users\Karsten\Desktop\Male Weare.txt
2015-11-06 11:02 - 2015-11-06 11:02 - 02870984 _____ (ESET) C:\Users\Karsten\Desktop\esetsmartinstaller_deu.exe
2015-11-05 12:14 - 2015-11-08 19:29 - 00000074 _____ C:\Users\Karsten\AppData\Roaming\sp_data.sys
2015-11-05 11:56 - 2015-11-05 11:56 - 00011243 _____ C:\MBAM Scan.txt
2015-11-05 11:47 - 2015-11-05 11:47 - 01798976 _____ (Malwarebytes) C:\Users\Karsten\Desktop\JRT.exe
2015-11-05 11:46 - 2015-11-05 11:46 - 00001640 _____ C:\Users\Karsten\Desktop\AdwCleaner[C1].txt
2015-11-05 11:41 - 2015-11-05 11:41 - 01708032 _____ C:\Users\Karsten\Desktop\AdwCleaner_5.016.exe
2015-11-05 11:39 - 2015-11-05 11:44 - 00000000 ____D C:\AdwCleaner
2015-11-05 11:23 - 2015-11-08 19:29 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-05 11:23 - 2015-11-05 11:23 - 00001123 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-05 11:23 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-11-05 11:23 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-11-05 11:23 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-11-05 11:22 - 2015-11-05 11:22 - 22908888 _____ (Malwarebytes ) C:\Users\Karsten\Downloads\mbam-setup-2.2.0.1024.exe
2015-11-05 11:18 - 2015-11-05 11:18 - 00001289 _____ C:\Users\Karsten\Desktop\Revo Uninstaller.lnk
2015-11-05 11:18 - 2015-11-05 11:18 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-11-05 11:17 - 2015-11-05 11:17 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Karsten\Desktop\revosetup95.exe
2015-11-02 20:05 - 2015-11-08 19:29 - 00000000 ____D C:\FRST
2015-10-29 21:08 - 2015-07-05 11:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-10-29 20:37 - 2015-08-03 22:15 - 00074928 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-29 20:37 - 2015-08-03 22:15 - 00065600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-10-29 20:37 - 2015-08-01 15:22 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-29 20:37 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tzsync.exe
2015-10-29 20:37 - 2015-07-10 19:19 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-10-29 20:37 - 2015-07-10 18:14 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-10-29 20:37 - 2015-07-10 18:13 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-10-29 20:37 - 2015-07-10 17:31 - 06213120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-10-29 20:37 - 2014-10-29 03:46 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-29 20:37 - 2014-10-29 03:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-29 20:37 - 2014-10-29 03:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-29 20:37 - 2014-10-29 03:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-10-29 20:37 - 2014-10-29 02:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-29 20:36 - 2015-05-03 16:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-10-29 20:36 - 2015-05-03 15:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-10-14 18:55 - 2015-10-14 18:55 - 00001037 _____ C:\Users\Karsten\Desktop\PH 12 - Verknüpfung.lnk
2015-10-13 13:50 - 2015-10-13 13:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-13 13:49 - 2015-11-08 19:27 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-13 13:49 - 2015-11-06 20:54 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-13 13:49 - 2015-10-13 13:49 - 00004098 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-10-13 13:49 - 2015-10-13 13:49 - 00003862 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-10-13 13:22 - 2015-10-13 13:22 - 00002165 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2015-10-13 13:22 - 2015-10-13 13:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2015-10-13 13:22 - 2013-05-06 07:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2015-10-13 13:21 - 2015-10-13 13:21 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2015-10-13 13:20 - 2015-10-14 18:42 - 00817848 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2015-10-13 13:20 - 2015-07-09 18:11 - 00226480 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klhk.sys
2015-10-13 13:20 - 2015-07-09 18:11 - 00159960 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2015-10-10 11:37 - 2015-10-10 11:37 - 00929872 _____ (Google Inc.) C:\Users\Karsten\Downloads\ChromeSetup.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-08 19:30 - 2015-07-17 14:06 - 00000000 ____D C:\Users\Karsten\AppData\Local\Dell Printer Hub
2015-11-08 19:27 - 2015-03-26 20:39 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-11-08 19:27 - 2014-06-20 18:33 - 01393297 _____ C:\Windows\WindowsUpdate.log
2015-11-08 19:27 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sru
2015-11-07 19:15 - 2013-12-13 12:04 - 00765582 _____ C:\Windows\system32\perfh007.dat
2015-11-07 19:15 - 2013-12-13 12:04 - 00159366 _____ C:\Windows\system32\perfc007.dat
2015-11-07 19:15 - 2013-12-13 05:09 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-07 19:09 - 2015-03-25 19:51 - 00000000 ____D C:\Users\Karsten\AppData\Roaming\ClassicShell
2015-11-07 19:02 - 2013-08-22 15:46 - 00031875 _____ C:\Windows\setupact.log
2015-11-07 19:00 - 2015-03-22 20:03 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2978658392-3849539983-600884974-1002
2015-11-07 18:58 - 2015-03-22 20:07 - 00003930 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{06957B63-8A92-4FAD-B716-A205A87C1587}
2015-11-06 21:31 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2015-11-06 12:15 - 2015-03-25 20:41 - 00136704 ___SH C:\Users\Karsten\Desktop\Thumbs.db
2015-11-05 12:22 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-05 12:20 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-11-05 11:45 - 2013-12-13 04:57 - 00221592 _____ C:\Windows\PFRO.log
2015-10-29 22:01 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache
2015-10-29 21:47 - 2013-08-22 16:37 - 00003223 _____ C:\Windows\DtcInstall.log
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-29 21:46 - 2015-04-08 19:32 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-29 21:46 - 2013-08-22 21:59 - 00000000 ____D C:\Program Files\Windows Journal
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\WinStore
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\sppui
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\setup
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\setup
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Com
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\MediaViewer
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\IME
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\WindowsPowerShell
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Portable Devices
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-10-29 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-10-29 21:46 - 2013-08-22 15:44 - 00484280 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Sysprep
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\oobe
2015-10-29 21:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\servicing
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ___SD C:\Windows\system32\dsc
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sppui
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\migwiz
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\FileManager
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Camera
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-10-29 21:45 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2015-10-29 21:45 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Dism
2015-10-29 21:34 - 2013-08-22 16:36 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-10-29 21:34 - 2013-08-22 16:36 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2015-10-29 21:32 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-10-29 21:26 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2015-10-29 20:54 - 2015-03-26 21:04 - 00000000 ____D C:\Windows\system32\MRT
2015-10-29 20:21 - 2015-06-13 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Printers
2015-10-29 20:20 - 2014-06-20 18:26 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-10-14 18:53 - 2015-06-22 18:56 - 00000000 ____D C:\Users\Karsten\Downloads\Bilder
2015-10-14 18:42 - 2015-07-09 18:11 - 00190648 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2015-10-14 18:37 - 2015-04-09 19:21 - 00565760 ___SH C:\Users\Karsten\Downloads\Thumbs.db
2015-10-13 13:50 - 2015-03-22 20:10 - 00000000 ____D C:\Program Files (x86)\Google
2015-10-13 13:50 - 2015-03-22 20:09 - 00000000 ____D C:\Users\Karsten\AppData\Local\Google
2015-10-13 13:21 - 2013-08-22 16:36 - 00000000 ___HD C:\Windows\ELAMBKUP

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-11-05 12:14 - 2015-11-08 19:29 - 0000074 _____ () C:\Users\Karsten\AppData\Roaming\sp_data.sys
2014-06-20 18:29 - 2014-06-20 18:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-12-13 05:09 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-12-13 05:09 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-12-13 05:09 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

Einige Dateien in TEMP:
====================
C:\Users\Karsten\AppData\Local\Temp\autorun.dll
C:\Users\Karsten\AppData\Local\Temp\dlm1AnotherRegister.exe
C:\Users\Karsten\AppData\Local\Temp\dlp4AnotherRegister.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-10-29 21:43

==================== Ende von FRST.txt ============================
Danke.

schrauber 09.11.2015 18:49
In welchem Browser? Und teste mal andere ob es dort auch kommt.

opecgreen 09.11.2015 19:06
Nehme den Chrome.

Wenn ich den Explorer starte komme ich automatisch auf die Startseite vonn Google bzw. desse Suchseite.
Ich glaube das war vorher auch nicht.

Hilft es event. wenn ich Chrome noch mal neu installiere?

NACHTRAG:

Also über den Explorer trit das Yahoo Problem nicht auf.
Ich habe jetzt mal Chrome deinstalliert und wieder neu installiert.

Nach drei bis vier mal starten von Chrome wurde ich ohne zu murren auf die Google Startseite
geleitet - das war bis vor kurzem nicht möglich. Da kam nach dem zweiten mal schon
Yahoo.
Sollte das Problem gelöst sein?

schrauber 10.11.2015 20:49
Chrome noch zurücksetzen:

https://support.google.com/chrome/answer/3296214?hl=de

opecgreen 11.11.2015 19:48
Erledigt.

Derweil scheint wirklich wieder die Google Startseite Oberhand genommen zu haben.
Ich hoffe das bleib nun auch wieder so - werde das ganze noch eine Zeit lang beobachten und dabei hoffen.
Danke noch einmal für deine Hilfe Schrauber - die Spendenanleitung hab ich auch gesehen.... .

Das ich keinen Programme mehr einfach wo runter lade in diesem Fall war es wohl die Chip Seite habe ich mir gemerkt. Welches Programm aber kann ich mir installieren das mir solche Sachen in Zukunft gleich vom Hals hält - gern auch die ganzen anderen Sachen die man sich sonst noch so einfangen kann.

Danke!:dankeschoen:

schrauber 12.11.2015 17:12
Cleanup:
(Die Reihenfolge ist hier entscheidend)

Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken.

Falls Combofix verwendet wurde:
http://deeprybka.trojaner-board.de/b.../combofix2.pngCombofix deinstallieren .
  • Wichtig: Bitte Antivirus-Programm, evtl. vorhandenes Skript-Blocking und Anti-Malware Programme deaktivieren.
  • Drücke bitte die http://deeprybka.trojaner-board.de/b...ne/revo/w7.png + R Taste und schreibe Combofix /Uninstall in das Ausführen-Fenster.
  • Klicke auf OK.
    Damit wird Combofix komplett entfernt und der Cache der Systemwiederherstellung geleert.
  • Nun die eben deaktivierten Programme wieder aktivieren.

Alle Logs gepostet? Dann lade Dir bitte http://filepony.de/icon/tiny/delfix.pngDelFix herunter.
  • Schließe alle offenen Programme.
  • Starte die delfix.exe mit einem Doppelklick.
  • Setze vor jede Funktion ein Häkchen.
  • Klicke auf Start.

Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.

Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...:dankeschoen:und/oder das Forum mit einer kleinen Spende http://www.trojaner-board.de/extra/spende.png unterstützen. :applaus:

http://deeprybka.trojaner-board.de/b...ast/schild.pngAbsicherung:
Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen:

Browser
Java
 Flash-Player
PDF-Reader

Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren.
Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen.

Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig.

Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank.
Meine Empfehlung:
http://filepony.de/icon/emsisoft_anti_malware.png
Emsisoft

Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen.

Optional:
http://filepony.de/icon/noscript.png NoScript verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen.
http://filepony.de/icon/malwarebytes_anti_exploit.pngMalwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen.


Lade Software von einem sauberen Portal wie http://filepony.de/images/microbanner.gif.
Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen.
Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwarecleaner .


Abschließend noch ein paar grundsätzliche Bemerkungen:
Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems.
Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.

opecgreen 15.11.2015 11:20
Ich noch mal,

Nach erfolgreichem Bereinigen der Yahoo Startseite nun das nächste Problem.
Ich bekam gestern Abend die Nachricht vom Anti Mailweare Programm das zwei Dateien bedroht sind.
Hab also die zwei Dateien gelöscht und gut war.
Seit dem komme ich nicht mehr am Windows Sperrbilschirm der nach dem starten des Rechners kommt vorbei.
Hat jemand eine Idee wie ich vorbei kommen könnte?
aktuellen Wiederherstellungspunkt hab ich vorgestern gemacht....

Danke

schrauber 15.11.2015 15:45
hi,

Scan mit Farbar's Recovery Scan Tool (Recovery Mode - Windows Vista, 7, 8)
Hinweise für Windows 8-Nutzer: Anleitung 1 (FRST-Variante) und Anleitung 2 (zweiter Teil)
  • Downloade dir bitte die passende Version des Tools (im Zweifel beide) und speichere diese auf einen USB Stick: FRST Download FRST 32-Bit | FRST 64-Bit
  • Schließe den USB Stick an das infizierte System an und boote das System in die System Reparatur Option.
  • Scanne jetzt nach der bebilderten Anleitung oder verwende die folgende Kurzanleitung:
Über den Boot Manager:
  • Starte den Rechner neu.
  • Während dem Hochfahren drücke mehrmals die F8 Taste
  • Wähle nun Computer reparieren.
  • Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".
Mit Windows CD/DVD (auch bei Windows 8 möglich):
  • Lege die Windows CD in dein Laufwerk.
  • Starte den Rechner neu und starte von der CD.
  • Wähle die Spracheinstellungen und klicke "Weiter".
  • Klicke auf Computerreparaturoptionen !
  • Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".
Wähle in den Reparaturoptionen: Eingabeaufforderung
  • Gib nun bitte notepad ein und drücke Enter.
  • Im öffnenden Textdokument: Datei > Speichern unter... und wähle Computer.
    Hier wird dir der Laufwerksbuchstabe deines USB Sticks angezeigt, merke ihn dir.
  • Schließe Notepad wieder
  • Gib nun bitte folgenden Befehl ein.
    e:\frst.exe bzw. e:\frst64.exe
    Hinweis: e steht für den Laufwerksbuchstaben deines USB Sticks, den du dir gemerkt hast. Gegebenfalls anpassen.
  • Akzeptiere den Disclaimer mit Ja und klicke Untersuchen
Das Tool erstellt eine FRST.txt auf deinem USB Stick. Poste den Inhalt bitte hier nach Möglichkeit in Code-Tags (Anleitung).


opecgreen 15.11.2015 21:57
So, bin wieder da bzw. mein Laptop.

Danke für deine Hilfe bzw. den Tipp mit dem Stick!:party:
Aber da ich den Laptop nicht ausschalten konnte war jetzt nach der Arbeit der Akku leer und anstelle des weiter machen an Ort und Stelle startete er wieder komplett neu und alle war mit Code eingeben und weiter zur Startseite wie immer.
ABER Chrome ließ sich nicht starten.... Hab dan kurz um die Systemwiederherstellung von vorgestern gemacht auch mit dem Hintergedanken die zwei gelöschten Datein wieder mit an Bord zu haben - und siehe da es läuft wieder alles, auch Chrome.
Aber ich denke wenn ich deinen Cleanup Post lese den ich heute auf dem Handy das erste mal entdeckt habe das die Sache hier noch nicht durchgestanden ist.:headbang:

Werd mich morgen mal dran setzen und alles durchführen.

Bitte nicht lachen, aber woher weiß ich bzw, wie finde ich raus ob ich Defogger oder Combofix genommen habe UND für was nehme ich die beiden überhaupt?
Unter der Suche auf dem Rechner kam nix.

Danke

schrauber 16.11.2015 00:45
Haben wir nicht benutzt, gleich Delfix :)

opecgreen 16.11.2015 09:25
So,
alles mit Dellfix gelöscht und EmiSoft installiert.

Beim ersten Scan dann das selbe wie beim AntiMaleweare - zwei Bedrohungen gefunden:

Code:
Emsisoft Anti-Malware - Version 11.0.0.5911
Letztes Update: 16.11.2015 09:16:56
Benutzerkonto: Karsti\Karsten

Scaneinstellungen:

Scantyp: Schnelltest
Objekte: Rootkits, Speicher, Traces

Erkenne PUPs: An
Archive scannen: Aus
ADS-Scan: An
Dateierweiterungen: Aus
Advanced Caching: An
Direct Disk Access: Aus

Scan Beginn:        16.11.2015 09:18:12
Value: HKEY_USERS\S-1-5-21-2978658392-3849539983-600884974-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR          Setting.DisableTaskMgr (A)
Value: HKEY_USERS\S-1-5-21-2978658392-3849539983-600884974-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS          Setting.DisableRegistryTools (A)

Gescannt        61642
Gefunden        2

Scan Ende:        16.11.2015 09:18:26
Scanzeit:        0:00:14
Gelöscht habe ich diesmal nicht, das ging beim letzten mal nach hinten los?:kloppen:
Soll ich die beiden ja scheinbar gleichen Datein einfach in Quarantäne verschieben?

Danke

schrauber 16.11.2015 16:21
Sicher dass das bei MBAM auch gefunden wurde? Gaaaaanz sicher?

Das ist ne EAM-eigene Erkennung, und gar nix wildes, das reine Vorhandensein dieser Keys in der Registry wird angemeckert.

opecgreen 17.11.2015 12:03
Hallo Schrauber,

joop ganz sicher. Anti Maleware war der erste der was gefunden hatte - nach dem löschen der beiden Datein hatte ich das Problem das ich nicht mehr durch den Sperrbildschirm rein kam.

Anbei der Suchbericht von Anti Maleware:

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 17.11.2015
Suchlaufzeit: 11:47
Protokolldatei: AM.txt
Administrator: Ja

Version: 2.2.0.1024
Malware-Datenbank: v2015.11.17.02
Rootkit-Datenbank: v2015.11.14.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: Karsten

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 323917
Abgelaufene Zeit: 10 Min., 19 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 1
PUP.Optional.ResultsHub, HKLM\SOFTWARE\WOW6432NODE\RESULTSHUB, , [1df93b4497f4a492b7f4365730d38080],

Registrierungswerte: 1
PUP.Optional.ResultsHub, HKLM\SOFTWARE\WOW6432NODE\RESULTSHUB|cg, 31b9004c-ea86-43d0-b3b3-3e1aa89218db, , [1df93b4497f4a492b7f4365730d38080]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
hat mir gerade wieder die zwei Datein als Bedrohungen/ Maleware gemeldet,

soll ich die beim nächsten mal Suchen dann einfach in Quarantäne verschieben?

Danke

schrauber 18.11.2015 16:56
Lies doch mal meine Frage richtig.
Die 2 Funde von MBAM und die 2 Funde vom EAM sind 100% unterschiedlich!

FRST öffnen, in die Searchbox folgendes schreiben:

RESULTSHUB

und dann auf Registry Suche klicken.

opecgreen 18.11.2015 19:51
Stimmt,

das hab ich wohl überlesen - mein Fehler! Hoffe das geht in Ordnung, da ich absolut nicht der Profi bin und nur ungefähr erahne was ich dir hier die ganze Zeit an Suchergebnissen poste.

Hier das Suchergebnis von FRST:

Code:
Farbar Recovery Scan Tool (x64) Version:18-11-2015
durchgeführt von Karsten (2015-11-18 19:48:00)
Gestartet von C:\Users\Karsten\Downloads
Start-Modus: Normal

================== Registry-Suche: "RESULTSHUB" ===========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{112732dc-ea3d-4d9d-bb68-652be21810c2}]
"LocalService"="Service Mgr ResultsHub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{238571b1-12e9-411c-8e56-d249dabecdd7}]
"LocalService"="Update Mgr ResultsHub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\{112732dc-ea3d-4d9d-bb68-652be21810c2}]
"LocalService"="Service Mgr ResultsHub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\{238571b1-12e9-411c-8e56-d249dabecdd7}]
"LocalService"="Update Mgr ResultsHub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\ResultsHubDesktopSearch_RASAPI32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\ResultsHubDesktopSearch_RASMANCS]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\ResultsHub]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\AppID\{112732dc-ea3d-4d9d-bb68-652be21810c2}]
"LocalService"="Service Mgr ResultsHub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\AppID\{238571b1-12e9-411c-8e56-d249dabecdd7}]
"LocalService"="Update Mgr ResultsHub"
[HKEY_USERS\S-1-5-21-2978658392-3849539983-600884974-1002\Software\Microsoft\.NETFramework\SQM\Apps\ResultsHubDesktopSearch.exe]

====== Ende von Suche ======
Danke

schrauber 19.11.2015 16:11
Findet MBAM immer noch was?

opecgreen 19.11.2015 19:34
Hallo Schrauber,

das Programm macht nach dem hochfahren automatisch einen Scan.
Hat wieder die zwei Datein erkannt:

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 19.11.2015
Suchlaufzeit: 19:24
Protokolldatei: MBAM1.txt
Administrator: Ja

Version: 2.2.0.1024
Malware-Datenbank: v2015.11.19.04
Rootkit-Datenbank: v2015.11.14.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: Karsten

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 324713
Abgelaufene Zeit: 5 Min., 47 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 1
PUP.Optional.ResultsHub, HKLM\SOFTWARE\WOW6432NODE\RESULTSHUB, , [9749b9c6612a74c2ee047918d62d06fa],

Registrierungswerte: 1
PUP.Optional.ResultsHub, HKLM\SOFTWARE\WOW6432NODE\RESULTSHUB|cg, 31b9004c-ea86-43d0-b3b3-3e1aa89218db, , [9749b9c6612a74c2ee047918d62d06fa]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
Nach dem löschen kam ich ja nicht mehr zum Startbildschirm - würde ein verschieben
in Quarantäne event. helfen?

schrauber 20.11.2015 16:40
Nö, dann sind sie ja auch weg :)


Poste bitte nochmal ein frisches FRST log.

opecgreen 20.11.2015 20:31
Hallo Schrauber,
gerade Scan gemacht, heute ist es irgendwie mehr als sonst - kommt daher in mehreren Beiträgen:

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:19-11-2015
durchgeführt von Karsten (Administrator) auf KARSTI (20-11-2015 20:04:19)
Gestartet von C:\Users\Karsten\Downloads
Geladene Profile: Karsten (Verfügbare Profile: Karsten)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Emsisoft Ltd) C:\Program Files\Emsisoft Anti-Malware\a2service.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Hanwang Technology Co.,Ltd. ) C:\Program Files\ASUS\ASUS FaceID\HWFaceKeyService.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSUP.exe
() C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Printer SSW2\Status Monitor\dlp4db.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Emsisoft Ltd) C:\Program Files\Emsisoft Anti-Malware\a2guard.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1pl.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDFViewer\PdfPro7Hook.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSTS.exe
(Dell Inc.) C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHCM.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(ASUS) C:\Program Files\ASUS\ASUS GPU Tweak\GPUTweak.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM\...\Run: [emsisoft anti-malware] => c:\program files\emsisoft anti-malware\a2guard.exe [9135984 2015-11-10] (Emsisoft Ltd)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3216032 2013-12-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [179976 2013-09-10] (cyberlink)
HKLM-x32\...\Run: [ASUS InstantKey] => C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [13936 2014-01-20] (ASUS)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM-x32\...\Run: [LauncherC1765nf] => C:\Program Files (x86)\Dell Printers\Printer SSW\Launcher\dlm1launcher.exe [2471928 2013-08-13] (Dell Inc.)
HKLM-x32\...\Run: [StatusAutoRunC1765nf] => C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1pl.exe [3846856 2014-07-23] (Dell Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDFViewer\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [DLDPHSTS] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSTS.exe [32768 2015-09-10] (Dell Inc.)
HKLM-x32\...\Run: [DLDPHCM] => C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHCM.exe [610816 2015-09-10] (Dell Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [18248 2013-05-29] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [36168 2013-05-29] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2068856 2011-10-12] (Flexera Software LLC.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2978658392-3849539983-600884974-1002\...\Run: [84B3173D6E287946C6B27EA653492ABDA603F8CD._service_run] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-11-07] (Google Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 185.27.121.36 185.27.120.43
Tcpip\..\Interfaces\{64972B4D-73C7-4E60-8989-5133E3878D81}: [DhcpNameServer] 185.27.121.36 185.27.120.43

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-2978658392-3849539983-600884974-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDFViewer\Bin\PlusIEContextMenu.dll [2011-06-30] (Zeon Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll Keine Datei
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll Keine Datei

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-10-13] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-09] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-09] (Google Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDFViewer\bin\nppdf.dll [2011-07-15] (Zeon Corporation)
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-10-13] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-10-13] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-10-13] [ist nicht signiert]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://google.de/","hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQcVsBUQlFQhhGIQEOTA1CRQUOIgpaUhRCRARCIQEBUwhJRVcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR Profile: C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-09]
CHR Extension: (YouTube) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-09]
CHR Extension: (Google-Suche) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-09]
CHR Extension: (Kaspersky Protection) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-11-09]
CHR Extension: (SiteAdvisor) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-11-09]
CHR Extension: (Google Docs Offline) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17]
CHR Extension: (AdBlock) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-17]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-09]
CHR Extension: (Google Mail) - C:\Users\Karsten\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-09]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 a2AntiMalware; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [10768560 2015-11-10] (Emsisoft Ltd)
R2 ASUS FaceID Service; C:\Program Files\ASUS\ASUS FaceID\HWFaceKeyService.exe [261648 2013-10-24] (Hanwang Technology Co.,Ltd. )
R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS)
R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-07-09] (Kaspersky Lab ZAO)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [243464 2013-09-10] (CyberLink)
R2 DLDPHSUP; C:\Program Files (x86)\Dell Printers\Dell Printer Hub\DLDPHSUP.exe [17408 2015-09-10] (Dell Inc.) [Datei ist nicht signiert]
R2 DLNBDB; C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe [243912 2014-07-23] ()
R2 DLNCDB; C:\Program Files (x86)\Dell Printers\Printer SSW2\Status Monitor\dlp4db.exe [277360 2015-02-09] (Dell Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [129992 2014-01-19] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-11-20] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2013-11-20] (Intel® Corporation)
S2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [70928 2014-02-13] (ASUS Corporation)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-11-07] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1411384 2013-11-07] (Motorola Solutions, Inc.)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-07-09] (Kaspersky Lab UK Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R1 epp; C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys [123992 2015-10-23] (Emsisoft Ltd)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [149448 2013-11-23] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-07-09] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [64368 2015-07-09] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [159960 2015-07-09] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [226480 2015-07-09] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [817848 2015-10-14] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39792 2015-07-09] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [40304 2015-07-09] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [39792 2015-07-09] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-07-09] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [77680 2015-07-09] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [85360 2015-07-09] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [190648 2015-10-14] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3609568 2013-12-25] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Nummer zwei:

Code:
================= Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-20 19:58 - 2015-11-20 19:59 - 00024267 _____ C:\Users\Karsten\Downloads\Addition.txt
2015-11-20 19:55 - 2015-11-20 20:04 - 00024492 _____ C:\Users\Karsten\Downloads\FRST.txt
2015-11-20 19:54 - 2015-11-20 19:54 - 00000000 ____D C:\Users\Karsten\Downloads\FRST-OlderVersion
2015-11-18 19:48 - 2015-11-18 19:48 - 00001405 _____ C:\Users\Karsten\Downloads\Search.txt
2015-11-18 19:46 - 2015-11-20 20:04 - 00000000 ____D C:\FRST
2015-11-18 19:45 - 2015-11-20 19:54 - 02020352 _____ (Farbar) C:\Users\Karsten\Downloads\FRST64.exe
2015-11-17 20:15 - 2015-11-17 20:15 - 00000000 ____D C:\Users\Karsten\AppData\Local\GWX
2015-11-16 10:41 - 2015-07-30 15:04 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-11-16 10:41 - 2015-07-30 14:48 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-11-16 09:44 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2015-11-16 09:44 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2015-11-16 09:39 - 2015-10-13 18:10 - 00559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-16 09:39 - 2015-10-13 18:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-16 09:39 - 2015-10-13 16:59 - 00397224 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-11-16 09:39 - 2015-10-13 16:59 - 00340872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-11-16 09:39 - 2015-10-13 16:59 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-16 09:39 - 2015-10-13 16:59 - 00120376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-16 09:39 - 2015-10-13 16:59 - 00106952 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-11-16 09:39 - 2015-10-13 16:59 - 00091416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-11-16 09:39 - 2015-10-11 07:36 - 00561952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-11-16 09:39 - 2015-10-11 07:36 - 00177496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-11-16 09:39 - 2015-10-10 19:40 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-11-16 09:39 - 2015-10-10 19:39 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-11-16 09:39 - 2015-10-10 19:07 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-11-16 09:39 - 2015-10-10 18:33 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-11-16 09:39 - 2015-10-10 18:27 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-16 09:39 - 2015-10-10 18:11 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-11-16 09:39 - 2015-10-10 17:45 - 00359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-16 09:39 - 2015-09-29 13:24 - 00155480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2015-11-16 09:39 - 2015-09-04 20:24 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2015-11-16 09:39 - 2015-08-28 23:20 - 00183368 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2015-11-16 09:39 - 2015-08-20 21:45 - 01380048 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-11-16 09:39 - 2015-08-20 18:48 - 01096704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-11-16 09:39 - 2015-04-10 01:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-11-16 09:39 - 2015-04-10 01:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-11-16 09:39 - 2015-03-17 18:26 - 00467776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-11-16 09:39 - 2015-03-09 03:02 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-11-16 09:39 - 2014-11-05 02:41 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-11-16 09:39 - 2014-11-05 02:18 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-11-16 09:38 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-16 09:38 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-16 09:38 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-16 09:38 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-16 09:38 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-16 09:38 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-16 09:38 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-16 09:38 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-16 09:38 - 2015-10-30 23:39 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-11-16 09:38 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-16 09:38 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-11-16 09:38 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-11-16 09:38 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-16 09:38 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-16 09:38 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-16 09:38 - 2015-10-30 23:14 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-11-16 09:38 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-11-16 09:38 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-16 09:38 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-16 09:38 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-11-16 09:38 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-16 09:38 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-16 09:38 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-11-16 09:38 - 2015-10-17 15:19 - 04176384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-11-16 09:38 - 2015-10-15 17:08 - 00990208 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-16 09:38 - 2015-10-15 16:46 - 00803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-16 09:38 - 2015-09-12 14:47 - 00414559 _____ C:\Windows\system32\ApnDatabase.xml
2015-11-16 09:38 - 2015-09-10 18:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-11-16 09:38 - 2015-09-10 18:06 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-11-16 09:38 - 2015-09-10 17:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-11-16 09:38 - 2015-09-10 17:37 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-11-16 09:38 - 2015-09-10 17:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-11-16 09:38 - 2015-09-10 17:35 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-11-16 09:38 - 2015-09-10 17:28 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-11-16 09:38 - 2015-09-10 17:21 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-11-16 09:38 - 2015-09-10 17:19 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-11-16 09:38 - 2015-09-10 17:17 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-11-16 09:38 - 2015-09-10 17:17 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-11-16 09:38 - 2015-09-10 17:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-11-16 09:38 - 2015-09-10 17:05 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-11-16 09:38 - 2015-09-10 16:57 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-11-16 09:38 - 2015-09-10 16:55 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-11-16 09:38 - 2015-09-10 16:55 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-11-16 09:38 - 2015-07-16 21:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-11-16 09:38 - 2015-07-16 20:53 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-11-16 09:38 - 2015-07-16 20:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-11-16 09:38 - 2015-07-16 20:14 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-11-16 09:38 - 2015-07-16 19:52 - 01048576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-11-16 09:38 - 2015-06-15 23:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-11-16 09:38 - 2015-06-15 22:58 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-11-16 09:38 - 2015-06-15 21:47 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-11-16 09:38 - 2015-06-15 21:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-11-16 09:38 - 2015-06-15 21:42 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-11-16 09:38 - 2015-05-23 04:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-11-16 09:38 - 2015-05-22 19:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-11-16 09:38 - 2015-04-21 17:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-11-16 09:38 - 2015-04-16 07:17 - 00325464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-11-16 09:38 - 2015-04-13 23:37 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2015-11-16 09:38 - 2015-04-13 23:34 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2015-11-16 09:38 - 2015-04-10 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-11-16 09:38 - 2015-04-10 01:17 - 01018880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-11-16 09:38 - 2015-04-08 23:41 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rgb9rast.dll
2015-11-16 09:38 - 2015-04-03 01:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-11-16 09:38 - 2015-04-03 01:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-11-16 09:38 - 2015-04-01 23:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-11-16 09:38 - 2015-04-01 23:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-11-16 09:38 - 2015-04-01 05:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-11-16 09:38 - 2015-04-01 05:18 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-11-16 09:38 - 2015-04-01 05:17 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-11-16 09:38 - 2015-04-01 05:08 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-11-16 09:38 - 2015-04-01 04:46 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-11-16 09:38 - 2015-04-01 04:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-11-16 09:38 - 2015-04-01 04:17 - 02551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-11-16 09:38 - 2015-04-01 04:17 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-11-16 09:38 - 2015-04-01 03:53 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-11-16 09:38 - 2015-04-01 03:53 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-11-16 09:38 - 2015-04-01 03:45 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-11-16 09:38 - 2015-04-01 03:45 - 00699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-11-16 09:38 - 2015-04-01 03:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-11-16 09:38 - 2015-04-01 03:14 - 01920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-11-16 09:38 - 2015-04-01 03:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-11-16 09:38 - 2015-03-20 02:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-11-16 09:38 - 2015-03-13 05:03 - 00239424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-11-16 09:38 - 2015-03-13 05:03 - 00154432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-11-16 09:38 - 2015-03-13 03:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-11-16 09:38 - 2015-03-13 02:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-11-16 09:38 - 2015-03-13 01:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-11-16 09:38 - 2015-03-06 04:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-11-16 09:38 - 2015-03-06 03:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-11-16 09:38 - 2015-03-06 03:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-11-16 09:38 - 2015-03-04 02:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-11-16 09:38 - 2015-03-04 02:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-11-16 09:38 - 2015-03-02 02:43 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2015-11-16 09:38 - 2015-03-02 02:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2015-11-16 09:38 - 2015-02-18 00:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-11-16 09:38 - 2014-11-14 07:58 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsDatabase.dll
2015-11-16 09:38 - 2014-10-29 03:24 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2015-11-16 09:38 - 2014-10-29 03:00 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-11-16 09:38 - 2014-10-29 02:43 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2015-11-16 09:38 - 2014-10-29 02:26 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2015-11-16 09:38 - 2014-10-29 02:20 - 00238592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2015-11-16 09:38 - 2014-10-29 01:57 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2015-11-16 09:38 - 2014-10-29 01:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2015-11-16 09:38 - 2014-10-29 01:56 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-11-16 09:38 - 2014-10-29 01:46 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2015-11-16 09:38 - 2014-10-29 01:45 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2015-11-16 09:38 - 2014-10-29 01:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2015-11-16 09:38 - 2014-10-07 07:54 - 00189248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2015-11-16 09:37 - 2015-10-20 22:54 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-11-16 09:37 - 2015-10-20 15:53 - 03705856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-16 09:37 - 2015-10-20 15:36 - 02243072 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-11-16 09:37 - 2015-10-20 15:35 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-11-16 09:37 - 2015-10-20 15:34 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-11-16 09:37 - 2015-10-20 15:34 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-11-16 09:37 - 2015-10-20 15:34 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-11-16 09:37 - 2015-10-20 15:33 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-11-16 09:37 - 2015-10-20 15:14 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-11-16 09:37 - 2015-10-20 15:13 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-11-16 09:37 - 2015-10-20 15:13 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-11-16 09:37 - 2015-10-20 15:13 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-11-16 09:37 - 2015-10-15 00:02 - 07455064 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-16 09:37 - 2015-10-15 00:02 - 01659560 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-11-16 09:37 - 2015-10-15 00:02 - 01519592 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-11-16 09:37 - 2015-10-15 00:02 - 01487008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-11-16 09:37 - 2015-10-15 00:02 - 01355848 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-11-16 09:37 - 2015-09-07 17:22 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-11-16 09:37 - 2015-09-07 16:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-11-16 09:37 - 2015-09-07 16:30 - 01091584 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-11-16 09:37 - 2015-04-25 03:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-11-16 09:37 - 2015-04-25 03:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-11-16 09:37 - 2015-04-08 23:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-11-16 09:37 - 2015-03-20 04:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2015-11-16 09:36 - 2015-10-08 17:08 - 01083904 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-11-16 09:36 - 2015-08-10 19:15 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-11-16 09:36 - 2015-08-10 19:06 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-11-16 09:36 - 2015-08-10 18:49 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-11-16 09:36 - 2015-08-10 17:56 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-11-16 09:36 - 2015-08-10 17:46 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-11-16 09:36 - 2014-11-10 19:06 - 00136512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-11-16 09:18 - 2015-11-16 09:18 - 00000000 ____D C:\ProgramData\Emsisoft
2015-11-16 09:15 - 2015-11-16 09:15 - 00000917 _____ C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2015-11-16 09:15 - 2015-11-16 09:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2015-11-16 09:14 - 2015-11-20 20:04 - 00000000 ____D C:\Program Files\Emsisoft Anti-Malware
2015-11-16 09:11 - 2015-11-16 09:13 - 204504920 _____ (Emsisoft Ltd. ) C:\Users\Karsten\Downloads\EmsisoftAntiMalwareSetup.exe
2015-11-16 09:04 - 2015-11-16 09:04 - 00000000 ____D C:\Windows\ERUNT
2015-11-09 19:01 - 2015-11-20 20:03 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-09 19:01 - 2015-11-19 20:06 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-09 19:01 - 2015-11-15 21:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-09 19:01 - 2015-11-09 19:01 - 00004098 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-09 19:01 - 2015-11-09 19:01 - 00003862 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-05 12:14 - 2015-11-20 20:05 - 00000074 _____ C:\Users\Karsten\AppData\Roaming\sp_data.sys
2015-11-05 11:23 - 2015-11-20 19:51 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-05 11:23 - 2015-11-05 11:23 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-05 11:23 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-11-05 11:23 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-11-05 11:23 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-11-05 11:22 - 2015-11-05 11:22 - 22908888 _____ (Malwarebytes ) C:\Users\Karsten\Downloads\mbam-setup-2.2.0.1024.exe
2015-11-05 11:18 - 2015-11-16 09:07 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-10-29 21:08 - 2015-07-05 11:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-10-29 20:51 - 2014-10-29 05:00 - 02314952 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-10-29 20:51 - 2014-10-29 05:00 - 02229168 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-10-29 20:51 - 2014-10-29 04:59 - 03460472 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2015-10-29 20:51 - 2014-10-29 04:59 - 00014144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys
2015-10-29 20:51 - 2014-10-29 04:57 - 03138720 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2015-10-29 20:51 - 2014-10-29 04:57 - 03118096 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2015-10-29 20:51 - 2014-10-29 04:57 - 01286048 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2015-10-29 20:51 - 2014-10-29 04:55 - 02174976 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2015-10-29 20:51 - 2014-10-29 04:52 - 02334080 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-10-29 20:51 - 2014-10-29 04:11 - 02689392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL
2015-10-29 20:51 - 2014-10-29 04:07 - 02324208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-10-29 20:51 - 2014-10-29 03:45 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-10-29 20:51 - 2014-10-29 03:29 - 04483072 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2015-10-29 20:51 - 2014-10-29 03:22 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-10-29 20:51 - 2014-10-29 03:00 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-10-29 20:51 - 2014-10-29 02:56 - 03754496 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2015-10-29 20:51 - 2014-10-29 02:51 - 00941056 _____ (Microsoft Corporation) C:\Windows\system32\XpsFilt.dll
2015-10-29 20:51 - 2014-10-29 02:45 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\rdpinput.exe
2015-10-29 20:51 - 2014-10-29 02:43 - 07075328 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2015-10-29 20:51 - 2014-10-29 02:42 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-10-29 20:51 - 2014-10-29 02:40 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2015-10-29 20:51 - 2014-10-29 02:39 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-10-29 20:51 - 2014-10-29 02:38 - 04690432 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2015-10-29 20:51 - 2014-10-29 02:35 - 03256320 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-10-29 20:51 - 2014-10-29 02:28 - 03820544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-10-29 20:51 - 2014-10-29 02:26 - 03561984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2015-10-29 20:51 - 2014-10-29 02:24 - 02464768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-10-29 20:51 - 2014-10-29 02:16 - 05267968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2015-10-29 20:51 - 2014-10-29 02:08 - 02608640 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-10-29 20:51 - 2014-10-29 02:08 - 02542080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-10-29 20:51 - 2014-10-29 02:05 - 03273216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2015-10-29 20:51 - 2014-10-29 02:02 - 14354944 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-10-29 20:51 - 2014-10-29 01:52 - 15432704 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-10-29 20:51 - 2014-10-29 01:50 - 12749824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-10-29 20:51 - 2014-10-29 01:48 - 03056128 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2015-10-29 20:51 - 2014-10-29 01:46 - 09530368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2015-10-29 20:51 - 2014-10-29 01:46 - 01919488 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-10-29 20:51 - 2014-10-29 01:45 - 13318144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-10-29 20:51 - 2014-10-29 01:37 - 06386176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2015-10-29 20:51 - 2014-10-07 07:45 - 03307112 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-10-29 20:51 - 2014-10-07 04:44 - 02890296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-10-29 20:50 - 2014-10-29 05:13 - 00021824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tbs.sys
2015-10-29 20:50 - 2014-10-29 05:11 - 00038792 _____ (Microsoft Corporation) C:\Windows\system32\svchost.exe
2015-10-29 20:50 - 2014-10-29 05:10 - 01816008 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2015-10-29 20:50 - 2014-10-29 05:10 - 00430728 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2015-10-29 20:50 - 2014-10-29 05:10 - 00177688 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2015-10-29 20:50 - 2014-10-29 05:10 - 00089344 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-10-29 20:50 - 2014-10-29 05:10 - 00084184 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2015-10-29 20:50 - 2014-10-29 05:09 - 01950280 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2015-10-29 20:50 - 2014-10-29 05:09 - 01309744 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-10-29 20:50 - 2014-10-29 05:09 - 01239576 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2015-10-29 20:50 - 2014-10-29 05:09 - 00371304 _____ (Microsoft Corporation) C:\Windows\system32\verifier.dll
2015-10-29 20:50 - 2014-10-29 05:09 - 00315576 _____ (Microsoft Corporation) C:\Windows\system32\cfgmgr32.dll
2015-10-29 20:50 - 2014-10-29 05:09 - 00294880 _____ (Microsoft Corporation) C:\Windows\system32\bdeunlock.exe
2015-10-29 20:50 - 2014-10-29 05:09 - 00277368 _____ (Microsoft Corporation) C:\Windows\system32\powrprof.dll
2015-10-29 20:50 - 2014-10-29 05:09 - 00233448 _____ (Microsoft Corporation) C:\Windows\system32\ProximityUxHost.exe
2015-10-29 20:50 - 2014-10-29 05:09 - 00214360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2015-10-29 20:50 - 2014-10-29 05:09 - 00191032 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2015-10-29 20:50 - 2014-10-29 05:09 - 00155456 _____ (Microsoft Corporation) C:\Windows\system32\devobj.dll
2015-10-29 20:50 - 2014-10-29 05:09 - 00145144 _____ (Microsoft Corporation) C:\Windows\system32\cabinet.dll
2015-10-29 20:50 - 2014-10-29 05:09 - 00108864 _____ (Microsoft Corporation) C:\Windows\system32\bootsect.exe
2015-10-29 20:50 - 2014-10-29 05:09 - 00044912 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2015-10-29 20:50 - 2014-10-29 05:09 - 00033600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wimmount.sys
2015-10-29 20:50 - 2014-10-29 05:09 - 00033088 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll
2015-10-29 20:50 - 2014-10-29 05:09 - 00033064 _____ (Microsoft Corporation) C:\Windows\system32\kernel.appcore.dll
2015-10-29 20:50 - 2014-10-29 05:09 - 00028480 _____ (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
2015-10-29 20:50 - 2014-10-29 05:09 - 00017560 _____ (Microsoft Corporation) C:\Windows\system32\psapi.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00324864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00224600 _____ (Microsoft Corporation) C:\Windows\system32\ntasn1.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00217912 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00197832 _____ (Microsoft Corporation) C:\Windows\system32\dssenh.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00196264 _____ (Microsoft Corporation) C:\Windows\system32\ntmarta.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00153336 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00149240 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00135304 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00131648 _____ (Microsoft Corporation) C:\Windows\system32\easinvoker.exe
2015-10-29 20:50 - 2014-10-29 05:04 - 00124992 _____ (Microsoft Corporation) C:\Windows\system32\cryptxml.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00122912 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00120384 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00097608 _____ (Microsoft Corporation) C:\Windows\system32\cryptdll.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00093000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00086744 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00080056 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\wlrmdr.exe
2015-10-29 20:50 - 2014-10-29 05:04 - 00044368 _____ (Microsoft Corporation) C:\Windows\system32\netutils.dll
2015-10-29 20:50 - 2014-10-29 05:04 - 00025352 _____ (Microsoft Corporation) C:\Windows\system32\dsrole.dll
2015-10-29 20:50 - 2014-10-29 05:03 - 00196928 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2015-10-29 20:50 - 2014-10-29 05:00 - 01540696 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-10-29 20:50 - 2014-10-29 05:00 - 00740664 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-10-29 20:50 - 2014-10-29 05:00 - 00544408 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-10-29 20:50 - 2014-10-29 05:00 - 00379568 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2015-10-29 20:50 - 2014-10-29 05:00 - 00297512 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2015-10-29 20:50 - 2014-10-29 05:00 - 00210744 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2015-10-29 20:50 - 2014-10-29 05:00 - 00142000 _____ (Microsoft Corporation) C:\Windows\system32\dxva2.dll
2015-10-29 20:50 - 2014-10-29 05:00 - 00125504 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-10-29 20:50 - 2014-10-29 05:00 - 00030472 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogHost.exe
2015-10-29 20:50 - 2014-10-29 04:59 - 00520536 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2015-10-29 20:50 - 2014-10-29 04:59 - 00415040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2015-10-29 20:50 - 2014-10-29 04:59 - 00230816 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2015-10-29 20:50 - 2014-10-29 04:59 - 00105944 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2015-10-29 20:50 - 2014-10-29 04:59 - 00063528 _____ (Microsoft Corporation) C:\Windows\system32\wwapi.dll
2015-10-29 20:50 - 2014-10-29 04:59 - 00025920 _____ (Microsoft Corporation) C:\Windows\system32\streamci.dll
2015-10-29 20:50 - 2014-10-29 04:58 - 01797944 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2015-10-29 20:50 - 2014-10-29 04:58 - 00014528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2015-10-29 20:50 - 2014-10-29 04:57 - 02745160 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 02450216 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 01913128 _____ (Microsoft Corporation) C:\Windows\system32\DisplaySwitch.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 01576312 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 01552704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-10-29 20:50 - 2014-10-29 04:57 - 01210176 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 01150208 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 00767504 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 00725672 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 00662120 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00643064 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 00629576 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 00557832 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 00447256 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 00389952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-10-29 20:50 - 2014-10-29 04:57 - 00339312 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 00299048 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 00295432 _____ (Microsoft Corporation) C:\Windows\system32\WMASF.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 00271152 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00256744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 00250488 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 00248408 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 00246832 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 00217432 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 00216920 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00203504 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 00116696 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2015-10-29 20:50 - 2014-10-29 04:57 - 00111024 _____ (Microsoft Corporation) C:\Windows\system32\RestoreOptIn.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00098664 _____ (Microsoft Corporation) C:\Windows\system32\OpenWith.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00089816 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2015-10-29 20:50 - 2014-10-29 04:57 - 00045464 _____ (Microsoft Corporation) C:\Windows\system32\CloudNotifications.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00038736 _____ (Microsoft Corporation) C:\Windows\system32\CredentialUIBroker.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00035664 _____ (Microsoft Corporation) C:\Windows\system32\avrt.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 00034568 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountBroker.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00031968 _____ (Microsoft Corporation) C:\Windows\system32\PasswordOnWakeSettingFlyout.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00031496 _____ (Microsoft Corporation) C:\Windows\system32\CameraSettingsUIHost.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00029960 _____ (Microsoft Corporation) C:\Windows\system32\version.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 00029408 _____ (Microsoft Corporation) C:\Windows\system32\PickerHost.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00027872 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll
2015-10-29 20:50 - 2014-10-29 04:57 - 00027360 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsRemoveDevice.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00022208 _____ (Microsoft Corporation) C:\Windows\system32\PurchaseWindowsLicense.exe
2015-10-29 20:50 - 2014-10-29 04:57 - 00018584 _____ (Microsoft Corporation) C:\Windows\system32\SlideToShutDown.exe
2015-10-29 20:50 - 2014-10-29 04:56 - 00097048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2015-10-29 20:50 - 2014-10-29 04:56 - 00089368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmcl.sys
2015-10-29 20:50 - 2014-10-29 04:56 - 00061208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys
2015-10-29 20:50 - 2014-10-29 04:56 - 00049944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmstorfl.sys
2015-10-29 20:50 - 2014-10-29 04:55 - 01543768 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2015-10-29 20:50 - 2014-10-29 04:55 - 01063432 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2015-10-29 20:50 - 2014-10-29 04:55 - 00730824 _____ (Microsoft Corporation) C:\Windows\system32\clbcatq.dll
2015-10-29 20:50 - 2014-10-29 04:55 - 00426120 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2015-10-29 20:50 - 2014-10-29 04:55 - 00359496 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-10-29 20:50 - 2014-10-29 04:55 - 00305192 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2015-10-29 20:50 - 2014-10-29 04:55 - 00278392 _____ (Microsoft Corporation) C:\Windows\system32\wkspbroker.exe
2015-10-29 20:50 - 2014-10-29 04:55 - 00076432 _____ (Microsoft Corporation) C:\Windows\system32\sessionmsg.exe
2015-10-29 20:50 - 2014-10-29 04:55 - 00067656 _____ (Microsoft Corporation) C:\Windows\system32\RpcRtRemote.dll
2015-10-29 20:50 - 2014-10-29 04:55 - 00064040 _____ (Microsoft Corporation) C:\Windows\system32\wtsapi32.dll
2015-10-29 20:50 - 2014-10-29 04:55 - 00043888 _____ (Microsoft Corporation) C:\Windows\system32\utildll.dll
2015-10-29 20:50 - 2014-10-29 04:55 - 00033576 _____ (Microsoft Corporation) C:\Windows\system32\RuntimeBroker.exe
2015-10-29 20:50 - 2014-10-29 04:55 - 00019264 _____ (Microsoft Corporation) C:\Windows\system32\dllhost.exe
2015-10-29 20:50 - 2014-10-29 04:54 - 05120000 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
2015-10-29 20:50 - 2014-10-29 04:54 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWWizFwk.dll
2015-10-29 20:50 - 2014-10-29 04:53 - 00687496 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-10-29 20:50 - 2014-10-29 04:53 - 00095048 _____ (Microsoft Corporation) C:\Windows\system32\bcd.dll
2015-10-29 20:50 - 2014-10-29 04:53 - 00080528 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 01518504 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 01509688 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 01288096 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 01165744 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 01064720 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00988544 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00962216 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00952384 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00850656 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00821696 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00734448 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00634768 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00580024 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00497936 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00444728 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00405456 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00387872 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00356936 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00311448 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00244272 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00225696 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00161120 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00132232 _____ (Microsoft Corporation) C:\Windows\system32\RTWorkQ.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00126056 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00106384 _____ (Microsoft Corporation) C:\Windows\system32\msacm32.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00101736 _____ (Microsoft Corporation) C:\Windows\system32\mfAACEnc.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00100672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-10-29 20:50 - 2014-10-29 04:52 - 00090880 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00043888 _____ (Microsoft Corporation) C:\Windows\system32\msdmo.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00041880 _____ (Microsoft Corporation) C:\Windows\system32\msgsm32.acm
2015-10-29 20:50 - 2014-10-29 04:52 - 00035664 _____ (Microsoft Corporation) C:\Windows\system32\imaadp32.acm
2015-10-29 20:50 - 2014-10-29 04:52 - 00034088 _____ (Microsoft Corporation) C:\Windows\system32\msadp32.acm
2015-10-29 20:50 - 2014-10-29 04:52 - 00029408 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-10-29 20:50 - 2014-10-29 04:52 - 00025312 _____ (Microsoft Corporation) C:\Windows\system32\msg711.acm
2015-10-29 20:50 - 2014-10-29 04:52 - 00022208 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2015-10-29 20:50 - 2014-10-29 04:52 - 00020160 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll
2015-10-29 20:50 - 2014-10-29 04:51 - 00363080 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2015-10-29 20:50 - 2014-10-29 04:51 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-10-29 20:50 - 2014-10-29 04:51 - 00179736 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-10-29 20:50 - 2014-10-29 04:51 - 00159112 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2015-10-29 20:50 - 2014-10-29 04:51 - 00070288 _____ (Microsoft Corporation) C:\Windows\system32\profapi.dll
2015-10-29 20:50 - 2014-10-29 04:51 - 00047024 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-10-29 20:50 - 2014-10-29 04:51 - 00033032 _____ (Microsoft Corporation) C:\Windows\system32\winnsi.dll
2015-10-29 20:50 - 2014-10-29 04:51 - 00031528 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-10-29 20:50 - 2014-10-29 04:51 - 00024800 _____ (Microsoft Corporation) C:\Windows\system32\nsi.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 01782912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 01103768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2015-10-29 20:50 - 2014-10-29 04:18 - 00848568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 00348048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\verifier.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 00320736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtapi.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 00255136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powrprof.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 00241168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 00164264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 00148728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 00127552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 00120352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabinet.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 00029920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel.appcore.dll
2015-10-29 20:50 - 2014-10-29 04:18 - 00016504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psapi.dll
2015-10-29 20:50 - 2014-10-29 04:17 - 00033088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
2015-10-29 20:50 - 2014-10-29 04:15 - 00245296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00192096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00168256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00165728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntasn1.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00156992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dssenh.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00154392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntmarta.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00115672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00110512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srvcli.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00099104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptxml.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00098152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00096032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00074352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdll.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00073840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00068168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkscli.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00051608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msasn1.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00035592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netutils.dll
2015-10-29 20:50 - 2014-10-29 04:15 - 00021696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsrole.dll
2015-10-29 20:50 - 2014-10-29 04:13 - 00185880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2015-10-29 20:50 - 2014-10-29 04:12 - 01946144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-10-29 20:50 - 2014-10-29 04:12 - 01907384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2015-10-29 20:50 - 2014-10-29 04:12 - 00616704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-10-29 20:50 - 2014-10-29 04:12 - 00430176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-10-29 20:50 - 2014-10-29 04:12 - 00416760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2015-10-29 20:50 - 2014-10-29 04:12 - 00241680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqmapi.dll
2015-10-29 20:50 - 2014-10-29 04:12 - 00116696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxva2.dll
2015-10-29 20:50 - 2014-10-29 04:12 - 00102728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-10-29 20:50 - 2014-10-29 04:12 - 00087224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpr.dll
2015-10-29 20:50 - 2014-10-29 04:12 - 00051096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wwapi.dll
2015-10-29 20:50 - 2014-10-29 04:11 - 02528760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 02447104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 01037656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 01024200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2015-10-29 20:50 - 2014-10-29 04:11 - 00914648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 00492704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 00488064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll
2015-10-29 20:50 - 2014-10-29 04:11 - 00463744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 00275280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 00274256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 00245296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMASF.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 00229248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 00191104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2015-10-29 20:50 - 2014-10-29 04:11 - 00190048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVol.exe
2015-10-29 20:50 - 2014-10-29 04:11 - 00187488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2015-10-29 20:50 - 2014-10-29 04:11 - 00184888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 00183832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 00150776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpps.dll
2015-10-29 20:50 - 2014-10-29 04:11 - 00099104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2015-10-29 20:50 - 2014-10-29 04:11 - 00076912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2015-10-29 20:50 - 2014-10-29 04:11 - 00031496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avrt.dll
2015-10-29 20:50 - 2014-10-29 04:11 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CameraSettingsUIHost.exe
2015-10-29 20:50 - 2014-10-29 04:10 - 01906872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplaySwitch.exe
2015-10-29 20:50 - 2014-10-29 04:10 - 01564464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 01287112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 01178104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00569128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clbcatq.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00547992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00492232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00367248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00278352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shlwapi.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00276816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00272648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00094464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RestoreOptIn.exe
2015-10-29 20:50 - 2014-10-29 04:10 - 00091936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpenWith.exe
2015-10-29 20:50 - 2014-10-29 04:10 - 00052664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wtsapi32.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00052664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcRtRemote.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00040816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudNotifications.exe
2015-10-29 20:50 - 2014-10-29 04:10 - 00038184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\utildll.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00034016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialUIBroker.exe
2015-10-29 20:50 - 2014-10-29 04:10 - 00030944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountBroker.exe
2015-10-29 20:50 - 2014-10-29 04:10 - 00029888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PasswordOnWakeSettingFlyout.exe
2015-10-29 20:50 - 2014-10-29 04:10 - 00026304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\version.dll
2015-10-29 20:50 - 2014-10-29 04:10 - 00026304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PickerHost.exe
2015-10-29 20:50 - 2014-10-29 04:09 - 00017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
2015-10-29 20:50 - 2014-10-29 04:07 - 05120000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWSnapin.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 01321192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 01115104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00959112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00857384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00801584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00785568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00705008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00700328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00584120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00551064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00482360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmdev.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00409040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00399752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00336680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00331048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00320256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00260800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00202440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00136840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00134280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWWizFwk.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00110512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00089816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msacm32.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00081008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00039720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdmo.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00036136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msgsm32.acm
2015-10-29 20:50 - 2014-10-29 04:07 - 00029960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imaadp32.acm
2015-10-29 20:50 - 2014-10-29 04:07 - 00028896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msadp32.acm
2015-10-29 20:50 - 2014-10-29 04:07 - 00026816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-10-29 20:50 - 2014-10-29 04:07 - 00022720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msg711.acm
2015-10-29 20:50 - 2014-10-29 04:07 - 00019096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2015-10-29 20:50 - 2014-10-29 04:07 - 00018040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CompPkgSup.dll
2015-10-29 20:50 - 2014-10-29 04:06 - 00800008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2015-10-29 20:50 - 2014-10-29 04:06 - 00111064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTWorkQ.dll
2015-10-29 20:50 - 2014-10-29 04:06 - 00090368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfAACEnc.dll
2015-10-29 20:50 - 2014-10-29 04:06 - 00080016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcd.dll
2015-10-29 20:50 - 2014-10-29 04:06 - 00074824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2015-10-29 20:50 - 2014-10-29 04:05 - 00890128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-10-29 20:50 - 2014-10-29 04:05 - 00321248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2015-10-29 20:50 - 2014-10-29 04:05 - 00120864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2015-10-29 20:50 - 2014-10-29 04:05 - 00052152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profapi.dll
2015-10-29 20:50 - 2014-10-29 04:05 - 00030984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-10-29 20:50 - 2014-10-29 04:05 - 00026304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winnsi.dll
2015-10-29 20:50 - 2014-10-29 04:05 - 00020120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nsi.dll
2015-10-29 20:50 - 2014-10-29 03:56 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2015-10-29 20:50 - 2014-10-29 03:56 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2015-10-29 20:50 - 2014-10-29 03:50 - 02628608 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2015-10-29 20:50 - 2014-10-29 03:50 - 01192960 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-10-29 20:50 - 2014-10-29 03:49 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2015-10-29 20:50 - 2014-10-29 03:49 - 00604672 _____ (Microsoft Corporation) C:\Windows\system32\msvcp60.dll
2015-10-29 20:50 - 2014-10-29 03:49 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\msvcirt.dll
2015-10-29 20:50 - 2014-10-29 03:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\DeviceUxRes.dll
2015-10-29 20:50 - 2014-10-29 03:49 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2015-10-29 20:50 - 2014-10-29 03:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Firewall.cpl
2015-10-29 20:50 - 2014-10-29 03:49 - 00004608 _____ (Microsoft Corporation) C:\Windows\system32\ws2help.dll
2015-10-29 20:50 - 2014-10-29 03:49 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\rnr20.dll
2015-10-29 20:50 - 2014-10-29 03:48 - 00925696 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2015-10-29 20:50 - 2014-10-29 03:48 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2015-10-29 20:50 - 2014-10-29 03:48 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\SSShim.dll
2015-10-29 20:50 - 2014-10-29 03:48 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-10-29 20:50 - 2014-10-29 03:48 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll
2015-10-29 20:50 - 2014-10-29 03:48 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-10-29 20:50 - 2014-10-29 03:48 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\lmhsvc.dll
2015-10-29 20:50 - 2014-10-29 03:48 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\ktmw32.dll
2015-10-29 20:50 - 2014-10-29 03:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\bi.dll
2015-10-29 20:50 - 2014-10-29 03:48 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys
2015-10-29 20:50 - 2014-10-29 03:48 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\WSHTCPIP.DLL
2015-10-29 20:50 - 2014-10-29 03:48 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wship6.dll
2015-10-29 20:50 - 2014-10-29 03:48 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\txfw32.dll
2015-10-29 20:50 - 2014-10-29 03:48 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys
2015-10-29 20:50 - 2014-10-29 03:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\Locator.exe
2015-10-29 20:50 - 2014-10-29 03:48 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-10-29 20:50 - 2014-10-29 03:47 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-10-29 20:50 - 2014-10-29 03:47 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-10-29 20:50 - 2014-10-29 03:47 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys
2015-10-29 20:50 - 2014-10-29 03:47 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys
2015-10-29 20:50 - 2014-10-29 03:47 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2015-10-29 20:50 - 2014-10-29 03:47 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WSDScan.sys
2015-10-29 20:50 - 2014-10-29 03:46 - 00272384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-10-29 20:50 - 2014-10-29 03:46 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-10-29 20:50 - 2014-10-29 03:46 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-10-29 20:50 - 2014-10-29 03:46 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netvsc63.sys
2015-10-29 20:50 - 2014-10-29 03:46 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2015-10-29 20:50 - 2014-10-29 03:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiscap.sys
2015-10-29 20:50 - 2014-10-29 03:46 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys
2015-10-29 20:50 - 2014-10-29 03:46 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys
2015-10-29 20:50 - 2014-10-29 03:46 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2015-10-29 20:50 - 2014-10-29 03:46 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\glmf32.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\miguiresource.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NdisImPlatform.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Ndu.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\SortWindows6Compat.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mslldp.sys
2015-10-29 20:50 - 2014-10-29 03:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2015-10-29 20:50 - 2014-10-29 03:45 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\sfc_os.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\SortWindows61.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mciwave.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wiatrace.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\netbios.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\SensApi.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\regidle.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\oleacchooks.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\AutoWorkplaceN.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\osuninst.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-10-29 20:50 - 2014-10-29 03:45 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-10-29 20:50 - 2014-10-29 03:45 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\normaliz.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 02022912 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\glu32.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\msdadiag.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\vds_ps.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\spfileq.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\SPInf.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mciavi32.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\MSchedExe.exe
2015-10-29 20:50 - 2014-10-29 03:44 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\spoolss.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\fthsvc.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\efslsaext.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\feclient.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\dmocx.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\lsmproxy.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\bderepair.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\SortServer2003Compat.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\regini.exe
2015-10-29 20:50 - 2014-10-29 03:44 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\htui.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\cnvfat.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\efsutil.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\idndl.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\Nlsdl.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\hidserv.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\winrnr.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\blb_ps.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\cmpbk32.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\dmutil.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\davhlpr.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\irmon.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\sisbkup.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\mgmtapi.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\WofUtil.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\clb.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wsock32.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\msidcrl40.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\d3d8thk.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\sas.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\WlS0WndH.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msiwer.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\mscat32.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\nddeapi.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\XInput9_1_0.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\softpub.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\OskSupport.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\getuname.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\mtxex.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\mssip32.dll
2015-10-29 20:50 - 2014-10-29 03:44 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll

opecgreen 20.11.2015 20:32
Nummer drei:

Code:
2015-10-29 20:50 - 2014-10-29 03:43 - 00685056 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\telephon.cpl
2015-10-29 20:50 - 2014-10-29 03:43 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\radardt.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\fmapi.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2015-10-29 20:50 - 2014-10-29 03:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\mode.com
2015-10-29 20:50 - 2014-10-29 03:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\ureg.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\osbaseln.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\comp.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\fc.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\sort.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dbnmpntw.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\replace.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\msiltcfg.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\tree.com
2015-10-29 20:50 - 2014-10-29 03:43 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\rasctrs.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\doskey.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\find.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\cmdkey.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\print.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\label.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\subst.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\diskcomp.com
2015-10-29 20:50 - 2014-10-29 03:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\MUILanguageCleanup.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\LangCleanupSysprepAction.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\spwinsat.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\pnpts.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com
2015-10-29 20:50 - 2014-10-29 03:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\recover.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\diskcopy.com
2015-10-29 20:50 - 2014-10-29 03:43 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\tapiperf.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\dvdplay.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\TimeDateMUICallback.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iscsied.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\help.exe
2015-10-29 20:50 - 2014-10-29 03:43 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\spmpm.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\acledit.dll
2015-10-29 20:50 - 2014-10-29 03:43 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 01091584 _____ (Microsoft Corporation) C:\Windows\system32\opengl32.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\uudf.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\iscsiwmiv2.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\dbnetlib.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\colorcpl.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\makecab.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00082432 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\l3codeca.acm
2015-10-29 20:50 - 2014-10-29 03:42 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\unimdmat.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\NapiNSP.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\drttransport.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\mcicda.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\odbcbcp.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\cmmon32.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\hwrcomp.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\efssvc.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\klist.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\DDOIProxy.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\syskey.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\cliconfg.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\drprov.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\wephostsvc.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\WINSRPC.DLL
2015-10-29 20:50 - 2014-10-29 03:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\pcacli.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\midimap.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\umdmxfrm.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\convert.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\chkntfs.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\snmptrap.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TapiUnattend.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\ifsutilx.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\IconCodecService.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wshnetbs.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\usbperf.dll
2015-10-29 20:50 - 2014-10-29 03:42 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\dcomcnfg.exe
2015-10-29 20:50 - 2014-10-29 03:42 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\RpcNs4.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\drt.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2015-10-29 20:50 - 2014-10-29 03:41 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\adsldpc.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\dispdiag.exe
2015-10-29 20:50 - 2014-10-29 03:41 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\cliconfg.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\expand.exe
2015-10-29 20:50 - 2014-10-29 03:41 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\dmintf.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\dxpps.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\hidphone.tsp
2015-10-29 20:50 - 2014-10-29 03:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dispex.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2015-10-29 20:50 - 2014-10-29 03:41 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\serwvdrv.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\xmlprovi.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\mpnotify.exe
2015-10-29 20:50 - 2014-10-29 03:41 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\gpupdate.exe
2015-10-29 20:50 - 2014-10-29 03:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\localui.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\tcmsetup.exe
2015-10-29 20:50 - 2014-10-29 03:41 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\RdpSaPs.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\SyncHostps.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\mmcico.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\panmap.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wmcodecdspps.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\scrnsave.scr
2015-10-29 20:50 - 2014-10-29 03:41 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\spnet.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\CIRCoInst.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\shfolder.dll
2015-10-29 20:50 - 2014-10-29 03:41 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00610816 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.ps.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\dinput8.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\sccls.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe
2015-10-29 20:50 - 2014-10-29 03:40 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\SyncInfrastructureps.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx5.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\linkinfo.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\easinvoker.proxystub.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\irclass.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\TSChannel.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx7.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wscproxystub.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx6.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx3.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx4.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\VmApplicationHealthMonitorProxy.dll
2015-10-29 20:50 - 2014-10-29 03:40 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-10-29 20:50 - 2014-10-29 03:39 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2015-10-29 20:50 - 2014-10-29 03:39 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\wevtfwd.dll
2015-10-29 20:50 - 2014-10-29 03:39 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2015-10-29 20:50 - 2014-10-29 03:39 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\ksetup.exe
2015-10-29 20:50 - 2014-10-29 03:39 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\icmui.dll
2015-10-29 20:50 - 2014-10-29 03:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\easconsent.dll
2015-10-29 20:50 - 2014-10-29 03:38 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2015-10-29 20:50 - 2014-10-29 03:38 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2015-10-29 20:50 - 2014-10-29 03:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\pid.dll
2015-10-29 20:50 - 2014-10-29 03:38 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\capisp.dll
2015-10-29 20:50 - 2014-10-29 03:38 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\nbtstat.exe
2015-10-29 20:50 - 2014-10-29 03:38 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\pstorec.dll
2015-10-29 20:50 - 2014-10-29 03:38 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\msctfime.ime
2015-10-29 20:50 - 2014-10-29 03:37 - 15789568 _____ (Microsoft Corporation) C:\Windows\system32\DDORes.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 02329088 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data0404.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\dhcpsapi.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\dinput.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\msctfui.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\avicap32.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\drtprov.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\MsiCofire.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\dsauth.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\sxstrace.exe
2015-10-29 20:50 - 2014-10-29 03:37 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\RpcPing.exe
2015-10-29 20:50 - 2014-10-29 03:37 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\LldpNotify.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\msacm32.drv
2015-10-29 20:50 - 2014-10-29 03:37 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\VscMgrPS.dll
2015-10-29 20:50 - 2014-10-29 03:37 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\secinit.exe
2015-10-29 20:50 - 2014-10-29 03:37 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\ctfmon.exe
2015-10-29 20:50 - 2014-10-29 03:36 - 00546304 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese40.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2015-10-29 20:50 - 2014-10-29 03:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\msctfp.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\cic.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\prncache.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\chartv.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\mmcshext.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\PlaySndSrv.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\iscsidsc.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\Magnification.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\qmgrprxy.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\traffic.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\extrac32.exe
2015-10-29 20:50 - 2014-10-29 03:36 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\rpcnsh.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\AzSqlExt.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\bridgeunattend.exe
2015-10-29 20:50 - 2014-10-29 03:36 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\icsunattend.exe
2015-10-29 20:50 - 2014-10-29 03:36 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ktmutil.exe
2015-10-29 20:50 - 2014-10-29 03:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx2.dll
2015-10-29 20:50 - 2014-10-29 03:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\verclsid.exe
2015-10-29 20:50 - 2014-10-29 03:36 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\acproxy.dll
2015-10-29 20:50 - 2014-10-29 03:35 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\adsldp.dll
2015-10-29 20:50 - 2014-10-29 03:35 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\MSWB7.dll
2015-10-29 20:50 - 2014-10-29 03:35 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
2015-10-29 20:50 - 2014-10-29 03:35 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2015-10-29 20:50 - 2014-10-29 03:35 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\CertPolEng.dll
2015-10-29 20:50 - 2014-10-29 03:35 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\dot3dlg.dll
2015-10-29 20:50 - 2014-10-29 03:35 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
2015-10-29 20:50 - 2014-10-29 03:35 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\PlayToStatusProvider.dll
2015-10-29 20:50 - 2014-10-29 03:35 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\tcpmib.dll
2015-10-29 20:50 - 2014-10-29 03:35 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\cofiredm.dll
2015-10-29 20:50 - 2014-10-29 03:35 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\wscisvif.dll
2015-10-29 20:50 - 2014-10-29 03:35 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\PnPutil.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 03438592 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data0804.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\vdsdyn.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\rgb9rast.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\fms.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\iscsicpl.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\rasauto.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\sxproxy.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\eventvwr.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\iasdatastore.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\netprovisionsp.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\hdwwiz.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\winver.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\cmutil.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\bitsigd.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\dmloader.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\rasphone.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UI0Detect.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\where.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\rdrleakdiag.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dialer.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\ias.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\timeout.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\clip.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\at.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEject.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\cofire.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\uniplat.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\regsvr32.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\compact.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\kernelceip.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\rasdial.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\fsavailux.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcmonitor.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TapiSysprep.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\cmdext.dll
2015-10-29 20:50 - 2014-10-29 03:34 - 00011264 _____ (Microsoft Corporation) C:\Windows\write.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\write.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\regedt32.exe
2015-10-29 20:50 - 2014-10-29 03:34 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\systray.exe
2015-10-29 20:50 - 2014-10-29 03:33 - 07558144 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data0011.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00860672 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data001E.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00799744 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\dsdmo.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\usbceip.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\msvfw32.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\oledlg.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\dmsynth.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\atl.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\KMSVC.DLL
2015-10-29 20:50 - 2014-10-29 03:33 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\ndadmin.exe
2015-10-29 20:50 - 2014-10-29 03:33 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\fhevents.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\NetVscCoinstall.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\VmdCoinstall.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe
2015-10-29 20:50 - 2014-10-29 03:33 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\msports.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\cttunesvr.exe
2015-10-29 20:50 - 2014-10-29 03:33 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Apphlpdm.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\bthpanapi.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\sxsstore.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\MemoryDiagnostic.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\dswave.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\vdsldr.exe
2015-10-29 20:50 - 2014-10-29 03:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdiagnhost.exe
2015-10-29 20:50 - 2014-10-29 03:33 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\runas.exe
2015-10-29 20:50 - 2014-10-29 03:33 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\rasautou.exe
2015-10-29 20:50 - 2014-10-29 03:33 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\hnetmon.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\pstask.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\svsvc.dll
2015-10-29 20:50 - 2014-10-29 03:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\LAPRXY.DLL
2015-10-29 20:50 - 2014-10-29 03:33 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\InfDefaultInstall.exe
2015-10-29 20:50 - 2014-10-29 03:32 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\migflt.dll
2015-10-29 20:50 - 2014-10-29 03:32 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\sqlceoledb40.dll
2015-10-29 20:50 - 2014-10-29 03:32 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\SCardSvr.dll
2015-10-29 20:50 - 2014-10-29 03:32 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\sqlcecompact40.dll
2015-10-29 20:50 - 2014-10-29 03:32 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
2015-10-29 20:50 - 2014-10-29 03:32 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\amstream.dll
2015-10-29 20:50 - 2014-10-29 03:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax
2015-10-29 20:50 - 2014-10-29 03:32 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\sdiagschd.dll
2015-10-29 20:50 - 2014-10-29 03:32 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDisplayStatusManager.dll
2015-10-29 20:50 - 2014-10-29 03:32 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2015-10-29 20:50 - 2014-10-29 03:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\CHxReadingStringIME.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00971264 _____ (Microsoft Corporation) C:\Windows\system32\sqlceqp40.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00590848 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-10-29 20:50 - 2014-10-29 03:31 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\WinSyncMetastore.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2015-10-29 20:50 - 2014-10-29 03:31 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\dmview.ocx
2015-10-29 20:50 - 2014-10-29 03:31 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WSTPager.ax
2015-10-29 20:50 - 2014-10-29 03:31 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\cca.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchph.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\gacinstall.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\fhcleanup.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\fsutilext.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\MsCtfMonitor.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingProxy.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\wlaninst.dll
2015-10-29 20:50 - 2014-10-29 03:31 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2015-10-29 20:50 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70804.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70404.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB7001E.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70011.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msaatext.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SensorsClassExtension.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Syncreg.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\sigverif.exe
2015-10-29 20:50 - 2014-10-29 03:30 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\WwanRadioManager.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\cmdl32.exe
2015-10-29 20:50 - 2014-10-29 03:30 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\pnppolicy.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\forfiles.exe
2015-10-29 20:50 - 2014-10-29 03:30 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\RotMgr.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\dfdts.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\mciqtz32.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\sfc.exe
2015-10-29 20:50 - 2014-10-29 03:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\eventcreate.exe
2015-10-29 20:50 - 2014-10-29 03:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\choice.exe
2015-10-29 20:50 - 2014-10-29 03:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\bdeui.dll
2015-10-29 20:50 - 2014-10-29 03:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\RmClient.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 01502720 _____ (Microsoft Corporation) C:\Windows\system32\diskcopy.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 01246720 _____ (Microsoft Corporation) C:\Windows\system32\ogldrv.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00620544 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00475648 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl
2015-10-29 20:50 - 2014-10-29 03:29 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\mmcbase.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\verifier.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\iassvcs.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\dmusic.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\fhsvc.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchapi.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\console.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\WWanHC.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\whoami.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\sdchange.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\ddodiag.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\TSTheme.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\waitfor.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\tapilua.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\setspn.exe
2015-10-29 20:50 - 2014-10-29 03:29 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2015-10-29 20:50 - 2014-10-29 03:29 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\wshelper.dll
2015-10-29 20:50 - 2014-10-29 03:28 - 01502208 _____ (Microsoft Corporation) C:\Windows\system32\xpssvcs.dll
2015-10-29 20:50 - 2014-10-29 03:28 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll
2015-10-29 20:50 - 2014-10-29 03:28 - 00177152 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\l3codecp.acm
2015-10-29 20:50 - 2014-10-29 03:28 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll
2015-10-29 20:50 - 2014-10-29 03:28 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\gcdef.dll
2015-10-29 20:50 - 2014-10-29 03:28 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-10-29 20:50 - 2014-10-29 03:28 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2015-10-29 20:50 - 2014-10-29 03:28 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\bootcfg.exe
2015-10-29 20:50 - 2014-10-29 03:28 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\odbcad32.exe
2015-10-29 20:50 - 2014-10-29 03:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\iaspolcy.dll
2015-10-29 20:50 - 2014-10-29 03:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll
2015-10-29 20:50 - 2014-10-29 03:28 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00899584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\adsnt.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2015-10-29 20:50 - 2014-10-29 03:27 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\NAPSTAT.EXE
2015-10-29 20:50 - 2014-10-29 03:27 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dmdskmgr.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\mycomput.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\qdv.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\mssha.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\sdiageng.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\wmvdspa.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\tpmvscmgr.exe
2015-10-29 20:50 - 2014-10-29 03:27 - 00138752 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2015-10-29 20:50 - 2014-10-29 03:27 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\mfdvdec.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe
2015-10-29 20:50 - 2014-10-29 03:27 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\CompMgmtLauncher.exe
2015-10-29 20:50 - 2014-10-29 03:27 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\loghours.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TabbtnEx.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\SCardDlg.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mmci.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\vdsvd.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\dssec.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\dtsh.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Dot3Conn.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Workplace.WorkplaceSettings.dll
2015-10-29 20:50 - 2014-10-29 03:27 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\serialui.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00771584 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\SmartCardSimulator.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00431104 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\gpresult.exe
2015-10-29 20:50 - 2014-10-29 03:26 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\iscsiexe.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\NdisImPlatform.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2015-10-29 20:50 - 2014-10-29 03:26 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\QUTIL.DLL
2015-10-29 20:50 - 2014-10-29 03:26 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\nlahc.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\usbui.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2015-10-29 20:50 - 2014-10-29 03:26 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\ksxbar.ax
2015-10-29 20:50 - 2014-10-29 03:26 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax
2015-10-29 20:50 - 2014-10-29 03:26 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cipher.exe
2015-10-29 20:50 - 2014-10-29 03:26 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\netcfg.exe
2015-10-29 20:50 - 2014-10-29 03:26 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wmiprop.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\BthSQM.dll
2015-10-29 20:50 - 2014-10-29 03:26 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\chkwudrv.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00995328 _____ (Microsoft Corporation) C:\Windows\system32\tapi3.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00785920 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\sdohlp.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\rasplap.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2015-10-29 20:50 - 2014-10-29 03:25 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\hwrreg.exe
2015-10-29 20:50 - 2014-10-29 03:25 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\fvenotify.exe
2015-10-29 20:50 - 2014-10-29 03:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2015-10-29 20:50 - 2014-10-29 03:25 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr
2015-10-29 20:50 - 2014-10-29 03:25 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\iashlpr.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\fontview.exe
2015-10-29 20:50 - 2014-10-29 03:25 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\resmon.exe
2015-10-29 20:50 - 2014-10-29 03:25 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2015-10-29 20:50 - 2014-10-29 03:25 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\QCLIPROV.DLL
2015-10-29 20:50 - 2014-10-29 03:25 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\bidispl.dll
2015-10-29 20:50 - 2014-10-29 03:25 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\napipsec.dll
2015-10-29 20:50 - 2014-10-29 03:24 - 00788480 _____ (Microsoft Corporation) C:\Windows\system32\Bubbles.scr
2015-10-29 20:50 - 2014-10-29 03:24 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2015-10-29 20:50 - 2014-10-29 03:24 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\WmpDui.dll
2015-10-29 20:50 - 2014-10-29 03:24 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2015-10-29 20:50 - 2014-10-29 03:24 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.exe
2015-10-29 20:50 - 2014-10-29 03:24 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr
2015-10-29 20:50 - 2014-10-29 03:24 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll
2015-10-29 20:50 - 2014-10-29 03:24 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2015-10-29 20:50 - 2014-10-29 03:24 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\bdaplgin.ax
2015-10-29 20:50 - 2014-10-29 03:24 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\LocationNotifications.exe
2015-10-29 20:50 - 2014-10-29 03:24 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\xwizard.exe
2015-10-29 20:50 - 2014-10-29 03:24 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cmcfg32.dll
2015-10-29 20:50 - 2014-10-29 03:24 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\pwlauncher.exe
2015-10-29 20:50 - 2014-10-29 03:24 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\NcaApi.dll
2015-10-29 20:50 - 2014-10-29 03:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\pcwrun.exe
2015-10-29 20:50 - 2014-10-29 03:23 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\offfilt.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\dot3gpui.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\tapi32.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\ssText3d.scr
2015-10-29 20:50 - 2014-10-29 03:23 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Tabbtn.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerWizardElev.exe
2015-10-29 20:50 - 2014-10-29 03:23 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\scripto.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\dispci.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\AtBroker.exe
2015-10-29 20:50 - 2014-10-29 03:23 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\montr_ci.dll
2015-10-29 20:50 - 2014-10-29 03:23 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\wowreg32.exe
2015-10-29 20:50 - 2014-10-29 03:22 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\recimg.exe
2015-10-29 20:50 - 2014-10-29 03:22 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2015-10-29 20:50 - 2014-10-29 03:22 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2015-10-29 20:50 - 2014-10-29 03:22 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\wmdmps.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\igdDiag.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2015-10-29 20:50 - 2014-10-29 03:22 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\radarrs.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Storprop.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\PNPXAssocPrx.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\ndproxystub.dll
2015-10-29 20:50 - 2014-10-29 03:22 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\dxgwdi.dll
2015-10-29 20:50 - 2014-10-29 03:21 - 01664000 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2015-10-29 20:50 - 2014-10-29 03:21 - 01086464 _____ (Microsoft Corporation) C:\Windows\system32\onexui.dll
2015-10-29 20:50 - 2014-10-29 03:21 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\iassdo.dll
2015-10-29 20:50 - 2014-10-29 03:21 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\iassam.dll
2015-10-29 20:50 - 2014-10-29 03:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\kstvtune.ax
2015-10-29 20:50 - 2014-10-29 03:21 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll
2015-10-29 20:50 - 2014-10-29 03:20 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2015-10-29 20:50 - 2014-10-29 03:20 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\nshipsec.dll
2015-10-29 20:50 - 2014-10-29 03:20 - 00397312 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2015-10-29 20:50 - 2014-10-29 03:20 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\modemui.dll
2015-10-29 20:50 - 2014-10-29 03:20 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2015-10-29 20:50 - 2014-10-29 03:20 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\iscsicpl.dll
2015-10-29 20:50 - 2014-10-29 03:20 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2015-10-29 20:50 - 2014-10-29 03:20 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl
2015-10-29 20:50 - 2014-10-29 03:20 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2015-10-29 20:50 - 2014-10-29 03:20 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\ncpa.cpl
2015-10-29 20:50 - 2014-10-29 03:20 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationHost.exe
2015-10-29 20:50 - 2014-10-29 03:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2015-10-29 20:50 - 2014-10-29 03:20 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\deskadp.dll
2015-10-29 20:50 - 2014-10-29 03:20 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\docprop.dll
2015-10-29 20:50 - 2014-10-29 03:20 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\shutdown.exe
2015-10-29 20:50 - 2014-10-29 03:20 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe
2015-10-29 20:50 - 2014-10-29 03:20 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\WallpaperHost.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 09732096 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000a.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2015-10-29 20:50 - 2014-10-29 03:19 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\dskquoui.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\auditcse.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\icsigd.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\softkbd.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\joy.cpl
2015-10-29 20:50 - 2014-10-29 03:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00128512 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\WinMsoIrmProtector.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\control.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\WinOpcIrmProtector.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\DeviceProperties.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesRemote.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesProtection.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesPerformance.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesHardware.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesDataExecutionPrevention.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesComputerName.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesAdvanced.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\fhautoplay.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingWizard.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\ustprov.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\rundll32.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\deskmon.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\wmdmlog.dll
2015-10-29 20:50 - 2014-10-29 03:19 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Netplwiz.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Eap3Host.exe
2015-10-29 20:50 - 2014-10-29 03:19 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\DefaultDeviceManager.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 06259712 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0009.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 04616704 _____ (Microsoft Corporation) C:\Windows\system32\NlsData001d.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 02403328 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000c.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 02140672 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0007.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 01609216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0000.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\mscandui.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWGP.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00272896 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\unattend.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\SmartScreenSettings.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\OptionalFeatures.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Fondue.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\isoburn.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\MdRes.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\DpiScaling.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\napdsnap.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\cfgbkend.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\RunLegacyCPLElevated.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\TapiMigPlugin.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\RegCtrl.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\SyncHost.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\ComputerDefaults.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\ThumbnailExtractionHost.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\BthMtpContextHandler.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\dvdupgrd.exe
2015-10-29 20:50 - 2014-10-29 03:18 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\NcdProp.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\DefaultPrinterProvider.dll
2015-10-29 20:50 - 2014-10-29 03:18 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\grpconv.exe
2015-10-29 20:50 - 2014-10-29 03:17 - 04621312 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0414.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 04620288 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0816.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 03231232 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004b.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 02480128 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000d.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 02003456 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2015-10-29 20:50 - 2014-10-29 03:17 - 01926144 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0022.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\hdwwiz.cpl
2015-10-29 20:50 - 2014-10-29 03:17 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\SNTSearch.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\nlmgp.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2015-10-29 20:50 - 2014-10-29 03:17 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\fde.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-10-29 20:50 - 2014-10-29 03:17 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-10-29 20:50 - 2014-10-29 03:17 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\imapi.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\WinSyncProviders.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\fhmanagew.exe
2015-10-29 20:50 - 2014-10-29 03:17 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\msdart.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\ndfhcdiscovery.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\XPSSHHDR.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\cmstp.exe
2015-10-29 20:50 - 2014-10-29 03:17 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe
2015-10-29 20:50 - 2014-10-29 03:17 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\correngine.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\mobsync.exe
2015-10-29 20:50 - 2014-10-29 03:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\dot3hc.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\DfsShlEx.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\playlistfolder.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\l2nacp.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\msident.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\fhtask.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\ucmhc.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanpref.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\cmlua.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe
2015-10-29 20:50 - 2014-10-29 03:17 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\hcproviders.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\aecache.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\tvratings.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\witnesswmiv2provider.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\wsepno.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\SmsDeviceAccessRevocation.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\shpafact.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\cmstplua.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\FXSUNATD.exe
2015-10-29 20:50 - 2014-10-29 03:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\DDACLSys.dll
2015-10-29 20:50 - 2014-10-29 03:17 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RemoveDeviceElevated.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 04621312 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0010.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 04616704 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0416.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 03235840 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0039.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004a.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2015-10-29 20:50 - 2014-10-29 03:16 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\comsnap.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 00217600 _____ (Microsoft Corporation) C:\Windows\system32\cleanmgr.exe
2015-10-29 20:50 - 2014-10-29 03:16 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe
2015-10-29 20:50 - 2014-10-29 03:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\lltdapi.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\gpprnext.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\ndfetw.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\pwsso.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2015-10-29 20:50 - 2014-10-29 03:16 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-10-29 20:50 - 2014-10-29 03:16 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\fdWNet.dll
2015-10-29 20:50 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004e.dll
2015-10-29 20:50 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0049.dll
2015-10-29 20:50 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0047.dll
2015-10-29 20:50 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0046.dll
2015-10-29 20:50 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0020.dll
2015-10-29 20:50 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0026.dll
2015-10-29 20:50 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0024.dll
2015-10-29 20:50 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData001b.dll
2015-10-29 20:50 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0002.dll
2015-10-29 20:50 - 2014-10-29 03:15 - 01904640 _____ (Microsoft Corporation) C:\Windows\system32\NlsData002a.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004c.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0045.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 02075136 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0027.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0c1a.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData081a.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData001a.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0018.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000f.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0003.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 01904640 _____ (Microsoft Corporation) C:\Windows\system32\NlsData003e.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 01904640 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0021.dll
2015-10-29 20:50 - 2014-10-29 03:14 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2015-10-29 20:50 - 2014-10-29 03:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\prnfldr.dll
2015-10-29 20:50 - 2014-10-29 03:13 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2015-10-29 20:50 - 2014-10-29 03:13 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll
2015-10-29 20:50 - 2014-10-29 03:13 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll
2015-10-29 20:50 - 2014-10-29 03:13 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\PNPXAssoc.dll
2015-10-29 20:50 - 2014-10-29 03:13 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2015-10-29 20:50 - 2014-10-29 03:13 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\ConnectedAccountState.dll
2015-10-29 20:50 - 2014-10-29 03:13 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\SetNetworkLocation.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00660480 _____ (Microsoft Corporation) C:\Windows\system32\dccw.exe
2015-10-29 20:50 - 2014-10-29 03:12 - 00441344 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\shrpubw.exe
2015-10-29 20:50 - 2014-10-29 03:12 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\fhcat.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
2015-10-29 20:50 - 2014-10-29 03:12 - 00154624 _____ (Microsoft Corporation) C:\Windows\regedit.exe
2015-10-29 20:50 - 2014-10-29 03:12 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\fhshl.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\xwreg.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00096256 _____ C:\Windows\system32\BthpanContextHandler.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\bthci.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\iscsiwmi.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\WABSyncProvider.dll
2015-10-29 20:50 - 2014-10-29 03:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\efsui.exe
2015-10-29 20:50 - 2014-10-29 03:11 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2015-10-29 20:50 - 2014-10-29 03:11 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2015-10-29 20:50 - 2014-10-29 03:11 - 00475648 _____ (Microsoft Corporation) C:\Windows\system32\SnippingTool.exe
2015-10-29 20:50 - 2014-10-29 03:11 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\dmdlgs.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00435712 _____ (Microsoft Corporation) C:\Windows\system32\mswmdm.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\sensrsvc.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\hgprint.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\mdminst.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\uireng.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\McxDriv.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\profprov.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\btpanui.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptext.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00053248 _____ C:\Windows\system32\BWContextHandler.dll
2015-10-29 20:50 - 2014-10-29 03:11 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\FdDevQuery.dll
2015-10-29 20:50 - 2014-10-29 03:10 - 00515072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2015-10-29 20:50 - 2014-10-29 03:10 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\RASMM.dll
2015-10-29 20:50 - 2014-10-29 03:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\dsprop.dll
2015-10-29 20:50 - 2014-10-29 03:10 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\pnpclean.dll
2015-10-29 20:50 - 2014-10-29 03:10 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\wshext.dll
2015-10-29 20:50 - 2014-10-29 03:10 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\winsockhc.dll
2015-10-29 20:50 - 2014-10-29 03:10 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\frprov.dll
2015-10-29 20:50 - 2014-10-29 03:10 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.dll
2015-10-29 20:50 - 2014-10-29 03:10 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\tcpmonui.dll
2015-10-29 20:50 - 2014-10-29 03:10 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentHost.dll
2015-10-29 20:50 - 2014-10-29 03:10 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\srwmi.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00601600 _____ (Microsoft Corporation) C:\Windows\system32\psr.exe
2015-10-29 20:50 - 2014-10-29 03:09 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2015-10-29 20:50 - 2014-10-29 03:09 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\cttune.exe
2015-10-29 20:50 - 2014-10-29 03:09 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\lltdsvc.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\RstrtMgr.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceSyncProvider.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\twext.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\dskquota.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-10-29 20:50 - 2014-10-29 03:09 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\remotesp.tsp
2015-10-29 20:50 - 2014-10-29 03:09 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\hotplug.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\MbaeXmlParser.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\RemoveDeviceContextHandler.dll
2015-10-29 20:50 - 2014-10-29 03:09 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\bthudtask.exe
2015-10-29 20:50 - 2014-10-29 03:09 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\ntlanui2.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 01540096 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00920064 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00858624 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00390656 _____ (Microsoft Corporation) C:\Windows\system32\difxapi.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\fdprint.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2015-10-29 20:50 - 2014-10-29 03:08 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\sdiagprv.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContent.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\DFDWiz.exe
2015-10-29 20:50 - 2014-10-29 03:08 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\MuiUnattend.exe
2015-10-29 20:50 - 2014-10-29 03:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\credwiz.exe
2015-10-29 20:50 - 2014-10-29 03:08 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDriverRetrievalClient.dll
2015-10-29 20:50 - 2014-10-29 03:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-10-29 20:50 - 2014-10-29 03:07 - 06692352 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2015-10-29 20:50 - 2014-10-29 03:07 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-10-29 20:50 - 2014-10-29 03:07 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2015-10-29 20:50 - 2014-10-29 03:07 - 00239104 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2015-10-29 20:50 - 2014-10-29 03:07 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\EhStorShell.dll
2015-10-29 20:50 - 2014-10-29 03:07 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\rshx32.dll
2015-10-29 20:50 - 2014-10-29 03:07 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\EhStorPwdMgr.dll
2015-10-29 20:50 - 2014-10-29 03:07 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\MaintenanceUI.dll
2015-10-29 20:50 - 2014-10-29 03:07 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 02902016 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 02134528 _____ (Microsoft Corporation) C:\Windows\system32\SensorsCpl.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 01313792 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2015-10-29 20:50 - 2014-10-29 03:06 - 00980480 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\colorui.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 00517120 _____ (Microsoft Corporation) C:\Windows\system32\cmdial32.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\MSAC3ENC.DLL
2015-10-29 20:50 - 2014-10-29 03:06 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe
2015-10-29 20:50 - 2014-10-29 03:06 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\vssadmin.exe
2015-10-29 20:50 - 2014-10-29 03:06 - 00113664 _____ (Microsoft) C:\Windows\system32\SMBHelperClass.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\ndishc.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\fhlisten.dll
2015-10-29 20:50 - 2014-10-29 03:06 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\DAConn.dll
2015-10-29 20:50 - 2014-10-29 03:05 - 02628608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons0009.dll
2015-10-29 20:50 - 2014-10-29 03:05 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2015-10-29 20:50 - 2014-10-29 03:05 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2015-10-29 20:50 - 2014-10-29 03:05 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-10-29 20:50 - 2014-10-29 03:05 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\keymgr.dll
2015-10-29 20:50 - 2014-10-29 03:05 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\Dsui.dll
2015-10-29 20:50 - 2014-10-29 03:05 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\systeminfo.exe
2015-10-29 20:50 - 2014-10-29 03:05 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\wiascanprofiles.dll
2015-10-29 20:50 - 2014-10-29 03:05 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\getmac.exe
2015-10-29 20:50 - 2014-10-29 03:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\gptext.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00638976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00612864 _____ (Microsoft Corporation) C:\Windows\system32\IasMigPlugin.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00587264 _____ (Microsoft Corporation) C:\Windows\system32\filemgmt.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00546304 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\devmgr.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00471040 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00460288 _____ (Microsoft Corporation) C:\Windows\system32\wiadefui.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00445440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp60.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2015-10-29 20:50 - 2014-10-29 03:04 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingFolder.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\taskkill.exe
2015-10-29 20:50 - 2014-10-29 03:04 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\wiaacmgr.exe
2015-10-29 20:50 - 2014-10-29 03:04 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2015-10-29 20:50 - 2014-10-29 03:04 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\srhelper.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\driverquery.exe
2015-10-29 20:50 - 2014-10-29 03:04 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\WSDScanProxy.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\SMSRouter.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcirt.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\SrTasks.exe
2015-10-29 20:50 - 2014-10-29 03:04 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceUxRes.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2help.dll
2015-10-29 20:50 - 2014-10-29 03:04 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rnr20.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 02334720 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00849408 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00832000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2015-10-29 20:50 - 2014-10-29 03:03 - 00489472 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\dsquery.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00263168 _____ (Microsoft Corporation) C:\Windows\system32\xwtpdui.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\xwtpw32.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\SoundRecorder.exe
2015-10-29 20:50 - 2014-10-29 03:03 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SSShim.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\tasklist.exe
2015-10-29 20:50 - 2014-10-29 03:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\sendmail.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\SetProxyCredential.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\brdgcfg.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ktmw32.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\txfw32.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wship6.dll
2015-10-29 20:50 - 2014-10-29 03:03 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSHTCPIP.DLL
2015-10-29 20:50 - 2014-10-29 03:03 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2015-10-29 20:50 - 2014-10-29 03:02 - 00520704 _____ (Microsoft Corporation) C:\Windows\system32\localsec.dll
2015-10-29 20:50 - 2014-10-29 03:02 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2015-10-29 20:50 - 2014-10-29 03:02 - 00476672 _____ (Microsoft Corporation) C:\Windows\system32\xwizards.dll
2015-10-29 20:50 - 2014-10-29 03:02 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2015-10-29 20:50 - 2014-10-29 03:02 - 00423424 _____ (Microsoft Corporation) C:\Windows\system32\irprops.cpl
2015-10-29 20:50 - 2014-10-29 03:02 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2015-10-29 20:50 - 2014-10-29 03:02 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\rasmontr.dll
2015-10-29 20:50 - 2014-10-29 03:02 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\EaseOfAccessDialog.exe
2015-10-29 20:50 - 2014-10-29 03:02 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\FXST30.dll
2015-10-29 20:50 - 2014-10-29 03:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2015-10-29 20:50 - 2014-10-29 03:02 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\signdrv.dll
2015-10-29 20:50 - 2014-10-29 03:02 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\RdpSa.exe
2015-10-29 20:50 - 2014-10-29 03:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WinFax.dll
2015-10-29 20:50 - 2014-10-29 03:01 - 00819200 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2015-10-29 20:50 - 2014-10-29 03:01 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl
2015-10-29 20:50 - 2014-10-29 03:01 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2015-10-29 20:50 - 2014-10-29 03:01 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll
2015-10-29 20:50 - 2014-10-29 03:01 - 00380928 _____ (Microsoft Corporation) C:\Windows\system32\cryptuiwizard.dll
2015-10-29 20:50 - 2014-10-29 03:01 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2015-10-29 20:50 - 2014-10-29 03:01 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\p2pnetsh.dll
2015-10-29 20:50 - 2014-10-29 03:01 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\irftp.exe
2015-10-29 20:50 - 2014-10-29 03:01 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAuthn.exe
2015-10-29 20:50 - 2014-10-29 03:01 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\dnshc.dll
2015-10-29 20:50 - 2014-10-29 03:01 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOM.dll
2015-10-29 20:50 - 2014-10-29 03:01 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\HelpPaneProxy.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 03814400 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 01861632 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OobeFldr.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dramp.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00435200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glmf32.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00371200 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2015-10-29 20:50 - 2014-10-29 03:00 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\fveui.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\nlhtml.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miguiresource.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syncui.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\racpldlg.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spfileq.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SPInf.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SortWindows6Compat.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\uicom.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\tpmcompc.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sfc_os.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SortWindows61.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SortServer2003Compat.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\idndl.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Nlsdl.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msisip.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciwave.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciseq.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shgina.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davhlpr.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmutil.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shunimpl.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscpxl32.dLL
2015-10-29 20:50 - 2014-10-29 03:00 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiatrace.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbios.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscat32.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browseui.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensApi.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\softpub.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacchooks.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nddeapi.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiwer.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched32.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssip32.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir50_32.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir41_32.ax
2015-10-29 20:50 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OskSupport.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir50_qcx.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir50_qc.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir41_qcx.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir41_qc.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir32_32.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\getuname.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osuninst.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-10-29 20:50 - 2014-10-29 03:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\normaliz.dll
2015-10-29 20:50 - 2014-10-29 03:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprop.dll

opecgreen 20.11.2015 20:34
Nummer vier:

[CODE]2015-10-29 20:50 - 2014-10-29 02:59 - 02013696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\batmeter.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00670720 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00564224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched20.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\SyncInfrastructure.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\wbadmin.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\QAGENT.DLL
2015-10-29 20:50 - 2014-10-29 02:59 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdadiag.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imm32.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glu32.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciavi32.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\networkitemfactory.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vds_ps.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmocx.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regini.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\feclient.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\htui.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cnvfat.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\pnpui.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\rtffilt.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\dfp.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hidserv.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efsutil.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmpbk32.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrnr.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comp.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lsmproxy.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fc.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sisbkup.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mgmtapi.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\replace.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vdmdbg.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsock32.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\doskey.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\find.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clb.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\subst.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\print.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msidcrl40.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\help.exe
2015-10-29 20:50 - 2014-10-29 02:59 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WlS0WndH.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sas.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XInput9_1_0.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2015-10-29 20:50 - 2014-10-29 02:59 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxex.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 01040384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00857088 _____ (Microsoft Corporation) C:\Windows\system32\FXSST.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00846848 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00423424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
2015-10-29 20:50 - 2014-10-29 02:58 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\msrdc.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uudf.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
2015-10-29 20:50 - 2014-10-29 02:58 - 00113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbnetlib.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\telephon.cpl
2015-10-29 20:50 - 2014-10-29 02:58 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsiwmiv2.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\radardt.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\colorcpl.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00085504 _____ (Radius Inc.) C:\Windows\SysWOW64\iccvid.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\makecab.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00069120 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\l3codeca.acm
2015-10-29 20:50 - 2014-10-29 02:58 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spbcd.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdmat.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\xmlfilter.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NapiNSP.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iyuv_32.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzutil.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drttransport.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2015-10-29 20:50 - 2014-10-29 02:58 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcbcp.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcicda.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmmon32.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvidc32.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cliconfg.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com
2015-10-29 20:50 - 2014-10-29 02:58 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ureg.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drprov.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sort.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osbaseln.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\umdmxfrm.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\midimap.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbnmpntw.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chkntfs.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\convert.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WINSRPC.DLL
2015-10-29 20:50 - 2014-10-29 02:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com
2015-10-29 20:50 - 2014-10-29 02:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiltcfg.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasctrs.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskcomp.com
2015-10-29 20:50 - 2014-10-29 02:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\label.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmdkey.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrle32.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsbyuv.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TapiUnattend.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwinsat.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\recover.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com
2015-10-29 20:50 - 2014-10-29 02:58 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskcopy.com
2015-10-29 20:50 - 2014-10-29 02:58 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dvdplay.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsied.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomcnfg.exe
2015-10-29 20:50 - 2014-10-29 02:58 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapiperf.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TimeDateMUICallback.dll
2015-10-29 20:50 - 2014-10-29 02:58 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\acledit.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 02924032 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 02592256 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 01479168 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 01431552 _____ (Microsoft Corporation) C:\Windows\system32\DxpTaskSync.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 01047040 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 01038336 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00777728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\opengl32.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00329728 _____ (Microsoft Corporation) C:\Windows\system32\pwlauncher.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\BthHFSrv.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2015-10-29 20:50 - 2014-10-29 02:57 - 00248320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2015-10-29 20:50 - 2014-10-29 02:57 - 00228352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drt.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtp.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsldpc.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00169984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtpUS.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\raserver.exe
2015-10-29 20:50 - 2014-10-29 02:57 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\TpmInit.exe
2015-10-29 20:50 - 2014-10-29 02:57 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\recovery.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regapi.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cliconfg.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssdpapi.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\expand.exe
2015-10-29 20:50 - 2014-10-29 02:57 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hidphone.tsp
2015-10-29 20:50 - 2014-10-29 02:57 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syskey.exe
2015-10-29 20:50 - 2014-10-29 02:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe
2015-10-29 20:50 - 2014-10-29 02:57 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmintf.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2015-10-29 20:50 - 2014-10-29 02:57 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\serwvdrv.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcacli.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmlprovi.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpupdate.exe
2015-10-29 20:50 - 2014-10-29 02:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcmsetup.exe
2015-10-29 20:50 - 2014-10-29 02:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syssetup.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DDOIProxy.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\panmap.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutilx.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usbperf.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshirda.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaPs.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcico.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IconCodecService.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrnsave.scr
2015-10-29 20:50 - 2014-10-29 02:57 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spnet.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcNs4.dll
2015-10-29 20:50 - 2014-10-29 02:57 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shfolder.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 01526784 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2015-10-29 20:50 - 2014-10-29 02:56 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00589312 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2015-10-29 20:50 - 2014-10-29 02:56 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxs.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\wiashext.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00317440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\wlandlg.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00161280 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWiaCompat.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\wkspbrokerAx.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.ps.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2015-10-29 20:50 - 2014-10-29 02:56 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtfwd.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\linkinfo.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icmui.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx5.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capisp.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncInfrastructureps.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\irclass.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dispex.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pstorec.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSChannel.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx6.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscproxystub.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx7.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx3.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncHostps.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx4.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmcodecdspps.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcji32.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odtext32.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odpdx32.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odfox32.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oddbse32.dll
2015-10-29 20:50 - 2014-10-29 02:56 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odexl32.dll
2015-10-29 20:50 - 2014-10-29 02:55 - 01697280 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-10-29 20:50 - 2014-10-29 02:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2015-10-29 20:50 - 2014-10-29 02:55 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput8.dll
2015-10-29 20:50 - 2014-10-29 02:55 - 00142848 _____ C:\Windows\system32\OEMLicense.dll
2015-10-29 20:50 - 2014-10-29 02:55 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput.dll
2015-10-29 20:50 - 2014-10-29 02:55 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\pcwutl.dll
2015-10-29 20:50 - 2014-10-29 02:55 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\rekeywiz.exe
2015-10-29 20:50 - 2014-10-29 02:55 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2015-10-29 20:50 - 2014-10-29 02:55 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pid.dll
2015-10-29 20:50 - 2014-10-29 02:55 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxstrace.exe
2015-10-29 20:50 - 2014-10-29 02:55 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfime.ime
2015-10-29 20:50 - 2014-10-29 02:54 - 15784448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DDORes.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00833536 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-10-29 20:50 - 2014-10-29 02:54 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00408576 _____ (Microsoft Corporation) C:\Windows\system32\DfpCommon.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00401408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dim.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00366080 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2015-10-29 20:50 - 2014-10-29 02:54 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\WLanHC.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\wmidx.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\FXSUTILITY.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpsapi.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\DeviceMetadataRetrievalClient.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00114688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcshext.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\SpaceAgent.exe
2015-10-29 20:50 - 2014-10-29 02:54 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfui.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfp.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avicap32.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drtprov.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsidsc.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsauth.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\extrac32.exe
2015-10-29 20:50 - 2014-10-29 02:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcPing.exe
2015-10-29 20:50 - 2014-10-29 02:54 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msacm32.drv
2015-10-29 20:50 - 2014-10-29 02:54 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secinit.exe
2015-10-29 20:50 - 2014-10-29 02:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VscMgrPS.dll
2015-10-29 20:50 - 2014-10-29 02:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ctfmon.exe
2015-10-29 20:50 - 2014-10-29 02:53 - 02238464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NL7Data0404.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 01065984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00924672 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00881152 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2015-10-29 20:50 - 2014-10-29 02:53 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00433152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlcese40.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2015-10-29 20:50 - 2014-10-29 02:53 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00163328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cic.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00134656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prncache.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2015-10-29 20:50 - 2014-10-29 02:53 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chartv.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\winethc.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlaySndSrv.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\dpapimig.exe
2015-10-29 20:50 - 2014-10-29 02:53 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnification.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\traffic.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcnsh.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsium.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzSqlExt.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qmgrprxy.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ktmutil.exe
2015-10-29 20:50 - 2014-10-29 02:53 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icsunattend.exe
2015-10-29 20:50 - 2014-10-29 02:53 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx2.dll
2015-10-29 20:50 - 2014-10-29 02:53 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\verclsid.exe
2015-10-29 20:50 - 2014-10-29 02:53 - 00009728 _____ (Microsoft Corporation) C:\Windows\winhlp32.exe
2015-10-29 20:50 - 2014-10-29 02:52 - 03355136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NL7Data0804.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 02829312 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00846848 _____ (Microsoft Corporation) C:\Windows\system32\ipsecsnp.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00809984 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00514048 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\netdiagfx.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00224768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsldp.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\L2SecHC.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00181248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB7.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ocsetapi.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
2015-10-29 20:50 - 2014-10-29 02:52 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\msrahc.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsicpl.exe
2015-10-29 20:50 - 2014-10-29 02:52 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msra.exe
2015-10-29 20:50 - 2014-10-29 02:52 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fms.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\rdvvmtransport.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventvwr.exe
2015-10-29 20:50 - 2014-10-29 02:52 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\FXSROUTE.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertPolEng.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hdwwiz.exe
2015-10-29 20:50 - 2014-10-29 02:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winver.exe
2015-10-29 20:50 - 2014-10-29 02:52 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3dlg.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdhui.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmutil.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxproxy.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToStatusProvider.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpmib.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ias.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscisvif.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compact.exe
2015-10-29 20:50 - 2014-10-29 02:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spopk.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regsvr32.exe
2015-10-29 20:50 - 2014-10-29 02:52 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedt32.exe
2015-10-29 20:50 - 2014-10-29 02:52 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmdext.dll
2015-10-29 20:50 - 2014-10-29 02:52 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\write.exe
2015-10-29 20:50 - 2014-10-29 02:52 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TapiSysprep.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 07331840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NL7Data0011.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00782848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NL7Data001E.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\IdListen.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsdmo.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvfw32.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00122368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmstyle.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usbceip.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00105984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oledlg.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmscript.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olecli32.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcompos.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndadmin.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3api.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasdatastore.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dxof.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprovisionsp.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\takeown.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasphone.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msports.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmloader.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\AuthExt.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdrleakdiag.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmband.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\where.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dialer.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olesvr32.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timeout.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clip.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\at.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dswave.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshcon.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winusb.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorSvc.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\runas.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uniplat.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdial.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasautou.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hnetmon.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcmonitor.dll
2015-10-29 20:50 - 2014-10-29 02:51 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LAPRXY.DLL
2015-10-29 20:50 - 2014-10-29 02:51 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InfDefaultInstall.exe
2015-10-29 20:50 - 2014-10-29 02:51 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systray.exe
2015-10-29 20:50 - 2014-10-29 02:50 - 01289216 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlsrv32.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlceoledb40.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlcecompact40.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmsynth.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscript.ocx
2015-10-29 20:50 - 2014-10-29 02:50 - 00096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avifil32.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\g711codc.ax
2015-10-29 20:50 - 2014-10-29 02:50 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cttunesvr.exe
2015-10-29 20:50 - 2014-10-29 02:50 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Apphlpdm.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxsstore.dll
2015-10-29 20:50 - 2014-10-29 02:50 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdiagnhost.exe
2015-10-29 20:50 - 2014-10-29 02:49 - 02236416 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00771584 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2015-10-29 20:50 - 2014-10-29 02:49 - 00742400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlceqp40.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00479744 _____ (Microsoft Corporation) C:\Windows\system32\StikyNot.exe
2015-10-29 20:50 - 2014-10-29 02:49 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2015-10-29 20:50 - 2014-10-29 02:49 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl
2015-10-29 20:50 - 2014-10-29 02:49 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-10-29 20:50 - 2014-10-29 02:49 - 00234496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00233984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2015-10-29 20:50 - 2014-10-29 02:49 - 00207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmime.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PkgMgr.exe
2015-10-29 20:50 - 2014-10-29 02:49 - 00189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSyncMetastore.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\immersivetpmvscmgrsvr.exe
2015-10-29 20:50 - 2014-10-29 02:49 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\tpmvscmgrsvr.exe
2015-10-29 20:50 - 2014-10-29 02:49 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\rmttpmvscmgrsvr.exe
2015-10-29 20:50 - 2014-10-29 02:49 - 00113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmview.ocx
2015-10-29 20:50 - 2014-10-29 02:49 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSTPager.ax
2015-10-29 20:50 - 2014-10-29 02:49 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cca.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\amstream.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutilext.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciqtz32.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceDisplayStatusManager.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingProxy.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlaninst.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2015-10-29 20:50 - 2014-10-29 02:49 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2015-10-29 20:50 - 2014-10-29 02:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CHxReadingStringIME.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 01497600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskcopy.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\connect.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00557056 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB70804.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB70404.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB7001E.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB70011.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00466944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\main.cpl
2015-10-29 20:50 - 2014-10-29 02:48 - 00311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcbase.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Dxpserver.exe
2015-10-29 20:50 - 2014-10-29 02:48 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\deviceregistration.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\NcaSvc.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsicli.exe
2015-10-29 20:50 - 2014-10-29 02:48 - 00144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prntvpt.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\verifier.exe
2015-10-29 20:50 - 2014-10-29 02:48 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaatext.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmusic.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Syncreg.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\whoami.exe
2015-10-29 20:50 - 2014-10-29 02:48 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmdl32.exe
2015-10-29 20:50 - 2014-10-29 02:48 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdchange.exe
2015-10-29 20:50 - 2014-10-29 02:48 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\forfiles.exe
2015-10-29 20:50 - 2014-10-29 02:48 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sfc.exe
2015-10-29 20:50 - 2014-10-29 02:48 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcreate.exe
2015-10-29 20:50 - 2014-10-29 02:48 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\waitfor.exe
2015-10-29 20:50 - 2014-10-29 02:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\choice.exe
2015-10-29 20:50 - 2014-10-29 02:48 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsCtfMonitor.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshelper.dll
2015-10-29 20:50 - 2014-10-29 02:48 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RmClient.exe
2015-10-29 20:50 - 2014-10-29 02:47 - 02072064 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2015-10-29 20:50 - 2014-10-29 02:47 - 01096192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ogldrv.dll
2015-10-29 20:50 - 2014-10-29 02:47 - 01041920 _____ (Microsoft Corporation) C:\Windows\system32\msdt.exe
2015-10-29 20:50 - 2014-10-29 02:47 - 00982016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpssvcs.dll
2015-10-29 20:50 - 2014-10-29 02:47 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2015-10-29 20:50 - 2014-10-29 02:47 - 00517120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsound.dll
2015-10-29 20:50 - 2014-10-29 02:47 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wisp.dll
2015-10-29 20:50 - 2014-10-29 02:47 - 00186368 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\l3codecp.acm
2015-10-29 20:50 - 2014-10-29 02:47 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2015-10-29 20:50 - 2014-10-29 02:47 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2015-10-29 20:50 - 2014-10-29 02:47 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskpart.exe
2015-10-29 20:50 - 2014-10-29 02:47 - 00135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iassvcs.dll
2015-10-29 20:50 - 2014-10-29 02:47 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gcdef.dll
2015-10-29 20:50 - 2014-10-29 02:47 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2015-10-29 20:50 - 2014-10-29 02:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bootcfg.exe
2015-10-29 20:50 - 2014-10-29 02:47 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\console.dll
2015-10-29 20:50 - 2014-10-29 02:47 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe
2015-10-29 20:50 - 2014-10-29 02:47 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iaspolcy.dll
2015-10-29 20:50 - 2014-10-29 02:47 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSTheme.exe
2015-10-29 20:50 - 2014-10-29 02:47 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddodiag.exe
2015-10-29 20:50 - 2014-10-29 02:47 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 01497600 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2015-10-29 20:50 - 2014-10-29 02:46 - 01001472 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2015-10-29 20:50 - 2014-10-29 02:46 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-10-29 20:50 - 2014-10-29 02:46 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdv.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00292352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsnt.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskraid.exe
2015-10-29 20:50 - 2014-10-29 02:46 - 00243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mycomput.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\msoeacct.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmdskmgr.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00203264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrad.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00188416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssha.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdiageng.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmvdspa.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasnap.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfdvdec.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Kswdmcap.ax
2015-10-29 20:50 - 2014-10-29 02:46 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupugc.exe
2015-10-29 20:50 - 2014-10-29 02:46 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmjpegdec.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00088064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3msm.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasacct.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\loghours.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcad32.exe
2015-10-29 20:50 - 2014-10-29 02:46 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SCardDlg.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmci.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasads.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vfwwdm32.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dssec.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtsh.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Management.Workplace.WorkplaceSettings.dll
2015-10-29 20:50 - 2014-10-29 02:46 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\serialui.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 01678336 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\Vault.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\dsuiext.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00672768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe
2015-10-29 20:50 - 2014-10-29 02:45 - 00618496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00429568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdohlp.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00378880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\termmgr.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00336896 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NAPSTAT.EXE
2015-10-29 20:50 - 2014-10-29 02:45 - 00192512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpresult.exe
2015-10-29 20:50 - 2014-10-29 02:45 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resmon.exe
2015-10-29 20:50 - 2014-10-29 02:45 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iashlpr.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mpeg2Data.ax
2015-10-29 20:50 - 2014-10-29 02:45 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QUTIL.DLL
2015-10-29 20:50 - 2014-10-29 02:45 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usbui.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSDvbNP.ax
2015-10-29 20:50 - 2014-10-29 02:45 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2015-10-29 20:50 - 2014-10-29 02:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksxbar.ax
2015-10-29 20:50 - 2014-10-29 02:45 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbisurf.ax
2015-10-29 20:50 - 2014-10-29 02:45 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bidispl.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cipher.exe
2015-10-29 20:50 - 2014-10-29 02:45 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\napipsec.dll
2015-10-29 20:50 - 2014-10-29 02:45 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmiprop.dll
2015-10-29 20:50 - 2014-10-29 02:44 - 01152000 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2015-10-29 20:50 - 2014-10-29 02:44 - 00872960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi3.dll
2015-10-29 20:50 - 2014-10-29 02:44 - 00778752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Bubbles.scr
2015-10-29 20:50 - 2014-10-29 02:44 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll
2015-10-29 20:50 - 2014-10-29 02:44 - 00400384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasplap.dll
2015-10-29 20:50 - 2014-10-29 02:44 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2015-10-29 20:50 - 2014-10-29 02:44 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2015-10-29 20:50 - 2014-10-29 02:44 - 00218112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountControlSettings.exe
2015-10-29 20:50 - 2014-10-29 02:44 - 00121344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mystify.scr
2015-10-29 20:50 - 2014-10-29 02:44 - 00120832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Ribbons.scr
2015-10-29 20:50 - 2014-10-29 02:44 - 00104960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontview.exe
2015-10-29 20:50 - 2014-10-29 02:44 - 00094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Narrator.exe
2015-10-29 20:50 - 2014-10-29 02:44 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationNotifications.exe
2015-10-29 20:50 - 2014-10-29 02:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-10-29 20:50 - 2014-10-29 02:44 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QCLIPROV.DLL
2015-10-29 20:50 - 2014-10-29 02:44 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3cfg.dll
2015-10-29 20:50 - 2014-10-29 02:44 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmcfg32.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 01092608 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00960000 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00736256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2015-10-29 20:50 - 2014-10-29 02:43 - 00524800 _____ (Microsoft Corporation) C:\Windows\system32\icsvc.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00289792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WmpDui.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00242176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3gpui.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00228864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSNP.ax
2015-10-29 20:50 - 2014-10-29 02:43 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offfilt.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00196096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00191488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssText3d.scr
2015-10-29 20:50 - 2014-10-29 02:43 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\msoert2.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fphc.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bdaplgin.ax
2015-10-29 20:50 - 2014-10-29 02:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scripto.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xwizard.exe
2015-10-29 20:50 - 2014-10-29 02:43 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AtBroker.exe
2015-10-29 20:50 - 2014-10-29 02:43 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NcaApi.dll
2015-10-29 20:50 - 2014-10-29 02:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wowreg32.exe
2015-10-29 20:50 - 2014-10-29 02:42 - 03724800 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2015-10-29 20:50 - 2014-10-29 02:42 - 00852480 _____ (Microsoft Corporation) C:\Windows\system32\PurchaseWindowsLicense.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00712192 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00305664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2015-10-29 20:50 - 2014-10-29 02:42 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi32.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrecst.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2015-10-29 20:50 - 2014-10-29 02:42 - 00112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advpack.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.exe
2015-10-29 20:50 - 2014-10-29 02:42 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\radarrs.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Storprop.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdmps.dll
2015-10-29 20:50 - 2014-10-29 02:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndproxystub.dll
2015-10-29 20:50 - 2014-10-29 02:41 - 01411584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2015-10-29 20:50 - 2014-10-29 02:41 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\onexui.dll
2015-10-29 20:50 - 2014-10-29 02:41 - 00381952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iassdo.dll
2015-10-29 20:50 - 2014-10-29 02:41 - 00327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnp.dll
2015-10-29 20:50 - 2014-10-29 02:41 - 00287232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\modemui.dll
2015-10-29 20:50 - 2014-10-29 02:41 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\apds.dll
2015-10-29 20:50 - 2014-10-29 02:41 - 00222208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iassam.dll
2015-10-29 20:50 - 2014-10-29 02:41 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsicpl.dll
2015-10-29 20:50 - 2014-10-29 02:41 - 00147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2015-10-29 20:50 - 2014-10-29 02:41 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kstvtune.ax
2015-10-29 20:50 - 2014-10-29 02:40 - 02036224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0007.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00380928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshipsec.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00292352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3ui.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxdiag.exe
2015-10-29 20:50 - 2014-10-29 02:40 - 00224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dskquoui.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\desk.cpl
2015-10-29 20:50 - 2014-10-29 02:40 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\softkbd.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00136704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\joy.cpl
2015-10-29 20:50 - 2014-10-29 02:40 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxlib.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinMsoIrmProtector.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2015-10-29 20:50 - 2014-10-29 02:40 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinOpcIrmProtector.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncpa.cpl
2015-10-29 20:50 - 2014-10-29 02:40 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olethk32.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingWizard.exe
2015-10-29 20:50 - 2014-10-29 02:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
2015-10-29 20:50 - 2014-10-29 02:40 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deskadp.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\docprop.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdmlog.dll
2015-10-29 20:50 - 2014-10-29 02:40 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shutdown.exe
2015-10-29 20:50 - 2014-10-29 02:40 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\proquota.exe
2015-10-29 20:50 - 2014-10-29 02:40 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Netplwiz.exe
2015-10-29 20:50 - 2014-10-29 02:40 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DefaultDeviceManager.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 09604608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData000a.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 04531712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0416.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 04530688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData001d.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 01571328 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00898048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2015-10-29 20:50 - 2014-10-29 02:39 - 00382976 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWGP.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscandui.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartScreenSettings.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00201728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icsigd.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsadmin.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasppp.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mydocs.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\control.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Fondue.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceProperties.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\isoburn.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesRemote.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesProtection.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesPerformance.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesHardware.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesDataExecutionPrevention.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesComputerName.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesAdvanced.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DpiScaling.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\napdsnap.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RunLegacyCPLElevated.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgbkend.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TapiMigPlugin.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ustprov.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deskmon.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegCtrl.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncHost.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ComputerDefaults.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ThumbnailExtractionHost.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dvdupgrd.exe
2015-10-29 20:50 - 2014-10-29 02:39 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NcdProp.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DefaultPrinterProvider.dll
2015-10-29 20:50 - 2014-10-29 02:39 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2015-10-29 20:50 - 2014-10-29 02:38 - 04945920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0009.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 04530688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0010.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 04530176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0414.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 04529664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0816.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 02387456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData000d.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 02307072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData000c.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 02012160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0026.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 02012160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData000f.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 01548800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0000.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00898048 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2015-10-29 20:50 - 2014-10-29 02:38 - 00430592 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMPOSE.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00404480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00363008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hdwwiz.cpl
2015-10-29 20:50 - 2014-10-29 02:38 - 00212480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cleanmgr.exe
2015-10-29 20:50 - 2014-10-29 02:38 - 00165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmgp.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00148992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2015-10-29 20:50 - 2014-10-29 02:38 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2015-10-29 20:50 - 2014-10-29 02:38 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fde.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00121344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2015-10-29 20:50 - 2014-10-29 02:38 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdart.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSyncProviders.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\efsadu.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndfhcdiscovery.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mobsync.exe
2015-10-29 20:50 - 2014-10-29 02:38 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmstp.exe
2015-10-29 20:50 - 2014-10-29 02:38 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XPSSHHDR.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DfsShlEx.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2nacp.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3hc.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msident.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\playlistfolder.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucmhc.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmlua.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe
2015-10-29 20:50 - 2014-10-29 02:38 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hcproviders.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcsPlugInService.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tvratings.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndfetw.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shpafact.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\grpconv.exe
2015-10-29 20:50 - 2014-10-29 02:38 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmstplua.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DDACLSys.dll
2015-10-29 20:50 - 2014-10-29 02:38 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoveDeviceElevated.dll
2015-10-29 20:50 - 2014-10-29 02:37 - 03149824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0039.dll
2015-10-29 20:50 - 2014-10-29 02:37 - 01829376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData002a.dll
2015-10-29 20:50 - 2014-10-29 02:37 - 01563136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2015-10-29 20:50 - 2014-10-29 02:37 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2015-10-29 20:50 - 2014-10-29 02:37 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsnap.dll
2015-10-29 20:50 - 2014-10-29 02:37 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabview.dll
2015-10-29 20:50 - 2014-10-29 02:37 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2015-10-29 20:50 - 2014-10-29 02:37 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprnext.dll
2015-10-29 20:50 - 2014-10-29 02:37 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2015-10-29 20:50 - 2014-10-29 02:37 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData004e.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData004c.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData004b.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData004a.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0049.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0047.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0046.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0045.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0020.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01999360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0027.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0c1a.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData081a.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0024.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData001b.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData001a.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0018.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0003.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0002.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01829376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData003e.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01829376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0022.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01829376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0021.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01252864 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 01008128 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 00943616 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe
2015-10-29 20:50 - 2014-10-29 02:36 - 00787456 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 00609792 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\sbeio.dll
2015-10-29 20:50 - 2014-10-29 02:36 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWNet.dll
2015-10-29 20:50 - 2014-10-29 02:35 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-10-29 20:50 - 2014-10-29 02:35 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2015-10-29 20:50 - 2014-10-29 02:35 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scansetting.dll
2015-10-29 20:50 - 2014-10-29 02:35 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wavemsp.dll
2015-10-29 20:50 - 2014-10-29 02:35 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfmon.exe
2015-10-29 20:50 - 2014-10-29 02:35 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xwreg.dll
2015-10-29 20:50 - 2014-10-29 02:35 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2015-10-29 20:50 - 2014-10-29 02:35 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WABSyncProvider.dll
2015-10-29 20:50 - 2014-10-29 02:35 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConnectedAccountState.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 01114624 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 01037824 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00644608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dccw.exe
2015-10-29 20:50 - 2014-10-29 02:34 - 00473600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnfldr.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00430592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceStatus.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2015-10-29 20:50 - 2014-10-29 02:34 - 00414720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmdlgs.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shrpubw.exe
2015-10-29 20:50 - 2014-10-29 02:34 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswmdm.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\difxapi.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00321024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efscore.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eudcedit.exe
2015-10-29 20:50 - 2014-10-29 02:34 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00201728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdminst.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedit.exe
2015-10-29 20:50 - 2014-10-29 02:34 - 00120832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EhStorAPI.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsiwmi.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptext.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00054272 _____ (Twain Working Group) C:\Windows\twain_32.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00046080 _____ C:\Windows\SysWOW64\BWContextHandler.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pwrshplugin.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FdDevQuery.dll
2015-10-29 20:50 - 2014-10-29 02:34 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efsui.exe
2015-10-29 20:50 - 2014-10-29 02:33 - 01291776 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-10-29 20:50 - 2014-10-29 02:33 - 01056768 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2015-10-29 20:50 - 2014-10-29 02:33 - 00963072 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2015-10-29 20:50 - 2014-10-29 02:33 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\WLanConn.dll
2015-10-29 20:50 - 2014-10-29 02:33 - 00165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uireng.dll
2015-10-29 20:50 - 2014-10-29 02:33 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remotesp.tsp
2015-10-29 20:50 - 2014-10-29 02:33 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshext.dll
2015-10-29 20:50 - 2014-10-29 02:33 - 00068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsockhc.dll
2015-10-29 20:50 - 2014-10-29 02:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountControlSettings.dll
2015-10-29 20:50 - 2014-10-29 02:33 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\btpanui.dll
2015-10-29 20:50 - 2014-10-29 02:33 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\frprov.dll
2015-10-29 20:50 - 2014-10-29 02:33 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2015-10-29 20:50 - 2014-10-29 02:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpmonui.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2015-10-29 20:50 - 2014-10-29 02:32 - 00794624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroles.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00654848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comuid.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psr.exe
2015-10-29 20:50 - 2014-10-29 02:32 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfrgui.exe
2015-10-29 20:50 - 2014-10-29 02:32 - 00512512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmnet.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cttune.exe
2015-10-29 20:50 - 2014-10-29 02:32 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\unregmp2.exe
2015-10-29 20:50 - 2014-10-29 02:32 - 00149504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RstrtMgr.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsprop.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceSyncProvider.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twext.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dskquota.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2015-10-29 20:50 - 2014-10-29 02:32 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\acppage.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoveDeviceContextHandler.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthudtask.exe
2015-10-29 20:50 - 2014-10-29 02:32 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanui2.dll
2015-10-29 20:50 - 2014-10-29 02:32 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 02941952 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 01278464 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00761344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2015-10-29 20:50 - 2014-10-29 02:31 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdprint.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2015-10-29 20:50 - 2014-10-29 02:31 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdiagprv.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadss.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rshx32.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EhStorPwdMgr.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mimefilt.dll
2015-10-29 20:50 - 2014-10-29 02:31 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credwiz.exe
2015-10-29 20:50 - 2014-10-29 02:30 - 06465536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2015-10-29 20:50 - 2014-10-29 02:30 - 02118144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsCpl.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 01171456 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-10-29 20:50 - 2014-10-29 02:30 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2015-10-29 20:50 - 2014-10-29 02:30 - 00605696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\colorui.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmdial32.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAC3ENC.DLL
2015-10-29 20:50 - 2014-10-29 02:30 - 00184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoplay.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssadmin.exe
2015-10-29 20:50 - 2014-10-29 02:30 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiascanprofiles.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00085504 _____ (Microsoft) C:\Windows\SysWOW64\SMBHelperClass.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndishc.dll
2015-10-29 20:50 - 2014-10-29 02:30 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MuiUnattend.exe
2015-10-29 20:50 - 2014-10-29 02:29 - 02848768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00833536 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00528896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenterCPL.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IasMigPlugin.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\filemgmt.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00465920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devmgr.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00365056 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00324608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srchadmin.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingFolder.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\keymgr.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00120832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Dsui.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaacmgr.exe
2015-10-29 20:50 - 2014-10-29 02:29 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systeminfo.exe
2015-10-29 20:50 - 2014-10-29 02:29 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Utilman.exe
2015-10-29 20:50 - 2014-10-29 02:29 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\driverquery.exe
2015-10-29 20:50 - 2014-10-29 02:29 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\getmac.exe
2015-10-29 20:50 - 2014-10-29 02:29 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\wmiclnt.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\nsisvc.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gptext.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\FileAppxStreamingDataSource.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\dpapi.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mprext.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\dabapi.dll
2015-10-29 20:50 - 2014-10-29 02:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL
2015-10-29 20:50 - 2014-10-29 02:28 - 02213888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncCenter.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00812032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontext.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\localsec.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadefui.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00402944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsquery.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00258560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sethc.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00241664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\audiodev.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\C_G18030.DLL
2015-10-29 20:50 - 2014-10-29 02:28 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xwtpdui.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remotepg.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\ulib.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xwtpw32.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\mprmsg.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\mspatchc.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\KdsCli.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tasklist.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\RpcEpMap.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskkill.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\samcli.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\reg.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\sc.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sendmail.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\dfscli.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\mskeyprotect.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\scext.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Websocket.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\perfproc.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\vidcap.ax
2015-10-29 20:50 - 2014-10-29 02:28 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\vpnikeapi.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\icacls.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\hid.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSa.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\mfcsubs.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\w32topl.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\sdhcinst.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\snmpapi.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinFax.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\perfnet.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\bitsperf.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.TimeBroker.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerClient.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\attrib.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\fltLib.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\mskeyprotcli.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wshqos.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\PATHPING.EXE
2015-10-29 20:50 - 2014-10-29 02:28 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\rasadhlp.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\mountvol.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\wmsgapi.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\C_IS2022.DLL
2015-10-29 20:50 - 2014-10-29 02:28 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winrssrv.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\whhelper.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\fdBthProxy.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\sscoreext.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TCPSVCS.EXE
2015-10-29 20:50 - 2014-10-29 02:28 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msidle.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\TcpipSetup.dll
2015-10-29 20:50 - 2014-10-29 02:28 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\backgroundTaskHost.exe
2015-10-29 20:50 - 2014-10-29 02:28 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll

opecgreen 20.11.2015 20:36
Nummer fünf:

Code:
2015-10-29 20:50 - 2014-10-29 02:27 - 00763392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2015-10-29 20:50 - 2014-10-29 02:27 - 00700928 _____ (Microsoft Corporation) C:\Windows\system32\elslad.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercpl.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00416768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\irprops.cpl
2015-10-29 20:50 - 2014-10-29 02:27 - 00397824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xwizards.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00397312 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00380416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizeng.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00362496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptuiwizard.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00277504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EaseOfAccessDialog.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00248320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmontr.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\regsvc.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\BrokerLib.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax
2015-10-29 20:50 - 2014-10-29 02:27 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\loadperf.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\mi.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\CallButtons.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\netsh.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOM.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\devrtl.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\esentprf.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\net.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\setx.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\lodctr.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\xcopy.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HelpPaneProxy.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\mspatcha.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\signdrv.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\unlodctr.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\perfos.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\SecEdit.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\perfdisk.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\virtdisk.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\deviceassociation.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\format.com
2015-10-29 20:50 - 2014-10-29 02:27 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wcmapi.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\OnDemandConnRouteHelper.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\cacls.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\EventAggregation.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\dsparse.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\more.com
2015-10-29 20:50 - 2014-10-29 02:27 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\fltMC.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\sysntfy.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\fvecerts.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\ARP.EXE
2015-10-29 20:50 - 2014-10-29 02:27 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\adhapi.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\PING.EXE
2015-10-29 20:50 - 2014-10-29 02:27 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\CSystemEventsBrokerClient.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerClient.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\TRACERT.EXE
2015-10-29 20:50 - 2014-10-29 02:27 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\finger.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Register-CimProvider.exe
2015-10-29 20:50 - 2014-10-29 02:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\smphost.dll
2015-10-29 20:50 - 2014-10-29 02:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\HOSTNAME.EXE
2015-10-29 20:50 - 2014-10-29 02:27 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TetheringIeProvider.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 03788288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accessibilitycpl.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00838656 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00330752 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\provthrd.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\esentutl.exe
2015-10-29 20:50 - 2014-10-29 02:26 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\p2pnetsh.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QAGENT.DLL
2015-10-29 20:50 - 2014-10-29 02:26 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\net1.exe
2015-10-29 20:50 - 2014-10-29 02:26 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\mimofcodec.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\ntdsapi.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\ufat.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EhStorAuthn.exe
2015-10-29 20:50 - 2014-10-29 02:26 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\racpldlg.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\pnrpnsp.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\uexfat.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.exe
2015-10-29 20:50 - 2014-10-29 02:26 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\wecapi.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2015-10-29 20:50 - 2014-10-29 02:26 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\wlidnsp.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\fveskybackup.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.Fontgroups.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\fmifs.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\srumapi.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSEXT32.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\NetEvtFwdr.exe
2015-10-29 20:50 - 2014-10-29 02:26 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\MirrorDrvCompat.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\crypttpmeksvc.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uicom.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\XInput1_4.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\winbrand.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appsruprov.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\pots.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\eapprovp.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapPeerProxy.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapAuthProxy.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\VaultCmd.exe
2015-10-29 20:50 - 2014-10-29 02:26 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\chkdsk.exe
2015-10-29 20:50 - 2014-10-29 02:26 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\userinitext.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimgvw.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\MRINFO.EXE
2015-10-29 20:50 - 2014-10-29 02:26 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\ProximityRtapiPal.dll
2015-10-29 20:50 - 2014-10-29 02:26 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wpcsvc.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 01534464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 01058816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00336896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncInfrastructure.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe
2015-10-29 20:50 - 2014-10-29 02:25 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certreq.exe
2015-10-29 20:50 - 2014-10-29 02:25 - 00236544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrdc.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\mibincodec.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL
2015-10-29 20:50 - 2014-10-29 02:25 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe
2015-10-29 20:50 - 2014-10-29 02:25 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00136704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlhtml.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\negoexts.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\wecutil.exe
2015-10-29 20:50 - 2014-10-29 02:25 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\winbio.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\DevDispItemProvider.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL
2015-10-29 20:50 - 2014-10-29 02:25 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\winlogonext.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmlfilter.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\networkitemfactory.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tpmcompc.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-10-29 20:50 - 2014-10-29 02:25 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtffilt.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShextAutoplay.exe
2015-10-29 20:50 - 2014-10-29 02:25 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\ncuprov.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\wininitext.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll
2015-10-29 20:50 - 2014-10-29 02:25 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\dnsext.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 02364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DxpTaskSync.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 01335296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00779776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2015-10-29 20:50 - 2014-10-29 02:24 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2015-10-29 20:50 - 2014-10-29 02:24 - 00487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00446976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiashext.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Geolocation.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00178176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceWMDRM.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceWiaCompat.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\ScDeviceEnum.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00102912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raserver.exe
2015-10-29 20:50 - 2014-10-29 02:24 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\wlanext.exe
2015-10-29 20:50 - 2014-10-29 02:24 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguageProfileCallback.dll
2015-10-29 20:50 - 2014-10-29 02:24 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\procinst.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 01826304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 01500672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\livessp.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\winsku.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDSp.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlandlg.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00107008 _____ C:\Windows\SysWOW64\OEMLicense.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netid.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkspbrokerAx.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.ps.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.ps.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Background.ps.dll
2015-10-29 20:50 - 2014-10-29 02:23 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\AppxStreamingDataSourcePS.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 02551808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 02410496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00839680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-10-29 20:50 - 2014-10-29 02:22 - 00517120 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2015-10-29 20:50 - 2014-10-29 02:22 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\msdelta.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\sstpsvc.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rekeywiz.exe
2015-10-29 20:50 - 2014-10-29 02:22 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\wlgpclnt.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmInit.exe
2015-10-29 20:50 - 2014-10-29 02:22 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\msauserext.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\mmcss.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\TaskSchdPS.dll
2015-10-29 20:50 - 2014-10-29 02:22 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\keyiso.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00755712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-10-29 20:50 - 2014-10-29 02:21 - 00482304 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\Winlangdb.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00361472 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-10-29 20:50 - 2014-10-29 02:21 - 00349696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-10-29 20:50 - 2014-10-29 02:21 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00250368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.HostName.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\korwbrkr.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\dps.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Compression.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidx.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\trkwks.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\WinRtTracing.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\AppxSip.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\cngcredui.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\alg.exe
2015-10-29 20:50 - 2014-10-29 02:21 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\bcdprov.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\Sens.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\nduprov.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Background.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\threadpoolwinrt.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\ddrawex.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\luainstall.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\catsrvps.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\perfctrs.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Portable.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Printers.Extensions.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ipconfig.exe
2015-10-29 20:50 - 2014-10-29 02:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\cfmifs.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\BackgroundTransferHost.exe
2015-10-29 20:50 - 2014-10-29 02:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\mtxdm.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\elsTrans.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Display.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.SystemManufacturers.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\wpnsruprov.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\delegatorprovider.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi_passthru.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\CallButtons.ProxyStub.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\ROUTE.EXE
2015-10-29 20:50 - 2014-10-29 02:21 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.RemoteDesktop.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\defragproxy.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\AuthHostProxy.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\TtlsExt.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\TimeSyncTask.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\cfmifsproxy.dll
2015-10-29 20:50 - 2014-10-29 02:21 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dllhst3g.exe
2015-10-29 20:50 - 2014-10-29 02:20 - 00770048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ipsecsnp.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00558080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00524800 _____ (Microsoft Corporation) C:\Windows\system32\AppxApplicabilityEngine.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00517120 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00510464 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00425984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shwebsvc.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00272384 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxdiagn.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerServer.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00234496 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netdiagfx.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\wmidcom.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\ProximityCommon.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\globinputhost.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\L2SecHC.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\comrepl.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00104960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSXP32.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\prvdmofcomp.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapimig.exe
2015-10-29 20:50 - 2014-10-29 02:20 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\ELSCore.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvvmtransport.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\WlanRadioManager.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\msimtf.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\NETSTAT.EXE
2015-10-29 20:50 - 2014-10-29 02:20 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\dimsjob.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthExt.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\encapi.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\ProximityCommonPal.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentTask.dll
2015-10-29 20:50 - 2014-10-29 02:20 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 02714624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00754176 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\WinSync.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2015-10-29 20:50 - 2014-10-29 02:19 - 00621568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsFilt.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00388608 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\wmitomi.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\smbwmiv2.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00181760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpipcfg.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\srumsvc.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\msched.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\msdtclog.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\txflog.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\dasHost.exe
2015-10-29 20:50 - 2014-10-29 02:19 - 00092672 _____ (Microsoft) C:\Windows\system32\VaultRoaming.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logagent.exe
2015-10-29 20:50 - 2014-10-29 02:19 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\colbact.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\stclient.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\pautoenr.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\rasmbmgr.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\sxshared.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\pnrpauto.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\raschapext.dll
2015-10-29 20:50 - 2014-10-29 02:19 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\rastlsext.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 01984000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certmgr.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 01753600 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 01050624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMNetMgr.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00743936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2015-10-29 20:50 - 2014-10-29 02:18 - 00329216 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systemcpl.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00184832 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2015-10-29 20:50 - 2014-10-29 02:18 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\fundisc.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\IDStore.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\mbussdapi.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\RoamingSecurity.dll
2015-10-29 20:50 - 2014-10-29 02:18 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 01402368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 01360896 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 01296896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\connect.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00981504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdt.exe
2015-10-29 20:50 - 2014-10-29 02:17 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\energy.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00439296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ipsmsnap.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\qwave.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00287232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysdm.cpl
2015-10-29 20:50 - 2014-10-29 02:17 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2015-10-29 20:50 - 2014-10-29 02:17 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00114688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\EAPQEC.DLL
2015-10-29 20:50 - 2014-10-29 02:17 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\umpowmi.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WofTasks.dll
2015-10-29 20:50 - 2014-10-29 02:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 01669632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\networkexplorer.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 01242112 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00795136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00675328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Vault.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-10-29 20:50 - 2014-10-29 02:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\authfwcfg.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00238592 _____ (Microsoft Corporation) C:\Windows\system32\mlang.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00198144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msoeacct.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00173568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\mtstocom.exe
2015-10-29 20:50 - 2014-10-29 02:16 - 00113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\cmifw.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Pnrphc.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll
2015-10-29 20:50 - 2014-10-29 02:16 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\xolehlp.dll
2015-10-29 20:50 - 2014-10-29 02:15 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2015-10-29 20:50 - 2014-10-29 02:15 - 00809472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2015-10-29 20:50 - 2014-10-29 02:15 - 00671744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsuiext.dll
2015-10-29 20:50 - 2014-10-29 02:15 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-10-29 20:50 - 2014-10-29 02:15 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Proximity.dll
2015-10-29 20:50 - 2014-10-29 02:15 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\SimAuth.dll
2015-10-29 20:50 - 2014-10-29 02:15 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManagerAPI.dll
2015-10-29 20:50 - 2014-10-29 02:15 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\FDResPub.dll
2015-10-29 20:50 - 2014-10-29 02:15 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\winrshost.exe
2015-10-29 20:50 - 2014-10-29 02:14 - 03553280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2015-10-29 20:50 - 2014-10-29 02:14 - 00854528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2015-10-29 20:50 - 2014-10-29 02:14 - 00802816 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2015-10-29 20:50 - 2014-10-29 02:14 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2015-10-29 20:50 - 2014-10-29 02:14 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-10-29 20:50 - 2014-10-29 02:14 - 00493568 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-10-29 20:50 - 2014-10-29 02:14 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\certCredProvider.dll
2015-10-29 20:50 - 2014-10-29 02:14 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2015-10-29 20:50 - 2014-10-29 02:14 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2015-10-29 20:50 - 2014-10-29 02:14 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\eapsvc.dll
2015-10-29 20:50 - 2014-10-29 02:14 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msoert2.dll
2015-10-29 20:50 - 2014-10-29 02:14 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2015-10-29 20:50 - 2014-10-29 02:14 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\RDSPnf.exe
2015-10-29 20:50 - 2014-10-29 02:14 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\ProximityServicePal.dll
2015-10-29 20:50 - 2014-10-29 02:14 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\nci.dll
2015-10-29 20:50 - 2014-10-29 02:13 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2015-10-29 20:50 - 2014-10-29 02:13 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2015-10-29 20:50 - 2014-10-29 02:13 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apds.dll
2015-10-29 20:50 - 2014-10-29 02:13 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\fwcfg.dll
2015-10-29 20:50 - 2014-10-29 02:13 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll
2015-10-29 20:50 - 2014-10-29 02:13 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\fdPnp.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00702976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\msTextPrediction.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00516608 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00407040 _____ (Microsoft Corporation) C:\Windows\system32\das.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00393728 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollUI.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\hotspotauth.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\TtlsAuth.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\msdtc.exe
2015-10-29 20:50 - 2014-10-29 02:12 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\wwaninst.dll
2015-10-29 20:50 - 2014-10-29 02:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\DsmUserTask.exe
2015-10-29 20:50 - 2014-10-29 02:11 - 02597376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2015-10-29 20:50 - 2014-10-29 02:11 - 01639424 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-10-29 20:50 - 2014-10-29 02:11 - 01323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2015-10-29 20:50 - 2014-10-29 02:11 - 00672768 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2015-10-29 20:50 - 2014-10-29 02:11 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2015-10-29 20:50 - 2014-10-29 02:11 - 00373248 _____ (Microsoft Corporation) C:\Windows\system32\msdtckrm.dll
2015-10-29 20:50 - 2014-10-29 02:11 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2015-10-29 20:50 - 2014-10-29 02:11 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2015-10-29 20:50 - 2014-10-29 02:11 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\DHCPQEC.DLL
2015-10-29 20:50 - 2014-10-29 02:11 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efsadu.dll
2015-10-29 20:50 - 2014-10-29 02:11 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\umpoext.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 02469888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00516096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00516096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00396288 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00361472 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00302080 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_8.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2015-10-29 20:50 - 2014-10-29 02:10 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbeio.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll
2015-10-29 20:50 - 2014-10-29 02:10 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2015-10-29 20:50 - 2014-10-29 02:09 - 01335296 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2015-10-29 20:50 - 2014-10-29 02:09 - 00873984 _____ (Microsoft Corporation) C:\Windows\system32\provcore.dll
2015-10-29 20:50 - 2014-10-29 02:09 - 00809984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2015-10-29 20:50 - 2014-10-29 02:09 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-10-29 20:50 - 2014-10-29 02:09 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2015-10-29 20:50 - 2014-10-29 02:09 - 00633344 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2015-10-29 20:50 - 2014-10-29 02:09 - 00508416 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2015-10-29 20:50 - 2014-10-29 02:09 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2015-10-29 20:50 - 2014-10-29 02:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\dafupnp.dll
2015-10-29 20:50 - 2014-10-29 02:09 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2015-10-29 20:50 - 2014-10-29 02:09 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\ifmon.dll
2015-10-29 20:50 - 2014-10-29 02:08 - 02174976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-10-29 20:50 - 2014-10-29 02:08 - 01822720 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2015-10-29 20:50 - 2014-10-29 02:08 - 01478144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2015-10-29 20:50 - 2014-10-29 02:08 - 00881664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2015-10-29 20:50 - 2014-10-29 02:08 - 00412672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WLanConn.dll
2015-10-29 20:50 - 2014-10-29 02:08 - 00397312 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2015-10-29 20:50 - 2014-10-29 02:08 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\wecsvc.dll
2015-10-29 20:50 - 2014-10-29 02:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2015-10-29 20:50 - 2014-10-29 02:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\winrs.exe
2015-10-29 20:50 - 2014-10-29 02:07 - 01396736 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-10-29 20:50 - 2014-10-29 02:07 - 01247232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2015-10-29 20:50 - 2014-10-29 02:07 - 01197056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2015-10-29 20:50 - 2014-10-29 02:07 - 01060352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-10-29 20:50 - 2014-10-29 02:07 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2015-10-29 20:50 - 2014-10-29 02:07 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-10-29 20:50 - 2014-10-29 02:07 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\ddraw.dll
2015-10-29 20:50 - 2014-10-29 02:07 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2015-10-29 20:50 - 2014-10-29 02:07 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-10-29 20:50 - 2014-10-29 02:07 - 00192512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unregmp2.exe
2015-10-29 20:50 - 2014-10-29 02:07 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 01086976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-10-29 20:50 - 2014-10-29 02:06 - 00747520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00286208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00104960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00102912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmiclnt.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\httpapi.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapi.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprext.dll
2015-10-29 20:50 - 2014-10-29 02:06 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_ISCII.DLL
2015-10-29 20:50 - 2014-10-29 02:06 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dabapi.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00589824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elslad.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00534016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\TtlsCfg.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00228864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_G18030.DLL
2015-10-29 20:50 - 2014-10-29 02:05 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ulib.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprmsg.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\winrscmd.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\loadperf.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hbaapi.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspatchc.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samcli.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\reg.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sc.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\ndiscapCfg.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mskeyprotect.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lodctr.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfscli.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfproc.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspatcha.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfos.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Websocket.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unlodctr.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfdisk.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshhttp.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vidcap.ax
2015-10-29 20:50 - 2014-10-29 02:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\virtdisk.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icacls.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32topl.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vpnikeapi.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OnDemandConnRouteHelper.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcsubs.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\snmpapi.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hid.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\more.com
2015-10-29 20:50 - 2014-10-29 02:05 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userinit.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfnet.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsparse.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.TimeBroker.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsperf.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schedcli.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
2015-10-29 20:50 - 2014-10-29 02:05 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\attrib.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mskeyprotcli.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fltLib.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TimeBrokerClient.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PATHPING.EXE
2015-10-29 20:50 - 2014-10-29 02:05 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshqos.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mountvol.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TRACERT.EXE
2015-10-29 20:50 - 2014-10-29 02:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemEventsBrokerClient.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmsgapi.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\finger.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasadhlp.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\whhelper.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_IS2022.DLL
2015-10-29 20:50 - 2014-10-29 02:05 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrssrv.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdBthProxy.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TCPSVCS.EXE
2015-10-29 20:50 - 2014-10-29 02:05 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msidle.dll
2015-10-29 20:50 - 2014-10-29 02:05 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe
2015-10-29 20:50 - 2014-10-29 02:05 - 00006144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 01376256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00640000 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00364032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00279552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netjoin.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esentutl.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00201216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutil.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\net1.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ufat.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mi.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdsapi.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netsh.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\eqossnap.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nslookup.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallButtons.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uexfat.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pnrpnsp.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esentprf.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollCtrl.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setx.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\net.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xcopy.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\format.com
2015-10-29 20:50 - 2014-10-29 02:04 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SecEdit.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srumapi.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceassociation.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findstr.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pots.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcmapi.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cacls.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapprovp.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fltMC.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ARP.EXE
2015-10-29 20:50 - 2014-10-29 02:04 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userinitext.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Register-CimProvider.exe
2015-10-29 20:50 - 2014-10-29 02:04 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smphost.dll
2015-10-29 20:50 - 2014-10-29 02:04 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HOSTNAME.EXE
2015-10-29 20:50 - 2014-10-29 02:04 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpcsvc.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 02635264 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 02487296 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00968192 _____ (Microsoft Corporation) C:\Windows\system32\certca.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00781824 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00740352 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00608256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00474112 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00263168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provthrd.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\TetheringStation.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\LaunchTM.exe
2015-10-29 20:50 - 2014-10-29 02:03 - 00178688 _____ (Microsoft Corporation) C:\Windows\system32\SimCfg.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00174592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00120832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mimofcodec.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2015-10-29 20:50 - 2014-10-29 02:03 - 00108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\negoexts.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2015-10-29 20:50 - 2014-10-29 02:03 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.exe
2015-10-29 20:50 - 2014-10-29 02:03 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecapi.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidnsp.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fmifs.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.Fontgroups.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpkinstall.exe
2015-10-29 20:50 - 2014-10-29 02:03 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MirrorDrvCompat.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypttpmeksvc.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XInput1_4.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winbrand.dll
2015-10-29 20:50 - 2014-10-29 02:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chkdsk.exe
2015-10-29 20:50 - 2014-10-29 02:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MRINFO.EXE
2015-10-29 20:50 - 2014-10-29 02:03 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityRtapiPal.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00695296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Geolocation.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mibincodec.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecutil.exe
2015-10-29 20:50 - 2014-10-29 02:02 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanext.exe
2015-10-29 20:50 - 2014-10-29 02:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winbio.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2015-10-29 20:50 - 2014-10-29 02:02 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininitext.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00843776 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00706048 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00573952 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00397824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdelta.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00383488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00361472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00278528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsku.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00239104 _____ (Microsoft Corporation) C:\Windows\system32\windowslivelogin.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\DAFWSD.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlgpclnt.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\keyiso.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TaskSchdPS.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vss_ps.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdProxy.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.ps.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\slpts.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.ps.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Background.ps.dll
2015-10-29 20:50 - 2014-10-29 02:01 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguageProfileCallback.dll

opecgreen 20.11.2015 20:37
Nummer sechs:

Code:
2015-10-29 20:50 - 2014-10-29 02:00 - 01705984 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 01207296 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-10-29 20:50 - 2014-10-29 02:00 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00401408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00355328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Winlangdb.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00252416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdscore.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00200192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\DscCoreConfProv.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00166400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\korwbrkr.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Compression.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\globinputhost.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngcredui.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinRtTracing.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vaultcli.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ELSCore.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Background.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\threadpoolwinrt.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\luainstall.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddrawex.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfctrs.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Printers.Extensions.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Portable.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NETSTAT.EXE
2015-10-29 20:50 - 2014-10-29 02:00 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ipconfig.exe
2015-10-29 20:50 - 2014-10-29 02:00 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsjob.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxlegih.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BackgroundTransferHost.exe
2015-10-29 20:50 - 2014-10-29 02:00 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfmifs.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxdm.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elsTrans.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvps.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Display.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.SystemManufacturers.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\encapi.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\delegatorprovider.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi_passthru.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ROUTE.EXE
2015-10-29 20:50 - 2014-10-29 02:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.RemoteDesktop.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsExt.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommonPal.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallButtons.ProxyStub.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfmifsproxy.dll
2015-10-29 20:50 - 2014-10-29 02:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dllhst3g.exe
2015-10-29 20:50 - 2014-10-29 01:59 - 01636864 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 01490944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 01454080 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-10-29 20:50 - 2014-10-29 01:59 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2015-10-29 20:50 - 2014-10-29 01:59 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00578048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSync.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxApplicabilityEngine.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00316928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00302080 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00286720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00188928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmitomi.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srumsvc.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidcom.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommon.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comrepl.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\colbact.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prvdmofcomp.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\dot3gpclnt.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pautoenr.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stclient.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschapext.dll
2015-10-29 20:50 - 2014-10-29 01:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastlsext.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00926208 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00746496 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00543232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00306688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00246272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fundisc.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IDStore.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\NetworkStatus.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\txflog.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingHost.exe
2015-10-29 20:50 - 2014-10-29 01:58 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EAPQEC.DLL
2015-10-29 20:50 - 2014-10-29 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbussdapi.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\PSModuleDiscoveryProvider.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimtf.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsdchngr.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\fdPHost.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxshared.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Startupscan.dll
2015-10-29 20:50 - 2014-10-29 01:58 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\bootim.exe
2015-10-29 20:50 - 2014-10-29 01:57 - 01065472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00562688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2015-10-29 20:50 - 2014-10-29 01:57 - 00543744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2015-10-29 20:50 - 2014-10-29 01:57 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2PGraph.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00364032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authfwcfg.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00346624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Proximity.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\wlidcredprov.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\ndfapi.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qwave.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00203264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\onex.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00192512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mlang.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe
2015-10-29 20:50 - 2014-10-29 01:57 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DeviceEncryptionHandlers.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00124416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtstocom.exe
2015-10-29 20:50 - 2014-10-29 01:57 - 00120832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimAuth.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\wlidfdp.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdSSDP.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmifw.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\ConfigureExpandedStorage.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetmib1.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\datusage.dll
2015-10-29 20:50 - 2014-10-29 01:57 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\ByteCodeGenerator.exe
2015-10-29 20:50 - 2014-10-29 01:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrshost.exe
2015-10-29 20:50 - 2014-10-29 01:57 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\energytask.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 01337344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 01248256 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 01028608 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 01001984 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00653312 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2015-10-29 20:50 - 2014-10-29 01:56 - 00631808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00512512 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2015-10-29 20:50 - 2014-10-29 01:56 - 00483328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2015-10-29 20:50 - 2014-10-29 01:56 - 00482304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2015-10-29 20:50 - 2014-10-29 01:56 - 00337920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certCredProvider.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\activeds.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\mstask.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwcfg.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\RDSAppXHelper.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\AepRoam.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xolehlp.dll
2015-10-29 20:50 - 2014-10-29 01:56 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nci.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00887808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dim700.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00795648 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00719360 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\es.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsAuth.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\profsvcext.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\ConsentUX.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdPnp.dll
2015-10-29 20:50 - 2014-10-29 01:55 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\CheckNetIsolation.exe
2015-10-29 20:50 - 2014-10-29 01:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\RdpSaProxy.exe
2015-10-29 20:50 - 2014-10-29 01:54 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-10-29 20:50 - 2014-10-29 01:54 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00560640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00348672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprapi.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00347648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxclu.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\BioCredProv.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\NAPMONTR.DLL
2015-10-29 20:50 - 2014-10-29 01:54 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.HardwareId.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\WfHC.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DHCPQEC.DLL
2015-10-29 20:50 - 2014-10-29 01:54 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceConnectApi.dll
2015-10-29 20:50 - 2014-10-29 01:54 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\RdpSaUacHelper.exe
2015-10-29 20:50 - 2014-10-29 01:53 - 01156608 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 01063424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00612352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provcore.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00550400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00425472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschap.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00347648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_8.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\msdtcuiu.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdmaud.drv
2015-10-29 20:50 - 2014-10-29 01:53 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\AltTab.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdBth.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\WSDPrintProxy.DLL
2015-10-29 20:50 - 2014-10-29 01:53 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2015-10-29 20:50 - 2014-10-29 01:53 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifmon.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 02170368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 01461248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 01275904 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 01054208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 01024512 _____ (Microsoft Corporation) C:\Windows\system32\WlanMM.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00827392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00801792 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00555008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00544256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddraw.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.SpeechSynthesis.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2015-10-29 20:50 - 2014-10-29 01:52 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrs.exe
2015-10-29 20:50 - 2014-10-29 01:51 - 03317248 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00569856 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00518144 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2015-10-29 20:50 - 2014-10-29 01:51 - 00506880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00457728 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\netman.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsCfg.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\wlancfg.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00169472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\DeviceElementSource.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrscmd.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\wpninprc.dll
2015-10-29 20:50 - 2014-10-29 01:51 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndiscapCfg.dll
2015-10-29 20:50 - 2014-10-29 01:50 - 02317824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2015-10-29 20:50 - 2014-10-29 01:50 - 01482752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2015-10-29 20:50 - 2014-10-29 01:50 - 00920064 _____ (Microsoft Corporation) C:\Windows\system32\FirewallControlPanel.dll
2015-10-29 20:50 - 2014-10-29 01:50 - 00624128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2015-10-29 20:50 - 2014-10-29 01:50 - 00589824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-10-29 20:50 - 2014-10-29 01:50 - 00430592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2015-10-29 20:50 - 2014-10-29 01:50 - 00399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2015-10-29 20:50 - 2014-10-29 01:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2015-10-29 20:50 - 2014-10-29 01:50 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchTM.exe
2015-10-29 20:50 - 2014-10-29 01:50 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Renewal.dll
2015-10-29 20:50 - 2014-10-29 01:50 - 00071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eqossnap.dll
2015-10-29 20:50 - 2014-10-29 01:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollCtrl.exe
2015-10-29 20:50 - 2014-10-29 01:49 - 00831488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certca.dll
2015-10-29 20:50 - 2014-10-29 01:49 - 00576512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsvcs.dll
2015-10-29 20:50 - 2014-10-29 01:49 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2015-10-29 20:50 - 2014-10-29 01:49 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2015-10-29 20:50 - 2014-10-29 01:49 - 00300032 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2015-10-29 20:50 - 2014-10-29 01:49 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2015-10-29 20:50 - 2014-10-29 01:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimCfg.dll
2015-10-29 20:50 - 2014-10-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2015-10-29 20:50 - 2014-10-29 01:48 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2015-10-29 20:50 - 2014-10-29 01:48 - 01142272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2015-10-29 20:50 - 2014-10-29 01:48 - 00949760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2015-10-29 20:50 - 2014-10-29 01:48 - 00562688 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2015-10-29 20:50 - 2014-10-29 01:48 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\hnetcfg.dll
2015-10-29 20:50 - 2014-10-29 01:48 - 00454144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2015-10-29 20:50 - 2014-10-29 01:48 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\InputSwitch.dll
2015-10-29 20:50 - 2014-10-29 01:48 - 00178176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windowslivelogin.dll
2015-10-29 20:50 - 2014-10-29 01:48 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slpts.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 02090496 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2015-10-29 20:50 - 2014-10-29 01:47 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 00628224 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 00527872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\catsrv.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 00470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 00451584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 00177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\SettingMonitor.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2015-10-29 20:50 - 2014-10-29 01:47 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3gpclnt.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 01348096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 01305088 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 01265152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 01015808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 00605184 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 00455680 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 00306176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidfdp.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingHost.exe
2015-10-29 20:50 - 2014-10-29 01:46 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConfigureExpandedStorage.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PSModuleDiscoveryProvider.dll
2015-10-29 20:50 - 2014-10-29 01:46 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ByteCodeGenerator.exe
2015-10-29 20:50 - 2014-10-29 01:46 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Startupscan.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 01197568 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 00918016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 00573952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceApi.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2015-10-29 20:50 - 2014-10-29 01:45 - 00397824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2015-10-29 20:50 - 2014-10-29 01:45 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\activeds.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndfapi.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstask.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 00196096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcredprov.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2015-10-29 20:50 - 2014-10-29 01:45 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dataclen.dll
2015-10-29 20:50 - 2014-10-29 01:44 - 00732672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanpref.dll
2015-10-29 20:50 - 2014-10-29 01:44 - 00677376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2015-10-29 20:50 - 2014-10-29 01:44 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-10-29 20:50 - 2014-10-29 01:44 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2015-10-29 20:50 - 2014-10-29 01:44 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll
2015-10-29 20:50 - 2014-10-29 01:44 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2015-10-29 20:50 - 2014-10-29 01:44 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2015-10-29 20:50 - 2014-10-29 01:44 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2015-10-29 20:50 - 2014-10-29 01:44 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdeploy.dll
2015-10-29 20:50 - 2014-10-29 01:44 - 00128512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2015-10-29 20:50 - 2014-10-29 01:44 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CheckNetIsolation.exe
2015-10-29 20:50 - 2014-10-29 01:44 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaUacHelper.exe
2015-10-29 20:50 - 2014-10-29 01:44 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaProxy.exe
2015-10-29 20:50 - 2014-10-29 01:43 - 00957952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WlanMM.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00724480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00720896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcprx.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00624640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00461312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00322048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSATAPI.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BioCredProv.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NAPMONTR.DLL
2015-10-29 20:50 - 2014-10-29 01:43 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcuiu.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00181248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.HardwareId.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceTypes.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceClassExtension.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00114688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WfHC.dll
2015-10-29 20:50 - 2014-10-29 01:43 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 01221120 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 01207808 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00865280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallControlPanel.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00841728 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00654848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00608256 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00539648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00366080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provsvc.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2015-10-29 20:50 - 2014-10-29 01:42 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.SpeechSynthesis.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlancfg.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2015-10-29 20:50 - 2014-10-29 01:42 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncPolicy.dll
2015-10-29 20:50 - 2014-10-29 01:41 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2015-10-29 20:50 - 2014-10-29 01:41 - 01317376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2015-10-29 20:50 - 2014-10-29 01:41 - 00472064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2015-10-29 20:50 - 2014-10-29 01:41 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2015-10-29 20:50 - 2014-10-29 01:40 - 02104832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2015-10-29 20:50 - 2014-10-29 01:40 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2015-10-29 20:50 - 2014-10-29 01:40 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2015-10-29 20:50 - 2014-10-29 01:39 - 01000448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2015-10-29 20:50 - 2014-10-29 01:39 - 00565248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2015-10-29 20:50 - 2014-10-29 01:39 - 00454144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hnetcfg.dll
2015-10-29 20:50 - 2014-10-29 01:39 - 00401408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrv.dll
2015-10-29 20:50 - 2014-10-29 01:39 - 00205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputSwitch.dll
2015-10-29 20:50 - 2014-10-29 01:39 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingMonitor.dll
2015-10-29 20:50 - 2014-10-29 01:38 - 01262080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2015-10-29 20:50 - 2014-10-29 01:38 - 01232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2015-10-29 20:50 - 2014-10-29 01:38 - 00565760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-10-29 20:50 - 2014-10-29 01:37 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2015-10-29 20:50 - 2014-10-29 01:37 - 00724480 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2015-10-29 20:50 - 2014-10-29 01:37 - 00414208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2015-10-29 20:50 - 2014-10-29 01:37 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\CloudStorageWizard.exe
2015-10-29 20:50 - 2014-10-29 01:37 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2015-10-29 20:50 - 2014-10-29 01:36 - 00955392 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-10-29 20:50 - 2014-10-29 01:36 - 00954880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2015-10-29 20:50 - 2014-10-29 01:35 - 01668096 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2015-10-29 20:50 - 2014-10-29 01:35 - 01085952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2015-10-29 20:50 - 2014-10-29 01:35 - 00772096 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2015-10-29 20:50 - 2014-10-29 01:35 - 00667648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2015-10-29 20:50 - 2014-10-29 01:35 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2015-10-29 20:50 - 2014-10-29 01:35 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-10-29 20:50 - 2014-10-29 01:35 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2015-10-29 20:50 - 2014-10-29 01:35 - 00234496 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2015-10-29 20:50 - 2014-10-29 01:35 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2015-10-29 20:50 - 2014-10-29 01:35 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2015-10-29 20:50 - 2014-10-29 01:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncPolicy.dll
2015-10-29 20:50 - 2014-10-29 01:34 - 00104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2015-10-29 20:50 - 2014-10-29 01:33 - 01102848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2015-10-29 20:50 - 2014-10-29 01:31 - 00626176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2015-10-29 20:50 - 2014-10-29 01:31 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudStorageWizard.exe
2015-10-29 20:50 - 2014-10-29 01:30 - 00602624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2015-10-29 20:50 - 2014-10-29 01:30 - 00221696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll
2015-10-29 20:50 - 2014-10-29 01:30 - 00215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2015-10-29 20:50 - 2014-10-15 09:32 - 02025792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-10-29 20:50 - 2014-10-15 09:32 - 00921920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2015-10-29 20:50 - 2014-10-15 09:32 - 00551232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-10-29 20:50 - 2014-10-15 09:32 - 00337728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2015-10-29 20:50 - 2014-10-15 09:32 - 00088896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-10-29 20:50 - 2014-10-15 09:32 - 00061248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fsdepends.sys
2015-10-29 20:50 - 2014-10-12 09:53 - 00054592 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2015-10-29 20:50 - 2014-10-08 08:33 - 00678400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-10-29 20:50 - 2014-10-07 07:44 - 00533824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2015-10-29 20:50 - 2014-10-07 07:44 - 00069952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpci.sys
2015-10-29 20:50 - 2014-09-25 04:42 - 00373568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-10-29 20:50 - 2014-08-26 04:30 - 00354112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2015-10-29 20:50 - 2014-08-08 17:55 - 00172344 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_8086.dll
2015-10-29 20:50 - 2014-07-04 22:29 - 00478528 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-10-29 20:50 - 2014-06-21 08:33 - 00212736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2015-10-29 20:47 - 2015-09-03 03:18 - 02531400 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-10-29 20:47 - 2015-09-03 03:17 - 01903848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-10-29 20:47 - 2015-09-02 19:48 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-10-29 20:47 - 2015-09-02 18:09 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-10-29 20:47 - 2015-08-27 03:43 - 22372152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-29 20:47 - 2015-08-27 03:42 - 19795904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-10-29 20:47 - 2015-08-06 17:47 - 04710400 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-10-29 20:47 - 2015-08-06 17:18 - 04068352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-10-29 20:47 - 2015-06-28 06:07 - 00442712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-10-29 20:47 - 2015-06-28 06:06 - 01311960 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-10-29 20:47 - 2015-06-28 06:06 - 00332120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-10-29 20:47 - 2015-06-27 17:42 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-10-29 20:47 - 2015-06-27 04:12 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-10-29 20:47 - 2015-06-15 23:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-10-29 20:47 - 2015-06-15 23:24 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-10-29 20:47 - 2015-06-15 22:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-10-29 20:47 - 2015-06-15 22:09 - 03607552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-10-29 20:47 - 2015-05-30 22:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2015-10-29 20:47 - 2015-05-30 20:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-10-29 20:47 - 2015-05-30 20:35 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-10-29 20:47 - 2015-05-07 18:00 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-10-29 20:47 - 2015-05-07 17:12 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-10-29 20:47 - 2015-05-07 16:21 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2015-10-29 20:47 - 2015-05-07 16:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2015-10-29 20:47 - 2015-04-30 00:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2015-10-29 20:46 - 2015-11-16 10:21 - 01633792 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-10-29 20:46 - 2015-11-16 10:21 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-10-29 20:46 - 2015-08-07 22:40 - 01736520 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-10-29 20:46 - 2015-08-07 22:40 - 01499920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-10-29 20:46 - 2015-08-07 22:40 - 01134752 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-10-29 20:46 - 2015-08-07 22:40 - 00686960 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-10-29 20:46 - 2015-08-07 22:40 - 00507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-10-29 20:46 - 2015-08-07 15:13 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-10-29 20:46 - 2015-07-30 18:18 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-10-29 20:46 - 2015-07-30 17:22 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-10-29 20:46 - 2015-07-17 15:15 - 00951296 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-10-29 20:46 - 2015-07-17 15:10 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-10-29 20:46 - 2015-07-16 01:29 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-10-29 20:46 - 2015-07-10 18:54 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-10-29 20:46 - 2015-06-27 12:47 - 00118616 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-10-29 20:46 - 2015-05-11 19:17 - 01201664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-10-29 20:46 - 2014-11-04 20:25 - 00059712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys
2015-10-29 20:46 - 2014-11-04 20:25 - 00051008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys
2015-10-29 20:46 - 2014-11-04 07:55 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys
2015-10-29 20:46 - 2014-11-04 07:54 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys
2015-10-29 20:46 - 2014-11-04 07:54 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2015-10-29 20:46 - 2014-11-04 07:54 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2015-10-29 20:46 - 2014-10-31 05:50 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2015-10-29 20:46 - 2014-10-31 04:30 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2015-10-29 20:46 - 2014-10-31 04:23 - 00733696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2015-10-29 20:46 - 2014-10-31 04:22 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2015-10-29 20:46 - 2014-10-31 04:18 - 04840960 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2015-10-29 20:46 - 2014-10-31 04:09 - 01154048 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2015-10-29 20:46 - 2014-10-31 03:12 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2015-10-29 20:40 - 2015-09-24 17:42 - 00348672 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2015-10-29 20:40 - 2015-09-24 17:40 - 00737280 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-10-29 20:40 - 2015-08-06 18:05 - 00669184 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2015-10-29 20:40 - 2015-08-06 17:37 - 00536576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2015-10-29 20:40 - 2015-07-07 10:40 - 00270168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-10-29 20:40 - 2015-07-07 10:40 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-10-29 20:40 - 2015-07-07 10:40 - 00044560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-10-29 20:40 - 2015-07-01 23:19 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-10-29 20:40 - 2015-07-01 23:16 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-10-29 20:40 - 2015-07-01 22:37 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-10-29 20:40 - 2015-07-01 22:35 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-10-29 20:40 - 2015-06-12 18:03 - 18823680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-10-29 20:40 - 2015-06-12 17:36 - 15159296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-10-29 20:40 - 2015-05-07 17:47 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-10-29 20:40 - 2015-04-25 03:25 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-10-29 20:40 - 2015-03-11 02:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-10-29 20:40 - 2015-03-11 02:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-10-29 20:40 - 2014-10-29 03:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\hh.exe
2015-10-29 20:40 - 2014-10-29 03:19 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\hhsetup.dll
2015-10-29 20:40 - 2014-10-29 03:13 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\BdeUISrv.exe
2015-10-29 20:40 - 2014-10-29 02:58 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2015-10-29 20:40 - 2014-10-29 02:40 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhsetup.dll
2015-10-29 20:40 - 2014-10-29 02:26 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerDeviceEncryption.exe
2015-10-29 20:40 - 2014-10-29 02:16 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2015-10-29 20:39 - 2015-09-02 03:55 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-10-29 20:39 - 2015-09-02 03:50 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-10-29 20:39 - 2015-09-02 03:17 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-10-29 20:39 - 2015-09-02 03:13 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-10-29 20:39 - 2015-07-22 15:34 - 02775552 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-10-29 20:39 - 2015-07-22 15:33 - 01728000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2015-10-29 20:39 - 2015-07-22 15:25 - 02461184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-10-29 20:39 - 2015-07-22 15:25 - 01546752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2015-10-29 20:39 - 2015-07-18 19:31 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2015-10-29 20:39 - 2015-07-18 19:29 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-10-29 20:39 - 2015-07-18 19:29 - 00148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2015-10-29 20:39 - 2015-07-18 19:27 - 00520192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-10-29 20:39 - 2015-07-13 20:46 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-10-29 20:39 - 2015-07-13 20:45 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-10-29 20:39 - 2015-07-09 17:14 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-10-29 20:39 - 2015-06-19 18:07 - 02819072 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-10-29 20:39 - 2015-05-03 16:09 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-29 20:39 - 2015-05-03 15:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-29 20:39 - 2015-05-03 15:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-10-29 20:39 - 2015-05-03 15:49 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-10-29 20:38 - 2015-09-19 04:18 - 00035384 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-10-29 20:38 - 2015-09-18 14:42 - 01290752 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-10-29 20:38 - 2015-09-18 14:42 - 01163776 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-10-29 20:38 - 2015-09-18 14:42 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-10-29 20:38 - 2015-09-18 14:42 - 00699904 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-10-29 20:38 - 2015-09-18 14:42 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-10-29 20:38 - 2015-09-18 14:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-29 20:38 - 2015-08-01 04:47 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2015-10-29 20:38 - 2015-08-01 04:45 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
2015-10-29 20:38 - 2015-08-01 04:38 - 01265152 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-10-29 20:38 - 2015-08-01 04:37 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2015-10-29 20:38 - 2015-08-01 04:37 - 00359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2015-10-29 20:38 - 2015-07-14 22:59 - 01113944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-10-29 20:38 - 2015-07-14 22:59 - 00487256 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-10-29 20:38 - 2015-07-14 22:59 - 00393560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-10-29 20:38 - 2015-07-09 18:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-10-29 20:38 - 2015-07-09 18:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-10-29 20:38 - 2015-07-09 17:30 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-10-29 20:38 - 2015-06-11 21:12 - 02476376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-10-29 20:38 - 2015-06-11 21:12 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-10-29 20:38 - 2015-05-21 14:08 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-10-29 20:38 - 2015-05-11 17:34 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2015-10-29 20:37 - 2015-08-03 22:15 - 00074928 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-29 20:37 - 2015-08-03 22:15 - 00065600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-10-29 20:37 - 2015-08-01 15:22 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-29 20:37 - 2015-07-29 15:37 - 01994752 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-10-29 20:37 - 2015-07-29 15:30 - 01381888 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-10-29 20:37 - 2015-07-29 15:23 - 01559552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-10-29 20:37 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tzsync.exe
2015-10-29 20:37 - 2015-07-10 19:19 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-10-29 20:37 - 2015-07-10 18:14 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-10-29 20:37 - 2015-07-10 18:13 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-10-29 20:37 - 2015-07-10 17:31 - 06213120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-10-29 20:37 - 2015-06-16 06:36 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-10-29 20:37 - 2015-06-16 06:36 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-10-29 20:37 - 2015-04-28 14:13 - 00513480 _____ C:\Windows\SysWOW64\locale.nls
2015-10-29 20:37 - 2015-04-28 14:13 - 00513480 _____ C:\Windows\system32\locale.nls
2015-10-29 20:37 - 2015-04-23 16:47 - 03084288 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-10-29 20:37 - 2015-04-23 16:16 - 02471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-10-29 20:37 - 2014-10-29 03:46 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-29 20:37 - 2014-10-29 03:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-29 20:37 - 2014-10-29 03:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-29 20:37 - 2014-10-29 03:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-10-29 20:37 - 2014-10-29 02:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-29 20:36 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-29 20:36 - 2015-07-16 19:58 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\NcdAutoSetup.dll
2015-10-29 20:36 - 2015-07-10 20:06 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2015-10-29 20:36 - 2015-07-09 19:40 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-10-29 20:36 - 2015-06-27 04:08 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-10-29 20:36 - 2015-06-27 04:08 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-10-29 20:36 - 2015-06-27 03:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-10-29 20:36 - 2015-05-12 14:19 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-10-29 20:36 - 2015-05-03 16:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-10-29 20:36 - 2015-05-03 15:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-20 20:04 - 2015-07-17 14:06 - 00000000 ____D C:\Users\Karsten\AppData\Local\Dell Printer Hub
2015-11-20 20:03 - 2015-03-26 20:39 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-11-20 20:03 - 2013-12-13 04:57 - 00228018 _____ C:\Windows\PFRO.log
2015-11-20 20:03 - 2013-08-22 15:46 - 00033963 _____ C:\Windows\setupact.log
2015-11-20 20:03 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-20 20:02 - 2014-06-20 18:33 - 01849947 _____ C:\Windows\WindowsUpdate.log
2015-11-20 20:00 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sru
2015-11-20 19:52 - 2015-03-22 20:07 - 00003930 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{06957B63-8A92-4FAD-B716-A205A87C1587}
2015-11-20 19:49 - 2015-03-25 20:41 - 00136704 ___SH C:\Users\Karsten\Desktop\Thumbs.db
2015-11-19 20:17 - 2015-03-25 19:51 - 00000000 ____D C:\Users\Karsten\AppData\Roaming\ClassicShell
2015-11-17 20:31 - 2015-03-22 20:03 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2978658392-3849539983-600884974-1002
2015-11-17 11:49 - 2013-12-13 12:04 - 00765582 _____ C:\Windows\system32\perfh007.dat
2015-11-17 11:49 - 2013-12-13 12:04 - 00159366 _____ C:\Windows\system32\perfc007.dat
2015-11-17 11:49 - 2013-12-13 05:09 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-16 13:39 - 2013-08-22 16:37 - 00003547 _____ C:\Windows\DtcInstall.log
2015-11-16 13:38 - 2013-08-22 15:44 - 00484280 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-16 13:37 - 2013-08-22 21:59 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ___SD C:\Windows\system32\dsc
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\sppui
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\setup
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sppui
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\setup
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\migwiz
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Com
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\MediaViewer
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\IME
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\FileManager
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Camera
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Portable Devices
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2015-11-16 13:37 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-11-16 13:37 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-11-16 13:37 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-11-16 13:37 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Sysprep
2015-11-16 13:37 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\oobe
2015-11-16 13:37 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Dism
2015-11-16 13:37 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-11-16 13:37 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\servicing
2015-11-16 13:36 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-11-16 13:36 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\system32\GWX
2015-11-16 13:36 - 2015-04-08 19:32 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-11-16 13:36 - 2015-04-08 19:32 - 00000000 ____D C:\Windows\system32\appraiser
2015-11-16 13:36 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-16 13:36 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-16 13:36 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\WinStore
2015-11-16 13:36 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-11-16 13:36 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\WindowsPowerShell
2015-11-16 13:36 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-11-16 13:36 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2015-11-16 13:36 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-11-16 13:36 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2015-11-16 13:36 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-11-16 10:53 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2015-11-16 09:55 - 2013-08-22 16:36 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-11-16 09:55 - 2013-08-22 16:36 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2015-11-16 09:41 - 2015-03-26 21:04 - 00000000 ____D C:\Windows\system32\MRT
2015-11-16 09:40 - 2015-03-26 21:04 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-16 09:06 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-11-15 22:11 - 2015-04-09 19:21 - 00588800 ___SH C:\Users\Karsten\Downloads\Thumbs.db
2015-11-15 21:47 - 2015-03-22 19:57 - 00000000 ____D C:\Users\Karsten
2015-11-15 21:47 - 2014-06-20 18:35 - 00000000 ____D C:\ProgramData\P4G
2015-11-15 21:46 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\registration
2015-11-11 19:53 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Recovery
2015-11-09 19:02 - 2015-03-22 20:09 - 00000000 ____D C:\Users\Karsten\AppData\Local\Google
2015-11-09 19:01 - 2015-03-22 20:10 - 00000000 ____D C:\Program Files (x86)\Google
2015-11-06 21:31 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2015-11-05 12:20 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-11-03 01:23 - 2013-08-22 16:38 - 00810488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-03 01:23 - 2013-08-22 16:38 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-29 22:01 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache
2015-10-29 20:21 - 2015-06-13 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Printers
2015-10-29 20:20 - 2014-06-20 18:26 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-11-05 12:14 - 2015-11-20 20:05 - 0000074 _____ () C:\Users\Karsten\AppData\Roaming\sp_data.sys
2014-06-20 18:29 - 2014-06-20 18:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-12-13 05:09 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-12-13 05:09 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-12-13 05:09 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

Einige Dateien in TEMP:
====================
C:\Users\Karsten\AppData\Local\Temp\autorun.dll
C:\Users\Karsten\AppData\Local\Temp\dlm1AnotherRegister.exe
C:\Users\Karsten\AppData\Local\Temp\dlp4AnotherRegister.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-11-15 22:07

==================== Ende von FRST.txt ============================

schrauber 21.11.2015 19:52
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
reg: reg delete "HKLM\SOFTWARE\WOW6432NODE\RESULTSHUB" /f

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.


opecgreen 21.11.2015 20:31
So, ich hoffe das passt so - hier die Fixlog:

Code:
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:20-11-2015
durchgeführt von Karsten (2015-11-21 20:29:35) Run:1
Gestartet von C:\Users\Karsten\Desktop
Geladene Profile: Karsten (Verfügbare Profile: Karsten & Gast)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
reg: reg delete "HKLM\SOFTWARE\WOW6432NODE\RESULTSHUB" /f
*****************


========= reg delete "HKLM\SOFTWARE\WOW6432NODE\RESULTSHUB" /f =========

Der Vorgang wurde erfolgreich beendet.



========= Ende von Reg: =========


==== Ende von Fixlog 20:29:39 ====

schrauber 22.11.2015 07:47
ok, MBAM sollte jetzt nix mehr finden.

opecgreen 22.11.2015 19:25
Hallo Schrauber,

in der Tat - MBAM hat gerade eben nichts mehr gefunden. Stark!!!:Boogie::party:

Warum aber findet Emisoft Anti Malware noch zwei wenn auch andere Datein welche MBAM aber noch nie gefunden hat und Emisoft erkennt bzw. findet die beanstandeten Datein von MBAM nicht?
Sollten die Zwei Programme da ja auf der Suche nach Malware nicht eigentlich jeweils alle 4 Datein gleich beanstanden?

Oder verstehe ich was nicht?

Danke Karsten

schrauber 23.11.2015 19:18
Zitat:
Sollten die Zwei Programme da ja auf der Suche nach Malware nicht eigentlich jeweils alle 4 Datein gleich beanstanden?
Nee, unmöglich :)
Jeder baut seine eigenen Signaturen, aber in dem speziellen Fall kannste das auch nicht vergleichen.

Die MBAm Funde sind inaktive PUP-Reste in der Registry, also egal.
Die Emsi-Funde sagen lediglich dass der Key vorhanden ist, aber nicht aktiv, also auch nicht wild.

opecgreen 23.11.2015 21:50
Ah verstehe.

Habe mir jetzt auf dein anraten vor gut einer Woche die Emisoft Anti Malware installiert, die läuft ja brav im Hintergrund mit.
Brauch ich dann die Anti Malware auch? Warsch macht es Sinn, da ja doch beide unterschiedlich suchen?!

Oder tut es doch nur eine?

Was ist mit Kaspersky? Tut der es oder gibt es anderes/ besseres?

Also ist mein Laptop jetzt endlich wieder sauber? :party::abklatsch::daumenhoc

Danke

schrauber 24.11.2015 22:19
Kaspersky kann weg, nur ein AV Programm nutzen. MBAm kann bleiben, reicht aber die Freeware.

sauber :)

opecgreen 25.11.2015 10:12
Sauber - super!:singsing:

Danke auch hier noch mal.

Ich hatte mir jetzt wie du mal gemeint hattest die Emisoft AMW geholt, da ja das ganze in Echtzeit mit läuft.
Tut es dieses Programm auch oder ist doch MBAm das bessere?

schrauber 26.11.2015 12:41
MBAM ist kein AV Programm, EAM schon. MBAM würde ich persönlich in der Free-Version mit laufen lassen.


Alle Zeitangaben in WEZ +1. Es ist jetzt 19:59 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131