Guten Morgen liebes Trojaner Board,

vor zwei Tagen ist mir aufgefallen das während mein Computer im Schlafmodus ist im Chrome Tabs zu einer Seite aufgingen, welche von Chrome blockiert wurden, die genaue Adresse habe ich leider nicht mehr im Kopf. Seit heute Morgen habe ich probleme mit Chrome und auch mit Firefox und Internet Explorer das geschlossene Instanzen sich nicht per Process Explorer töten lassen können, desweiteren lädt mein Firefox (außer im Abgesichtern Modus mit Netzwerk) unendlich lange und kommt zu keinem Ergebnis.

Vorab, Vielen Dank an denjenigen der sich Zeit für mein Problem nimmt.

1. defogger_disable
Keine Fehlermeldung

2. FRST.txt


FRST Logfile:

Code: Alles auswählenAufklappen

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:18-11-2015
durchgeführt von Kai (Administrator) auf KNIGHTMARE01 (19-11-2015 07:19:17)
Gestartet von C:\Users\Georg\Desktop
Geladene Profile: Kai (Verfügbare Profile: Kai)
Platform: Windows 8.1 Pro (X64) Sprache: German (Germany)
Internet Explorer Version 11 (Standard-Browser: IE)
Start-Modus: Safe Mode (with Networking)
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\System32\vmms.exe
(Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [495616 2014-05-12] (Greenshot)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-06] (Apple Inc.)
HKLM-x32\...\Run: [Sophos AutoUpdate Monitor] => C:\Program Files (x86)\Sophos\AutoUpdate\almon.exe [1592104 2015-07-30] (Sophos Limited)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [593216 2015-08-11] (Razer Inc.)
HKLM-x32\...\Run: [Kraken71ChromaHelper] => C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe [1600320 2015-08-13] (Razer Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-11-12] (LogMeIn Inc.)
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Georg\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Run: [f.lux] => C:\Users\Georg\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Run: [Spotify Web Helper] => C:\Users\Georg\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2030912 2015-10-28] (Spotify Ltd)
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Run: [SandboxieControl] => E:\Sandboxie\SbieCtrl.exe [785416 2015-02-18] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Run: [MK LOL] => E:\MKJogo\MK IM\Bin\MKIM.exe [1092296 2015-06-14] ()
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Run: [EvolveClient] => E:\Evolve\EvolveClient.exe [3334528 2015-11-11] (Echobit LLC)
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3098424 2015-08-19] (Nota Inc.)
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [479744 2014-10-29] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~2.DLL => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sophos_detoured_x64.dll [217672 2015-04-17] (Sophos Limited)
AppInit_DLLs-x32: C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sophos_detoured.dll [275352 2015-04-17] (Sophos Limited)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\Root\Office15\GROOVEEX.DLL [2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\Root\Office15\GROOVEEX.DLL [2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\Root\Office15\GROOVEEX.DLL [2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
Startup: C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2014-12-27]
ShortcutTarget: Curse.lnk -> C:\Users\Georg\AppData\Roaming\Curse Client\Bin\Curse.exe (Keine Datei)
Startup: C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2014-12-27]
ShortcutTarget: Curse.lnk -> C:\Users\Georg\AppData\Roaming\Curse Client\Bin\Curse.exe (Keine Datei)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\..\Interfaces\{489C9136-B273-49DB-BCAE-E64A0AF0DBEB}: [DhcpNameServer] 141.41.1.250 141.41.1.150
Tcpip\..\Interfaces\{4FD28635-B74C-4C38-8E2C-457DB38F8F64}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5FF16489-F7D5-4131-9187-9CDC3A361285}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6BD7EFEF-DB99-412A-856B-1607BDF5DE5A}: [DhcpNameServer] 209.222.18.222 209.222.18.218

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\Root\Office15\OCHelper.dll [2015-09-29] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-26] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\Root\Office15\GROOVEEX.DLL [2015-10-30] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-26] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2015-09-29] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-30] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - E:\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default
FF NewTab: chrome://fvd.speeddial/content/fvd_about_blank.html
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-26] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\Root\Office15\NPSPWRAP.DLL [2014-10-27] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-05-19] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2014-10-27] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Georg\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin HKU\S-1-5-21-4153393259-964000677-3268066842-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Georg\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-10] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-4153393259-964000677-3268066842-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-10-13] ()
FF SearchPlugin: C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default\searchplugins\duckduckgo.xml [2014-07-12]
FF SearchPlugin: C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default\searchplugins\smogon.xml [2014-06-27]
FF SearchPlugin: C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default\searchplugins\startpage-https---deutsch.xml [2015-11-18]
FF Extension: Click&Clean - C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default\extensions\clickclean@hotcleaner.com [2015-05-30]
FF Extension: Speed Dial [FVD] - New Tab Page, Sync... - C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default\extensions\pavel.sherbakov@gmail.com [2015-11-12]
FF Extension: NoScript - C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-11-12]
FF Extension: HTTPS-Everywhere - C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default\extensions\https-everywhere-eff@eff.org [2015-11-12]
FF Extension: uBlock - C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default\Extensions\{2b10c1c8-a11f-4bad-fe9c-1c11e82cac42}.xpi [2015-11-19]
FF Extension: Download Status Bar - C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default\Extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi [2015-05-28]
FF Extension: YouTube High Definition - C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2015-11-12]
FF Extension: Adblock Edge - C:\Users\Georg\AppData\Roaming\Mozilla\Firefox\Profiles\c52j19yn.default\Extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi [2015-05-28]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft Development Team)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2015-06-27] (Microsoft Corporation)
S2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2780856 2015-10-07] (Microsoft Corporation)
S3 EvoSvc; E:\Evolve\EvoSvc.exe [1583488 2015-09-29] (Echobit LLC)
S2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392 2015-04-10] (Foxit Software Inc.)
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-07-24] (NVIDIA Corporation)
S2 HiPatchService; E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2015-11-03] (Hi-Rez Studios) [Datei ist nicht signiert]
S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [24888 2015-07-26] (Hewlett-Packard Company)
S2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-11-12] (LogMeIn, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [38200 2014-11-07] (The OpenVPN Project)
S3 OverwolfUpdater; E:\Overwolf\OverwolfUpdater.exe [1008880 2015-11-16] (Overwolf LTD)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-12-02] ()
S2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] ()
S2 SAVAdminService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe [288552 2015-04-17] (Sophos Limited)
R2 SAVService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe [208168 2015-04-17] (Sophos Limited)
S2 SbieSvc; E:\Sandboxie\SbieSvc.exe [175112 2015-02-18] (Sandboxie Holdings, LLC)
S2 Sophos AutoUpdate Service; C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe [340264 2015-07-30] (Sophos Limited)
S2 Sophos Web Control Service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe [341800 2015-04-17] (Sophos Limited)
S2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Datei ist nicht signiert]
S2 swi_filter; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_filter.exe [300840 2015-04-17] (Sophos Limited)
S2 swi_service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [3278632 2015-04-17] (Sophos Limited)
S2 TeamViewer; C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-01] (TeamViewer GmbH)
R2 vmms; C:\Windows\system32\vmms.exe [13784064 2015-04-01] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

U3 axscsidrv; C:\Windows\System32\Drivers\axscsidrv.sys [304296 2015-07-17] (Alcohol Soft Development Team)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30352 2014-12-27] (Disc Soft Ltd)
R3 e1cexpress; C:\Windows\system32\DRIVERS\e1c63x64.sys [498032 2012-07-15] (Intel Corporation)
R0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 EvolveVirtualAdapter; C:\Windows\system32\DRIVERS\evolve.sys [21656 2015-09-29] (Echobit, LLC)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-11-12] (LogMeIn Inc.)
S1 hvservice; C:\Windows\System32\drivers\hvservice.sys [68952 2015-05-12] (Microsoft Corporation)
S3 lunparser; C:\Windows\System32\drivers\lunparser.sys [19456 2015-06-27] (Microsoft Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-19] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
S2 npf; C:\Windows\System32\drivers\npf.sys [36600 2015-06-01] (Riverbed Technology, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
S3 passthruparser; C:\Windows\System32\drivers\passthruparser.sys [22016 2015-06-27] (Microsoft Corporation)
S3 pvhdparser; C:\Windows\System32\drivers\pvhdparser.sys [27136 2015-06-27] (Microsoft Corporation)
S3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [39592 2014-12-30] (Razer Inc)
S2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
S2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.)
S1 SAVOnAccess; C:\Windows\System32\DRIVERS\savonaccess.sys [161024 2015-04-17] (Sophos Limited)
S3 SbieDrv; E:\Sandboxie\SbieDrv.sys [237064 2015-02-18] (Sandboxie Holdings, LLC)
S3 sdcfilter; C:\Windows\system32\DRIVERS\sdcfilter.sys [38144 2015-04-17] (Sophos Limited)
S3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
S4 SophosBootDriver; C:\Windows\system32\DRIVERS\SophosBootDriver.sys [27904 2015-04-17] (Sophos Limited)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-07-17] (Duplex Secure Ltd.)
S1 swi_callout; C:\Windows\system32\DRIVERS\swi_callout.sys [32512 2015-04-17] (Sophos Limited)
S3 vhdparser; C:\Windows\System32\drivers\vhdparser.sys [18944 2015-06-27] (Microsoft Corporation)
R3 VMSMP; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation)
S3 VMSP; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation)
S3 VMSVSF; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation)
S3 VMSVSP; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-19 07:19 - 2015-11-19 07:19 - 00022220 _____ C:\Users\Georg\Desktop\FRST.txt
2015-11-19 07:18 - 2015-11-19 07:18 - 00000568 _____ C:\Users\Georg\Desktop\defogger_disable.log
2015-11-19 07:18 - 2015-11-19 07:18 - 00000216 _____ C:\Users\Georg\defogger_reenable
2015-11-19 07:17 - 2015-11-19 07:17 - 02008576 _____ (Farbar) C:\Users\Georg\Desktop\FRST64.exe
2015-11-19 07:16 - 2015-11-19 07:16 - 00050477 _____ C:\Users\Georg\Desktop\Defogger.exe
2015-11-19 07:14 - 2015-11-19 07:14 - 00000000 _____ C:\Recovery.txt
2015-11-19 06:29 - 2015-11-19 06:29 - 00001159 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-11-19 06:28 - 2015-11-19 06:29 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-11-19 06:27 - 2015-11-19 06:27 - 00243976 _____ C:\Users\Georg\Downloads\Firefox Setup Stub 42.0.exe
2015-11-19 06:10 - 2015-11-19 06:10 - 00000938 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-11-19 06:10 - 2015-11-19 06:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-11-19 06:10 - 2015-11-19 06:10 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-11-19 05:53 - 2015-11-19 05:53 - 00001114 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-11-16 03:55 - 2015-11-16 03:55 - 00001189 _____ C:\Users\Georg\AppData\Local\recently-used.xbel
2015-11-15 15:39 - 2015-11-15 15:39 - 00212164 _____ C:\Users\Georg\Desktop\gson-2.4.jar
2015-11-15 15:33 - 2015-11-15 15:33 - 00158757 _____ C:\Users\Georg\Desktop\riot-api-java.jar
2015-11-15 00:26 - 2015-11-15 00:26 - 00005919 _____ C:\Users\Georg\Desktop\LOL_OPGG_Observer_2161712774_replay.bat
2015-11-14 17:42 - 2015-11-14 17:42 - 00000991 _____ C:\Users\Public\Desktop\Deluge.lnk
2015-11-14 17:42 - 2015-11-14 17:42 - 00000000 ____D C:\Program Files (x86)\Deluge
2015-11-14 17:37 - 2015-11-14 17:37 - 14758443 _____ (Deluge Team) C:\Users\Georg\Desktop\deluge-1.3.12-1-win32-py2.6-setup.exe
2015-11-12 11:47 - 2015-11-12 11:47 - 00045680 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2015-11-11 15:21 - 2015-04-17 15:37 - 00032512 _____ (Sophos Limited) C:\Windows\system32\Drivers\swi_callout.sys
2015-11-10 22:58 - 2015-11-05 14:10 - 01398104 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2015-11-10 22:58 - 2015-11-05 14:10 - 01367384 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2015-11-10 22:58 - 2015-10-15 17:08 - 00990208 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-10 22:58 - 2015-10-15 16:46 - 00803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-10 22:58 - 2015-10-13 18:10 - 00559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-10 22:58 - 2015-10-13 18:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-10 22:58 - 2015-10-13 16:59 - 00397224 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-11-10 22:58 - 2015-10-13 16:59 - 00340872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-11-10 22:58 - 2015-10-13 16:59 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-10 22:58 - 2015-10-13 16:59 - 00120376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-10 22:58 - 2015-10-13 16:59 - 00106952 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-11-10 22:58 - 2015-10-13 16:59 - 00091416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-11-10 22:58 - 2015-10-11 07:36 - 00561952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-11-10 22:58 - 2015-10-11 07:36 - 00177496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-11-10 22:58 - 2015-10-10 19:40 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-11-10 22:58 - 2015-10-10 19:39 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-11-10 22:58 - 2015-10-10 19:07 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-11-10 22:58 - 2015-10-10 18:33 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-11-10 22:58 - 2015-10-10 18:27 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-10 22:58 - 2015-10-10 18:11 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-11-10 22:58 - 2015-10-10 17:45 - 00359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-10 22:58 - 2015-09-30 00:41 - 01391448 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2015-11-10 22:58 - 2015-09-30 00:41 - 01264472 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.exe
2015-11-10 22:58 - 2015-09-29 13:24 - 00155480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2015-11-10 22:58 - 2015-09-07 17:22 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-11-10 22:58 - 2015-09-07 17:21 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2015-11-10 22:58 - 2015-09-07 17:17 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll
2015-11-10 22:58 - 2015-09-07 16:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-11-10 22:58 - 2015-09-07 16:30 - 01091584 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-11-10 22:58 - 2015-09-04 20:24 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2015-11-10 22:58 - 2015-08-28 23:20 - 00183368 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2015-11-10 22:58 - 2015-08-20 21:45 - 01380048 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-11-10 22:58 - 2015-08-20 18:48 - 01096704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-11-10 22:58 - 2014-11-05 02:41 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-11-10 22:58 - 2014-11-05 02:18 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-11-10 22:54 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-10 22:54 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-10 22:54 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-10 22:54 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-10 22:54 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-10 22:54 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-10 22:54 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-10 22:54 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-10 22:54 - 2015-10-30 23:39 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-11-10 22:54 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-10 22:54 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-11-10 22:54 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-11-10 22:54 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-10 22:54 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-10 22:54 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-10 22:54 - 2015-10-30 23:14 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-11-10 22:54 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-11-10 22:54 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-10 22:54 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-10 22:54 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-11-10 22:54 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-10 22:54 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-10 22:54 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-11-10 22:54 - 2015-10-20 22:54 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-11-10 22:54 - 2015-10-20 15:53 - 03705856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-10 22:54 - 2015-10-20 15:36 - 02243072 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-11-10 22:54 - 2015-10-20 15:35 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-11-10 22:54 - 2015-10-20 15:34 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-11-10 22:54 - 2015-10-20 15:34 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-11-10 22:54 - 2015-10-20 15:34 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-11-10 22:54 - 2015-10-20 15:33 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-11-10 22:54 - 2015-10-20 15:14 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-11-10 22:54 - 2015-10-20 15:13 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-11-10 22:54 - 2015-10-20 15:13 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-11-10 22:54 - 2015-10-20 15:13 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-11-10 22:54 - 2015-10-15 00:02 - 07455064 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-10 22:54 - 2015-10-15 00:02 - 01659560 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-11-10 22:54 - 2015-10-15 00:02 - 01519592 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-11-10 22:54 - 2015-10-15 00:02 - 01487008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-11-10 22:54 - 2015-10-15 00:02 - 01355848 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-11-10 22:54 - 2015-09-12 14:47 - 00414559 _____ C:\Windows\system32\ApnDatabase.xml
2015-11-10 22:53 - 2015-10-17 15:19 - 04176384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-11-10 22:53 - 2015-10-08 17:08 - 01083904 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-11-10 22:53 - 2015-08-10 19:15 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-11-10 22:53 - 2015-08-10 19:06 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-11-10 22:53 - 2015-08-10 18:49 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-11-10 22:53 - 2015-08-10 17:56 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-11-10 22:53 - 2015-08-10 17:46 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-11-10 22:53 - 2014-11-10 19:06 - 00136512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-11-05 10:55 - 2015-11-05 10:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-11-05 10:55 - 2009-04-20 12:29 - 00136704 _____ (Hewlett-Packard Company) C:\Windows\system32\hpf3l70w.dll
2015-11-05 10:45 - 2015-11-05 10:54 - 00000000 ____D C:\Program Files (x86)\HP
2015-11-05 10:44 - 2015-11-05 10:56 - 00197455 _____ C:\Windows\hpoins38.dat
2015-11-05 10:44 - 2015-11-05 10:56 - 00000365 _____ C:\ProgramData\hpzinstall.log
2015-11-05 10:44 - 2015-11-05 10:55 - 00000000 ____D C:\ProgramData\HP
2015-11-05 10:44 - 2012-09-29 18:51 - 00000436 ____N C:\Windows\hpomdl38.dat
2015-11-05 10:44 - 2009-04-16 12:53 - 00642360 _____ (Hewlett-Packard) C:\Windows\system32\hpzids40.dll
2015-11-05 10:44 - 2009-02-11 12:03 - 01403904 _____ (Hewlett-Packard Co.) C:\Windows\system32\hpost_p02e.dll
2015-11-05 10:44 - 2009-02-11 12:03 - 00880640 _____ (Hewlett-Packard) C:\Windows\system32\hposwia_p02e.dll
2015-11-05 10:44 - 2009-02-11 12:03 - 00515072 _____ (Hewlett-Packard Co.) C:\Windows\system32\hposc_p02a.dll
2015-11-05 10:44 - 2008-10-29 01:27 - 00551424 _____ (Hewlett-Packard) C:\Windows\system32\hppldcoi.dll
2015-11-05 10:36 - 2015-11-05 10:36 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-11-05 10:10 - 2015-11-05 10:10 - 00040995 _____ C:\Users\Georg\Desktop\mc_sweetie_hearts.zip
2015-11-03 17:59 - 2015-11-08 12:10 - 00000000 ____D C:\Users\Georg\AppData\Local\UNDERTALE
2015-11-03 17:59 - 2015-11-03 17:59 - 00000000 ____D C:\Users\Georg\AppData\Roaming\Steam
2015-11-03 10:54 - 2015-11-03 10:54 - 00000010 _____ C:\Users\Georg\Desktop\as.txt
2015-11-03 09:33 - 2015-11-03 09:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LOOT
2015-11-01 17:30 - 2015-11-01 17:30 - 00000779 _____ C:\Users\Georg\.pia_manager_crash.log
2015-10-23 12:31 - 2015-10-23 12:33 - 00000000 ____D C:\ProgramData\Overwolf
2015-10-23 12:31 - 2015-10-23 12:31 - 00003648 _____ C:\Windows\System32\Tasks\Overwolf Updater Task
2015-10-23 12:31 - 2015-10-23 12:31 - 00000000 ____D C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2015-10-21 18:21 - 2015-11-05 09:37 - 00011646 ____H C:\Users\Georg\Desktop\~WRL3382.tmp

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-19 07:19 - 2014-08-14 16:25 - 00000000 ____D C:\FRST
2015-11-19 07:18 - 2014-05-17 17:01 - 00000000 ____D C:\Users\Georg
2015-11-19 07:17 - 2015-06-27 17:58 - 27619328 _____ C:\Windows\system32\vmguest.iso
2015-11-19 07:11 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-19 07:10 - 2015-08-21 11:53 - 00043545 _____ C:\Windows\setupact.log
2015-11-19 07:10 - 2015-08-20 14:18 - 00000000 ____D C:\Users\Georg\AppData\Local\LogMeIn Hamachi
2015-11-19 07:10 - 2014-05-17 17:52 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-19 07:10 - 2014-05-17 17:17 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-19 07:10 - 2014-05-17 17:03 - 00000000 ___DO C:\Users\Georg\SkyDrive
2015-11-19 07:06 - 2015-08-20 14:18 - 01104372 _____ C:\Windows\WindowsUpdate.log
2015-11-19 07:02 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sru
2015-11-19 06:55 - 2014-05-17 17:01 - 01886824 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-19 06:55 - 2013-08-23 00:24 - 00806122 _____ C:\Windows\system32\perfh007.dat
2015-11-19 06:55 - 2013-08-23 00:24 - 00176634 _____ C:\Windows\system32\perfc007.dat
2015-11-19 06:54 - 2014-05-17 17:07 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4153393259-964000677-3268066842-1001
2015-11-19 06:51 - 2014-05-17 17:33 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-19 06:46 - 2015-08-21 11:53 - 00041530 _____ C:\Windows\PFRO.log
2015-11-19 06:45 - 2013-08-22 14:25 - 00524288 ___SH C:\Windows\system32\config\BBI
2015-11-19 06:29 - 2014-12-09 16:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-19 06:16 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\LiveKernelReports
2015-11-19 06:11 - 2014-05-25 11:44 - 00000000 ____D C:\Users\Georg\AppData\Local\Google
2015-11-19 06:11 - 2014-05-25 11:44 - 00000000 ____D C:\Program Files (x86)\Google
2015-11-19 06:10 - 2014-08-14 18:31 - 00000000 ____D C:\Windows\ERUNT
2015-11-19 05:59 - 2014-05-21 12:15 - 00787968 ___SH C:\Users\Georg\Downloads\Thumbs.db
2015-11-19 05:53 - 2014-05-17 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-11-19 05:53 - 2014-05-17 17:51 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-11-18 23:10 - 2015-02-22 18:33 - 00000000 ____D C:\Users\Georg\AppData\Roaming\TS3Client
2015-11-18 16:02 - 2014-07-12 15:36 - 00000000 ____D C:\Users\Georg\AppData\Roaming\Skype
2015-11-17 18:53 - 2014-05-17 20:44 - 00000000 ____D C:\Users\Georg\AppData\Local\Battle.net
2015-11-16 13:56 - 2015-01-20 14:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-16 07:22 - 2015-08-03 17:11 - 00000000 ____D C:\Users\Georg\.p2
2015-11-16 07:22 - 2014-11-22 22:27 - 00000000 ____D C:\Users\Georg\AppData\Local\Eclipse
2015-11-16 03:50 - 2014-08-12 21:19 - 00000000 ____D C:\Users\Georg\AppData\Local\Spotify
2015-11-16 03:28 - 2014-08-12 21:19 - 00000000 ____D C:\Users\Georg\AppData\Roaming\Spotify
2015-11-15 16:27 - 2014-05-17 17:02 - 00000000 ____D C:\Users\Georg\AppData\Local\Packages
2015-11-14 17:42 - 2014-12-26 15:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deluge
2015-11-14 17:31 - 2014-12-26 15:22 - 00000000 ____D C:\Users\Georg\AppData\Roaming\deluge
2015-11-14 14:02 - 2014-07-07 08:42 - 00000000 ____D C:\Users\Georg\AppData\Local\Oblivion
2015-11-13 16:36 - 2015-07-21 11:40 - 00000000 ____D C:\Users\Georg\AppData\Roaming\Championify
2015-11-13 05:01 - 2015-04-28 18:20 - 00002406 _____ C:\Windows\Sandboxie.ini
2015-11-13 04:36 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache
2015-11-12 20:31 - 2014-06-20 16:13 - 04043264 ___SH C:\Users\Georg\Desktop\Thumbs.db
2015-11-11 14:35 - 2015-08-05 18:01 - 00000000 ____D C:\Users\Georg\AppData\Local\LOOT
2015-11-11 14:05 - 2013-08-22 15:44 - 00491088 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-11 10:57 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData
2015-11-11 01:56 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2015-11-11 01:51 - 2015-04-03 21:04 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-11 01:51 - 2014-10-27 05:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-11-10 23:27 - 2014-05-19 17:54 - 00000000 ____D C:\Windows\system32\MRT
2015-11-10 23:22 - 2014-05-19 17:54 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-10 20:51 - 2014-05-17 17:33 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-07 14:51 - 2014-05-27 15:39 - 00000000 ____D C:\Program Files\Recuva
2015-11-06 13:56 - 2014-06-20 09:58 - 00000000 ____D C:\Users\Georg\AppData\Local\Game Dev Tycoon - Steam
2015-11-05 04:11 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2015-11-04 22:00 - 2014-07-07 09:09 - 00000000 ____D C:\ProgramData\Package Cache
2015-11-03 09:33 - 2015-08-05 18:01 - 00000516 _____ C:\Users\Public\Desktop\LOOT.lnk
2015-11-03 01:23 - 2013-08-22 16:38 - 00810488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-03 01:23 - 2013-08-22 16:38 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-30 08:51 - 2014-07-07 08:22 - 00000000 ____D C:\Users\Georg\Documents\Nexus Mod Manager
2015-10-30 05:20 - 2014-10-27 05:40 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-10-29 21:49 - 2015-08-04 22:54 - 00000984 _____ C:\Users\Georg\Desktop\Skyrim (SKSE).lnk
2015-10-29 21:43 - 2014-06-15 18:24 - 00000000 ____D C:\Users\Georg\Documents\My Games
2015-10-28 15:03 - 2014-05-21 11:48 - 00000000 ____D C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-10-28 14:32 - 2015-08-04 22:19 - 00000620 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2015-10-28 14:32 - 2014-07-07 08:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2015-10-26 18:58 - 2014-05-17 17:29 - 00000000 ____D C:\ProgramData\Oracle
2015-10-26 18:39 - 2015-08-20 13:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-10-26 18:39 - 2014-05-17 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-26 18:38 - 2015-08-20 12:39 - 00000000 ____D C:\Users\Georg\.oracle_jre_usage
2015-10-26 18:38 - 2015-03-29 19:42 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-10-26 18:38 - 2015-03-29 19:41 - 00000000 ____D C:\Program Files\Java
2015-10-25 21:28 - 2014-12-13 19:11 - 00000000 ____D C:\Users\Georg\AppData\Local\Greenshot
2015-10-25 11:05 - 2014-05-17 18:07 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-10-23 12:34 - 2015-01-01 22:43 - 00000000 ____D C:\Users\Georg\AppData\Local\Overwolf

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-09-26 14:09 - 2014-09-26 14:29 - 0004742 _____ () C:\Users\Georg\AppData\Roaming\.sdedit.conf
2014-11-10 22:39 - 2014-11-10 22:48 - 0000600 _____ () C:\Users\Georg\AppData\Local\PUTTY.RND
2015-11-16 03:55 - 2015-11-16 03:55 - 0001189 _____ () C:\Users\Georg\AppData\Local\recently-used.xbel
2015-11-05 10:44 - 2015-11-05 10:56 - 0000365 _____ () C:\ProgramData\hpzinstall.log

Einige Dateien in TEMP:
====================
C:\Users\Georg\AppData\Local\Temp\0Kraken71ChromaDevProps.dll
C:\Users\Georg\AppData\Local\Temp\HiPatchSelfUpdateWindow.exe
C:\Users\Georg\AppData\Local\Temp\HiRezLauncherControls.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-2640090123277318371.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-3692645063974463594.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-6850535937844580343.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-8744954853010711362.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-8775618491433480804.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-git-Bukkit-53fac9f-1029009526459432001.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-git-Bukkit-53fac9f-2423430622684892596.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-git-Bukkit-53fac9f-2639821719732410806.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-git-Bukkit-53fac9f-2990043553070026730.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-git-Bukkit-53fac9f-6953956337418508189.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-git-Bukkit-53fac9f-9096154661641939504.dll
C:\Users\Georg\AppData\Local\Temp\jansi-64-git-Bukkit-53fac9f-9105950945797126204.dll
C:\Users\Georg\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\Georg\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\Georg\AppData\Local\Temp\namebench.exe
C:\Users\Georg\AppData\Local\Temp\Nexus Mod Manager-0.60.16.exe
C:\Users\Georg\AppData\Local\Temp\python27.dll
C:\Users\Georg\AppData\Local\Temp\tcl85.dll
C:\Users\Georg\AppData\Local\Temp\tk85.dll
C:\Users\Georg\AppData\Local\Temp\utils.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-11-13 04:36

==================== Ende von FRST.txt ============================
         

--- --- ---

3. Addition.txt

Code: Alles auswählenAufklappen

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-11-2015
durchgeführt von Kai (2015-11-19 07:19:36)
Gestartet von C:\Users\Georg\Desktop
Windows 8.1 Pro (X64) (2014-05-17 16:02:09)
Start-Modus: Safe Mode (with Networking)
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-4153393259-964000677-3268066842-500 - Administrator - Disabled)
Gast (S-1-5-21-4153393259-964000677-3268066842-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4153393259-964000677-3268066842-1003 - Limited - Enabled)
Kai (S-1-5-21-4153393259-964000677-3268066842-1001 - Administrator - Enabled) => C:\Users\Georg
SophosSAUKNIGHTMARE0 (S-1-5-21-4153393259-964000677-3268066842-1006 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Sophos Anti-Virus (Enabled - Up to date) {6BABF8F7-3EB6-BD1D-9167-8C5ECA060A29}
AS: Sophos Anti-Virus (Enabled - Up to date) {D0CA1913-188C-B293-ABD7-B72CB1814094}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version:  - )
7-Zip 9.38 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0938-000001000000}) (Version: 9.38.00.0 - Igor Pavlov)
Action Replay PowerSaves 3DS version 1.28 (HKLM-x32\...\{CD24B06F-0A4D-410A-AEF2-DFE6A28AB4C0}_is1) (Version: 1.28 - Datel Design & Development)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.144 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Akamai) (Version:  - Akamai Technologies, Inc)
Always Sometimes Monsters (HKLM-x32\...\Steam App 274310) (Version:  - Vagabond Dog)
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
B109a-m (x32 Version: 140.0.851.000 - Hewlett-Packard) Hidden
Baldur's Gate: Enhanced Edition (HKLM-x32\...\Steam App 228280) (Version:  - Beamdog)
Blade Symphony (HKLM-x32\...\Steam App 225600) (Version:  - Puny Human)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Championify version 1.0.1 (HKLM-x32\...\{1AE5DA33-DB00-453C-9190-FB14C0BBDBE7}_is1) (Version: 1.0.1 - Dustin Blackman)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Cherry Tree High Comedy Club (HKLM-x32\...\Steam App 214610) (Version:  - 773)
Cherry Tree High I! My! Girls! (HKLM-x32\...\Steam App 333220) (Version:  - 773)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Darkest Dungeon (HKLM-x32\...\Steam App 262060) (Version:  - Red Hook Studios)
Deluge 1.3.12 (HKLM-x32\...\Deluge) (Version:  - )
Diablo III Public Test (HKLM-x32\...\Diablo III Public Test) (Version:  - Blizzard Entertainment)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Divekick (HKLM-x32\...\Steam App 244730) (Version:  - Iron Galaxy Studios)
Divinity: Original Sin (HKLM-x32\...\Steam App 230230) (Version:  - Larian Studios)
Evoland 2 (HKLM-x32\...\Steam App 359310) (Version:  - Shiro Games)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.18 - Echobit, LLC)
f.lux (HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Flux) (Version:  - )
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version:  - Obsidian Entertainment)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version:  - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
Fingered (HKLM-x32\...\Steam App 384360) (Version:  - Edmund McMillen)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.3.76.410 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.1.5.425 - Foxit Software Inc.)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version:  - Subset Games)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Git version 2.5.0 (HKLM\...\Git_is1) (Version: 2.5.0 - The Git Development Community)
Goodbye Deponia (HKLM-x32\...\Steam App 241910) (Version:  - Daedalic Entertainment)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Greenshot 1.1.9.13 (HKLM\...\Greenshot_is1) (Version: 1.1.9.13 - Greenshot)
Guilty Gear X2 #Reload (HKLM-x32\...\Steam App 314030) (Version:  - Arc System Works Co., Ltd.)
Gyazo 3.1.6 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hellfire (HKLM-x32\...\Hellfire) (Version:  - )
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Honorbuddy (HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\{1315ff42-a662-4557-8825-5b0270e217a0}) (Version: 2.5.14244.797 - Bossland GmbH)
Honorbuddy (x32 Version: 2.5.14244.797 - Bossland GmbH) Hidden
HOTSLogsUploader (HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\99a83d131490dc73) (Version: 1.0.0.12 - HOTSLogsUploader)
HP Photosmart B109a-m All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{5AEA9B93-6C6A-4A0F-B2FA-BD8AA4C59B80}) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{F6A11738-3EE4-4573-AEA5-6CD5D491C167}) (Version: 12.0.30.81 - Hewlett-Packard Company)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HuniePop (HKLM-x32\...\Steam App 339800) (Version:  - HuniePot)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
InstallShieldHiRezCurrent (HKLM-x32\...\{9433FC1C-7405-433C-A26D-81076293BBCE}) (Version: 3.0.0.0 - Hi-Rez Studios)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 7 Update 80 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417080FF}) (Version: 7.0.800 - Oracle)
Java 8 Update 65 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java SE Development Kit 8 Update 60 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180600}) (Version: 8.0.600.27 - Oracle Corporation)
Killing Floor 2 - SDK (HKLM-x32\...\Steam App 232150) (Version:  - )
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version:  - Tripwire Interactive)
Lego Harry Potter (HKLM-x32\...\Steam App 21130) (Version:  - TT Games)
Lethal League (HKLM-x32\...\Steam App 261180) (Version:  - Team Reptile)
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version:  - DONTNOD Entertainment)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.410 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.410 - LogMeIn, Inc.) Hidden
LOOT version 0.8.1 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.8.1 - LOOT Team)
Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version:  - )
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
METAL GEAR SOLID V: THE PHANTOM PAIN (HKLM-x32\...\Steam App 287700) (Version:  - Konami Digital Entertainment)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 15.0.4763.1003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.30919.1) (HKLM-x32\...\{0D7FCBFB-F478-4D32-901C-83F0BF5A3501}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft Visio Professional 2013 (HKLM\...\Office15.VISPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{3674F088-9B90-473A-AAC3-20A00D8D810C}) (Version: 3.1237.1762 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MixMeister BPM Analyzer 1.0 (HKLM-x32\...\MixMeister BPM Analyzer_is1) (Version:  - MixMeister Technology LLC)
MK LOL (HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\MK LOL) (Version:  - )
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 42.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0 - Mozilla)
Mozilla Thunderbird 38.0.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.0.1 (x86 de)) (Version: 38.0.1 - Mozilla)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.16 - Black Tree Gaming)
Nmap 6.49BETA4 (HKLM-x32\...\Nmap) (Version:  - )
Nosgoth (HKLM-x32\...\Steam App 200110) (Version: 150922.118597 - Square Enix Ltd)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.2 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.30 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation)
NVIDIA Graphics Driver 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Oddworld: New 'n' Tasty (HKLM-x32\...\Steam App 314660) (Version:  - Just Add Water (Developments), Ltd.)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
OlliOlli2: Welcome to Olliwood (HKLM-x32\...\Steam App 365660) (Version:  - Roll7)
Open XML SDK 2.5 for Microsoft Office (x32 Version: 2.5.5631 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenVPN 2.3.5-I602  (HKLM\...\OpenVPN) (Version: 2.3.5-I602 - )
Osmos (HKLM-x32\...\Steam App 29180) (Version:  - Hemisphere Games)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.90.220.0 - Overwolf Ltd.)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 2.0.2.45736 - Grinding Gear Games)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version:  - )
Pitiri 1977 (HKLM-x32\...\Steam App 305740) (Version:  - ILIKESCIFI Games)
Prerequisites for SSDT  (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
Private Internet Access Support Files (HKLM-x32\...\{7D72DAFF-DCB2-437B-BC22-4B2ABF21462B}) (Version: 1.0.0.0 - Private Internet Access)
PS_AIO_06_B109a-m_SW_Min (x32 Version: 140.0.863.000 - Hewlett-Packard) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Python 2.7.8 (Anaconda 2.1.0 64-bit) (HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Python 2.7.8 (Anaconda 2.1.0 64-bit)) (Version: 2.1.0 - Continuum Analytics, Inc.)
Quake Live (HKLM-x32\...\Steam App 282440) (Version:  - id Software)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.0.12952.91 - raidcall.com)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.27405 - Razer Inc.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Rocket League (HKLM-x32\...\Steam App 252950) (Version:  - Psyonix)
RStudio (HKLM-x32\...\RStudio) (Version: 0.98.1103 - RStudio)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
Sakura Clicker (HKLM-x32\...\Steam App 383080) (Version:  - Winged Cloud)
Sandboxie 4.16 (64-bit) (HKLM\...\Sandboxie) (Version: 4.16 - Sandboxie Holdings, LLC)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Scribblenauts Unlimited (HKLM-x32\...\Steam App 218680) (Version:  - 5th Cell Media)
Scribblenauts Unmasked (HKLM-x32\...\Steam App 249870) (Version:  - 5th Cell Media)
Secure Download Manager (HKLM-x32\...\{E040B65B-8683-4228-8C33-D44A141E40EA}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0051-0000-1000-0000000FF1CE}_Office15.VISPROR_{F0C12872-B60D-4E37-A2F9-20C46A5E1F1A}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version:  - Microsoft) Hidden
SharePoint Client Components (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
SharePoint Client Components (Version: 16.0.2617.1200 - Microsoft Corporation) Hidden
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Simulationcraft(x64) version 6.2.0.02 (HKLM-x32\...\{AC025546-B7C5-45A7-B16A-80AE482CBB01}_is1) (Version: 6.2.0.02 - Simulationcraft)
Sins of a Dark Age (HKLM-x32\...\Steam App 251970) (Version:  - Ironclad Games)
Skype™ 7.10 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.10.101 - Skype Technologies S.A.)
SMITE (HKLM-x32\...\Steam App 386360) (Version:  - Hi-Rez Studios)
Sophos Anti-Virus (HKLM-x32\...\{D929B3B5-56C6-46CC-B3A3-A1A784CBB8E4}) (Version: 10.3.15 - Sophos Limited)
Sophos AutoUpdate (HKLM-x32\...\{7CD26A0C-9B59-4E84-B5EE-B386B2F7AA16}) (Version: 4.3.10.27 - Sophos Limited)
Spotify (HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
Strife (HKLM-x32\...\Steam App 339280) (Version:  - S2 Games)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version:  - Terry Cavanagh)
Tabletop Simulator (HKLM-x32\...\Steam App 286160) (Version:  - Berserk Games)
Tales from the Borderlands (HKLM-x32\...\Steam App 330830) (Version:  - Telltale Games)
Talisman: Digital Edition (HKLM-x32\...\Steam App 247000) (Version:  - Nomad Games Limited)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43174 - TeamViewer)
The Binding of Isaac: Rebirth (HKLM-x32\...\Steam App 250900) (Version:  - Nicalis, Inc.)
The Elder Scrolls III: Morrowind (HKLM-x32\...\Steam App 22320) (Version:  - Bethesda Game Studios®)
The Elder Scrolls IV: Oblivion  (HKLM-x32\...\Steam App 22330) (Version:  - Bethesda Game Studios)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Forest (HKLM-x32\...\Steam App 242760) (Version:  - Endnight Games Ltd)
The Unknown 1.0 (HKLM-x32\...\The Unknown) (Version: 1.0 - )
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version:  - )
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version:  - CD Projekt RED)
The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version:  - CD PROJEKT RED)
This War of Mine (HKLM-x32\...\Steam App 282070) (Version:  - 11 bit studios)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Town of Salem (HKLM-x32\...\Steam App 334230) (Version:  - BlankMediaGames)
Transistor (HKLM-x32\...\Steam App 237930) (Version:  - Supergiant Games)
TreeSize Free V3.3.2 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.3.2 - JAM Software)
Ultimate Tic-Tac-Toe (HKLM-x32\...\Steam App 360870) (Version:  - Tigerish Games)
Unity Web Player (HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
Valkyria Chronicles™ (HKLM-x32\...\Steam App 294860) (Version:  - SEGA)
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - CACE Technologies)
WinRAR 5.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
Zen Bound® 2 (HKLM-x32\...\Steam App 61600) (Version:  - Secret Exit Ltd.)
Ziggurat (HKLM-x32\...\Steam App 308420) (Version:  - Milkstone Studios)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Wiederherstellungspunkte =========================

04-11-2015 22:00:07 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
10-11-2015 23:15:29 Windows Update
19-11-2015 04:35:14 Geplanter Prüfpunkt

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2015-08-02 08:11 - 00000822 ____R C:\Windows\system32\Drivers\etc\hosts

#	::1             localhost

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {18342DDF-B938-4916-8491-B2192DD50C99} - System32\Tasks\Private Internet Access Startup => C:\Program Files\pia_manager\pia_manager.exe [2015-05-16] ()
Task: {241F6F72-E105-4923-84C0-F1C32534BF9E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-11-10] (Microsoft Corporation)
Task: {2B3D2093-A37E-4FDF-A6E5-3AF166465384} - System32\Tasks\Overwolf Updater Task => E:\Overwolf\OverwolfUpdater.exe [2015-11-16] (Overwolf LTD)
Task: {36925388-23F4-4D7D-89D8-B2D98886FF23} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-07] (Microsoft Corporation)
Task: {4C16B9FD-604B-4040-90F8-D8E24F39605C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {4CB8B5F0-C32F-4FEA-BB66-29E22C84726F} - System32\Tasks\Run LSI => C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
Task: {5B7F8BFD-4F90-4570-8453-B8808D05260A} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
Task: {6F3FDECD-B040-401B-8F7C-70768285D80D} - System32\Tasks\{410423BB-1CFC-491B-82C0-A80AF4B5F2D5} => Firefox.exe hxxp://ui.skype.com/ui/0/6.18.0.105/de/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {72DC7182-BF98-45C9-9D64-4E9705E24961} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\Root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
Task: {7CE288F7-82A4-4BDC-92BE-E37A5EC55C83} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
Task: {8239CF07-587F-41AF-99B6-764AE8D4C518} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {A069A805-CA5A-4010-B261-49CC1539FD7F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\Root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
Task: {A16D673B-B8B9-40BE-92BC-5F0C7A6593A9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {A69E62A0-5FCE-4202-92CB-1D3BB84ABBB1} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-10-30] (Microsoft Corporation)
Task: {A790F342-ECDA-47A6-BB66-183C2C2F63DF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {D9286712-D311-4155-8DCA-CE3AFB9B3B42} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-07] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============


==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\aeriagames.com -> hxxp://aeriagames.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-4153393259-964000677-3268066842-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Georg\Downloads\Currypan.full.1880944.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "Aeria Ignite"
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\StartupApproved\StartupFolder: => "Curse.lnk"
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\StartupApproved\Run: => "Akamai NetSession Interface"
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-4153393259-964000677-3268066842-1001\...\StartupApproved\Run: => "DS Clock"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{ACE89FE6-E261-473E-80E0-0AB793529D5E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A14867C5-7042-41D1-A4FC-1DED42169B3A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3E29004D-15B2-43BB-90C9-A0182492906D}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{23DDAEDE-5BDF-435D-9C30-88D4A13AD6DC}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{16833734-135C-4F65-8E1E-0EDEDD3B70A3}] => (Allow) E:\Steam\SteamApps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{E9D9A5E1-1482-4025-A59E-F92732E5F942}] => (Allow) E:\Steam\SteamApps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{9796D2E3-5B94-4EFC-8453-C0F906764E1D}] => (Allow) E:\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{7615855D-A712-4BA5-9BB1-892B09041BC2}] => (Allow) E:\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{FA6245D6-7261-4816-83B9-C55E29964636}] => (Allow) E:\Steam\SteamApps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [{C1AC53F0-DEB1-4141-8020-7911618607F8}] => (Allow) E:\Steam\SteamApps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [TCP Query User{285A31D7-01DC-46A4-81EF-8DF0F9B014BA}E:\diablo iii\diablo iii.exe] => (Block) E:\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{45686931-4DEF-4705-89E5-54D60B9D91F4}E:\diablo iii\diablo iii.exe] => (Block) E:\diablo iii\diablo iii.exe
FirewallRules: [{B4973704-6FFA-4B79-8080-0F1C25B45CA6}] => (Allow) E:\Steam\SteamApps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{BD6B519C-B647-4C31-8090-4B7977D0368B}] => (Allow) E:\Steam\SteamApps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{0EB6B1F1-1C4D-41E7-BD48-924D87457B2F}] => (Allow) E:\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{E52D6D63-7F70-4AD0-8456-9C8632B40E96}] => (Allow) E:\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{A59126D8-72F3-4917-9A94-984C6970F18A}] => (Allow) E:\Steam\SteamApps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{0885FD43-98AD-4775-84A1-7CD09BF84490}] => (Allow) E:\Steam\SteamApps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{B9E9D5AE-D7F9-4D33-974C-385251382AE5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0350E5BF-60FE-4F9E-8DEE-A18CE250BA3E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F4E6D01C-3202-4733-9108-447B11CB6F09}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BD0481CF-E59A-4BD9-90A3-97A1ED9721B7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6B464F4C-D25C-4564-BB0C-7A7368ACC0B4}] => (Allow) E:\Steam\SteamApps\common\Ys Origin\yso_win.exe
FirewallRules: [{DEEED696-1D32-4C82-9E9F-7F5C7D72C94C}] => (Allow) E:\Steam\SteamApps\common\Ys Origin\yso_win.exe
FirewallRules: [{70BD4500-67CB-40C9-B0F0-68C5E7444059}] => (Allow) E:\Steam\SteamApps\common\Ys Origin\config.exe
FirewallRules: [{629B0878-0B87-402A-89B2-565272133BDD}] => (Allow) E:\Steam\SteamApps\common\Ys Origin\config.exe
FirewallRules: [{5ABABEED-FAA0-4E94-9A60-18DC1091E197}] => (Allow) E:\Steam\SteamApps\common\Democracy 3\Democracy3.exe
FirewallRules: [{D8D632E8-B258-4597-B727-B48CF5F7AE63}] => (Allow) E:\Steam\SteamApps\common\Democracy 3\Democracy3.exe
FirewallRules: [{8BA6E235-1B47-4FA9-A238-7A50F56A0A51}] => (Allow) E:\Steam\SteamApps\common\Morrowind\Morrowind Launcher.exe
FirewallRules: [{E26B583A-8746-4F2C-9BCC-013445514714}] => (Allow) E:\Steam\SteamApps\common\Morrowind\Morrowind Launcher.exe
FirewallRules: [TCP Query User{015A8C7A-2097-4867-912C-E39D390F2CA4}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{076EE089-8B52-4E8C-9E50-21B4CDBCD1B5}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{0DE35D33-EB36-4D06-81CB-2ECC1A534FD1}E:\starcraft ii\versions\base28667\sc2.exe] => (Allow) E:\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{58F8FACB-DD42-4874-A7A5-2D92C0330974}E:\starcraft ii\versions\base28667\sc2.exe] => (Allow) E:\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [{A9FD8386-BDF0-4E3C-834F-989B0C989C43}] => (Allow) E:\Steam\SteamApps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{E53443EB-D502-442B-AACA-A2051A353977}] => (Allow) E:\Steam\SteamApps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{777CB6DE-1A65-4438-A621-29CE514579AC}] => (Allow) E:\Steam\SteamApps\common\the witcher 2\Launcher.exe
FirewallRules: [{1226EF2A-1874-42AC-AC33-1A7DDD2530CA}] => (Allow) E:\Steam\SteamApps\common\the witcher 2\Launcher.exe
FirewallRules: [TCP Query User{46BB84FD-DC57-4859-8B29-E85FAE62C960}E:\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) E:\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [UDP Query User{4488A3EB-85D8-41B0-ABAB-FC747E161A55}E:\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) E:\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [{3E7F2753-7543-465E-8D9D-E0C2C28DCD33}] => (Allow) E:\Steam\SteamApps\common\Goodbye Deponia\deponia3.exe
FirewallRules: [{8C659076-896A-49AF-9E0E-A7EC25046914}] => (Allow) E:\Steam\SteamApps\common\Goodbye Deponia\deponia3.exe
FirewallRules: [{9B7262C0-72FD-4DAA-8820-0969CD5C776B}] => (Allow) E:\Steam\SteamApps\common\Goodbye Deponia\VisionaireConfigurationTool.exe
FirewallRules: [{3E3F815F-1041-4627-8F4B-1C8D36337CF6}] => (Allow) E:\Steam\SteamApps\common\Goodbye Deponia\VisionaireConfigurationTool.exe
FirewallRules: [{1F56C1BF-D62A-4C85-B351-9B15517A5BC0}] => (Allow) E:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{0AA62CDB-910A-4EA2-89F8-0265FDA23F84}] => (Allow) E:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [TCP Query User{077DB95B-AB56-4778-A470-0526AEDE785B}C:\users\georg\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\georg\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{11ED9475-2859-4495-93B5-688AC72A0BAA}C:\users\georg\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\georg\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{1F0AB373-3972-4142-B1C6-79BF1001BB61}C:\users\georg\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\georg\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{BFD2F233-6121-48AB-AE85-E874CD6B524D}C:\users\georg\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\georg\appdata\roaming\spotify\spotify.exe
FirewallRules: [{30CE32D7-3FA1-4788-BBB3-C0D58F843CE8}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{93881058-81C4-4E7D-BCEB-B196206A94F8}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{C7E76AFF-2B51-4ABF-B7E6-72A57CDA09A5}] => (Allow) E:\Steam\SteamApps\common\lethalleague\LethalLeague.exe
FirewallRules: [{D239D184-1980-45E8-AE9D-422ED213EA59}] => (Allow) E:\Steam\SteamApps\common\lethalleague\LethalLeague.exe
FirewallRules: [{2611C1BD-D3C3-41BE-964B-FCADAF9E8CF6}] => (Allow) E:\Steam\SteamApps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{9BC8DACD-EF9C-4FA3-B2E2-B0B978903994}] => (Allow) E:\Steam\SteamApps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{4286A633-732B-4406-8FC9-9D6499178E67}] => (Allow) E:\Steam\SteamApps\common\Memoria\memoria.exe
FirewallRules: [{ABB971DD-1451-4F65-8271-638EF9198734}] => (Allow) E:\Steam\SteamApps\common\Memoria\memoria.exe
FirewallRules: [{CBB36C78-506B-4A5D-B6D6-8F3CCB031384}] => (Allow) E:\Steam\SteamApps\common\Memoria\VisionaireConfigurationTool.exe
FirewallRules: [{305C61C4-4575-461F-8EC8-EC4CBC884D8E}] => (Allow) E:\Steam\SteamApps\common\Memoria\VisionaireConfigurationTool.exe
FirewallRules: [{BABF14AE-E81B-4F48-AC91-51F8155E84DA}] => (Allow) E:\Steam\SteamApps\common\LEGO Harry Potter\LEGOHarryPotter.exe
FirewallRules: [{19FCF105-AEE5-449F-BC53-B2B5499D60DA}] => (Allow) E:\Steam\SteamApps\common\LEGO Harry Potter\LEGOHarryPotter.exe
FirewallRules: [{85E6BAF1-FA4B-4EDA-BAD4-7CE4697C1005}] => (Allow) E:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{E6E78FAE-DA83-411F-B081-7EF12CA1D3BC}] => (Allow) E:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{EE870B83-0D5B-4ACB-A093-B6D9D2FE15BF}] => (Allow) E:\Steam\SteamApps\common\RPGVXAce\RPGVXAce.exe
FirewallRules: [{9B57CF75-7983-45CD-B6BB-793661163030}] => (Allow) E:\Steam\SteamApps\common\RPGVXAce\RPGVXAce.exe
FirewallRules: [{DA5DB9EC-2B6E-4CDB-A824-9A7D2484C2E3}] => (Allow) E:\Steam\SteamApps\common\LongLiveTheQueen\LongLiveTheQueen.exe
FirewallRules: [{324164B3-5EF8-48A2-8DF3-0F51D9D897EC}] => (Allow) E:\Steam\SteamApps\common\LongLiveTheQueen\LongLiveTheQueen.exe
FirewallRules: [{DBA96926-DE40-49A6-B1A9-0A0E4BB809DA}] => (Allow) E:\Steam\SteamApps\common\Divekick\DivekickD3D11.exe
FirewallRules: [{BFDA0A3D-9F27-4B62-AC21-345703B6032A}] => (Allow) E:\Steam\SteamApps\common\Divekick\DivekickD3D11.exe
FirewallRules: [{D3D67A5F-0791-4CFC-9D53-9FE7F7A93965}] => (Allow) E:\Steam\SteamApps\common\Skullgirls\SkullGirls.exe
FirewallRules: [{8C21742B-39D7-41B4-837C-702F536EFC02}] => (Allow) E:\Steam\SteamApps\common\Skullgirls\SkullGirls.exe
FirewallRules: [{55C18ECE-FB1F-445C-B865-1318D9FF8EDF}] => (Allow) E:\Steam\SteamApps\common\Guilty Gear X2 #Reload\ggx2.exe
FirewallRules: [{E8F62270-827F-489A-821C-8719FA624947}] => (Allow) E:\Steam\SteamApps\common\Guilty Gear X2 #Reload\ggx2.exe
FirewallRules: [{7570A8F5-497E-44AF-B3CB-57054C14891A}] => (Allow) E:\Steam\SteamApps\common\Guilty Gear X2 #Reload\config.exe
FirewallRules: [{BB77027E-5B8C-4BE3-A935-081D3018ACE4}] => (Allow) E:\Steam\SteamApps\common\Guilty Gear X2 #Reload\config.exe
FirewallRules: [{3240BCD5-D276-4592-A007-694FB372FCAC}] => (Allow) E:\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{A5799137-2CCA-4844-A5E7-2667FC9D46F6}] => (Allow) E:\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{1BEF9DA3-3AAF-4D45-9A89-B8EAD0E70449}] => (Allow) E:\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{75B253ED-8305-4D6D-9918-3C66B151D222}] => (Allow) E:\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{DE87D2A6-CB05-4FFB-9378-FC741C8EA841}] => (Allow) E:\Steam\SteamApps\common\Zen Bound 2\ZenBound2.exe
FirewallRules: [{569F3BCB-5982-4165-91AE-F85BA82F4476}] => (Allow) E:\Steam\SteamApps\common\Zen Bound 2\ZenBound2.exe
FirewallRules: [{BFB0C3E1-B496-44FB-BD8E-D11A5D04C073}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{77A53507-BD93-4B1D-923A-0FA97B427E96}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{7A56A76F-303B-411D-A289-914A2864D603}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{E56C72B6-0CB4-4E5E-89BB-B1415CB9A376}] => (Allow) E:\Steam\SteamApps\common\Risk of Rain\Risk of Rain.exe
FirewallRules: [{053CC7FF-AB52-4BD1-9F30-E2E3688EB0BB}] => (Allow) E:\Steam\SteamApps\common\Risk of Rain\Risk of Rain.exe
FirewallRules: [{1905E573-3B78-48AA-97CA-2AF815DFE443}] => (Allow) E:\Steam\SteamApps\common\Blade Symphony\berimbau.exe
FirewallRules: [{8C167B39-8483-4118-9F1E-4A357A359F73}] => (Allow) E:\Steam\SteamApps\common\Blade Symphony\berimbau.exe
FirewallRules: [{9FF3D7B3-6D9D-47CF-89DD-A27B3DE4E29F}] => (Allow) E:\Steam\SteamApps\common\Pitiri1977\Pitiri1977.exe
FirewallRules: [{54A42A3F-8856-4832-9BC0-EB650CE0DA00}] => (Allow) E:\Steam\SteamApps\common\Pitiri1977\Pitiri1977.exe
FirewallRules: [{C3CAF7C1-2676-4212-9429-EA9E462D5E86}] => (Allow) E:\Steam\SteamApps\common\Ziggurat\Ziggurat.exe
FirewallRules: [{83C140E5-2AA1-4220-9771-9F9C9E648187}] => (Allow) E:\Steam\SteamApps\common\Ziggurat\Ziggurat.exe
FirewallRules: [{62EA7110-EDA8-430E-89E0-E1E250324F03}] => (Allow) E:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{556C3BBB-BC3A-46E8-9BD5-B3CAB6DFC5F5}] => (Allow) E:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [TCP Query User{F927B84E-C749-4F2C-A364-0C6F11FAA113}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{A40B0297-183B-431F-AAE0-3090C1BFC679}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{45AF42C3-5CE9-4379-9D5E-A8C92447C587}] => (Allow) E:\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{35A96776-DA11-4D4D-8093-995F7B9C9FCA}] => (Allow) E:\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{209DD6FB-8A04-49A7-A070-500105A7F9D8}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F31F2E5E-E5F6-4EF5-B022-5846B975DF41}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{26E66DEB-532E-4FBC-B9CC-79C06D94D9CD}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{224221B3-D5D5-49C7-8C4D-0F739235BB3F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{70FCE427-6719-4DA8-97C0-3B005946C059}] => (Allow) E:\Steam\SteamApps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{C137C217-C0F4-4D16-8531-A46F11EEA9DF}] => (Allow) E:\Steam\SteamApps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{2B23E085-5458-4C12-B3B6-4931D0D6051A}] => (Allow) E:\Steam\SteamApps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{1CDA733C-FDAC-4FE1-87E3-EA5E9F0E94B4}] => (Allow) E:\Steam\SteamApps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{1E46E697-DDD0-4FA9-9425-E18FBB5AE25D}] => (Allow) E:\Steam\SteamApps\common\Tales from the Borderlands\Borderlands.exe
FirewallRules: [{9B93C613-9A45-4F98-977B-0DAA43424225}] => (Allow) E:\Steam\SteamApps\common\Tales from the Borderlands\Borderlands.exe
FirewallRules: [TCP Query User{3491552D-0354-4CE8-9995-EF6FEB65E962}E:\starcraft ii\versions\base32283\sc2.exe] => (Allow) E:\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{A97BC1A6-30AD-459E-B27B-B72630444557}E:\starcraft ii\versions\base32283\sc2.exe] => (Allow) E:\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{B11430A5-7169-44CF-AC5C-B015C33ED162}] => (Allow) E:\Steam\SteamApps\common\Always Sometimes Monsters\Game.exe
FirewallRules: [{17CD7CF5-1741-4FF9-8FEF-556E684CCD83}] => (Allow) E:\Steam\SteamApps\common\Always Sometimes Monsters\Game.exe
FirewallRules: [{4276CAF5-51D2-4D78-A1B5-3821616937A8}] => (Allow) E:\Steam\SteamApps\common\Cherry Tree High I My Girls\Game.exe
FirewallRules: [{85A9CEBD-8193-458B-85EB-4003A1BF025C}] => (Allow) E:\Steam\SteamApps\common\Cherry Tree High I My Girls\Game.exe
FirewallRules: [{D2967755-CF10-4146-B8FA-173CFE463AC8}] => (Allow) E:\Steam\SteamApps\common\Cherry Tree High Comedy Club\CTHCC.exe
FirewallRules: [{EB49C6B2-7604-4939-A523-FB94EE8F214B}] => (Allow) E:\Steam\SteamApps\common\Cherry Tree High Comedy Club\CTHCC.exe
FirewallRules: [{FFF377F9-BCCA-4F1B-A342-D1A7D7170D2C}] => (Allow) E:\Steam\SteamApps\common\Cherry Tree High Comedy Club\Game.exe
FirewallRules: [{379B3C2C-CECA-4FEF-8C4D-AF42837CBAFE}] => (Allow) E:\Steam\SteamApps\common\Cherry Tree High Comedy Club\Game.exe
FirewallRules: [TCP Query User{109E2283-4481-4F7A-AAC5-77BBF529408C}E:\hirezgames\smite\binaries\win32\smite.exe] => (Allow) E:\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{E85F8288-0100-4AAC-88FD-EEAA5BEE86EE}E:\hirezgames\smite\binaries\win32\smite.exe] => (Allow) E:\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{72A8B9E8-2EE4-4C68-B7D3-40721C440FA8}] => (Allow) E:\Steam\SteamApps\common\Osmos\osmos.exe
FirewallRules: [{E210F1B0-4364-43CA-9D3D-E810C18F7105}] => (Allow) E:\Steam\SteamApps\common\Osmos\osmos.exe
FirewallRules: [TCP Query User{BAF36018-E773-47A7-B1F2-E20D11BA01AF}E:\deluge\deluge.exe] => (Allow) E:\deluge\deluge.exe
FirewallRules: [UDP Query User{6121F54C-2543-419A-847A-67EC40D2ABCB}E:\deluge\deluge.exe] => (Allow) E:\deluge\deluge.exe
FirewallRules: [{5DCD49D1-E772-4EB6-914F-D36F90E84942}] => (Allow) E:\Steam\SteamApps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{BAFE25A0-E341-4CDC-85EC-315BC04BA2FA}] => (Allow) E:\Steam\SteamApps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{014920C6-17D6-4709-9351-CCAA616759AC}] => (Allow) E:\Steam\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{10C8F008-5719-478B-93B1-2F0A39EF147E}] => (Allow) E:\Steam\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{0F69A9AF-3C8C-4DD8-9E02-51616D709DED}] => (Allow) E:\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{840FCAD6-135C-48BB-A75F-F7C0F7494367}] => (Allow) E:\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{DA540768-8BF3-467E-81C9-4BE66B17C106}] => (Allow) E:\Steam\SteamApps\common\Valkyria Chronicles\Launcher.exe
FirewallRules: [{26403530-B737-46E7-BD1B-BD1ABDA8C8AF}] => (Allow) E:\Steam\SteamApps\common\Valkyria Chronicles\Launcher.exe
FirewallRules: [{2052B0A4-388C-442A-B72E-51A85CC66A96}] => (Allow) E:\Hearthstone\Hearthstone.exe
FirewallRules: [{CD62F329-02D7-4DC6-85C7-4EAB8518A7A6}] => (Allow) E:\Hearthstone\Hearthstone.exe
FirewallRules: [{FEB9A039-89F5-40EA-96ED-65B7BC7120F0}] => (Allow) E:\Steam\SteamApps\common\Town of Salem\TownOfSalem.exe
FirewallRules: [{0CBACA44-6858-4E9D-8013-23B5927E3EB8}] => (Allow) E:\Steam\SteamApps\common\Town of Salem\TownOfSalem.exe
FirewallRules: [{8C514B2E-0CE2-4E92-9651-C94EA69F1FD5}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{862C0676-E1B8-4C29-94D3-77FE48253D5A}] => (Allow) LPort=2869
FirewallRules: [{EA40F065-C1F0-4749-946C-BBA85A9539A0}] => (Allow) LPort=1900
FirewallRules: [{9840EE14-E583-4C97-91A3-E936F8839FE9}] => (Allow) E:\Steam\SteamApps\common\Oblivion\OblivionLauncher.exe
FirewallRules: [{FEB3B452-45F6-4C24-8293-EDFC4022EB88}] => (Allow) E:\Steam\SteamApps\common\Oblivion\OblivionLauncher.exe
FirewallRules: [{B23BEA3B-37BD-4918-9C0B-AF9F672D7781}] => (Allow) E:\Steam\SteamApps\common\Quake Live\quakelive_steam.exe
FirewallRules: [{BDC6B1D5-598D-4D2D-8117-06B8826BAC91}] => (Allow) E:\Steam\SteamApps\common\Quake Live\quakelive_steam.exe
FirewallRules: [{737ED2D1-068F-47E3-9708-D1132A66A388}] => (Allow) E:\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{A01F6915-5AB9-4E52-B798-970AEB70FCDF}] => (Allow) E:\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{5303DD8D-B65C-4918-9ADF-37C9159B19B0}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{932C6BEB-A041-4B8A-8B2B-47E276E3F4FA}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{FB67E4ED-E1D5-406F-9079-40AF8700BB49}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{E270C5D1-CB8D-4076-BA13-F3A941E2D0C0}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{D839518F-6808-4497-8598-7EF1408DA814}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{A838D2E2-0271-4045-B32A-CAC6776CCFD7}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{3D873C5D-F0CD-48BB-B9C5-208B229BFFE2}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{79EC9897-D1BE-4548-962A-A1FCB71C36C8}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{9C0ECC87-824F-4C3F-A34C-A536CD7ED26E}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{DC221E8C-DE09-424F-B504-CF644CFB426D}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{1D388828-101C-4215-9D00-1906035AE90F}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{D1E0112E-0F86-4C61-9664-92E3638592BE}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{4D5D13AE-A946-4F4B-9676-D3E18B180E83}] => (Allow) E:\Steam\SteamApps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [{13BB8AD4-9C8A-45DC-92F1-61395C225A84}] => (Allow) E:\Steam\SteamApps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [{AF03D25B-A44F-4025-ADCB-CA1AAC31A8C3}] => (Allow) E:\Steam\SteamApps\common\Oddworld New n Tasty\NNT.exe
FirewallRules: [{7C323B11-B9A1-4866-BB38-A40E2C4D841C}] => (Allow) E:\Steam\SteamApps\common\Oddworld New n Tasty\NNT.exe
FirewallRules: [{B75D7843-9B56-45C1-8167-E8F4D407D610}] => (Allow) E:\Steam\SteamApps\common\Transistor\x64\Transistor.exe
FirewallRules: [{7CFA0B8F-4D33-4929-86F2-6752069FCD49}] => (Allow) E:\Steam\SteamApps\common\Transistor\x64\Transistor.exe
FirewallRules: [{4D9DCB6D-E689-4625-97BD-3CEAEA08BF3C}] => (Allow) E:\Steam\SteamApps\common\Talisman\Talisman.exe
FirewallRules: [{5B2079AC-2A21-424B-B685-DA60F205AA14}] => (Allow) E:\Steam\SteamApps\common\Talisman\Talisman.exe
FirewallRules: [{12BF179F-5D80-43ED-9A6E-26CF0908A972}] => (Allow) E:\Steam\SteamApps\common\Ultimate Tic-Tac-Toe\UltimTicTacToe.exe
FirewallRules: [{7F5FF043-D67C-40B7-9BB9-4A729FAF1B17}] => (Allow) E:\Steam\SteamApps\common\Ultimate Tic-Tac-Toe\UltimTicTacToe.exe
FirewallRules: [{EBB6B860-63A1-46DE-A0CD-6E0F64A8FCCE}] => (Allow) E:\Steam\SteamApps\common\ValdisStoryAbyssalCity\Valdis_Story_AC.exe
FirewallRules: [{EC929A1C-1314-4942-9CBE-E2714132E62D}] => (Allow) E:\Steam\SteamApps\common\ValdisStoryAbyssalCity\Valdis_Story_AC.exe
FirewallRules: [{EDE6631A-5377-4448-B6D2-59158F79B3AE}] => (Allow) E:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{7D90BB77-27A8-4E49-8FAE-A28CFB87738B}] => (Allow) E:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{8DDE0191-7C9D-4824-97C6-EF4577EF33EE}] => (Allow) E:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{98FBE156-1384-412E-9CB1-0FF310F96D57}] => (Allow) E:\Riot Games\League of Legends\lol.launcher.admin.exe
FirewallRules: [{CD147E91-A0D8-4AF3-A977-A08ED92AF75F}] => (Allow) E:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{C13F3CA4-1091-4C2E-826B-4050B2CF5043}] => (Allow) E:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{31EEE487-B3EC-4CD9-96A1-0AFE51FDE59E}] => (Allow) E:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{76AB852B-F490-44E2-926B-C7FB9E52E967}] => (Allow) E:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{67EB767A-A5A5-40C2-AFC7-0B2054157CE5}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{7FBA1CEC-143B-49C2-9074-B351D145A9BF}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{BAE768B2-A7F6-46C0-91AD-8B3AB668D75A}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{AA07F4E5-C822-4B55-AB34-F56704E6E980}] => (Allow) E:\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{8CAE83E4-8467-4D58-A36D-FD03D39838B3}] => (Allow) E:\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{1EAD5EAD-DEB6-4FC9-83FD-31D44C82EBB2}] => (Allow) E:\Steam\SteamApps\common\Sins of a Dark Age\x86\GameExe.exe
FirewallRules: [{3D4E014B-66FC-484C-85E3-AEA85D500179}] => (Allow) E:\Steam\SteamApps\common\Sins of a Dark Age\x86\GameExe.exe
FirewallRules: [{C131ACE9-205F-49A2-96A6-28E8036F7150}] => (Allow) E:\Steam\SteamApps\common\Jamestown\Jamestown.exe
FirewallRules: [{0A08D497-3DC9-4C43-8D1D-13EBF6FD53E7}] => (Allow) E:\Steam\SteamApps\common\Jamestown\Jamestown.exe
FirewallRules: [{BE15DED5-6651-4911-B0D3-674829A166D9}] => (Allow) C:\Users\Public\temp\TeamViewer\TeamViewer.exe
FirewallRules: [{67F8759F-67D2-4793-9284-0A3B6B64ADF0}] => (Allow) C:\Users\Public\temp\TeamViewer\TeamViewer.exe
FirewallRules: [{E845469E-2A1A-47E4-848C-CBAB481247CE}] => (Allow) C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{862134F7-5377-47F7-A0B1-C9D174D22044}] => (Allow) C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7F758B22-0FEA-4518-B7BC-54D7117850CA}] => (Allow) E:\Steam\SteamApps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [{2A8D2A42-81AB-4620-A6FA-B9FA6B955C60}] => (Allow) E:\Steam\SteamApps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [VIRT-MIGL-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
FirewallRules: [VIRT-REMOTEDESKTOP-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
FirewallRules: [{0075F219-F150-4EDA-AF34-4651735AA9F1}] => (Allow) E:\Steam\SteamApps\common\dota 2 beta\game\bin\win32\dota2.exe
FirewallRules: [{0E54EFAF-CB3D-4822-9C09-60DA0966ECE1}] => (Allow) E:\Steam\SteamApps\common\dota 2 beta\game\bin\win32\dota2.exe
FirewallRules: [{8D63C815-87EF-47B8-B2A6-19CC1948F34E}] => (Allow) E:\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{2AA6A7A7-22D3-4C95-BC4B-3946D811DDDE}] => (Allow) E:\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [TCP Query User{C24CFB93-D122-4B15-A600-7946A9290EF0}E:\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{BD41C62A-73BA-406A-8702-9FE637ECCEDC}E:\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{D29234E4-65D8-4590-9C4D-AB60FCF783D2}] => (Allow) E:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{ACD3958F-D9F4-4D74-BD8E-A07D82A876EF}] => (Allow) E:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{A28BA216-B015-4DF5-BFE6-ABDC6C2729EE}] => (Allow) E:\Steam\SteamApps\common\HuniePop\HuniePop.exe
FirewallRules: [{9B4C39FF-729C-4DF3-A04C-035079C21D26}] => (Allow) E:\Steam\SteamApps\common\HuniePop\HuniePop.exe
FirewallRules: [TCP Query User{4D02A5C1-2185-4F4A-9EF7-FCDA3986B4B1}C:\users\georg\desktop\mspaint ressources\t\mspaint.exe] => (Allow) C:\users\georg\desktop\mspaint ressources\t\mspaint.exe
FirewallRules: [UDP Query User{E6EA7079-CD00-4C43-84C3-E8F5CA87385C}C:\users\georg\desktop\mspaint ressources\t\mspaint.exe] => (Allow) C:\users\georg\desktop\mspaint ressources\t\mspaint.exe
FirewallRules: [TCP Query User{0F37ACB6-F403-49E8-8A57-61E525097FF3}C:\users\georg\desktop\mspaint ressources\turbohud 15.6.5.0 (v5) stable for diablo iii 2.2.1.31666\mspaint.exe] => (Allow) C:\users\georg\desktop\mspaint ressources\turbohud 15.6.5.0 (v5) stable for diablo iii 2.2.1.31666\mspaint.exe
FirewallRules: [UDP Query User{83C60C36-BF68-44B1-B370-EFF1F9F423D6}C:\users\georg\desktop\mspaint ressources\turbohud 15.6.5.0 (v5) stable for diablo iii 2.2.1.31666\mspaint.exe] => (Allow) C:\users\georg\desktop\mspaint ressources\turbohud 15.6.5.0 (v5) stable for diablo iii 2.2.1.31666\mspaint.exe
FirewallRules: [TCP Query User{903B0D71-EF74-421F-B514-CEC056251D2A}C:\users\georg\desktop\mspaint ressources\stuff\mspaint.exe] => (Allow) C:\users\georg\desktop\mspaint ressources\stuff\mspaint.exe
FirewallRules: [UDP Query User{C6F34418-CB48-4096-AFA4-F9E3EBB01452}C:\users\georg\desktop\mspaint ressources\stuff\mspaint.exe] => (Allow) C:\users\georg\desktop\mspaint ressources\stuff\mspaint.exe
FirewallRules: [TCP Query User{A08FF91D-A32A-432F-9EC5-BB1669EE92EA}E:\diablo iii public test\diablo iii.exe] => (Allow) E:\diablo iii public test\diablo iii.exe
FirewallRules: [UDP Query User{55308303-907A-44B0-ABC9-A7EDC33F84A8}E:\diablo iii public test\diablo iii.exe] => (Allow) E:\diablo iii public test\diablo iii.exe
FirewallRules: [{587FC6DB-9B8E-4488-8820-2055D8A354F8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6155B3B6-4BE6-40F1-AE0F-1CD86A742D74}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{CFDA3F3F-AB2C-402E-AB87-711C358EAA54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{FFC73900-8C89-4C00-BDC8-73DF0892CE68}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E6E507AE-CB14-401B-BC9C-AAF710743692}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1C1F42E0-B341-4E90-9EA0-18E77B2B4743}] => (Allow) E:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{30E5AEB8-0210-4D93-8949-947FB23377CC}] => (Allow) E:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{08B9818C-228B-484B-B449-673D24EFB3F8}] => (Allow) E:\Steam\SteamApps\common\Sakura Clicker\Sakura Clicker.exe
FirewallRules: [{CC8CB492-A246-4B81-B99F-D13D7BAAA2B5}] => (Allow) E:\Steam\SteamApps\common\Sakura Clicker\Sakura Clicker.exe
FirewallRules: [TCP Query User{8344F569-CF3D-4A91-B137-F882B1870D00}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{166E3575-6C8F-49A7-9B28-903C91F18FFB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{BA4A6C67-33F1-4E8D-AD22-7C3C8A542B04}] => (Allow) E:\Steam\SteamApps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{437CCCB7-E02D-4F0D-806B-E8C7684EC6D8}] => (Allow) E:\Steam\SteamApps\common\Torchlight II\ModLauncher.exe
FirewallRules: [TCP Query User{193868BE-9F7F-437B-8921-DAF9B5508819}E:\eclipse\eclipse\eclipse.exe] => (Allow) E:\eclipse\eclipse\eclipse.exe
FirewallRules: [UDP Query User{9F939EE7-9960-478C-8753-F265FF0EF380}E:\eclipse\eclipse\eclipse.exe] => (Allow) E:\eclipse\eclipse\eclipse.exe
FirewallRules: [TCP Query User{7D66348C-248E-4228-AF72-2D8D528DF999}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{6F96785D-832D-4EC4-AEDB-1B08B4E0015C}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{F6E9FCCF-5F48-4A82-A27F-3DD21378011C}] => (Allow) E:\Steam\SteamApps\common\strife\bin\strife.exe
FirewallRules: [{6FB44DFE-D977-4FEB-A870-95CE6C0281C2}] => (Allow) E:\Steam\SteamApps\common\strife\bin\strife.exe
FirewallRules: [{3A490C5A-5BB1-4AFA-A7F9-7B785CEF780A}] => (Allow) E:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{0C74C111-9458-4A38-8F77-252022A1727F}] => (Allow) E:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{D34D1E87-157F-4BFA-9CA4-FA1E870A2DC7}] => (Allow) E:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFEditor.exe
FirewallRules: [{52175D10-8D9C-417F-BF1A-2776F290DD0B}] => (Allow) E:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFEditor.exe
FirewallRules: [{2847F254-639A-4FD2-B610-F8B5A0ADC63F}] => (Allow) E:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{8A33F46C-98C2-49BC-84F1-7D097F104A5E}] => (Allow) E:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{491ECB04-442C-4C24-A302-5E3F2FBBD1E5}] => (Allow) E:\F\firefox.exe
FirewallRules: [{CD610147-7F98-4CA8-8C22-29DC7FAB63FC}] => (Allow) E:\F\firefox.exe
FirewallRules: [{739B4F4C-3FD4-4942-AA52-8304C6EAFD2A}] => (Allow) E:\Steam\SteamApps\common\OlliOlli2\olliolli2.exe
FirewallRules: [{2100022B-55BD-4999-ACAB-5337EB3B3F2D}] => (Allow) E:\Steam\SteamApps\common\OlliOlli2\olliolli2.exe
FirewallRules: [{8AA27407-F301-4000-AB7B-2F020B93FFE0}] => (Allow) E:\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{4454BA26-FC52-4A6A-B8F1-2CD45C2D8C24}] => (Allow) E:\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{F3E84A8D-C1AC-4F43-AC01-3C615F96FDD9}] => (Allow) E:\Steam\SteamApps\common\Fingered\nw.exe
FirewallRules: [{0A395C12-AD0B-4A32-9810-4D0A2E14C469}] => (Allow) E:\Steam\SteamApps\common\Fingered\nw.exe
FirewallRules: [TCP Query User{4CAF3AE9-6084-4618-B453-D61F8D5F129B}E:\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C8A2C1D1-B460-482E-9115-4C2F5FF12EAF}E:\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe
FirewallRules: [{6413336E-E8B4-4DBE-881D-9C442D394806}] => (Allow) E:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{1EF35FD5-741C-4A62-8726-18D599F7D25D}] => (Allow) E:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [TCP Query User{B0999F41-03FD-422A-A68D-F8264AA2293E}C:\program files\java\jre1.8.0_60\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\java.exe
FirewallRules: [UDP Query User{D26409B6-347A-403B-A8FB-BB79FEAB246C}C:\program files\java\jre1.8.0_60\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\java.exe
FirewallRules: [{50A937B8-6F11-4325-8B81-13E9B3B276C2}] => (Allow) C:\program files\java\jre1.8.0_60\bin\java.exe
FirewallRules: [{346D1212-BF73-40B9-B90E-079572B03315}] => (Allow) C:\program files\java\jre1.8.0_60\bin\java.exe
FirewallRules: [{9D81D46F-EFD5-4D80-81B2-D726B538BA02}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
FirewallRules: [{3E99ADF5-91E9-4C28-81ED-8B0B48F5C63C}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
FirewallRules: [{61F945BB-6F17-446B-81E0-99E540E63670}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
FirewallRules: [{47388D9B-FBCF-4FBA-86F1-39966840BCAA}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
FirewallRules: [{2EC439A9-9A42-4149-8570-108ACDE480A1}] => (Allow) LPort=25565
FirewallRules: [TCP Query User{1640A889-703D-4306-A705-675A859B5275}C:\users\georg\desktop\pic\mspaint.exe] => (Allow) C:\users\georg\desktop\pic\mspaint.exe
FirewallRules: [UDP Query User{F9F4D366-376B-4E44-87D5-585CA54A5CB7}C:\users\georg\desktop\pic\mspaint.exe] => (Allow) C:\users\georg\desktop\pic\mspaint.exe
FirewallRules: [{DE0DF023-7735-4EA2-B11F-A9A8F9CF9727}] => (Block) C:\users\georg\desktop\pic\mspaint.exe
FirewallRules: [{6E7C2825-EE8A-4C95-872F-BBDCE6AA9E01}] => (Block) C:\users\georg\desktop\pic\mspaint.exe
FirewallRules: [TCP Query User{90894A0E-1DC9-4ED8-AC84-14AAC3388EC0}E:\heroes of the storm\versions\base37274\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base37274\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{BFEF2C71-C340-4E09-B8A4-7650090833EF}E:\heroes of the storm\versions\base37274\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base37274\heroesofthestorm_x64.exe
FirewallRules: [{0EAB8BC3-C4E1-439A-AD0C-C190A4CCFDCF}] => (Block) E:\heroes of the storm\versions\base37274\heroesofthestorm_x64.exe
FirewallRules: [{414AAADE-9D7B-47BF-80BA-350A921C1533}] => (Block) E:\heroes of the storm\versions\base37274\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{115B1F05-02B9-4EBB-B3A5-5A4C5377D875}E:\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{896A9D80-5A6B-4F2F-BF54-AF46C683BDF4}E:\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [{CBE5F119-BB3E-4C34-AF6B-B7A0AABA28CA}] => (Block) E:\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [{EE4858B3-0436-4A21-9774-AE34C5059C6A}] => (Block) E:\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [{2A33FAC0-ED3A-48C6-8F65-F3E08B5215EF}] => (Allow) E:\Steam\SteamApps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{491B0FEE-A1DC-4362-BF62-1ECBE687EC93}] => (Allow) E:\Steam\SteamApps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{D4AC0B3E-1CF2-4991-B3E1-8DFBA650ACFA}] => (Allow) E:\Steam\SteamApps\common\Scribblenauts Unmasked\Scribble.exe
FirewallRules: [{6AA26F5C-8A8B-4544-8875-0E71D935EBD7}] => (Allow) E:\Steam\SteamApps\common\Scribblenauts Unmasked\Scribble.exe
FirewallRules: [{A39CED0E-3584-4790-81C6-1CB3DCA93AD1}] => (Allow) E:\Steam\SteamApps\common\Scribblenauts\Scribble.exe
FirewallRules: [{FDCE656F-0A2D-4EE2-BDFE-1840F84727E0}] => (Allow) E:\Steam\SteamApps\common\Scribblenauts\Scribble.exe
FirewallRules: [{33C22B2A-E920-400F-967C-B35FBF801644}] => (Allow) E:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFEditor.exe
FirewallRules: [{AB806B11-26BB-43F4-9076-EE93D681FE92}] => (Allow) E:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFEditor.exe
FirewallRules: [{65861602-ED97-438F-BBB4-F777C2626526}] => (Allow) E:\Steam\SteamApps\common\killingfloor2\Binaries\SDKFrontend.exe
FirewallRules: [{85B276CE-118F-4D81-ACBA-32D7781511C6}] => (Allow) E:\Steam\SteamApps\common\killingfloor2\Binaries\SDKFrontend.exe
FirewallRules: [{A860996A-B7F7-4A1B-9CF2-4C1641EFC5EE}] => (Allow) E:\Steam\SteamApps\common\Evoland 2\Evoland2.exe
FirewallRules: [{2AB0E9CB-6C0E-46F6-83FE-397F817E3C3E}] => (Allow) E:\Steam\SteamApps\common\Evoland 2\Evoland2.exe
FirewallRules: [{B1319F5A-DABD-4613-9E38-F44CA3B6F3B1}] => (Allow) E:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{3E5DAA32-0542-421B-9AD8-E0B5317770EA}] => (Allow) E:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [TCP Query User{2C37A2E5-FE99-4395-AE70-A077BF1CBAF5}E:\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{EEE825E6-6EE0-4529-BCDE-30A436EA30AF}E:\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [{271A9434-6F27-4814-B7EC-5579A676BB6F}] => (Block) E:\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [{25CCBEE6-A916-4E9D-BAB7-A01D14E32047}] => (Block) E:\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [{9FF46BB3-173B-46AB-9D59-C3C428F3C053}] => (Allow) E:\Evolve\EvoSvc.exe
FirewallRules: [{1090C381-218C-41B9-8017-1621E3A46872}] => (Allow) E:\Evolve\EvolveClient.exe
FirewallRules: [TCP Query User{4C141DC5-94FF-4D99-96C7-902B459B4493}E:\yolo\ssb crusade v0.9 patch\crusadepatch2.exe] => (Allow) E:\yolo\ssb crusade v0.9 patch\crusadepatch2.exe
FirewallRules: [UDP Query User{9754DE8F-99CD-4184-99EF-F5098B160C13}E:\yolo\ssb crusade v0.9 patch\crusadepatch2.exe] => (Allow) E:\yolo\ssb crusade v0.9 patch\crusadepatch2.exe
FirewallRules: [{48D44D7D-393A-4275-809C-A1C755E9132D}] => (Block) E:\yolo\ssb crusade v0.9 patch\crusadepatch2.exe
FirewallRules: [{4A3749EB-90BF-4617-87D6-A2295389873B}] => (Block) E:\yolo\ssb crusade v0.9 patch\crusadepatch2.exe
FirewallRules: [{F50751ED-50EF-4856-9968-19FAEA599E65}] => (Allow) E:\Steam\SteamApps\common\Baldur's Gate Enhanced Edition\Baldur.exe
FirewallRules: [{D10AB797-AAFD-4E6C-9F9D-CE8840484B5D}] => (Allow) E:\Steam\SteamApps\common\Baldur's Gate Enhanced Edition\Baldur.exe
FirewallRules: [{B874E5F6-5BEA-4651-83A6-46590C7FA875}] => (Allow) E:\Steam\SteamApps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{DBABBE06-3168-4CF3-9780-445A416E2277}] => (Allow) E:\Steam\SteamApps\common\This War of Mine\This War of Mine.exe
FirewallRules: [TCP Query User{308112D7-72B5-4563-81E2-87A1642A900C}E:\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{7C79441D-CB8C-44F8-BED9-7A62346CC98F}E:\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [{55D1CE0B-32EF-45C0-B268-2513BD27C0D5}] => (Block) E:\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [{B7F2E10E-10BC-479D-AAB7-9645F9E9CBE9}] => (Block) E:\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [{36BE3104-3955-4465-97F9-3AD6294D8E3D}] => (Allow) E:\Steam\SteamApps\common\SMITE\Binaries\Win32\HirezBridge.exe
FirewallRules: [{3261CA0A-0500-4C12-8C74-4CD0B4FFEE95}] => (Allow) E:\Steam\SteamApps\common\SMITE\Binaries\Win32\HirezBridge.exe
FirewallRules: [TCP Query User{10E09637-F756-408B-9395-558F2F37B467}E:\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) E:\steam\steamapps\common\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{6991877C-6B5D-4E7A-AB5F-B9E4954EC383}E:\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) E:\steam\steamapps\common\smite\binaries\win32\smite.exe
FirewallRules: [{D13B09DF-8E94-435A-AEA9-0EC898352B5D}] => (Block) E:\steam\steamapps\common\smite\binaries\win32\smite.exe
FirewallRules: [{5F2A6CE7-AB91-473F-95BE-CEAD512DDADC}] => (Block) E:\steam\steamapps\common\smite\binaries\win32\smite.exe
FirewallRules: [{66A5F4EE-6585-4D93-97B1-0D4176F6D057}] => (Allow) E:\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{56E61343-83C8-4C40-B36E-208AF20FF6FB}] => (Allow) E:\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [TCP Query User{E375BC90-9169-4C5E-A454-5900838FA4B1}C:\users\georg\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\georg\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{79A42144-BF52-4D1C-8337-69BAC5593BC8}C:\users\georg\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\georg\appdata\roaming\spotify\spotify.exe
FirewallRules: [{03267F30-C6E3-4656-A39F-B06D997FEAB0}] => (Allow) E:\Steam\SteamApps\common\strife\bin\strife.exe
FirewallRules: [{EE625ED2-8A6B-47E2-93AA-290E31D3C38F}] => (Allow) E:\Steam\SteamApps\common\strife\bin\strife.exe
FirewallRules: [TCP Query User{0F834472-7B2B-4558-B1E3-17F3B73E9018}E:\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{497D990C-7166-4204-80C7-EFD68D2AF6D8}E:\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe
FirewallRules: [{713091F2-46CE-45A1-8566-E40B09F47CD7}] => (Block) E:\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe
FirewallRules: [{F2082FCB-FDEC-42FA-82C6-441688E8E8F7}] => (Block) E:\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe
FirewallRules: [{E59435A7-9481-43EA-9D60-2A9D2977A627}] => (Allow) E:\Steam\SteamApps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{5FDBABB6-CEDB-48F9-8807-8A700E6F57F5}] => (Allow) E:\Steam\SteamApps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{DB6D94B4-99D5-4459-972E-91298537C67A}] => (Allow) E:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{E3AFACCD-0A4A-4B13-A138-4BDDA5D3B7D3}] => (Allow) E:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{767BC89D-BF2C-4306-BE75-DAFBDA850BE0}] => (Allow) E:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{630F0289-AC6F-4EBD-B1B0-1CBF7A2864A4}] => (Allow) E:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{D1713A25-68DF-45B7-8A22-1E9C6CFFEAEC}] => (Allow) E:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{C6C661C1-B351-44DA-AA62-18FB640B981B}] => (Allow) E:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [TCP Query User{7B07EBC4-9D1D-443B-AF7C-DCF98CF115F1}E:\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{98E08B74-CDCB-449C-89A1-90A906962BD0}E:\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe
FirewallRules: [{65AB037D-EAB1-45D1-93A1-FA46C64EE330}] => (Block) E:\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe
FirewallRules: [{0F559771-59A5-49A1-AC16-5F337D0848A9}] => (Block) E:\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe
FirewallRules: [{E56A9F90-1276-44B2-9414-8E8C14586C6C}] => (Allow) E:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{72E96E0F-76C8-44BE-8A2D-592024715A89}] => (Allow) E:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{70909032-3B32-44E0-BC45-6CC2EB01BE62}] => (Allow) E:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{846C21DC-AF92-4661-9F48-72DED3EA2B5B}] => (Allow) E:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{9F9F0934-4301-4AEA-A7DE-5A1466FDFB72}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{059F457A-4DCB-4523-8661-FBDC66CC074B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{F928B591-209B-488D-836D-21EE50EBDF53}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{5CB7E678-15B8-4FE0-95E7-0CBF63E3F35B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{E8937CF5-F24A-4F62-9109-FCAB3CFD3BD0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{E0E23CCB-60BF-4803-818F-C4044708D181}] => (Allow) E:\Steam\SteamApps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{28977714-DC01-4A20-A8F3-C78F345794DF}] => (Allow) E:\Steam\SteamApps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{6A862F82-04AF-458A-AC71-EC07BFF39506}] => (Allow) E:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{F2912E19-F544-4B8B-A17B-A30326833DF0}] => (Allow) E:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{7A71E899-0728-418C-8849-3943A5B4AE40}] => (Allow) E:\F\firefox.exe
FirewallRules: [TCP Query User{8316F8BF-CA63-447A-8990-60880275429F}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [UDP Query User{5D740A2B-803A-4855-A753-20B8127F75CA}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [{744BDF18-EAB6-4ED0-9FBF-76033D3DEC4A}] => (Block) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [{9874ACD2-A367-4F71-A447-4FEF3DDCD4C1}] => (Block) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [TCP Query User{D0CF7E7A-D979-40DE-A9BA-977C0F2E5ED0}E:\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{3772D6CB-610B-40C3-A1D0-F551702C32D5}E:\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [{E0FA196C-0E07-4AED-93EC-20DC5DEAA544}] => (Block) E:\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [{2D9315E5-7553-47B3-AA74-9171587B5B58}] => (Block) E:\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [{032159AC-16A2-4D62-99A9-0F83658FC768}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2A660DCD-3655-4015-B6FC-8F1B1E653393}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Microsoft Hyper-V Virtual Machine Bus Provider
Description: Microsoft Hyper-V Virtual Machine Bus Provider
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vmbusr
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Microsoft Hyper-V Virtualization Infrastructure Driver
Description: Microsoft Hyper-V Virtualization Infrastructure Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Vid
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Microsoft Hyper-V Virtual Disk Server
Description: Microsoft Hyper-V Virtual Disk Server
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: storvsp
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/19/2015 05:59:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program chrome.exe version 46.0.2490.86 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1e08

Start Time: 01d1206e4fdba6ef

Termination Time: 60000

Application Path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Report Id: 33b62dfc-8e7a-11e5-82fb-f80f411664f9

Faulting package full name: 

Faulting package-relative application ID:

Error: (11/19/2015 04:35:15 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (11/19/2015 04:23:46 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: The volume PQSERVICE was not optimized because an error was encountered: Falscher Parameter. (0x80070057)

Error: (11/19/2015 04:20:28 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: The volume SYSTEM RESERVED (D:) was not optimized because an error was encountered: Falscher Parameter. (0x80070057)

Error: (11/18/2015 09:11:35 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT-AUTORITÄT)
Description: There was an error with the Windows Location Provider database

Error: (11/18/2015 08:44:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NvStreamNetworkService.exe, version: 4.1.1977.6980, time stamp: 0x55a97f26
Faulting module name: ntdll.dll, version: 6.3.9600.18007, time stamp: 0x55c4c16b
Exception code: 0xc0000005
Fault offset: 0x000000000003b189
Faulting process id: 0x4ad0
Faulting application start time: 0xNvStreamNetworkService.exe0
Faulting application path: NvStreamNetworkService.exe1
Faulting module path: NvStreamNetworkService.exe2
Report Id: NvStreamNetworkService.exe3
Faulting package full name: NvStreamNetworkService.exe4
Faulting package-relative application ID: NvStreamNetworkService.exe5

Error: (11/14/2015 03:52:21 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Resetting to Probing:   16 Knightmare01.local. AAAA FE80:0000:0000:0000:DCE5:D519:BFC3:EE12

Error: (11/14/2015 03:52:21 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 25.94.45.71:58391    4 Knightmare01.local. Addr 10.30.1.14

Error: (11/14/2015 03:52:21 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Resetting to Probing:   16 Knightmare01.local. AAAA 2620:009B:0000:0000:0000:0000:195E:2D47

Error: (11/14/2015 03:52:21 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 25.94.45.71:58391    4 Knightmare01.local. Addr 10.30.1.14


Systemfehler:
=============
Error: (11/19/2015 07:19:37 AM) (Source: DCOM) (EventID: 10005) (User: KNIGHTMARE01)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/19/2015 07:19:37 AM) (Source: DCOM) (EventID: 10005) (User: KNIGHTMARE01)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/19/2015 07:19:36 AM) (Source: DCOM) (EventID: 10005) (User: KNIGHTMARE01)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/19/2015 07:19:36 AM) (Source: DCOM) (EventID: 10005) (User: KNIGHTMARE01)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/19/2015 07:19:18 AM) (Source: DCOM) (EventID: 10005) (User: KNIGHTMARE01)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/19/2015 07:19:18 AM) (Source: DCOM) (EventID: 10005) (User: KNIGHTMARE01)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/19/2015 07:18:51 AM) (Source: DCOM) (EventID: 10005) (User: KNIGHTMARE01)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/19/2015 07:18:51 AM) (Source: DCOM) (EventID: 10005) (User: KNIGHTMARE01)
Description: 1084WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/19/2015 07:17:46 AM) (Source: DCOM) (EventID: 10005) (User: KNIGHTMARE01)
Description: 1084WSearchNicht verfügbar{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (11/19/2015 07:17:46 AM) (Source: DCOM) (EventID: 10005) (User: KNIGHTMARE01)
Description: 1084ShellHWDetectionNicht verfügbar{DD522ACC-F821-461A-A407-50B198B896DC}


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 11%
Installierter physikalischer RAM: 12269.96 MB
Verfügbarer physikalischer RAM: 10884.39 MB
Summe virtueller Speicher: 14125.96 MB
Verfügbarer virtueller Speicher: 12861.95 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:58.53 GB) (Free:3.28 GB) NTFS
Drive d: (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive e: (Data) (Fixed) (Total:913.93 GB) (Free:167.04 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 59.6 GB) (Disk ID: 5E9A9A51)
Partition 1: (Not Active) - (Size=1 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=58.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5E9A9A3B)
Partition 1: (Active) - (Size=17.6 GB) - (Type=27)
Partition 2: (Not Active) - (Size=913.9 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

4. Gmer.txt

Code: Alles auswählenAufklappen

ATTFilter

GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-11-19 07:24:40
Windows 6.3.9600  x64 \Device\Harddisk0\DR0 -> \Device\00000037 LITEONIT_LCT-64M3S rev.VTC4 59.63GB
Running: Gmer-19357.exe; Driver: C:\Users\Georg\AppData\Local\Temp\fgtdqaoc.sys


---- Kernel code sections - GMER 2.1 ----

.text    C:\Windows\system32\ntoskrnl.exe!NtCallbackReturn + 960                                                                                                                          fffff801743c3600 84 bytes {SUB BYTE [RBP+0x7002ffa5], 0x45; ADD EAX, [RAX+0x3f]; MOVSB ; ADD AL, 0x0; CALL QWORD [RDI+0x2]}

---- Threads - GMER 2.1 ----

Thread   C:\Windows\system32\csrss.exe [516:524]                                                                                                                                          fffff960008632d0

---- Services - GMER 2.1 ----

Service  C:\Windows\System32\Drivers\sptd.sys (*** hidden *** )                                                                                                                           [BOOT] sptd                                                                                                                   <-- ROOTKIT !!!

---- Registry - GMER 2.1 ----

Reg      HKLM\SYSTEM\CurrentControlSet\Control@SystemStartOptions                                                                                                                          NOEXECUTE=OPTIN  HYPERVISORLAUNCHTYPE=AUTO
Reg      HKLM\SYSTEM\CurrentControlSet\Control\GraphicsDrivers\Configuration\MSBDD_SAM05EBH1AK500000_19_07D9_86_1414_008D_FFFFFFFF_FFFFFFFF_0^1597FACD34BABD678C8D99A9897C31C3@Timestamp  0xA4 0x4D 0x2F 0x1C ...
Reg      HKLM\SYSTEM\CurrentControlSet\Control\Lsa@LsaPid                                                                                                                                 800
Reg      HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Executive@UuidSequenceNumber                                                                                               3900161
Reg      HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\RNG@RNGAuxiliarySeed                                                                                                -1560253820
Reg      HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters@BootId                                                                                184
Reg      HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters@BaseTime                                                                              458599809
Reg      HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@POSTTime                                                                                                             17484
Reg      HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server@InstanceID                                                                                                                 6e5aac00-95ab-4ecb-bd94-d660f97
Reg      HKLM\SYSTEM\CurrentControlSet\Control\WMI\Autologger\AITEventLog@FileCounter                                                                                                     1
Reg      HKLM\SYSTEM\CurrentControlSet\Control\WMI\Autologger\SQMLogger@FileCounter                                                                                                       4
Reg      HKLM\SYSTEM\CurrentControlSet\Control\WMI\Autologger\WdiContextLog@FileCounter                                                                                                   1
Reg      HKLM\SYSTEM\CurrentControlSet\Hardware Profiles\UnitedVideo\SERVICES\BASICDISPLAY@DefaultSettings.XResolution                                                                    1920
Reg      HKLM\SYSTEM\CurrentControlSet\Hardware Profiles\UnitedVideo\SERVICES\BASICDISPLAY@DefaultSettings.YResolution                                                                    1080
Reg      HKLM\SYSTEM\CurrentControlSet\Services\amdsbs\Parameters\Device-1@RaidCount                                                                                                      0
Reg      HKLM\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\Probe\{96a782a9-5cab-4412-a93d-afa30eaacfb9}@LastProbeTime                                                            1447917029
Reg      HKLM\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\Probe\{da1fd26d-3eb1-4cb7-be82-8d53d1f619a2}@LastProbeTime                                                            1447917028
Reg      HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch                                                                                                                  20807
Reg      HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch2@Epoch                                                                                                                 5681
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd@ImagePath                                                                                                                            \SystemRoot\System32\Drivers\sptd.sys
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd@Start                                                                                                                                0
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04                                                                                                 
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0                                                                                              0
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew                                                                                           0x6B 0xA1 0x4F 0x91 ...
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0                                                                                              C:\Program Files (x86)\Alcohol Soft\Alcohol 120\
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001                                                                                        
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0                                                                                     0xA0 0x02 0x00 0x00 ...
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew                                                                                  0x03 0xEC 0xED 0xC9 ...
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40                                                                                 
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew                                                                           0x7E 0x3F 0x11 0x80 ...
Reg      HKLM\SYSTEM\CurrentControlSet\Services\sptd                                                                                                                                      
Reg      HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{53A1D486-34B2-4B98-A9AE-8E888C69E842}@LeaseObtainedTime                                                      1447913428
Reg      HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{53A1D486-34B2-4B98-A9AE-8E888C69E842}@T1                                                                     1463681428
Reg      HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{53A1D486-34B2-4B98-A9AE-8E888C69E842}@T2                                                                     1475507428
Reg      HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{53A1D486-34B2-4B98-A9AE-8E888C69E842}@LeaseTerminatesTime                                                    1479449428
Reg      HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{5FF16489-F7D5-4131-9187-9CDC3A361285}@LeaseObtainedTime                                                      1447913416
Reg      HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{5FF16489-F7D5-4131-9187-9CDC3A361285}@T1                                                                     1448215816
Reg      HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{5FF16489-F7D5-4131-9187-9CDC3A361285}@T2                                                                     1448442616
Reg      HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{5FF16489-F7D5-4131-9187-9CDC3A361285}@LeaseTerminatesTime                                                    1448518216
Reg      HKLM\SYSTEM\CurrentControlSet\Services\Winmgmt\Parameters@ServiceDllUnloadOnStop                                                                                                 0
Reg      HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CD Burning\Drives\Volume{10eef36d-2ca0-11e5-82b6-f80f411664f9}                                                           
Reg      HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CD Burning\Drives\Volume{10eef36d-2ca0-11e5-82b6-f80f411664f9}@Drive Type                                                1048593
Reg      HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CD Burning\Drives\Volume{10eef36d-2ca0-11e5-82b6-f80f411664f9}@IsImapiDataBurnSupported                                  0
Reg      HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CD Burning\StagingInfo\Volume{10eef36d-2ca0-11e5-82b6-f80f411664f9}@Active                                               1
Reg      HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shutdown@CleanShutdown                                                                                                   1
Reg      HKCU\Software\Microsoft\Windows\CurrentVersion\ImmersiveShell\Grid@Layout_MaximumAvailableHeightCells                                                                            12
Reg      HKCU\Software\Microsoft\Windows\CurrentVersion\ImmersiveShell\Grid@Layout_AvailableHeightCells                                                                                   12
Reg      HKCU\Software\Microsoft\Windows\CurrentVersion\Run@AlcoholAutomount                                                                                                              "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount

---- EOF - GMER 2.1 ----
         

hi,

Downloade dir bitte Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

• Starte bitte die mbar.exe.
• Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
• Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
• Klicke auf den CleanUp Button und erlaube den Neustart.
• Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
• Nach dem Neustart starte die mbar.exe erneut.
• Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte TDSSKiller.exe und speichere diese Datei auf dem Desktop

• Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
• Drücke Start Scan
  
• Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
  TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
  Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

5. Malwarebytes Anti-Roolkit Beta

Code: Alles auswählenAufklappen

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2015.11.19.02
  rootkit: v2015.11.14.01

Windows 8.1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 11.0.9600.18098
Kai :: KNIGHTMARE01 [administrator]

11/19/2015 12:09:03 PM
mbar-log-2015-11-19 (12-09-03).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 374412
Time elapsed: 7 minute(s), 44 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         

6. TDSSKiller Log Part 1

Code: Alles auswählenAufklappen

ATTFilter

12:22:32.0265 0x0264  TDSS rootkit removing tool 3.1.0.6 Nov 16 2015 12:17:23
12:22:38.0664 0x0264  ============================================================
12:22:38.0664 0x0264  Current date / time: 2015/11/19 12:22:38.0664
12:22:38.0664 0x0264  SystemInfo:
12:22:38.0664 0x0264  
12:22:38.0664 0x0264  OS Version: 6.3.9600 ServicePack: 0.0
12:22:38.0664 0x0264  Product type: Workstation
12:22:38.0664 0x0264  ComputerName: KNIGHTMARE01
12:22:38.0664 0x0264  UserName: Kai
12:22:38.0664 0x0264  Windows directory: C:\Windows
12:22:38.0664 0x0264  System windows directory: C:\Windows
12:22:38.0664 0x0264  Running under WOW64
12:22:38.0664 0x0264  Processor architecture: Intel x64
12:22:38.0664 0x0264  Number of processors: 8
12:22:38.0664 0x0264  Page size: 0x1000
12:22:38.0664 0x0264  Boot type: Safe boot with network
12:22:38.0664 0x0264  ============================================================
         

7. TDSSKiller Log Part 2

Code: Alles auswählenAufklappen

ATTFilter

12:22:38.0697 0x0264  KLMD registered as C:\Windows\system32\drivers\81132720.sys
12:22:38.0729 0x0264  System UUID: {CD21B942-8E05-97D6-63A5-30E82B1100F7}
12:22:38.0916 0x0264  Drive \Device\Harddisk0\DR0 - Size: 0xEE8156000 ( 59.63 Gb ), SectorSize: 0x200, Cylinders: 0x1E67, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:22:38.0916 0x0264  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:22:38.0947 0x0264  ============================================================
12:22:38.0947 0x0264  \Device\Harddisk0\DR0:
12:22:38.0947 0x0264  MBR partitions:
12:22:38.0947 0x0264  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x200800, BlocksNum 0x32000
12:22:38.0947 0x0264  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x232800, BlocksNum 0x750D800
12:22:38.0947 0x0264  \Device\Harddisk1\DR1:
12:22:38.0947 0x0264  MBR partitions:
12:22:38.0947 0x0264  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x2328800, BlocksNum 0x723DD800
12:22:38.0947 0x0264  ============================================================
12:22:38.0948 0x0264  C: <-> \Device\Harddisk0\DR0\Partition2
12:22:38.0949 0x0264  D: <-> \Device\Harddisk0\DR0\Partition1
12:22:38.0966 0x0264  E: <-> \Device\Harddisk1\DR1\Partition1
12:22:38.0966 0x0264  ============================================================
12:22:38.0966 0x0264  Initialize success
12:22:38.0966 0x0264  ============================================================
12:23:48.0316 0x0990  ============================================================
12:23:48.0316 0x0990  Scan started
12:23:48.0316 0x0990  Mode: Manual; SigCheck; TDLFS; 
12:23:48.0316 0x0990  ============================================================
12:23:48.0316 0x0990  KSN ping started
12:23:50.0770 0x0990  KSN ping finished: true
12:23:51.0270 0x0990  ================ Scan system memory ========================
12:23:51.0270 0x0990  System memory - ok
12:23:51.0270 0x0990  ================ Scan services =============================
12:23:51.0301 0x0990  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
12:23:51.0317 0x0990  1394ohci - ok
12:23:51.0332 0x0990  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\Windows\system32\drivers\3ware.sys
12:23:51.0332 0x0990  3ware - ok
12:23:51.0348 0x0990  [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:23:51.0363 0x0990  ACPI - ok
12:23:51.0363 0x0990  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
12:23:51.0379 0x0990  acpiex - ok
12:23:51.0379 0x0990  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
12:23:51.0379 0x0990  acpipagr - ok
12:23:51.0395 0x0990  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
12:23:51.0395 0x0990  AcpiPmi - ok
12:23:51.0395 0x0990  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
12:23:51.0410 0x0990  acpitime - ok
12:23:51.0426 0x0990  [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:23:51.0442 0x0990  AdobeFlashPlayerUpdateSvc - ok
12:23:51.0457 0x0990  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
12:23:51.0473 0x0990  ADP80XX - ok
12:23:51.0488 0x0990  [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:23:51.0488 0x0990  AeLookupSvc - ok
12:23:51.0504 0x0990  [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD             C:\Windows\system32\drivers\afd.sys
12:23:51.0520 0x0990  AFD - ok
12:23:51.0520 0x0990  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:23:51.0535 0x0990  agp440 - ok
12:23:51.0535 0x0990  [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
12:23:51.0551 0x0990  ahcache - ok
12:23:51.0551 0x0990  [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG             C:\Windows\System32\alg.exe
12:23:51.0551 0x0990  ALG - ok
12:23:51.0567 0x0990  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
12:23:51.0567 0x0990  AmdK8 - ok
12:23:51.0567 0x0990  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
12:23:51.0582 0x0990  AmdPPM - ok
12:23:51.0582 0x0990  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:23:51.0598 0x0990  amdsata - ok
12:23:51.0598 0x0990  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
12:23:51.0613 0x0990  amdsbs - ok
12:23:51.0613 0x0990  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:23:51.0613 0x0990  amdxata - ok
12:23:51.0629 0x0990  [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID           C:\Windows\system32\drivers\appid.sys
12:23:51.0629 0x0990  AppID - ok
12:23:51.0629 0x0990  [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:23:51.0645 0x0990  AppIDSvc - ok
12:23:51.0645 0x0990  [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo         C:\Windows\System32\appinfo.dll
12:23:51.0645 0x0990  Appinfo - ok
12:23:51.0660 0x0990  [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:23:51.0660 0x0990  Apple Mobile Device Service - ok
12:23:51.0660 0x0990  [ 1A8EA3500576DD4B43E9318F10709E0E, 85F8581C319DE241B223366F08A5F9301858DA9DA1A0CAA10ED387A2B99EC216 ] AppMgmt         C:\Windows\System32\appmgmts.dll
12:23:51.0676 0x0990  AppMgmt - ok
12:23:51.0692 0x0990  [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
12:23:51.0707 0x0990  AppReadiness - ok
12:23:51.0738 0x0990  [ 573542B5E97772021B73E854DA861DAA, C3FD00FA28060F8D7CDFD455BBB5FF8239CB76DDFFF2BDAE6AA944674DD993D3 ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
12:23:51.0770 0x0990  AppXSvc - ok
12:23:51.0770 0x0990  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:23:51.0770 0x0990  arcsas - ok
12:23:51.0785 0x0990  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:23:51.0785 0x0990  aspnet_state - ok
12:23:51.0801 0x0990  [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:23:51.0801 0x0990  AsyncMac - ok
12:23:51.0801 0x0990  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:23:51.0817 0x0990  atapi - ok
12:23:51.0817 0x0990  [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
12:23:51.0832 0x0990  AudioEndpointBuilder - ok
12:23:51.0848 0x0990  [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:23:51.0863 0x0990  Audiosrv - ok
12:23:51.0879 0x0990  [ 8562C35489C8D687E47DB87885E3BEF6, C01700A08ABFCD4FC4ECBCE621DE6C2DB5BF48810A6B5D54A15873CBFD587397 ] AxAutoMntSrv    C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
12:23:51.0879 0x0990  AxAutoMntSrv - ok
12:23:51.0879 0x0990  [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:23:51.0895 0x0990  AxInstSV - ok
12:23:51.0895 0x0990  [ 1CF8237A7EBA04A25785F7DA1BE141DB, 5B136E32E804CEBB5AF31871F9B94D4A70DE2CD1D5AC9BEF62BEFAC80BD75A0D ] axscsidrv       C:\Windows\system32\drivers\axscsidrv.sys
12:23:51.0910 0x0990  axscsidrv - ok
12:23:51.0926 0x0990  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
12:23:51.0942 0x0990  b06bdrv - ok
12:23:51.0942 0x0990  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
12:23:51.0957 0x0990  BasicDisplay - ok
12:23:51.0957 0x0990  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
12:23:51.0957 0x0990  BasicRender - ok
12:23:51.0957 0x0990  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
12:23:51.0973 0x0990  bcmfn2 - ok
12:23:51.0973 0x0990  [ 4B6F61BD394DCEDA9B06D702836531C2, 83C739467BD9A00FE09BCE83BB9409EA2DA62FCDD2384F9EE98626226223E918 ] BDESVC          C:\Windows\System32\bdesvc.dll
12:23:51.0988 0x0990  BDESVC - ok
12:23:51.0988 0x0990  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\Windows\system32\drivers\Beep.sys
12:23:51.0988 0x0990  Beep - ok
12:23:52.0020 0x0990  [ 8F2AD111B47A190F325EE7495D3C1803, C61F1506E74A9EFBB61B8A06B30886B6E891C33211F755F30B924EBA202ECEC5 ] BFE             C:\Windows\System32\bfe.dll
12:23:52.0035 0x0990  BFE - ok
12:23:52.0051 0x0990  [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS            C:\Windows\System32\qmgr.dll
12:23:52.0082 0x0990  BITS - ok
12:23:52.0098 0x0990  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:23:52.0098 0x0990  Bonjour Service - ok
12:23:52.0113 0x0990  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:23:52.0113 0x0990  bowser - ok
12:23:52.0113 0x0990  [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
12:23:52.0129 0x0990  BrokerInfrastructure - ok
12:23:52.0129 0x0990  [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser         C:\Windows\System32\browser.dll
12:23:52.0145 0x0990  Browser - ok
12:23:52.0145 0x0990  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
12:23:52.0160 0x0990  BthAvrcpTg - ok
12:23:52.0160 0x0990  [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
12:23:52.0160 0x0990  BthHFEnum - ok
12:23:52.0160 0x0990  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
12:23:52.0176 0x0990  bthhfhid - ok
12:23:52.0176 0x0990  [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv        C:\Windows\System32\BthHFSrv.dll
12:23:52.0192 0x0990  BthHFSrv - ok
12:23:52.0192 0x0990  [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
12:23:52.0207 0x0990  BTHMODEM - ok
12:23:52.0207 0x0990  [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv         C:\Windows\system32\bthserv.dll
12:23:52.0223 0x0990  bthserv - ok
12:23:52.0223 0x0990  c2wts - ok
12:23:52.0223 0x0990  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:23:52.0223 0x0990  cdfs - ok
12:23:52.0238 0x0990  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\Windows\System32\drivers\cdrom.sys
12:23:52.0254 0x0990  cdrom - ok
12:23:52.0254 0x0990  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:23:52.0270 0x0990  CertPropSvc - ok
12:23:52.0270 0x0990  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\Windows\System32\drivers\circlass.sys
12:23:52.0285 0x0990  circlass - ok
12:23:52.0285 0x0990  [ 8EB7E70C2D348FE2476A2E3F2D585E3D, 2B5D407FACF1D049261026CC552A7C93B028A661B0F4E959815EAE7670054127 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
12:23:52.0301 0x0990  CLFS - ok
12:23:52.0363 0x0990  [ 9A5944952B122BBF68D0032EF440CFB5, D4046BA3F985A7F95F1A4A55B6F2976E292C861771CAC80CEC6DE4C82E8FDBB0 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
12:23:52.0426 0x0990  ClickToRunSvc - ok
12:23:52.0426 0x0990  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
12:23:52.0426 0x0990  CmBatt - ok
12:23:52.0442 0x0990  [ 0DE32A0BB1FE2A773666572F79584520, C417C12476B937265BEDC9A2C3C3F6C50FD19AEC096362337B0921627A2A92EA ] CNG             C:\Windows\system32\Drivers\cng.sys
12:23:52.0457 0x0990  CNG - ok
12:23:52.0473 0x0990  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
12:23:52.0473 0x0990  CompositeBus - ok
12:23:52.0473 0x0990  COMSysApp - ok
12:23:52.0473 0x0990  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\Windows\system32\drivers\condrv.sys
12:23:52.0488 0x0990  condrv - ok
12:23:52.0488 0x0990  [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:23:52.0504 0x0990  CryptSvc - ok
12:23:52.0520 0x0990  [ 9DBC32A45CFA67074432D2AF6C2832B6, B3B26302961A95EDFD4F994D56B1E5A8452266E0C2161D15C1213BBE376227A2 ] CSC             C:\Windows\system32\drivers\csc.sys
12:23:52.0535 0x0990  CSC - ok
12:23:52.0551 0x0990  [ 86079FF8A3B625ABAEB68841D2BF6FE6, 49FF4D458DF8FAB4ECA8CAD9BBF88C929C8B9AB7F063938A6A332B31F2C0F8EB ] CscService      C:\Windows\System32\cscsvc.dll
12:23:52.0567 0x0990  CscService - ok
12:23:52.0567 0x0990  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\Windows\system32\drivers\dam.sys
12:23:52.0582 0x0990  dam - ok
12:23:52.0598 0x0990  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:23:52.0613 0x0990  DcomLaunch - ok
12:23:52.0629 0x0990  [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc       C:\Windows\System32\defragsvc.dll
12:23:52.0645 0x0990  defragsvc - ok
12:23:52.0660 0x0990  [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\Windows\system32\das.dll
12:23:52.0676 0x0990  DeviceAssociationService - ok
12:23:52.0676 0x0990  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
12:23:52.0676 0x0990  DeviceInstall - ok
12:23:52.0692 0x0990  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
12:23:52.0692 0x0990  Dfsc - ok
12:23:52.0707 0x0990  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
12:23:52.0707 0x0990  dg_ssudbus - ok
12:23:52.0723 0x0990  [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:23:52.0723 0x0990  Dhcp - ok
12:23:52.0770 0x0990  [ 21EDAD8188372C912B7BB9B1C6CB0D38, 4A102745DE8A2A82D2C069B30503BF9FF2312A035A82854F84EF9C27E3533CEE ] DiagTrack       C:\Windows\system32\diagtrack.dll
12:23:52.0801 0x0990  DiagTrack - ok
12:23:52.0801 0x0990  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\Windows\system32\drivers\disk.sys
12:23:52.0817 0x0990  disk - ok
12:23:52.0817 0x0990  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
12:23:52.0817 0x0990  dmvsc - ok
12:23:52.0832 0x0990  [ 33ADFB7453BF3271463712C4BCE61AD1, A1DB30F874BA7B2C4C653494D70B46B94BF7D39D0DD8559F6CA7A14B676FD617 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:23:52.0832 0x0990  Dnscache - ok
12:23:52.0848 0x0990  [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:23:52.0848 0x0990  dot3svc - ok
12:23:52.0864 0x0990  [ 27069CFFF29B7F04F4B1BB10154BE52B, 6869626F9A1D3F64224883C5E661638CEE893A3E29651C7B9302A03E52180415 ] dot4            C:\Windows\system32\DRIVERS\Dot4.sys
12:23:52.0864 0x0990  dot4 - ok
12:23:52.0864 0x0990  [ 0BD906A79F9CE3013F7D9D0AC45F9F9D, 2F7D5082E7E226D5EBEA164A8ACEE0A447C96EB1829224A6EFA3E7B4EFEE1D14 ] Dot4Print       C:\Windows\System32\drivers\Dot4Prt.sys
12:23:52.0879 0x0990  Dot4Print - ok
12:23:52.0879 0x0990  [ B7D595F2F464F7B628AD53F06547792C, F5D06A91EF54FBF56305FCC882B854350B266B2A005D80CC77AEBC2929440729 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
12:23:52.0879 0x0990  dot4usb - ok
12:23:52.0879 0x0990  [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS             C:\Windows\system32\dps.dll
12:23:52.0895 0x0990  DPS - ok
12:23:52.0895 0x0990  [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:23:52.0895 0x0990  drmkaud - ok
12:23:52.0910 0x0990  [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
12:23:52.0910 0x0990  DsmSvc - ok
12:23:52.0926 0x0990  [ 96E7FBED116D3C598BF7E67F85ADCB41, 7EE7A501DEBC6ED932E36053D4232A6375BD386BDAFD17FFC4E538F853EFFC76 ] dtultrascsibus  C:\Windows\System32\drivers\dtultrascsibus.sys
12:23:52.0926 0x0990  dtultrascsibus - ok
12:23:52.0957 0x0990  [ E1BB0B6F00F470B451AB45EA13EBA0B3, 3A2FC2175B69A5EB98D6C2D563DBFDCB320647AB87A14E47FAE800423DCACDAB ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:23:52.0989 0x0990  DXGKrnl - ok
12:23:53.0004 0x0990  [ 5BE350584682944AE83E15E0C5E8906E, C9D04378A64AD98ECA2EB8CBA4394FA1C0C7A7B17ACB4AD6F25E8417DA41D73B ] e1cexpress      C:\Windows\system32\DRIVERS\e1c63x64.sys
12:23:53.0020 0x0990  e1cexpress - ok
12:23:53.0035 0x0990  [ FA988D76745C917CDFE20031C06DE860, B01AA3611869854D3BCA8B6CD7A6F48CC3537145DD3EBE50F5BEF72239924BF7 ] e1iexpress      C:\Windows\system32\DRIVERS\e1i63x64.sys
12:23:53.0051 0x0990  e1iexpress - ok
12:23:53.0051 0x0990  EagleX64 - ok
12:23:53.0051 0x0990  [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost         C:\Windows\System32\eapsvc.dll
12:23:53.0067 0x0990  Eaphost - ok
12:23:53.0129 0x0990  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
12:23:53.0207 0x0990  ebdrv - ok
12:23:53.0207 0x0990  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS             C:\Windows\System32\lsass.exe
12:23:53.0207 0x0990  EFS - ok
12:23:53.0223 0x0990  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
12:23:53.0223 0x0990  EhStorClass - ok
12:23:53.0223 0x0990  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
12:23:53.0239 0x0990  EhStorTcgDrv - ok
12:23:53.0239 0x0990  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\Windows\System32\drivers\errdev.sys
12:23:53.0239 0x0990  ErrDev - ok
12:23:53.0254 0x0990  [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem     C:\Windows\system32\es.dll
12:23:53.0270 0x0990  EventSystem - ok
12:23:53.0285 0x0990  [ A0539478593A00AA64E600CF7E19F195, BD835D70F3EE9BFEFFABE747AD65BC97C73AD8042F653BF93535277FB0CBD4CE ] EvolveVirtualAdapter C:\Windows\system32\DRIVERS\evolve.sys
12:23:53.0285 0x0990  EvolveVirtualAdapter - ok
12:23:53.0348 0x0990  [ B3A8E89AC60CC09ABD48B58DBFFF1F98, B407C249EB4E48B66024E26C72FAA4D9C26A155B568C3E96849718F7CEB6E1E0 ] EvoSvc          E:\Evolve\EvoSvc.exe
12:23:53.0379 0x0990  EvoSvc - ok
12:23:53.0379 0x0990  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:23:53.0395 0x0990  exfat - ok
12:23:53.0395 0x0990  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:23:53.0410 0x0990  fastfat - ok
12:23:53.0426 0x0990  [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax             C:\Windows\system32\fxssvc.exe
12:23:53.0442 0x0990  Fax - ok
12:23:53.0442 0x0990  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\Windows\System32\drivers\fdc.sys
12:23:53.0457 0x0990  fdc - ok
12:23:53.0457 0x0990  [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost         C:\Windows\system32\fdPHost.dll
12:23:53.0457 0x0990  fdPHost - ok
12:23:53.0457 0x0990  [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:23:53.0473 0x0990  FDResPub - ok
12:23:53.0473 0x0990  [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc           C:\Windows\system32\fhsvc.dll
12:23:53.0489 0x0990  fhsvc - ok
12:23:53.0489 0x0990  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:23:53.0489 0x0990  FileInfo - ok
12:23:53.0504 0x0990  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:23:53.0504 0x0990  Filetrace - ok
12:23:53.0504 0x0990  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
12:23:53.0520 0x0990  flpydisk - ok
12:23:53.0520 0x0990  [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:23:53.0535 0x0990  FltMgr - ok
12:23:53.0567 0x0990  [ 1E93CBB75D167CDF85501A8C790097A8, C9E5DD090C94E7855939CE1F416460DB408EFF897C2CD52E0D52A734D8ED18B7 ] FontCache       C:\Windows\system32\FntCache.dll
12:23:53.0598 0x0990  FontCache - ok
12:23:53.0598 0x0990  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:23:53.0614 0x0990  FontCache3.0.0.0 - ok
12:23:53.0614 0x0990  [ 22603DE86CEEE8A67B3789D2CE8E42A7, C472E4A8419555226E527CAA699EDB53659605270FD6F420E7BEACE9652EA443 ] FoxitCloudUpdateService C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
12:23:53.0629 0x0990  FoxitCloudUpdateService - ok
12:23:53.0629 0x0990  [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:23:53.0629 0x0990  FsDepends - ok
12:23:53.0629 0x0990  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:23:53.0645 0x0990  Fs_Rec - ok
12:23:53.0660 0x0990  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:23:53.0676 0x0990  fvevol - ok
12:23:53.0676 0x0990  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
12:23:53.0676 0x0990  FxPPM - ok
12:23:53.0692 0x0990  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:23:53.0692 0x0990  gagp30kx - ok
12:23:53.0692 0x0990  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:23:53.0692 0x0990  GEARAspiWDM - ok
12:23:53.0707 0x0990  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
12:23:53.0707 0x0990  gencounter - ok
12:23:53.0739 0x0990  [ 5031F3E650D242EEECEB92EB9900FB93, FB51ADB81AC3E0097362BAECEC4F0C83C46E5505277B7F35FDCE9BF88B72C963 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
12:23:53.0754 0x0990  GfExperienceService - ok
12:23:53.0754 0x0990  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
12:23:53.0770 0x0990  GPIOClx0101 - ok
12:23:53.0801 0x0990  [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:23:53.0832 0x0990  gpsvc - ok
12:23:53.0832 0x0990  [ 7F79205B4EFA98F0767309479C8C01C6, 4B576903A83F33A8CF31D3887144A3D51C56D1187115C83AC99C0E9F6B4BF128 ] Hamachi         C:\Windows\system32\DRIVERS\Hamdrv.sys
12:23:53.0832 0x0990  Hamachi - ok
12:23:53.0895 0x0990  [ C0EF69A59C13D9204D1D70434AA3D00C, 56BD4F7C74B2A36665677C32F30C4E1839DB9AAAC82FFA4A2622B4D261D865F2 ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
12:23:53.0942 0x0990  Hamachi2Svc - ok
12:23:53.0942 0x0990  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:23:53.0957 0x0990  HdAudAddService - ok
12:23:53.0973 0x0990  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
12:23:53.0973 0x0990  HDAudBus - ok
12:23:53.0973 0x0990  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
12:23:53.0989 0x0990  HidBatt - ok
12:23:53.0989 0x0990  [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
12:23:53.0989 0x0990  HidBth - ok
12:23:54.0004 0x0990  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
12:23:54.0004 0x0990  hidi2c - ok
12:23:54.0004 0x0990  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\Windows\System32\drivers\hidir.sys
12:23:54.0020 0x0990  HidIr - ok
12:23:54.0020 0x0990  [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv         C:\Windows\system32\hidserv.dll
12:23:54.0020 0x0990  hidserv - ok
12:23:54.0020 0x0990  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
12:23:54.0035 0x0990  HidUsb - ok
12:23:54.0114 0x0990  [ 7D8A3C3D22CE3826693DC7E600EFC1D7, C7B4585BEBB9E0E3628D922859DA3BFE6CCC2612ED31C7FDCB541116483F3046 ] HiPatchService  E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
12:23:54.0114 0x0990  HiPatchService - detected UnsignedFile.Multi.Generic ( 1 )
12:23:56.0629 0x0990  Detect skipped due to KSN trusted
12:23:56.0629 0x0990  HiPatchService - ok
12:23:56.0629 0x0990  [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:23:56.0645 0x0990  hkmsvc - ok
12:23:56.0645 0x0990  [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:23:56.0661 0x0990  HomeGroupListener - ok
12:23:56.0676 0x0990  [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:23:56.0676 0x0990  HomeGroupProvider - ok
12:23:56.0692 0x0990  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:23:56.0692 0x0990  HpSAMD - ok
12:23:56.0692 0x0990  [ A0FFCF6391B5270B2A34E379DE446878, 8AFD522ED2488723D2B72B7BA214272E6ABFAC4F3AA589888FFB35A0A44660CE ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
12:23:56.0707 0x0990  HPSupportSolutionsFrameworkService - ok
12:23:56.0723 0x0990  [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:23:56.0754 0x0990  HTTP - ok
12:23:56.0754 0x0990  [ 37BE5E1426C190BC35C0D5FE5786CB9A, 393A33B044B6ABCC5FB120B1DE9E265C08C492C2654EB1B0459B2A35C3ACE1A0 ] hvservice       C:\Windows\system32\drivers\hvservice.sys
12:23:56.0754 0x0990  hvservice - ok
12:23:56.0754 0x0990  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:23:56.0770 0x0990  hwpolicy - ok
12:23:56.0770 0x0990  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
12:23:56.0770 0x0990  hyperkbd - ok
12:23:56.0770 0x0990  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
12:23:56.0801 0x0990  HyperVideo - ok
12:23:56.0801 0x0990  [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
12:23:56.0801 0x0990  i8042prt - ok
12:23:56.0801 0x0990  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
12:23:56.0817 0x0990  iaLPSSi_GPIO - ok
12:23:56.0817 0x0990  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys
12:23:56.0832 0x0990  iaLPSSi_I2C - ok
12:23:56.0848 0x0990  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
12:23:56.0864 0x0990  iaStorAV - ok
12:23:56.0864 0x0990  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:23:56.0879 0x0990  iaStorV - ok
12:23:56.0879 0x0990  IEEtwCollectorService - ok
12:23:56.0911 0x0990  [ AF8A43C376F83A4A1E7DA16461EDE114, EBA10519B074888355A4FC11D52FF1E6A52F88F754B7F1F9863A8313638645CB ] IKEEXT          C:\Windows\System32\ikeext.dll
12:23:56.0926 0x0990  IKEEXT - ok
12:23:56.0942 0x0990  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:23:56.0942 0x0990  intelide - ok
12:23:56.0942 0x0990  [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep        C:\Windows\system32\drivers\intelpep.sys
12:23:56.0957 0x0990  intelpep - ok
12:23:56.0957 0x0990  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
12:23:56.0957 0x0990  intelppm - ok
12:23:56.0973 0x0990  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:23:56.0973 0x0990  IpFilterDriver - ok
12:23:56.0989 0x0990  [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:23:57.0020 0x0990  iphlpsvc - ok
12:23:57.0020 0x0990  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
12:23:57.0036 0x0990  IPMIDRV - ok
12:23:57.0036 0x0990  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:23:57.0036 0x0990  IPNAT - ok
12:23:57.0051 0x0990  [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
12:23:57.0067 0x0990  iPod Service - ok
12:23:57.0067 0x0990  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:23:57.0082 0x0990  IRENUM - ok
12:23:57.0082 0x0990  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:23:57.0082 0x0990  isapnp - ok
12:23:57.0098 0x0990  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
12:23:57.0114 0x0990  iScsiPrt - ok
12:23:57.0114 0x0990  [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
12:23:57.0114 0x0990  kbdclass - ok
12:23:57.0129 0x0990  [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
12:23:57.0129 0x0990  kbdhid - ok
12:23:57.0129 0x0990  [ DB7A09BC90DF20F44F16F8B0F9ED3491, 2DF5E042284D61368A5801B2557351B2C4B1044AA6F966DF4DDCE7B453D1B9AE ] kbldfltr        C:\Windows\system32\drivers\kbldfltr.sys
12:23:57.0129 0x0990  kbldfltr - ok
12:23:57.0145 0x0990  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
12:23:57.0145 0x0990  kdnic - ok
12:23:57.0145 0x0990  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso          C:\Windows\system32\lsass.exe
12:23:57.0161 0x0990  KeyIso - ok
12:23:57.0161 0x0990  [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:23:57.0161 0x0990  KSecDD - ok
12:23:57.0176 0x0990  [ 35C19AF2116F67914712D7C4CBE47B8C, 5F976726880A6E51D7ABFA7E3EF7294C6FB7F383DC5710A2C2EC8DD26DAEC204 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:23:57.0176 0x0990  KSecPkg - ok
12:23:57.0176 0x0990  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:23:57.0192 0x0990  ksthunk - ok
12:23:57.0192 0x0990  [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:23:57.0207 0x0990  KtmRm - ok
12:23:57.0223 0x0990  [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:23:57.0239 0x0990  LanmanServer - ok
12:23:57.0239 0x0990  [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:23:57.0254 0x0990  LanmanWorkstation - ok
12:23:57.0270 0x0990  [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc           C:\Windows\System32\GeofenceMonitorService.dll
12:23:57.0286 0x0990  lfsvc - ok
12:23:57.0286 0x0990  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:23:57.0286 0x0990  lltdio - ok
12:23:57.0301 0x0990  [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:23:57.0317 0x0990  lltdsvc - ok
12:23:57.0317 0x0990  [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:23:57.0317 0x0990  lmhosts - ok
12:23:57.0332 0x0990  [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc  C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
12:23:57.0348 0x0990  LMIGuardianSvc - ok
12:23:57.0348 0x0990  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:23:57.0348 0x0990  LSI_SAS - ok
12:23:57.0364 0x0990  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
12:23:57.0364 0x0990  LSI_SAS2 - ok
12:23:57.0364 0x0990  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\Windows\system32\drivers\lsi_sas3.sys
12:23:57.0379 0x0990  LSI_SAS3 - ok
12:23:57.0379 0x0990  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
12:23:57.0379 0x0990  LSI_SSS - ok
12:23:57.0411 0x0990  [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM             C:\Windows\System32\lsm.dll
12:23:57.0426 0x0990  LSM - ok
12:23:57.0426 0x0990  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:23:57.0442 0x0990  luafv - ok
12:23:57.0442 0x0990  [ 11B7E5BD6EFBB7DB35F7933C3795F050, 28C62C8CE9B13119EDE031E881A4218F89DBFEF9B59975BE6108FBEF7A21E79F ] lunparser       C:\Windows\system32\drivers\lunparser.sys
12:23:57.0442 0x0990  lunparser - ok
12:23:57.0442 0x0990  [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
12:23:57.0457 0x0990  MBAMProtector - ok
12:23:57.0489 0x0990  [ AB176B9E59C0435499D83047D84EDD59, 85B826A3972CE9AD885313B69B9C60328B850257667D0EB65DDE890D0BB06361 ] MBAMScheduler   C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
12:23:57.0504 0x0990  MBAMScheduler - ok
12:23:57.0536 0x0990  [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService     C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
12:23:57.0551 0x0990  MBAMService - ok
12:23:57.0567 0x0990  [ 08DECFCB9BA97786165A69AB1015BC30, EDC8C8447B57BD412E2DEBCA9B5B1B58C19D40105DC7CE9520DE214081696B05 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
12:23:57.0567 0x0990  MBAMWebAccessControl - ok
12:23:57.0567 0x0990  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\Windows\system32\drivers\megasas.sys
12:23:57.0582 0x0990  megasas - ok
12:23:57.0598 0x0990  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\Windows\system32\drivers\megasr.sys
12:23:57.0614 0x0990  megasr - ok
12:23:57.0614 0x0990  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\System32\drivers\HECIx64.sys
12:23:57.0614 0x0990  MEIx64 - ok
12:23:57.0614 0x0990  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS           C:\Windows\system32\mmcss.dll
12:23:57.0629 0x0990  MMCSS - ok
12:23:57.0629 0x0990  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\Windows\system32\drivers\modem.sys
12:23:57.0645 0x0990  Modem - ok
12:23:57.0645 0x0990  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\Windows\System32\drivers\monitor.sys
12:23:57.0645 0x0990  monitor - ok
12:23:57.0645 0x0990  [ C030F9E822A057C1A7A9BB4EA3E8877E, 2CCEC87DEB972B6B0196A08D3781002929E9107137FE3A61F1626D3BEE26630A ] MotioninJoyXFilter C:\Windows\System32\drivers\MijXfilt.sys
12:23:57.0661 0x0990  MotioninJoyXFilter - detected UnsignedFile.Multi.Generic ( 1 )
12:24:00.0192 0x0990  Detect skipped due to KSN trusted
12:24:00.0192 0x0990  MotioninJoyXFilter - ok
12:24:00.0192 0x0990  [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
12:24:00.0192 0x0990  mouclass - ok
12:24:00.0192 0x0990  [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid          C:\Windows\System32\drivers\mouhid.sys
12:24:00.0208 0x0990  mouhid - ok
12:24:00.0208 0x0990  [ 9A788037D768809DFD677F4BA08A224A, E0686B3318F924E440ADA439D6671D44D3FF97C13D45C2E0A3A7B9E23DA38350 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:24:00.0208 0x0990  mountmgr - ok
12:24:00.0223 0x0990  [ 0DE2474F316C515482ABAD3B697F8714, 62862AE7432F5350068E96AD466093359C6CF444EB517AE6D09134FAF78C49F5 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:24:00.0223 0x0990  MozillaMaintenance - ok
12:24:00.0223 0x0990  [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:24:00.0239 0x0990  mpsdrv - ok
12:24:00.0254 0x0990  [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:24:00.0270 0x0990  MpsSvc - ok
12:24:00.0286 0x0990  [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:24:00.0286 0x0990  MRxDAV - ok
12:24:00.0301 0x0990  [ 89DE71940A0E7F5BA617AE08321EF5C3, BD056C9E18E902D6F118E59A6AC68415BFA0690A02D2B360F6C111CE3B5EAC67 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:24:00.0317 0x0990  mrxsmb - ok
12:24:00.0317 0x0990  [ BCBD64220AD85C26823453FF1DC3EFBD, 0245E3659E9135B9276F3CCFBEA0CEFFC4F4C0826F6D19B6329057620235F087 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:24:00.0333 0x0990  mrxsmb10 - ok
12:24:00.0333 0x0990  [ EE16457030175F449BAB0ABD279F4B6A, DF627054136079553A24AD12DC7374F1ACEEAD782EFFDC278996AD7BCCE98877 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:24:00.0348 0x0990  mrxsmb20 - ok
12:24:00.0348 0x0990  [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
12:24:00.0364 0x0990  MsBridge - ok
12:24:00.0364 0x0990  [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC           C:\Windows\System32\msdtc.exe
12:24:00.0379 0x0990  MSDTC - ok
12:24:00.0379 0x0990  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:24:00.0379 0x0990  Msfs - ok
12:24:00.0395 0x0990  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
12:24:00.0395 0x0990  msgpiowin32 - ok
12:24:00.0395 0x0990  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:24:00.0395 0x0990  mshidkmdf - ok
12:24:00.0411 0x0990  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
12:24:00.0411 0x0990  mshidumdf - ok
12:24:00.0411 0x0990  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:24:00.0411 0x0990  msisadrv - ok
12:24:00.0426 0x0990  [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:24:00.0426 0x0990  MSiSCSI - ok
12:24:00.0426 0x0990  msiserver - ok
12:24:00.0442 0x0990  [ 4C1A0E9B4C6CC09E8C68FD33998013AA, 190ADFCCAE844DB9F807BD9668EB90BE0C9887719DF2820E66D121655AF27614 ] MsKeyboardFilter C:\Windows\System32\KeyboardFilterSvc.dll
12:24:00.0442 0x0990  MsKeyboardFilter - ok
12:24:00.0442 0x0990  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:24:00.0458 0x0990  MSKSSRV - ok
12:24:00.0458 0x0990  [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
12:24:00.0458 0x0990  MsLldp - ok
12:24:00.0473 0x0990  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:24:00.0473 0x0990  MSPCLOCK - ok
12:24:00.0473 0x0990  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:24:00.0473 0x0990  MSPQM - ok
12:24:00.0489 0x0990  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:24:00.0505 0x0990  MsRPC - ok
12:24:00.0505 0x0990  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
12:24:00.0520 0x0990  mssmbios - ok
12:24:00.0520 0x0990  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:24:00.0520 0x0990  MSTEE - ok
12:24:00.0520 0x0990  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
12:24:00.0536 0x0990  MTConfig - ok
12:24:00.0536 0x0990  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\Windows\system32\Drivers\mup.sys
12:24:00.0536 0x0990  Mup - ok
12:24:00.0551 0x0990  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
12:24:00.0551 0x0990  mvumis - ok
12:24:00.0567 0x0990  [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent        C:\Windows\system32\qagentRT.dll
12:24:00.0583 0x0990  napagent - ok
12:24:00.0583 0x0990  [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:24:00.0598 0x0990  NativeWifiP - ok
12:24:00.0614 0x0990  [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc          C:\Windows\System32\ncasvc.dll
12:24:00.0614 0x0990  NcaSvc - ok
12:24:00.0614 0x0990  [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService      C:\Windows\System32\ncbservice.dll
12:24:00.0630 0x0990  NcbService - ok
12:24:00.0630 0x0990  [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
12:24:00.0645 0x0990  NcdAutoSetup - ok
12:24:00.0661 0x0990  [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:24:00.0692 0x0990  NDIS - ok
12:24:00.0692 0x0990  [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:24:00.0708 0x0990  NdisCap - ok
12:24:00.0708 0x0990  [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
12:24:00.0723 0x0990  NdisImPlatform - ok
12:24:00.0723 0x0990  [ 82821F4EEC776B4CF11695A38F3ABA46, 23184F9D31E662855DC4D23EFE7C2FE00E5487D3762B6024704A5D8C87762E1C ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:24:00.0723 0x0990  NdisTapi - ok
12:24:00.0723 0x0990  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:24:00.0739 0x0990  Ndisuio - ok
12:24:00.0739 0x0990  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
12:24:00.0739 0x0990  NdisVirtualBus - ok
12:24:00.0755 0x0990  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:24:00.0770 0x0990  NdisWan - ok
12:24:00.0770 0x0990  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
12:24:00.0786 0x0990  NdisWanLegacy - ok
12:24:00.0786 0x0990  [ DDD7F92A83F74D1476B71FBA9530A8DC, D3F94FC9F48854E09B0B77CE5E1C1DB948D54EAC63C5583437051BB893B5A386 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:24:00.0786 0x0990  NDProxy - ok
12:24:00.0801 0x0990  [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
12:24:00.0801 0x0990  Ndu - ok
12:24:00.0801 0x0990  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\System32\HPZinw12.dll
12:24:00.0801 0x0990  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
12:24:03.0677 0x0990  Detect skipped due to KSN trusted
12:24:03.0677 0x0990  Net Driver HPZ12 - ok
12:24:03.0677 0x0990  [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:24:03.0692 0x0990  NetBIOS - ok
12:24:03.0692 0x0990  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:24:03.0708 0x0990  NetBT - ok
12:24:03.0708 0x0990  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon        C:\Windows\system32\lsass.exe
12:24:03.0708 0x0990  Netlogon - ok
12:24:03.0723 0x0990  [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman          C:\Windows\System32\netman.dll
12:24:03.0723 0x0990  Netman - ok
12:24:03.0739 0x0990  [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm        C:\Windows\System32\netprofmsvc.dll
12:24:03.0755 0x0990  netprofm - ok
12:24:03.0770 0x0990  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:24:03.0770 0x0990  NetTcpPortSharing - ok
12:24:03.0786 0x0990  [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc          C:\Windows\System32\drivers\netvsc63.sys
12:24:03.0786 0x0990  netvsc - ok
12:24:03.0802 0x0990  [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:24:03.0802 0x0990  NlaSvc - ok
12:24:03.0817 0x0990  [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] npf             C:\Windows\system32\drivers\npf.sys
12:24:03.0817 0x0990  npf - ok
12:24:03.0817 0x0990  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:24:03.0833 0x0990  Npfs - ok
12:24:03.0833 0x0990  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
12:24:03.0833 0x0990  npsvctrig - ok
12:24:03.0833 0x0990  [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi             C:\Windows\system32\nsisvc.dll
12:24:03.0848 0x0990  nsi - ok
12:24:03.0848 0x0990  [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:24:03.0848 0x0990  nsiproxy - ok
12:24:03.0895 0x0990  [ 7F68063A5A0461E02BC860CE0E6BFDDC, 47E9F75D27B97278B74034B7D3951A26B1644911ED321455E08D935731C858DE ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:24:03.0942 0x0990  Ntfs - ok
12:24:03.0942 0x0990  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\Windows\system32\drivers\Null.sys
12:24:03.0958 0x0990  Null - ok
12:24:03.0958 0x0990  [ B9E5A80F646DDFEF158773722A466EA3, 028979FE600D17DA70445F44D81FAE4EDA3478FCC81FA5506133CCAC37C4E2BF ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
12:24:03.0973 0x0990  NVHDA - ok
12:24:04.0177 0x0990  [ BF769EC1CC472FAD4C6EAEEB96ED857E, BBF8BA2B703BF4C36DFC7F69B4D8E477C8162BEC492C6C5D1A7751C19305ABE8 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:24:04.0380 0x0990  nvlddmkm - ok
12:24:04.0427 0x0990  [ 4EBEE69A8FE7DC85FD3C122821C617A0, 7193C14DEB4C5B0D86C5C6841C80879C28E1FDA8F77879EB18A3D2685C67B986 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
12:24:04.0458 0x0990  NvNetworkService - ok
12:24:04.0458 0x0990  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:24:04.0473 0x0990  nvraid - ok
12:24:04.0473 0x0990  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:24:04.0489 0x0990  nvstor - ok
12:24:04.0489 0x0990  [ 0EF30778078D7B5877F8F57151699798, B0409C79143BDBB774C3C740CCA8EB77CF67915E59EC6050DB993ED0575EC077 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
12:24:04.0489 0x0990  NvStreamKms - ok
12:24:04.0598 0x0990  [ D23A07D549243F5B77780BAA4FBF5BC3, 5BC5161CAE6BE6382BDCDE9B1CDD5F4DEBC3EA18D01B0E261AF716FDB04154BC ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
12:24:04.0708 0x0990  NvStreamSvc - ok
12:24:04.0723 0x0990  [ 039ACFA07F59DB2109BB6A2C0FA2C0D9, E641179FCDB83BBFFADDDECD646F69D667F494BFC41FCE1F035EE78A944C6D5B ] nvsvc           C:\Windows\system32\nvvsvc.exe
12:24:04.0739 0x0990  nvsvc - ok
12:24:04.0755 0x0990  [ 4F00008B513F4019623ED61159363888, A1047FF1FCF3ED405C3426C8959AD10426F30E3F58E95BFD6ADF1DBC947AB379 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
12:24:04.0755 0x0990  nvvad_WaveExtensible - ok
12:24:04.0755 0x0990  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:24:04.0770 0x0990  nv_agp - ok
12:24:04.0770 0x0990  [ 83A48C958A6C828EDAB25E1AA352D806, C5B5A671115CCF321BE88A69806AB9AB25D639B2FB02240AF6DC18D1A5DB9BBD ] OpenVPNService  C:\Program Files\OpenVPN\bin\openvpnserv.exe
12:24:04.0770 0x0990  OpenVPNService - ok
12:24:04.0786 0x0990  [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:24:04.0786 0x0990  ose64 - ok
12:24:04.0848 0x0990  [ 255DED61EBF1A5BD2A7F46788EFC9125, 45A3C2373ADDC6FD2F47DCB8CB5B1CB1E550F3A5306317018EF700446D48DD4D ] OverwolfUpdater E:\Overwolf\OverwolfUpdater.exe
12:24:04.0880 0x0990  OverwolfUpdater - ok
12:24:04.0880 0x0990  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:24:04.0895 0x0990  p2pimsvc - ok
12:24:04.0911 0x0990  [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc          C:\Windows\system32\p2psvc.dll
12:24:04.0927 0x0990  p2psvc - ok
12:24:04.0927 0x0990  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\Windows\System32\drivers\parport.sys
12:24:04.0927 0x0990  Parport - ok
12:24:04.0942 0x0990  [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:24:04.0942 0x0990  partmgr - ok
12:24:04.0942 0x0990  [ 0D7DA812D815F395BAA113817EC9C094, 5C342BC15B4811B304FC9003553FE52CEA24C31C735B04FD6231AD0950C1DFAC ] passthruparser  C:\Windows\system32\drivers\passthruparser.sys
12:24:04.0958 0x0990  passthruparser - ok
12:24:04.0958 0x0990  [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:24:04.0973 0x0990  PcaSvc - ok
12:24:04.0989 0x0990  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\Windows\system32\drivers\pci.sys
12:24:05.0005 0x0990  pci - ok
12:24:05.0005 0x0990  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:24:05.0005 0x0990  pciide - ok
12:24:05.0005 0x0990  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:24:05.0020 0x0990  pcmcia - ok
12:24:05.0020 0x0990  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:24:05.0020 0x0990  pcw - ok
12:24:05.0036 0x0990  [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc             C:\Windows\system32\drivers\pdc.sys
12:24:05.0036 0x0990  pdc - ok
12:24:05.0052 0x0990  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:24:05.0067 0x0990  PEAUTH - ok
12:24:05.0114 0x0990  [ A35EC8F902475350DA31BDF0E1402A91, 5AB43B4BD70B44A62FFD21A9D3CB8D1BC035B6E001DBB1BAC30D6D7A07475D83 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
12:24:05.0161 0x0990  PeerDistSvc - ok
12:24:05.0177 0x0990  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:24:05.0192 0x0990  PerfHost - ok
12:24:05.0223 0x0990  [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla             C:\Windows\system32\pla.dll
12:24:05.0255 0x0990  pla - ok
12:24:05.0255 0x0990  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:24:05.0270 0x0990  PlugPlay - ok
12:24:05.0270 0x0990  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\System32\HPZipm12.dll
12:24:05.0270 0x0990  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
12:24:08.0083 0x0990  Detect skipped due to KSN trusted
12:24:08.0083 0x0990  Pml Driver HPZ12 - ok
12:24:08.0083 0x0990  PnkBstrA - ok
12:24:08.0083 0x0990  [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:24:08.0099 0x0990  PNRPAutoReg - ok
12:24:08.0099 0x0990  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:24:08.0114 0x0990  PNRPsvc - ok
12:24:08.0130 0x0990  [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:24:08.0145 0x0990  PolicyAgent - ok
12:24:08.0145 0x0990  [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power           C:\Windows\system32\umpo.dll
12:24:08.0161 0x0990  Power - ok
12:24:08.0161 0x0990  [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:24:08.0161 0x0990  PptpMiniport - ok
12:24:08.0224 0x0990  [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
12:24:08.0286 0x0990  PrintNotify - ok
12:24:08.0286 0x0990  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\Windows\System32\drivers\processr.sys
12:24:08.0302 0x0990  Processor - ok
12:24:08.0302 0x0990  [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc         C:\Windows\system32\profsvc.dll
12:24:08.0317 0x0990  ProfSvc - ok
12:24:08.0317 0x0990  [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:24:08.0333 0x0990  Psched - ok
12:24:08.0333 0x0990  [ 523915C4E06522B7AF8B8B3FE3C3F6D0, F68BBD1542D5DE84AE5DED9296258248BDBBA6B97F61716D10B637D3A736A322 ] pvhdparser      C:\Windows\system32\drivers\pvhdparser.sys
12:24:08.0333 0x0990  pvhdparser - ok
12:24:08.0349 0x0990  [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE           C:\Windows\system32\qwave.dll
12:24:08.0364 0x0990  QWAVE - ok
12:24:08.0364 0x0990  [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:24:08.0364 0x0990  QWAVEdrv - ok
12:24:08.0364 0x0990  [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:24:08.0380 0x0990  RasAcd - ok
12:24:08.0380 0x0990  [ E8FFD8BE3C50E7A71C5FBB87BDD1128E, 3E3EB906CC9A1CCA09580DA9F94DD0E1162CABD343874B76718DC4F2E9069C4E ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:24:08.0380 0x0990  RasAgileVpn - ok
12:24:08.0396 0x0990  [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto         C:\Windows\System32\rasauto.dll
12:24:08.0396 0x0990  RasAuto - ok
12:24:08.0411 0x0990  [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:24:08.0411 0x0990  Rasl2tp - ok
12:24:08.0427 0x0990  [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan          C:\Windows\System32\rasmans.dll
12:24:08.0442 0x0990  RasMan - ok
12:24:08.0442 0x0990  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:24:08.0458 0x0990  RasPppoe - ok
12:24:08.0458 0x0990  [ 41F631007A158FEBB67F0E2AD1601BBA, EB5EA7277F4178BC27E55BF850AEBCD84B6BED80B2383CFB29548824AAFED135 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:24:08.0474 0x0990  RasSstp - ok
12:24:08.0474 0x0990  [ 170C5DE900F60768C380ECD8A812512F, BFD085C32CF25E8261EF4BCFA5903A496785BCDA08037F4EB580BBDEDF42B656 ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
12:24:08.0474 0x0990  Razer Game Scanner Service - ok
12:24:08.0489 0x0990  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:24:08.0505 0x0990  rdbss - ok
12:24:08.0505 0x0990  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
12:24:08.0521 0x0990  rdpbus - ok
12:24:08.0521 0x0990  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
12:24:08.0536 0x0990  RDPDR - ok
12:24:08.0536 0x0990  [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:24:08.0536 0x0990  RdpVideoMiniport - ok
12:24:08.0552 0x0990  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:24:08.0552 0x0990  rdyboost - ok
12:24:08.0583 0x0990  [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS            C:\Windows\system32\drivers\ReFS.sys
12:24:08.0599 0x0990  ReFS - ok
12:24:08.0614 0x0990  [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:24:08.0614 0x0990  RemoteAccess - ok
12:24:08.0630 0x0990  [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:24:08.0630 0x0990  RemoteRegistry - ok
12:24:08.0646 0x0990  [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:24:08.0646 0x0990  RpcEptMapper - ok
12:24:08.0646 0x0990  [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator      C:\Windows\system32\locator.exe
12:24:08.0661 0x0990  RpcLocator - ok
12:24:08.0677 0x0990  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] RpcSs           C:\Windows\system32\rpcss.dll
12:24:08.0692 0x0990  RpcSs - ok
12:24:08.0692 0x0990  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:24:08.0708 0x0990  rspndr - ok
12:24:08.0708 0x0990  [ 8295DB01432C1D1F3D0F4A27AB349730, 7FE8CC442829B8136A96E19F17070C29DA2C5F1B9EA2B5EBACCB965783F96356 ] rzendpt         C:\Windows\System32\drivers\rzendpt.sys
12:24:08.0708 0x0990  rzendpt - ok
12:24:08.0724 0x0990  [ 0C90E6CEA576095888E779E5BD9DD060, 8A13A92D5A8E577E2B919CC879FA8CFA1FAD0A6BFF0CF4FCC59B8E74AB22A673 ] rzpmgrk         C:\Windows\system32\drivers\rzpmgrk.sys
12:24:08.0724 0x0990  rzpmgrk - ok
12:24:08.0724 0x0990  [ 288471F132C7249F598032D03575F083, 9E3430D5E0E93BC4A5DCCC985053912065E65722BFC2EAF431BC1DA91410434C ] rzpnk           C:\Windows\system32\drivers\rzpnk.sys
12:24:08.0724 0x0990  rzpnk - ok
12:24:08.0739 0x0990  [ 02B05959794D013B4B004DBDB69F0708, 0CCBF44B6F2430F1B890AFB43D2534ECAAD5766FCBE89FA39C05264B67E5400A ] rzudd           C:\Windows\System32\drivers\rzudd.sys
12:24:08.0739 0x0990  rzudd - ok
12:24:08.0739 0x0990  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
12:24:08.0755 0x0990  s3cap - ok
12:24:08.0755 0x0990  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs           C:\Windows\system32\lsass.exe
12:24:08.0755 0x0990  SamSs - ok
12:24:08.0771 0x0990  [ 791EE9F4A82FC4E13133F107C1C4C286, F7B9E57D08EF68B17ADF70C2D1F7623EAE13CAADE5ACFF4CD54FB89DFDEAD9C6 ] SAVAdminService C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
12:24:08.0786 0x0990  SAVAdminService - ok
12:24:08.0786 0x0990  [ 389609560D81988DA2B78F7AFE1384F0, 3AE26F2E4018D45027AA0DE09A0E58BF5F93A7E036AB73188B57C530869B0189 ] SAVOnAccess     C:\Windows\system32\DRIVERS\savonaccess.sys
12:24:08.0786 0x0990  SAVOnAccess - ok
12:24:08.0802 0x0990  [ D99F39D77432D1E979C1D918597C8A3E, 738740DB028B9A9838466714914A844AF72A669BAE1243123780F2C2FCD132CC ] SAVService      C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
12:24:08.0802 0x0990  SAVService - ok
12:24:08.0849 0x0990  [ E941B5387C3D79FB39A9840F758BAB91, 891C5BD455481AA2AA982129721BC040EDAAED39C6E252C72484F74235997B77 ] SbieDrv         E:\Sandboxie\SbieDrv.sys
12:24:08.0864 0x0990  SbieDrv - ok
12:24:08.0880 0x0990  [ F2C589CB0C0F150683F4D9BEAA387E48, 14E6EF1E71DB4BE1A0348BC917F181C0D5792E6AC767C9235E11285AED25DC85 ] SbieSvc         E:\Sandboxie\SbieSvc.exe
12:24:08.0880 0x0990  SbieSvc - ok
12:24:08.0896 0x0990  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:24:08.0896 0x0990  sbp2port - ok
12:24:08.0911 0x0990  [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:24:08.0911 0x0990  SCardSvr - ok
12:24:08.0927 0x0990  [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
12:24:08.0927 0x0990  ScDeviceEnum - ok
12:24:08.0927 0x0990  [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:24:08.0942 0x0990  scfilter - ok
12:24:08.0974 0x0990  [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule        C:\Windows\system32\schedsvc.dll
12:24:08.0989 0x0990  Schedule - ok
12:24:09.0005 0x0990  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:24:09.0005 0x0990  SCPolicySvc - ok
12:24:09.0021 0x0990  [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus           C:\Windows\System32\drivers\sdbus.sys
12:24:09.0021 0x0990  sdbus - ok
12:24:09.0036 0x0990  [ 75B98959013B22F8F40C08095B8AB73C, EF608EFBF72AF48EFC9352FCEDF0523BDBA6055612FFD22654E3B241AA9C8033 ] sdcfilter       C:\Windows\system32\DRIVERS\sdcfilter.sys
12:24:09.0036 0x0990  sdcfilter - ok
12:24:09.0036 0x0990  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
12:24:09.0052 0x0990  sdstor - ok
12:24:09.0052 0x0990  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:24:09.0052 0x0990  secdrv - ok
12:24:09.0052 0x0990  [ BA24CEA7152239F42ECD04AFB7C89D24, A2A11EABB0C283772B74667C7544B61BEB1B9745FBF065E831542129EB585AFA ] seclogon        C:\Windows\system32\seclogon.dll
12:24:09.0067 0x0990  seclogon - ok
12:24:09.0067 0x0990  [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS            C:\Windows\System32\sens.dll
12:24:09.0083 0x0990  SENS - ok
12:24:09.0083 0x0990  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] SensorsSimulatorDriver C:\Windows\system32\DRIVERS\WUDFRd.sys
12:24:09.0099 0x0990  SensorsSimulatorDriver - ok
12:24:09.0099 0x0990  [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:24:09.0114 0x0990  SensrSvc - ok
12:24:09.0114 0x0990  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
12:24:09.0114 0x0990  SerCx - ok
12:24:09.0130 0x0990  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
12:24:09.0130 0x0990  SerCx2 - ok
12:24:09.0146 0x0990  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\Windows\System32\drivers\serenum.sys
12:24:09.0146 0x0990  Serenum - ok
12:24:09.0146 0x0990  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\Windows\System32\drivers\serial.sys
12:24:09.0161 0x0990  Serial - ok
12:24:09.0161 0x0990  [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse        C:\Windows\System32\drivers\sermouse.sys
12:24:09.0161 0x0990  sermouse - ok
12:24:09.0177 0x0990  [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv      C:\Windows\system32\sessenv.dll
12:24:09.0192 0x0990  SessionEnv - ok
12:24:09.0192 0x0990  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
12:24:09.0192 0x0990  sfloppy - ok
12:24:09.0208 0x0990  [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:24:09.0224 0x0990  SharedAccess - ok
12:24:09.0239 0x0990  [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:24:09.0255 0x0990  ShellHWDetection - ok
12:24:09.0255 0x0990  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
12:24:09.0271 0x0990  SiSRaid2 - ok
12:24:09.0271 0x0990  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:24:09.0271 0x0990  SiSRaid4 - ok
12:24:09.0286 0x0990  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
12:24:09.0302 0x0990  SkypeUpdate - ok
12:24:09.0302 0x0990  [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost         C:\Windows\System32\smphost.dll
12:24:09.0302 0x0990  smphost - ok
12:24:09.0302 0x0990  [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:24:09.0317 0x0990  SNMPTRAP - ok
12:24:09.0317 0x0990  [ 51192F8BED12A897CB2EFFE5A00D136C, 0B843D7E87973C42A6F4057626F95D4E49C70AE97BF109C8F07A34D200BEB863 ] Sophos AutoUpdate Service C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe
12:24:09.0333 0x0990  Sophos AutoUpdate Service - ok
12:24:09.0349 0x0990  [ E26625A4A22E5BADF495B8FB613F27AD, C040328B0838A1DD2F5E12863611B3755681697D1ADA2F0C014694762B4F8F72 ] Sophos Web Control Service C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
12:24:09.0349 0x0990  Sophos Web Control Service - ok
12:24:09.0349 0x0990  [ FFD056D55C46946ACA218F0A61DA2743, A9E3910EBEFC8674704F42C6D43A12A521C212B911D46FCD669D8AAFA8381C55 ] SophosBootDriver C:\Windows\system32\DRIVERS\SophosBootDriver.sys
12:24:09.0364 0x0990  SophosBootDriver - ok
12:24:09.0364 0x0990  [ D24B1945ED1F9C96DA786DBBF1E983CE, B46CB0B72B7A3DF94A46B8D65E38535C5F8E72A55CF2DC48EFA1F9A0108691C4 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
12:24:09.0380 0x0990  spaceport - ok
12:24:09.0396 0x0990  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
12:24:09.0396 0x0990  SpbCx - ok
12:24:09.0411 0x0990  [ FCB156A6745631A67DEA61827061D483, 9275ABFA1E1E595969A71C0DA228D18D1B868BF46E097E1276142BD80F8A32C9 ] Spooler         C:\Windows\System32\spoolsv.exe
12:24:09.0442 0x0990  Spooler - ok
12:24:09.0567 0x0990  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\Windows\system32\sppsvc.exe
12:24:09.0708 0x0990  sppsvc - ok
12:24:09.0708 0x0990  sptd - ok
12:24:09.0724 0x0990  [ 055B0DE7BCDB14FB18279F09DCA07954, 94944F996F2F73233A96F8E766606EA5CCC7142EA2AF4BCEFD2603578F2B4A4A ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
12:24:09.0724 0x0990  SQLWriter - ok
12:24:09.0739 0x0990  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:24:09.0755 0x0990  srv - ok
12:24:09.0771 0x0990  [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:24:09.0786 0x0990  srv2 - ok
12:24:09.0786 0x0990  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:24:09.0802 0x0990  srvnet - ok
12:24:09.0802 0x0990  [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:24:09.0817 0x0990  SSDPSRV - ok
12:24:09.0817 0x0990  [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:24:09.0833 0x0990  SstpSvc - ok
12:24:09.0833 0x0990  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
12:24:09.0849 0x0990  ssudmdm - ok
12:24:09.0849 0x0990  [ E5C796B621F6FBA8616511063D7F0FFE, 447FA64F552D4B04AD029E01485B4438A70D9B9B98EB49A883D5B17ED4C1D52F ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
12:24:09.0864 0x0990  StarWindServiceAE - detected UnsignedFile.Multi.Generic ( 1 )
12:24:12.0677 0x0990  Detect skipped due to KSN trusted
12:24:12.0677 0x0990  StarWindServiceAE - ok
12:24:12.0693 0x0990  [ 5852D5FADD589643B6C1B5BE9D257A50, 38DC6CEB0AA6AF4FD046A9CF7571E345E52D30471E248E2B99FC6D5622257145 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
12:24:12.0708 0x0990  Steam Client Service - ok
12:24:12.0724 0x0990  [ D2B4376F9F36C5873A6CF99EF5750724, 2A5C12EE3657D4A6819080549ADFA3288E0DAC975114D9466DCCC3ED922D2539 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
12:24:12.0724 0x0990  Stereo Service - ok
12:24:12.0739 0x0990  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
12:24:12.0739 0x0990  stexstor - ok
12:24:12.0755 0x0990  [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc          C:\Windows\System32\wiaservc.dll
12:24:12.0771 0x0990  stisvc - ok
12:24:12.0771 0x0990  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\Windows\system32\drivers\storahci.sys
12:24:12.0786 0x0990  storahci - ok
12:24:12.0786 0x0990  [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
12:24:12.0786 0x0990  storflt - ok
12:24:12.0802 0x0990  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\Windows\system32\drivers\stornvme.sys
12:24:12.0802 0x0990  stornvme - ok
12:24:12.0802 0x0990  [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc         C:\Windows\system32\storsvc.dll
12:24:12.0818 0x0990  StorSvc - ok
12:24:12.0818 0x0990  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\Windows\system32\drivers\storvsc.sys
12:24:12.0818 0x0990  storvsc - ok
12:24:12.0833 0x0990  [ 7D123389FCD97D84881BA9C07012BA0C, 044442D8FCFE7935A025602F817C726576BA1C515CB594C4320A8AC6D8DA8F41 ] storvsp         C:\Windows\System32\drivers\storvsp.sys
12:24:12.0833 0x0990  storvsp - ok
12:24:12.0833 0x0990  [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc           C:\Windows\system32\svsvc.dll
12:24:12.0833 0x0990  svsvc - ok
12:24:12.0849 0x0990  [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum          C:\Windows\System32\drivers\swenum.sys
12:24:12.0849 0x0990  swenum - ok
12:24:12.0849 0x0990  [ 6E08BD408572E27A6BD1ED615A2AFA84, FACA5D621F34B6DA9B18096D817531A268EC1DC07B03B68D740BC8095EB1083C ] swi_callout     C:\Windows\system32\DRIVERS\swi_callout.sys
12:24:12.0849 0x0990  swi_callout - ok
12:24:12.0864 0x0990  [ A12079F6A61C6CA6448259FDDE949082, 09D4A604DA155C7431740CD073D87A6613D14B248B4BD3F42A526332B0D1EF4C ] swi_filter      C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_filter.exe
12:24:12.0864 0x0990  swi_filter - ok
12:24:12.0943 0x0990  [ 5399E281726EAF0307EBF804A693ED40, 0AE45B2ECE26A87BF0E535AFDC7376EED2A7645C8CC810BE9D6D1330199BE28E ] swi_service     C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
         

8. TDSSKiller Log Part 3

Code: Alles auswählenAufklappen

ATTFilter

12:24:12.0989 0x0990  swi_service - ok
12:24:13.0021 0x0990  [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv           C:\Windows\System32\swprv.dll
12:24:13.0036 0x0990  swprv - ok
12:24:13.0068 0x0990  [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain         C:\Windows\system32\sysmain.dll
12:24:13.0083 0x0990  SysMain - ok
12:24:13.0099 0x0990  [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
12:24:13.0114 0x0990  SystemEventsBroker - ok
12:24:13.0114 0x0990  [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:24:13.0130 0x0990  TabletInputService - ok
12:24:13.0130 0x0990  [ F9BE29D5E097F03F81D3CD12B794CB66, 5EC208DEAF7C721F4C36512E7DAD4AC66578AB935B9502A5E1E213BC91BE508C ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
12:24:13.0130 0x0990  tap0901 - ok
12:24:13.0146 0x0990  [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:24:13.0146 0x0990  TapiSrv - ok
12:24:13.0208 0x0990  [ 746DDF7D59AB8D721C88D48434597E8D, 78BDBAB8D1E86A11804FEB19B355C0FAD04ACE8DD4BDDFDADCE5461E259BCE82 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:24:13.0255 0x0990  Tcpip - ok
12:24:13.0302 0x0990  [ 746DDF7D59AB8D721C88D48434597E8D, 78BDBAB8D1E86A11804FEB19B355C0FAD04ACE8DD4BDDFDADCE5461E259BCE82 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:24:13.0365 0x0990  TCPIP6 - ok
12:24:13.0365 0x0990  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:24:13.0380 0x0990  tcpipreg - ok
12:24:13.0380 0x0990  [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:24:13.0380 0x0990  tdx - ok
12:24:13.0505 0x0990  [ 758B320E709CBF1D0C34A18390EEE6E8, E90EEC1C65958873FA7327307184D5155C94D50C59D9869A9EA5834E8CADE4CD ] TeamViewer      C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe
12:24:13.0599 0x0990  TeamViewer - ok
12:24:13.0599 0x0990  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
12:24:13.0615 0x0990  terminpt - ok
12:24:13.0630 0x0990  [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService     C:\Windows\System32\termsrv.dll
12:24:13.0661 0x0990  TermService - ok
12:24:13.0661 0x0990  [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes          C:\Windows\system32\themeservice.dll
12:24:13.0677 0x0990  Themes - ok
12:24:13.0677 0x0990  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER     C:\Windows\system32\mmcss.dll
12:24:13.0677 0x0990  THREADORDER - ok
12:24:13.0693 0x0990  [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
12:24:13.0708 0x0990  TimeBroker - ok
12:24:13.0708 0x0990  [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM             C:\Windows\system32\drivers\tpm.sys
12:24:13.0708 0x0990  TPM - ok
12:24:13.0755 0x0990  [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks          C:\Windows\System32\trkwks.dll
12:24:13.0755 0x0990  TrkWks - ok
12:24:13.0833 0x0990  [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:24:13.0833 0x0990  TrustedInstaller - ok
12:24:13.0849 0x0990  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:24:13.0849 0x0990  TsUsbFlt - ok
12:24:13.0865 0x0990  [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
12:24:13.0865 0x0990  TsUsbGD - ok
12:24:13.0865 0x0990  [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:24:13.0880 0x0990  tunnel - ok
12:24:13.0880 0x0990  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:24:13.0880 0x0990  uagp35 - ok
12:24:13.0896 0x0990  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
12:24:13.0896 0x0990  UASPStor - ok
12:24:13.0911 0x0990  [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
12:24:13.0911 0x0990  UCX01000 - ok
12:24:13.0927 0x0990  [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:24:13.0927 0x0990  udfs - ok
12:24:13.0943 0x0990  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\Windows\System32\drivers\UEFI.sys
12:24:13.0943 0x0990  UEFI - ok
12:24:13.0943 0x0990  [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:24:13.0958 0x0990  UI0Detect - ok
12:24:13.0958 0x0990  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:24:13.0958 0x0990  uliagpkx - ok
12:24:13.0974 0x0990  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\Windows\System32\drivers\umbus.sys
12:24:13.0974 0x0990  umbus - ok
12:24:13.0974 0x0990  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\Windows\System32\drivers\umpass.sys
12:24:13.0990 0x0990  UmPass - ok
12:24:13.0990 0x0990  [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService    C:\Windows\System32\umrdp.dll
12:24:14.0005 0x0990  UmRdpService - ok
12:24:14.0021 0x0990  [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost        C:\Windows\System32\upnphost.dll
12:24:14.0021 0x0990  upnphost - ok
12:24:14.0036 0x0990  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\Windows\System32\Drivers\usbaapl64.sys
12:24:14.0036 0x0990  USBAAPL64 - ok
12:24:14.0036 0x0990  [ DF355EB0199198728027962DCFCDE5FB, 9E158BD07389B4CFF99674716647FA3AABEECBD1A98EDF20E544E099A99A8768 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:24:14.0052 0x0990  usbaudio - ok
12:24:14.0052 0x0990  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
12:24:14.0068 0x0990  usbccgp - ok
12:24:14.0068 0x0990  [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
12:24:14.0083 0x0990  usbcir - ok
12:24:14.0083 0x0990  [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
12:24:14.0083 0x0990  usbehci - ok
12:24:14.0099 0x0990  [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\Windows\System32\drivers\usbhub.sys
12:24:14.0115 0x0990  usbhub - ok
12:24:14.0130 0x0990  [ 95B0179BDA907252025DEEA183699FB3, A6BDFB93EE9418A83407024204A41640A08638C60E2BE75C249D102601DC1D80 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
12:24:14.0146 0x0990  USBHUB3 - ok
12:24:14.0146 0x0990  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\Windows\System32\drivers\usbohci.sys
12:24:14.0146 0x0990  usbohci - ok
12:24:14.0161 0x0990  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
12:24:14.0161 0x0990  usbprint - ok
12:24:14.0161 0x0990  [ 0F030491BA4A27BD46F8B8ACEEE83F1A, 7063855611BEF94D4D229BA1BE507ECBDD89F5861641A407EB3E2919A352F9D4 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:24:14.0177 0x0990  usbscan - ok
12:24:14.0177 0x0990  [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
12:24:14.0193 0x0990  USBSTOR - ok
12:24:14.0193 0x0990  [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
12:24:14.0193 0x0990  usbuhci - ok
12:24:14.0208 0x0990  [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
12:24:14.0224 0x0990  USBXHCI - ok
12:24:14.0224 0x0990  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc        C:\Windows\system32\lsass.exe
12:24:14.0224 0x0990  VaultSvc - ok
12:24:14.0224 0x0990  [ 3C8E2C591345F38149C69FE8E5DF8C90, 9F4BB9BDA09CB2E99A6A888B288F322AE5C460B5D124CD714C6F00FF5029144B ] VClone          C:\Windows\System32\drivers\VClone.sys
12:24:14.0240 0x0990  VClone - ok
12:24:14.0240 0x0990  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:24:14.0240 0x0990  vdrvroot - ok
12:24:14.0271 0x0990  [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds             C:\Windows\System32\vds.exe
12:24:14.0302 0x0990  vds - ok
12:24:14.0302 0x0990  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
12:24:14.0318 0x0990  VerifierExt - ok
12:24:14.0333 0x0990  [ C06E8481E068F170A258441639AC5792, 2F550530BACB511A195D5047F003B01CB6E04FA9A0DCCF638CB3D51FF5467DC7 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
12:24:14.0349 0x0990  vhdmp - ok
12:24:14.0349 0x0990  [ 49EF44CB3331381547FD94C36B84FCB5, D93920C63D769F1DC117B11221AE8CAF2782B17CAC6B520E34E2803869FA689B ] vhdparser       C:\Windows\system32\drivers\vhdparser.sys
12:24:14.0349 0x0990  vhdparser - ok
12:24:14.0365 0x0990  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:24:14.0365 0x0990  viaide - ok
12:24:14.0365 0x0990  [ 3CE922E34DB12D9F3C0EA856BC09687C, E50A1885FBC775E49614989ECFEA4ACBBDDA16AF459CC5361EED9E23CC7CD42C ] Vid             C:\Windows\System32\drivers\Vid.sys
12:24:14.0380 0x0990  Vid - ok
12:24:14.0380 0x0990  [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
12:24:14.0396 0x0990  vmbus - ok
12:24:14.0396 0x0990  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
12:24:14.0396 0x0990  VMBusHID - ok
12:24:14.0411 0x0990  [ 68F8C26DEA2D42E8DEC0778943433C80, 81E8F9D62815F94952CEEABD0689473CC330F7890F66872DCD35A43C06ED33CD ] vmbusr          C:\Windows\System32\drivers\vmbusr.sys
12:24:14.0411 0x0990  vmbusr - ok
12:24:14.0427 0x0990  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\Windows\System32\ICSvc.dll
12:24:14.0443 0x0990  vmicguestinterface - ok
12:24:14.0443 0x0990  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
12:24:14.0458 0x0990  vmicheartbeat - ok
12:24:14.0474 0x0990  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
12:24:14.0490 0x0990  vmickvpexchange - ok
12:24:14.0505 0x0990  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv         C:\Windows\System32\ICSvc.dll
12:24:14.0521 0x0990  vmicrdv - ok
12:24:14.0521 0x0990  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown    C:\Windows\System32\ICSvc.dll
12:24:14.0536 0x0990  vmicshutdown - ok
12:24:14.0552 0x0990  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync    C:\Windows\System32\ICSvc.dll
12:24:14.0568 0x0990  vmictimesync - ok
12:24:14.0568 0x0990  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss         C:\Windows\System32\ICSvc.dll
12:24:14.0583 0x0990  vmicvss - ok
12:24:14.0880 0x0990  [ AE692B87C982CCECE9DB1441BE4901EF, 9DD93632EC2BE88D957CAF4832A7078BCFC5D2495B8C6F8A22AE5E4DAB8FB47E ] vmms            C:\Windows\system32\vmms.exe
12:24:15.0115 0x0990  vmms - ok
12:24:15.0146 0x0990  [ 2C32E08A6DCE799EADECECD0C60E233B, 71BB0A8F94EB9D4F868D3161C21893583CA13BECB6B210F1B4CEB2F441653074 ] VMSMP           C:\Windows\system32\DRIVERS\vmswitch.sys
12:24:15.0161 0x0990  VMSMP - ok
12:24:15.0177 0x0990  [ 2C32E08A6DCE799EADECECD0C60E233B, 71BB0A8F94EB9D4F868D3161C21893583CA13BECB6B210F1B4CEB2F441653074 ] VMSP            C:\Windows\system32\DRIVERS\vmswitch.sys
12:24:15.0193 0x0990  VMSP - ok
12:24:15.0208 0x0990  [ 2C32E08A6DCE799EADECECD0C60E233B, 71BB0A8F94EB9D4F868D3161C21893583CA13BECB6B210F1B4CEB2F441653074 ] VMSVSF          C:\Windows\system32\DRIVERS\vmswitch.sys
12:24:15.0224 0x0990  VMSVSF - ok
12:24:15.0240 0x0990  [ 2C32E08A6DCE799EADECECD0C60E233B, 71BB0A8F94EB9D4F868D3161C21893583CA13BECB6B210F1B4CEB2F441653074 ] VMSVSP          C:\Windows\system32\DRIVERS\vmswitch.sys
12:24:15.0255 0x0990  VMSVSP - ok
12:24:15.0255 0x0990  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:24:15.0271 0x0990  volmgr - ok
12:24:15.0286 0x0990  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:24:15.0286 0x0990  volmgrx - ok
12:24:15.0302 0x0990  [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:24:15.0318 0x0990  volsnap - ok
12:24:15.0318 0x0990  [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci            C:\Windows\System32\drivers\vpci.sys
12:24:15.0318 0x0990  vpci - ok
12:24:15.0333 0x0990  [ ADBE96C33D1A5BB1BBAF90B4BC84F523, 6E9C9ED3D51E4B6E494D42ECA6F824AD86D676C12C39BBE6B8BD96366BCB02DA ] vpcivsp         C:\Windows\System32\drivers\vpcivsp.sys
12:24:15.0333 0x0990  vpcivsp - ok
12:24:15.0333 0x0990  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:24:15.0349 0x0990  vsmraid - ok
12:24:15.0380 0x0990  [ 94FAFD473CDD80CE19A21FB9503D7ED1, 953E5E8C753C0017E1258695A76F60CC05D283F7476B9D9C5C8AC78B8E3FCE18 ] VSS             C:\Windows\system32\vssvc.exe
12:24:15.0411 0x0990  VSS - ok
12:24:15.0427 0x0990  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
12:24:15.0427 0x0990  VSTXRAID - ok
12:24:15.0443 0x0990  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
12:24:15.0443 0x0990  vwifibus - ok
12:24:15.0458 0x0990  [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time         C:\Windows\system32\w32time.dll
12:24:15.0458 0x0990  W32Time - ok
12:24:15.0474 0x0990  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
12:24:15.0474 0x0990  WacomPen - ok
12:24:15.0474 0x0990  [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
12:24:15.0490 0x0990  WANARP - ok
12:24:15.0490 0x0990  [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:24:15.0490 0x0990  Wanarpv6 - ok
12:24:15.0521 0x0990  [ A81988DCC4FA440AA88B84CA452F5E22, 3573AAA09971E8ADB6FEFA778E02B2D8EE5E4249267CF37A524D9F019CC836FB ] wbengine        C:\Windows\system32\wbengine.exe
12:24:15.0552 0x0990  wbengine - ok
12:24:15.0568 0x0990  [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:24:15.0583 0x0990  WbioSrvc - ok
12:24:15.0599 0x0990  [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
12:24:15.0615 0x0990  Wcmsvc - ok
12:24:15.0615 0x0990  [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:24:15.0630 0x0990  wcncsvc - ok
12:24:15.0646 0x0990  [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:24:15.0646 0x0990  WcsPlugInService - ok
12:24:15.0646 0x0990  [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
12:24:15.0661 0x0990  WdBoot - ok
12:24:15.0677 0x0990  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:24:15.0693 0x0990  Wdf01000 - ok
12:24:15.0708 0x0990  [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
12:24:15.0708 0x0990  WdFilter - ok
12:24:15.0724 0x0990  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:24:15.0724 0x0990  WdiServiceHost - ok
12:24:15.0724 0x0990  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:24:15.0740 0x0990  WdiSystemHost - ok
12:24:15.0740 0x0990  [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
12:24:15.0755 0x0990  WdNisDrv - ok
12:24:15.0755 0x0990  WdNisSvc - ok
12:24:15.0755 0x0990  [ 40F83492DB9ABBA59773A45FB487C8B2, 0D0DE0B0C9B929FEFD2674CCF17F5F2FC4B16EAB8E1981BBCE51B0305FD7D75E ] WebClient       C:\Windows\System32\webclnt.dll
12:24:15.0771 0x0990  WebClient - ok
12:24:15.0771 0x0990  [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:24:15.0786 0x0990  Wecsvc - ok
12:24:15.0786 0x0990  [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
12:24:15.0802 0x0990  WEPHOSTSVC - ok
12:24:15.0802 0x0990  [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:24:15.0818 0x0990  wercplsupport - ok
12:24:15.0818 0x0990  [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc          C:\Windows\System32\WerSvc.dll
12:24:15.0818 0x0990  WerSvc - ok
12:24:15.0833 0x0990  [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
12:24:15.0833 0x0990  WFPLWFS - ok
12:24:15.0849 0x0990  [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc          C:\Windows\System32\wiarpc.dll
12:24:15.0849 0x0990  WiaRpc - ok
12:24:15.0849 0x0990  [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:24:15.0865 0x0990  WIMMount - ok
12:24:15.0865 0x0990  WinDefend - ok
12:24:15.0880 0x0990  [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
12:24:15.0896 0x0990  WinHttpAutoProxySvc - ok
12:24:15.0912 0x0990  [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:24:15.0927 0x0990  Winmgmt - ok
12:24:15.0974 0x0990  [ 75436315AA383CF527695C6D49D0CA59, E3D55F2ACBD45D4D031FA6CA799394459C89BE50FF6ADE4FE36F2CAB2D2E63D0 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:24:16.0021 0x0990  WinRM - ok
12:24:16.0037 0x0990  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\Windows\System32\drivers\WinUsb.sys
12:24:16.0037 0x0990  WinUsb - ok
12:24:16.0083 0x0990  [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc         C:\Windows\System32\wlansvc.dll
12:24:16.0115 0x0990  WlanSvc - ok
12:24:16.0146 0x0990  [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
12:24:16.0193 0x0990  wlidsvc - ok
12:24:16.0193 0x0990  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
12:24:16.0193 0x0990  WmiAcpi - ok
12:24:16.0208 0x0990  [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:24:16.0208 0x0990  wmiApSrv - ok
12:24:16.0208 0x0990  WMPNetworkSvc - ok
12:24:16.0224 0x0990  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\Windows\system32\drivers\Wof.sys
12:24:16.0224 0x0990  Wof - ok
12:24:16.0271 0x0990  [ 588040D595BBF0856CA1ADD941A8ED17, CBC92BB5453FE1BEA6F33239B7CE884F312559591383408EA5F95A006156C5D3 ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
12:24:16.0302 0x0990  workfolderssvc - ok
12:24:16.0302 0x0990  [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
12:24:16.0318 0x0990  wpcfltr - ok
12:24:16.0318 0x0990  [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:24:16.0318 0x0990  WPCSvc - ok
12:24:16.0333 0x0990  [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:24:16.0333 0x0990  WPDBusEnum - ok
12:24:16.0333 0x0990  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
12:24:16.0349 0x0990  WpdUpFltr - ok
12:24:16.0349 0x0990  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:24:16.0349 0x0990  ws2ifsl - ok
12:24:16.0365 0x0990  [ 5596C0960ED6ED7494BF2A55DE428684, C95CF09A657F37F421CC80E16F2F95B8EC59A8D5D48F104551155EAC8E53DCB2 ] wscsvc          C:\Windows\System32\wscsvc.dll
12:24:16.0365 0x0990  wscsvc - ok
12:24:16.0365 0x0990  WSearch - ok
12:24:16.0443 0x0990  [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService       C:\Windows\System32\WSService.dll
12:24:16.0521 0x0990  WSService - ok
12:24:16.0599 0x0990  [ 4BD3138EF061E24F9FDC722B49274B40, F9339F6AA8822E5E1334E41BE4140F9E8E5B24D1CD85B4C746D714AFDD485B49 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:24:16.0662 0x0990  wuauserv - ok
12:24:16.0677 0x0990  [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:24:16.0677 0x0990  WudfPf - ok
12:24:16.0693 0x0990  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
12:24:16.0693 0x0990  WUDFRd - ok
12:24:16.0693 0x0990  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP    C:\Windows\System32\drivers\WUDFRd.sys
12:24:16.0708 0x0990  WUDFSensorLP - ok
12:24:16.0708 0x0990  [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:24:16.0724 0x0990  wudfsvc - ok
12:24:16.0724 0x0990  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs       C:\Windows\System32\drivers\WUDFRd.sys
12:24:16.0740 0x0990  WUDFWpdFs - ok
12:24:16.0740 0x0990  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp      C:\Windows\System32\drivers\WUDFRd.sys
12:24:16.0755 0x0990  WUDFWpdMtp - ok
12:24:16.0771 0x0990  [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:24:16.0787 0x0990  WwanSvc - ok
12:24:16.0787 0x0990  [ 9176C0822FAA649E45121875BE32F5D2, B7A7A906A7BB0F760ED241F998C647D728C4DB5D8778AFE585DF38331165803F ] xusb21          C:\Windows\System32\drivers\xusb21.sys
12:24:16.0787 0x0990  xusb21 - ok
12:24:16.0802 0x0990  ================ Scan global ===============================
12:24:16.0802 0x0990  [ 05B08C20B8428ECE088CB5635696A48D, 471642A2D0E5C3BB235962FC8D86A49AC30D7DDE80B97E348425BBFCDE4DCDC3 ] C:\Windows\system32\basesrv.dll
12:24:16.0802 0x0990  [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\Windows\system32\winsrv.dll
12:24:16.0818 0x0990  [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\Windows\system32\sxssrv.dll
12:24:16.0833 0x0990  [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\Windows\system32\services.exe
12:24:16.0833 0x0990  [ Global ] - ok
12:24:16.0833 0x0990  ================ Scan MBR ==================================
12:24:16.0833 0x0990  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:24:16.0912 0x0990  \Device\Harddisk0\DR0 - ok
12:24:16.0927 0x0990  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
12:24:17.0099 0x0990  \Device\Harddisk1\DR1 - ok
12:24:17.0099 0x0990  ================ Scan VBR ==================================
12:24:17.0115 0x0990  [ 64FC00B11F5D1396B143CD1BAD203DD1 ] \Device\Harddisk0\DR0\Partition1
12:24:17.0115 0x0990  \Device\Harddisk0\DR0\Partition1 - ok
12:24:17.0115 0x0990  [ B8C128708F23D098FD2BCFF5BFC7761B ] \Device\Harddisk0\DR0\Partition2
12:24:17.0115 0x0990  \Device\Harddisk0\DR0\Partition2 - ok
12:24:17.0115 0x0990  [ 7FB665DF1C6D3B717E888BCFF457E060 ] \Device\Harddisk1\DR1\Partition1
12:24:17.0130 0x0990  \Device\Harddisk1\DR1\Partition1 - ok
12:24:17.0130 0x0990  ================ Scan generic autorun ======================
12:24:17.0193 0x0990  [ 8F82FFC6CD0F4C83F4565E1A40332CCD, 45D17603664CBE2C4236AEDB3C21D585C8225A3D3B1118365EE2C6BFDB8A7890 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
12:24:17.0240 0x0990  NvBackend - ok
12:24:17.0240 0x0990  [ 6C308D32AFA41D26CE2A0EA8F7B79565, 5CC2C563D89257964C4B446F54AFE1E57BBEE49315A9FC001FF5A6BCB6650393 ] C:\Windows\system32\rundll32.exe
12:24:17.0255 0x0990  ShadowPlay - ok
12:24:17.0255 0x0990  [ AB391D6DC2B80C46F218910AD5EACAF1, 3833D3B7AA4A2E2DB230715FEEDD6B31525A827DC5973B93B38356529747436E ] C:\Program Files\Greenshot\Greenshot.exe
12:24:17.0271 0x0990  Greenshot - detected UnsignedFile.Multi.Generic ( 1 )
12:24:20.0099 0x0990  Detect skipped due to KSN trusted
12:24:20.0099 0x0990  Greenshot - ok
12:24:20.0099 0x0990  [ 076B3EE149E01ADBAC2DC529554A3FD9, 4F65D9D2EE44829AA2264210112851E899165C2346489BEBE679C41420CF7D07 ] C:\Program Files\iTunes\iTunesHelper.exe
12:24:20.0099 0x0990  iTunesHelper - ok
12:24:20.0130 0x0990  [ 1B4AA5C2572219FFAE7B35F082C2164D, 2803105F5AD8B18ED0D0968128E1DBAAA5D612DC8546F5B94066EEE91125E045 ] C:\Program Files (x86)\Sophos\AutoUpdate\almon.exe
12:24:20.0162 0x0990  Sophos AutoUpdate Monitor - ok
12:24:20.0271 0x0990  [ CC78200C3ECFFA178E78308A0E160D80, 4E02D6827A99401781032A397663770FA7BE56397AA20F6E2FACE0A0004109C5 ] C:\Users\Georg\AppData\Local\Akamai\netsession_win.exe
12:24:20.0349 0x0990  Akamai NetSession Interface - ok
12:24:20.0380 0x0990  [ 44A9229022A519ED45294A1934C05EEC, 6DEF0DB5F9B50E9B0AFEE1CF50066BEB4FB7E15E2DC829A499509925660D6992 ] C:\Users\Georg\AppData\Local\FluxSoftware\Flux\flux.exe
12:24:20.0396 0x0990  f.lux - ok
12:24:20.0537 0x0990  [ B2BAE2D76FBE9FDC3F6E0D1F886DF367, 964EBF736891BE252C68FCE1F9EAD5E60E6E0C2119D21C6DF49FBD30FBB678EF ] C:\Program Files\CCleaner\CCleaner64.exe
12:24:20.0662 0x0990  CCleaner Monitoring - ok
12:24:20.0724 0x0990  [ 9D0D72B696B8CDF9AE368E542FD042CE, 8CD19E8B609041A6C226D57D40509175827C75DEF93378B53A814060BB7A9E0B ] C:\Users\Georg\AppData\Roaming\Spotify\SpotifyWebHelper.exe
12:24:20.0755 0x0990  Spotify Web Helper - ok
12:24:20.0787 0x0990  [ FC8A2697282465615B180ADD1B137D89, F0805A1504F87D48A9AC2C75BC775EFA5C090CE91372A28DDA6B874F40245DF1 ] E:\Sandboxie\SbieCtrl.exe
12:24:20.0802 0x0990  SandboxieControl - ok
12:24:20.0880 0x0990  [ 5B97A3FEA57E776655717DDC9D79922E, 6E8A6B71AB82FD405207ECFFC90B8735D3BD0893DCA5E1C0D51B0218ADFDABE6 ] E:\MKJogo\MK IM\Bin\MKIM.exe
12:24:20.0912 0x0990  MK LOL - ok
12:24:21.0021 0x0990  [ 710D0376DD3D0BBE27FF165F7CE98837, 9322B95512178ECD392779D295FF0DECF9754E4BE10953367A811883646D359B ] E:\Evolve\EvolveClient.exe
12:24:21.0084 0x0990  EvolveClient - ok
12:24:21.0146 0x0990  [ 0DEEC48955C21BE596C5D9907A0707E7, 5F6E321B00DE7A56048B7E9389D314B59AB11DF47691F5C9734B084213E8BC20 ] C:\Program Files (x86)\Gyazo\GyStation.exe
12:24:21.0193 0x0990  Gyazo - ok
12:24:21.0209 0x0990  [ 6F94A57D1F05A1A68C33D49B6751C8C6, D37ADB69E8FB2209F6DBD9A55E67800AAED35973DE0830878C6177BDCC073676 ] C:\Windows\System32\StikyNot.exe
12:24:21.0224 0x0990  RESTART_STICKY_NOTES - ok
12:24:21.0224 0x0990  Waiting for KSN requests completion. In queue: 235
12:24:22.0240 0x0990  Waiting for KSN requests completion. In queue: 11
12:24:23.0240 0x0990  Waiting for KSN requests completion. In queue: 11
12:24:24.0256 0x0990  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
12:24:24.0256 0x0990  AV detected via SS2: Sophos Anti-Virus, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe ( 10.3.6.0 ), 0x51000 ( enabled : updated )
12:24:24.0256 0x0990  Win FW state via NFP2: enabled ( trusted )
12:24:27.0006 0x0990  ============================================================
12:24:27.0006 0x0990  Scan finished
12:24:27.0006 0x0990  ============================================================
12:24:27.0006 0x0274  Detected object count: 0
12:24:27.0006 0x0274  Actual detected object count: 0
         

Downloade Dir bitte Malwarebytes Anti-Malware

• Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
• Starte Malwarebytes' Anti-Malware (MBAM).
• Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
• Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
• Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
• Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
• Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
• Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte AdwCleaner auf deinen Desktop.

• Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
• Starte die AdwCleaner.exe mit einem Doppelklick.
• Stimme den Nutzungsbedingungen zu.
• Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
  • "Tracing" Schlüssel löschen
  • Winsock Einstellungen zurücksetzen
  • Proxy Einstellungen zurücksetzen
  • Internet Explorer Richtlinien zurücksetzen
  • Chrome Richtlinien zurücksetzen
  • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
• Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
• Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
• Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
• Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

• Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
• Drücke eine beliebige Taste, um das Tool zu starten.
• Je nach System kann der Scan eine Weile dauern.
• Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
• Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Vorab, musste Windows neu aufsetzen (andere Version). Problem ist logischerweise immer noch vorhanden, aber ich hab mindestens einen verwendbaren Browser, hoffentlich stört das nicht beim Hilfeprozess.

9. mbam.txt

Code: Alles auswählenAufklappen

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Scan Date: 20/11/2015
Scan Time: 18:27
Logfile: mbam.txt
Administrator: Yes

Version: 2.2.0.1024
Malware Database: v2015.11.20.05
Rootkit Database: v2015.11.14.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 10
CPU: x64
File System: NTFS
User: Georg

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 314313
Time Elapsed: 1 min, 54 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)
         

10. Adw Cleaner

Alle Programme geschlossen, aber beim Neustart wurde ich von drei verschiedenen Blue Screen Meldungen begrüßt, in folgender Reihenfolge:

1. IR_QL NOT LESS OR EQUAL

2. BAD_POOL_HEADER

3. corrupted driver pool

muss jetzt wieder resetten

Edit: Wie siehts aus? Soll ich das mit dem ADW Cleaner nochmal probieren?

Edit 2:

Code: Alles auswählenAufklappen

ATTFilter

# AdwCleaner v5.021 - Logfile created 20/11/2015 at 18:37:12
# Updated 14/11/2015 by Xplode
# Database : 2015-11-19.4 [Server]
# Operating system : Windows 10 Education  (x64)
# Username : Georg - DESKTOP-0S5E717
# Running from : C:\Users\Georg\Downloads\AdwCleaner_5.021.exe
# Option : Cleaning
# Support : hxxp://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****

[-] File Deleted : C:\Users\Georg\AppData\Local\Temp\Utils.dll

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Proxy settings cleared
:: Winsock settings cleared
:: Chrome policies deleted

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [792 bytes] ##########
         

11. Junkware Removal Tool

Code: Alles auswählenAufklappen

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.0 (11.12.2015)
Operating System: Windows 10 Education x64 
Ran by Georg (Administrator) on 20/11/2015 at 19:14:53.91
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0 




Registry: 0 





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20/11/2015 at 19:15:16.66
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

12. FRST Part 1

Code: Alles auswählenAufklappen

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:19-11-2015
Ran by Georg (administrator) on DESKTOP-0S5E717 (20-11-2015 19:19:10)
Running from C:\Users\Georg\Downloads
Loaded Profiles: Georg (Available Profiles: Georg)
Platform: Windows 10 Education Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
HKU\S-1-5-21-2836550470-1921781060-1980324325-1001\...\RunOnce: [Uninstall C:\Users\Georg\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Georg\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-2836550470-1921781060-1980324325-1001\...\RunOnce: [Uninstall C:\Users\Georg\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Georg\AppData\Local\Microsoft\OneDrive\17.3.5892.0626"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{666ad395-9039-49a4-8f70-56455e9ee785}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2015-10-30] (Microsoft Corporation)
Handler-x32: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2015-10-30] (Microsoft Corporation)

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 MessagingService; C:\Windows\System32\MessagingService.dll [52736 2015-10-30] (Microsoft Corporation)
S3 MessagingService_980a6; C:\WINDOWS\system32\svchost.exe [43944 2015-10-30] (Microsoft Corporation)
S3 MessagingService_980a6; C:\WINDOWS\SysWOW64\svchost.exe [37256 2015-10-30] (Microsoft Corporation)
R2 OneSyncSvc_980a6; C:\WINDOWS\system32\svchost.exe [43944 2015-10-30] (Microsoft Corporation)
R2 OneSyncSvc_980a6; C:\WINDOWS\SysWOW64\svchost.exe [37256 2015-10-30] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_980a6; C:\WINDOWS\system32\svchost.exe [43944 2015-10-30] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_980a6; C:\WINDOWS\SysWOW64\svchost.exe [37256 2015-10-30] (Microsoft Corporation)
S3 TieringEngineService; C:\Windows\system32\TieringEngineService.exe [290304 2015-10-30] (Microsoft Corporation)
S3 tzautoupdate; C:\Windows\system32\tzautoupdate.dll [87040 2015-10-30] (Microsoft Corporation)
S3 UnistoreSvc_980a6; C:\WINDOWS\System32\svchost.exe [43944 2015-10-30] (Microsoft Corporation)
S3 UnistoreSvc_980a6; C:\WINDOWS\SysWOW64\svchost.exe [37256 2015-10-30] (Microsoft Corporation)
S3 UserDataSvc_980a6; C:\WINDOWS\system32\svchost.exe [43944 2015-10-30] (Microsoft Corporation)
S3 UserDataSvc_980a6; C:\WINDOWS\SysWOW64\svchost.exe [37256 2015-10-30] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 bcmfn; C:\Windows\System32\drivers\bcmfn.sys [9728 2015-10-30] (Windows (R) Win 7 DDK provider)
S3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30352 2014-12-27] (Disc Soft Ltd)
R3 e1cexpress; C:\Windows\system32\DRIVERS\e1c63x64.sys [498032 2012-07-15] (Intel Corporation)
S3 iai2c; C:\Windows\System32\drivers\iai2c.sys [81408 2015-10-30] (Intel(R) Corporation)
S3 iaLPSS2i_I2C; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [165888 2015-10-30] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [193336 2015-07-10] (Intel Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [28344 2015-08-24] (Windows (R) Win 7 DDK provider)
S3 rzbtendpt; C:\Windows\System32\drivers\rzbtendpt.sys [51912 2015-08-13] (Razer Inc)
S3 rzdaendpt; C:\Windows\System32\drivers\rzdaendpt.sys [43720 2015-08-13] (Razer Inc)
S3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc)
S3 rzhnet; C:\Windows\System32\Drivers\rzhnet.sys [29912 2015-08-13] (Razer Inc)
S3 rzjstk; C:\Windows\System32\drivers\rzjstk.sys [36568 2015-08-13] (Razer Inc)
S3 rzkeypadendpt; C:\Windows\System32\drivers\rzkeypadendpt.sys [46280 2015-08-13] (Razer Inc)
S3 rzmpos; C:\Windows\System32\drivers\rzmpos.sys [48840 2015-08-13] (Razer Inc)
S3 rzp1endpt; C:\Windows\System32\drivers\rzp1endpt.sys [52424 2015-08-13] (Razer Inc)
S3 rzvkeyboard; C:\Windows\System32\drivers\rzvkeyboard.sys [44232 2015-08-13] (Razer Inc)
S3 rzvmouse; C:\Windows\System32\drivers\rzvmouse.sys [42712 2015-08-13] (Razer Inc)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [45056 2015-10-30] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-21 03:56 - 2015-11-21 03:56 - 00028672 ___SH C:\WINDOWS\system32\config\BCD-Template.LOG
2015-11-21 03:56 - 2015-11-21 03:56 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-11-21 03:56 - 2015-11-21 03:56 - 00000000 ____D C:\Windows.old
2015-11-21 03:56 - 2015-11-20 19:08 - 00000000 ___DC C:\WINDOWS\Panther
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\winrm
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\slmgr
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\0409
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\Setup
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\OCR
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\Program Files\MSBuild
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-11-21 03:55 - 2015-11-21 03:55 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-11-21 03:54 - 2015-11-20 18:58 - 00001720 _____ C:\WINDOWS\DtcInstall.log
2015-11-21 03:54 - 2015-10-30 08:19 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-11-21 03:54 - 2015-10-30 08:19 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-21 03:53 - 2015-11-21 03:56 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ___SD C:\WINDOWS\system32\dsc
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\setup
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\migwiz
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\system32\Com
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\IME
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\Program Files\Windows Defender
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\Program Files\Common Files\System
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-11-21 03:53 - 2015-11-21 03:55 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 __RSD C:\WINDOWS\Media
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 __RSD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 __RSD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___SD C:\WINDOWS\SysWOW64\Nui
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___SD C:\WINDOWS\system32\Nui
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___SD C:\WINDOWS\system32\Configuration
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___SD C:\Program Files\WindowsPowerShell
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___SD C:\Program Files (x86)\WindowsPowerShell
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\Web
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\Vss
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\tracing
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\TAPI
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\WindowsPowerShell
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\uk-UA
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\th-TH
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\sru
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-RS
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-CS
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\sppui
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\spp
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\Speech_OneCore
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\Speech
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\sl-SI
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\sk-SK
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\ro-RO
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\restore
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\Recovery
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\RasToast
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\ras
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\networklist
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\NDF
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\MsDtc
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\MSDRM
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\Licenses
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\icsxml
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\hr-HR
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\he-IL
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\fr-CA
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\es-MX
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\downlevel
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\bg-BG
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\ar-SA
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SystemResources
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\winevt
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\WindowsPowerShell
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\uk-UA
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\th-TH
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-CS
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\sppui
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\spp
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\Speech_OneCore
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\Speech
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\sl-SI
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\sk-SK
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\ro-RO
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\restore
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\RasToast
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\ras
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\ProximityToast
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\PointOfService
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\networklist
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\MsDtc
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\MSDRM
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\Macromed
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\Licenses
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\Ipmi
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\IME
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\icsxml
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\ias
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\hr-HR
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\he-IL
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\fr-CA
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\et-EE
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\es-MX
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\en-GB
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\downlevel
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\config\Journal
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\Bthprops
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\bg-BG
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\ar-SA
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\AppLocker
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system\Speech
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\System
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\Speech_OneCore
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\Speech
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SKB
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\ShellNew
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\security
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\schemas
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\SchCache
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\Resources
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\rescache
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\RemotePackages
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\Registration
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\Provisioning
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\PLA
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\Performance
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\InputMethod
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\Globalization
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\Cursors
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\CSC
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\Branding
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\bcastdvr
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\appcompat
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\addins
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\ProgramData\USOPrivate
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\ProgramData\Comms
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\Program Files\Windows Portable Devices
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\Program Files\Windows NT
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\Program Files\Common Files\Services
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\Program Files (x86)\Windows NT
2015-11-21 03:53 - 2015-11-21 03:53 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2015-11-21 03:53 - 2015-11-21 03:52 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2015-11-21 03:53 - 2015-11-21 03:52 - 00215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2015-11-21 03:53 - 2015-11-21 03:52 - 00215943 _____ C:\WINDOWS\system32\dssec.dat
2015-11-21 03:53 - 2015-11-21 03:52 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2015-11-21 03:53 - 2015-11-21 03:52 - 00017463 _____ C:\WINDOWS\system32\Drivers\etc\services
2015-11-21 03:53 - 2015-11-21 03:52 - 00015462 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2015-11-21 03:53 - 2015-11-21 03:52 - 00008798 _____ C:\WINDOWS\SysWOW64\icrav03.rat
2015-11-21 03:53 - 2015-11-21 03:52 - 00008798 _____ C:\WINDOWS\system32\icrav03.rat
2015-11-21 03:53 - 2015-11-21 03:52 - 00003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2015-11-21 03:53 - 2015-11-21 03:52 - 00001988 _____ C:\WINDOWS\SysWOW64\ticrf.rat
2015-11-21 03:53 - 2015-11-21 03:52 - 00001988 _____ C:\WINDOWS\system32\ticrf.rat
2015-11-21 03:53 - 2015-11-21 03:52 - 00001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2015-11-21 03:53 - 2015-11-21 03:52 - 00000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2015-11-21 03:53 - 2015-11-21 03:52 - 00000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2015-11-21 03:53 - 2015-11-21 03:52 - 00000741 _____ C:\WINDOWS\system32\NOISE.DAT
2015-11-21 03:53 - 2015-11-21 03:52 - 00000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2015-11-21 03:53 - 2015-11-21 03:52 - 00000219 _____ C:\WINDOWS\system.ini
2015-11-21 03:53 - 2015-11-21 03:52 - 00000092 _____ C:\WINDOWS\win.ini
2015-11-21 03:53 - 2015-11-20 19:14 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-21 03:53 - 2015-11-20 19:09 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-11-21 03:53 - 2015-11-20 19:09 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-11-21 03:53 - 2015-11-20 19:09 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-11-21 03:53 - 2015-11-20 19:09 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-11-21 03:53 - 2015-11-20 19:08 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-11-21 03:53 - 2015-11-20 19:08 - 00000000 ____D C:\WINDOWS\system32\spool
2015-11-21 03:53 - 2015-11-20 19:08 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-11-21 03:53 - 2015-11-20 19:07 - 00000000 __RHD C:\Users\Public\Libraries
2015-11-21 03:53 - 2015-11-20 19:07 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-11-21 03:53 - 2015-11-20 18:59 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-21 03:53 - 2015-11-20 18:58 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-11-21 03:53 - 2015-11-20 18:58 - 00000000 ____D C:\WINDOWS\Help
2015-11-21 03:50 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-21 03:48 - 2015-11-21 03:56 - 00000000 ___HD C:\$Windows.~BT
2015-11-21 03:48 - 2015-11-21 03:55 - 00000000 ____D C:\WINDOWS\servicing
2015-11-21 03:48 - 2015-11-21 03:53 - 00000000 ____D C:\WINDOWS\system32\SMI
2015-11-21 03:48 - 2015-11-20 19:08 - 00000000 __RHD C:\Users\Default
2015-11-21 03:48 - 2015-11-20 18:59 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-11-21 03:48 - 2015-11-20 18:57 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-11-21 03:48 - 2015-10-30 07:33 - 00000164 _____ C:\WINDOWS\system32\config\FP
2015-11-21 03:47 - 2015-11-21 03:48 - 00000000 ___HD C:\$SysReset
2015-11-21 02:12 - 2015-11-21 02:12 - 00000000 _____ C:\Recovery.txt
2015-11-20 19:19 - 2015-11-20 19:19 - 00007063 _____ C:\Users\Georg\Downloads\FRST.txt
2015-11-20 19:19 - 2015-11-20 19:19 - 00000000 ____D C:\FRST
2015-11-20 19:18 - 2015-11-20 19:18 - 02020352 _____ (Farbar) C:\Users\Georg\Downloads\FRST64.exe
2015-11-20 19:16 - 2015-11-20 19:16 - 00050477 _____ C:\Users\Georg\Downloads\Defogger (1).exe
2015-11-20 19:15 - 2015-11-20 19:15 - 00000552 _____ C:\Users\Georg\Desktop\JRT.txt
2015-11-20 19:14 - 2015-11-20 19:14 - 01599080 _____ (Malwarebytes) C:\Users\Georg\Downloads\JRT (1).exe
2015-11-20 19:13 - 2015-11-20 19:13 - 00879220 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-20 19:12 - 2015-11-20 19:12 - 00000000 ____D C:\Users\Georg\AppData\Local\MicrosoftEdge
2015-11-20 19:11 - 2015-11-20 19:11 - 00002338 _____ C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-20 19:10 - 2015-11-20 19:10 - 00012174 _____ C:\Users\Georg\Desktop\Removed Apps.html
2015-11-20 19:10 - 2015-11-20 19:10 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-11-20 19:09 - 2015-11-20 19:09 - 00000020 ___SH C:\Users\Georg\ntuser.ini
2015-11-20 19:09 - 2015-11-20 19:09 - 00000000 ____D C:\Users\Georg\AppData\Roaming\Adobe
2015-11-20 19:09 - 2015-11-20 19:09 - 00000000 ____D C:\Users\Georg\AppData\Local\VirtualStore
2015-11-20 19:09 - 2015-11-20 19:09 - 00000000 ____D C:\Users\Georg\AppData\Local\TileDataLayer
2015-11-20 19:09 - 2015-11-20 19:09 - 00000000 ____D C:\Users\Georg\AppData\Local\Publishers
2015-11-20 19:09 - 2015-11-20 19:09 - 00000000 ____D C:\Users\Georg\AppData\Local\Packages
2015-11-20 19:09 - 2015-11-20 19:09 - 00000000 ____D C:\Users\Georg\AppData\Local\ActiveSync
2015-11-20 19:08 - 2015-11-20 19:08 - 00000000 __SHD C:\Recovery
2015-11-20 19:08 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-11-20 19:07 - 2015-11-21 03:53 - 00000000 __RSD C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-11-20 19:07 - 2015-11-21 03:53 - 00000000 ___RD C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-20 19:07 - 2015-11-21 03:53 - 00000000 ___RD C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-20 19:07 - 2015-11-21 03:53 - 00000000 ____D C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-11-20 19:07 - 2015-11-20 19:09 - 00000000 ___RD C:\Users\Georg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-20 19:07 - 2015-11-20 19:09 - 00000000 ____D C:\Users\Georg
2015-11-20 18:58 - 2015-11-20 19:07 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-20 18:58 - 2015-11-20 18:58 - 00000000 ____D C:\ProgramData\USOShared
2015-11-20 18:58 - 2015-11-20 18:58 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-20 18:58 - 2015-07-23 02:10 - 06873928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-11-20 18:58 - 2015-07-23 02:10 - 03493008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-11-20 18:58 - 2015-07-23 02:10 - 02558608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-11-20 18:58 - 2015-07-23 02:10 - 00937800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-11-20 18:58 - 2015-07-23 02:10 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-11-20 18:58 - 2015-07-23 02:10 - 00062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-11-20 18:58 - 2015-07-22 05:29 - 05121613 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-11-20 18:57 - 2015-11-20 19:07 - 00189240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-20 18:57 - 2015-11-20 19:07 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-20 18:57 - 2015-11-20 18:58 - 00004787 _____ C:\WINDOWS\setupact.log
2015-11-20 18:57 - 2015-11-20 18:58 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-11-20 18:57 - 2015-11-20 18:57 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-11-20 18:57 - 2015-11-20 18:57 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-11-20 18:57 - 2015-11-20 18:57 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-11-20 18:36 - 2015-11-20 18:37 - 00000000 ____D C:\AdwCleaner
2015-11-20 18:29 - 2015-11-20 18:29 - 00001036 _____ C:\Users\Georg\Desktop\mbam.txt
2015-11-20 18:26 - 2015-11-20 18:26 - 00000000 ____D C:\Users\Georg\Documents\The Witcher 3
2015-11-20 18:24 - 2015-11-20 19:14 - 01599080 _____ (Malwarebytes) C:\Users\Georg\Downloads\JRT.exe
2015-11-20 18:24 - 2015-11-20 18:34 - 01732096 _____ C:\Users\Georg\Downloads\AdwCleaner_5.021.exe
2015-11-20 18:22 - 2015-11-20 19:16 - 00000472 _____ C:\Users\Georg\Downloads\defogger_disable.log
2015-11-20 18:22 - 2015-11-20 18:22 - 00000000 _____ C:\Users\Georg\defogger_reenable
2015-11-20 18:21 - 2015-11-20 18:22 - 00050477 _____ C:\Users\Georg\Downloads\Defogger.exe
2015-11-20 18:11 - 2015-11-20 18:26 - 00000000 ____D C:\Users\Georg\Documents\My Games
2015-11-20 17:59 - 2015-11-20 17:59 - 00597304 _____ C:\Users\Georg\Downloads\flux-setup.exe
2015-11-20 17:56 - 2015-11-20 17:57 - 22908888 _____ (Malwarebytes ) C:\Users\Georg\Downloads\mbam-setup-2.2.0.1024.exe
2015-11-20 17:52 - 2015-11-20 17:53 - 30429079 _____ (Dustin Blackman ) C:\Users\Georg\Downloads\Championify.Windows_Setup.1-2-0.exe
2015-11-20 17:44 - 2015-08-24 23:07 - 00028344 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\nvswcfilter.sys
2015-11-20 17:39 - 2015-11-20 17:39 - 31017664 _____ (TeamSpeak Systems GmbH) C:\Users\Georg\Downloads\TeamSpeak3-Client-win64-3.0.18.2.exe
2015-11-20 17:34 - 2015-11-20 17:36 - 18220192 _____ (Adobe Systems Inc.) C:\Users\Georg\Downloads\AdobeAIRInstaller.exe
2015-11-20 17:33 - 2015-11-20 17:41 - 100271992 _____ (Microsoft Corporation) C:\Users\Georg\Downloads\directx_Jun2010_redist.exe
2015-11-20 17:31 - 2015-11-20 17:43 - 38754296 _____ (NVIDIA Corporation) C:\Users\Georg\Downloads\GeForce_Experience_v2.7.4.10.exe
2015-11-20 17:30 - 2015-11-20 17:30 - 00000000 ____D C:\Users\Georg\AppData\LocalLow\Sun
2015-11-20 17:30 - 2015-11-20 17:30 - 00000000 ____D C:\Users\Georg\.oracle_jre_usage
2015-11-20 17:26 - 2015-11-20 17:26 - 00000000 ____D C:\Users\Georg\AppData\LocalLow\Oracle
2015-11-20 17:21 - 2015-11-20 17:23 - 00243976 _____ C:\Users\Georg\Desktop\Firefox Setup Stub 42.0.exe
2015-11-20 17:21 - 2015-11-20 17:22 - 107441555 _____ C:\Users\Georg\Desktop\SophosAV.exe
2015-11-20 17:21 - 2015-11-20 15:51 - 22539096 _____ (Razer Inc.) C:\Users\Georg\Desktop\Razer_Synapse_Framework_V1.18.21.27748.exe
2015-11-20 17:21 - 2015-11-20 15:51 - 00584288 _____ (Oracle Corporation) C:\Users\Georg\Desktop\JavaSetup8u66.exe
2015-11-20 17:21 - 2015-11-20 15:50 - 01847144 _____ (Malwarebytes ) C:\Users\Georg\Desktop\mbae-setup-1.08.1.1044.exe
2015-11-20 17:20 - 2015-11-20 19:11 - 00000000 ___RD C:\Users\Georg\OneDrive
2015-11-20 16:27 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-11-20 16:27 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-11-20 16:27 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-11-20 16:27 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-11-20 16:27 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-11-20 16:27 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-30 08:20 - 2015-10-30 08:20 - 00926208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSRESM.dll
2015-10-30 08:20 - 2015-10-30 08:20 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2015-10-30 08:20 - 2015-10-30 08:20 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2015-10-30 08:20 - 2015-10-30 08:20 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2015-10-30 08:20 - 2015-10-30 08:20 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOM.dll
2015-10-30 08:20 - 2015-10-30 08:20 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxproxy.dll
2015-10-30 08:20 - 2015-10-30 08:20 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinFax.dll
2015-10-30 08:19 - 2015-10-30 10:07 - 02535424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysis.dll
2015-10-30 08:19 - 2015-10-30 10:07 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrptadm.dll
2015-10-30 08:19 - 2015-10-30 10:07 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2015-10-30 08:19 - 2015-10-30 10:07 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDist.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsCpl.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsCpl.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AdmTmpl.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDistSh.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SrpUxNativeSnapIn.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00295936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppIdPolicyEngineApi.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00274224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditNativeSnapIn.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2015-10-30 08:19 - 2015-10-30 10:06 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgmts.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00147439 _____ C:\WINDOWS\SysWOW64\gpedit.msc
2015-10-30 08:19 - 2015-10-30 10:06 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\auditpolmsg.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditPolicyGPInterop.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfdts.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00043566 _____ C:\WINDOWS\SysWOW64\rsop.msc
2015-10-30 08:19 - 2015-10-30 10:06 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.exe
2015-10-30 08:19 - 2015-10-30 10:06 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rfxvmt.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorPerformanceEvents.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\jnwmon.dll
2015-10-30 08:19 - 2015-10-30 10:06 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorCustomAdbAlgorithm.dll
2015-10-30 08:19 - 2015-10-30 10:02 - 06359040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-10-30 08:19 - 2015-10-30 10:02 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-10-30 08:19 - 2015-10-30 10:02 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-10-30 08:19 - 2015-10-30 10:02 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-10-30 08:19 - 2015-10-30 10:02 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 28851224 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 19338752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 18677248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 12585984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 12120064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 09375232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2015-10-30 08:19 - 2015-10-30 08:19 - 09375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2015-10-30 08:19 - 2015-10-30 08:19 - 06971392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 05321728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 04830896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 04646400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 04238848 _____ (Microsoft) C:\WINDOWS\SysWOW64\GameUXLegacyGDFs.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 04238848 _____ (Microsoft) C:\WINDOWS\system32\GameUXLegacyGDFs.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 04170240 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 03750912 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 03573248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 03549184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 03415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 03301376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 02842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-10-30 08:19 - 2015-10-30 08:19 - 02731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 02331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2015-10-30 08:19 - 2015-10-30 08:19 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-10-30 08:19 - 2015-10-30 08:19 - 01976832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01859584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01732272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01572864 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0000.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 01558528 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01517056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0000.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01432064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxpTaskSync.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01390592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01389056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxpTaskSync.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01211392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01186816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01163776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2015-10-30 08:19 - 2015-10-30 08:19 - 01140224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01138688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2015-10-30 08:19 - 2015-10-30 08:19 - 01129472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01088512 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01054912 _____ (Microsoft Corporation) C:\WINDOWS\system32\drmv2clt.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00993632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00992256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00987848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSRESM.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00918016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00901824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drmv2clt.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00859648 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSST.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00851456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00829616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Bubbles.scr
2015-10-30 08:19 - 2015-10-30 08:19 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\blackbox.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Bubbles.scr
2015-10-30 08:19 - 2015-10-30 08:19 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sbe.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdcpl.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartCardSimulator.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedwipes.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedwipes.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\elslad.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00690016 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFSR.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSSVC.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00649400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\blackbox.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceApi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\OobeFldr.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OobeFldr.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\psisdecd.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\elslad.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00588320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2015-10-30 08:19 - 2015-10-30 08:19 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00577536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00546816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmsdk.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceApi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2015-10-30 08:19 - 2015-10-30 08:19 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpunits.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psisdecd.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00495848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmdev.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00484552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmnet.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiashext.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetworkCollectionAgent.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadefui.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiashext.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceStatus.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00433896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCEWMDRMNDBootstrap.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceStatus.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswmdm.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSE.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadefui.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncInfrastructure.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSTIFF.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmnet.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provsvc.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDSp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswmdm.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncInfrastructure.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-10-30 08:19 - 2015-10-30 08:19 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\drmmgrtn.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srchadmin.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00312552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCEWMDRMNDBootstrap.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WPDSp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00305296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcl.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dxpserver.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\scansetting.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drmmgrtn.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSNP.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cewmdm.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXST30.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scansetting.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00253080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00249976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2015-10-30 08:19 - 2015-10-30 08:19 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\elshyph.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOVER.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationHost.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpeval.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\audiodev.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\unregmp2.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSyncMetastore.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\url.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cewmdm.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr
2015-10-30 08:19 - 2015-10-30 08:19 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drt.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSNP.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EhStorShell.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cleanmgr.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ssText3d.scr
2015-10-30 08:19 - 2015-10-30 08:19 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cleanmgr.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00202472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00201728 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\elshyph.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbeio.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00197632 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\ir32_32original.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceWMDRM.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB7.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\recdisc.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unregmp2.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceTypes.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSyncMetastore.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\moricons.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moricons.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSUTILITY.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\charmap.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncui.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceWMDRM.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountExtension.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\charmap.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00168360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrdc.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceSyncProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceWiaCompat.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncui.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00153920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpps.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00153600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sbeio.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00152576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iexpress.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmidx.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceTypes.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Mystify.scr
2015-10-30 08:19 - 2015-10-30 08:19 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Ribbons.scr
2015-10-30 08:19 - 2015-10-30 08:19 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\immersivetpmvscmgrsvr.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00142848 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSyncProviders.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvscmgrsvr.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\msnetobj.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmttpmvscmgrsvr.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wextract.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceMetadataRetrievalClient.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceSyncProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceWiaCompat.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Mystify.scr
2015-10-30 08:19 - 2015-10-30 08:19 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\EhStorAPI.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Ribbons.scr
2015-10-30 08:19 - 2015-10-30 08:19 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wclPowrProf.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceClassExtension.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\EhStorAuthn.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wclUnicode.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\raserver.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EhStorAuthn.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EhStorAPI.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msnetobj.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManagerAPI.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSyncProviders.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\isoburn.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceClassExtension.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00113664 _____ (Microsoft) C:\WINDOWS\system32\SMBHelperClass.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\EhStorPwdMgr.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEAdvpack.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\racpldlg.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\psisrndr.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msra.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EhStorPwdMgr.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Mpeg2Data.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\kstvtune.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSXP32.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\isoburn.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raserver.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiascanprofiles.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvscmgr.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidfdp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\whealogr.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdaplgin.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSTPager.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\synceng.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\cca.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaacmgr.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdmps.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Cache.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseLiveTileTask.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kstvtune.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00093702 _____ C:\WINDOWS\SysWOW64\SubRange.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00093702 _____ C:\WINDOWS\system32\SubRange.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiascanprofiles.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOM.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inseng.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pwrshplugin.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psisrndr.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mobsync.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSDvbNP.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00086528 _____ (Radius Inc.) C:\WINDOWS\SysWOW64\iccvid.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logagent.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srhelper.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaacmgr.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mobsync.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00084992 _____ (Microsoft) C:\WINDOWS\SysWOW64\SMBHelperClass.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\recovery.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Mpeg2Data.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountControlSettings.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSSessionUX.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSTPager.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSROUTE.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Syncreg.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ELSCore.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bdaplgin.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingHost.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BlbEvents.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxproxy.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\synceng.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cca.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2015-10-30 08:19 - 2015-10-30 08:19 - 00076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2015-10-30 08:19 - 2015-10-30 08:19 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
         

12. FRST Part 2

Code: Alles auswählenAufklappen

ATTFilter

2015-10-30 08:19 - 2015-10-30 08:19 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msauserext.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2015-10-30 08:19 - 2015-10-30 08:19 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WABSyncProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceConnectApi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSDvbNP.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00071824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialUIBroker.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pnrpnsp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksxbar.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\scavengeui.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidfdp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountControlSettings.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00068280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountControlSettings.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartScreenSettings.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\blb_ps.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sberes.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\sberes.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidnsp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartScreenSettings.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountControlSettings.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ELSCore.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Syncreg.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srclient.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pngfilt.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00060458 _____ C:\WINDOWS\SysWOW64\ideograf.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00060458 _____ C:\WINDOWS\system32\ideograf.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00060416 _____ (Twain Working Group) C:\WINDOWS\twain_32.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hcproviders.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WABSyncProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceConnectApi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wclEtw.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00058920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialUIBroker.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drtprov.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrTasks.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksxbar.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WPDShServiceObj.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00056320 _____ (Microsoft) C:\WINDOWS\SysWOW64\cero.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00055296 _____ (Microsoft) C:\WINDOWS\SysWOW64\fpb.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00052736 _____ (Microsoft) C:\WINDOWS\SysWOW64\esrb.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConnectedAccountState.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msauserext.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationHostProxy.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdchange.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmler.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbisurf.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSMON.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncHost.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00047544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00046592 _____ (Microsoft) C:\WINDOWS\SysWOW64\oflc-nz.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00044544 _____ (Microsoft) C:\WINDOWS\SysWOW64\csrr.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.tlb
2015-10-30 08:19 - 2015-10-30 08:19 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drttransport.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConnectedAccountState.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.tlb
2015-10-30 08:19 - 2015-10-30 08:19 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hcproviders.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidnsp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00041984 _____ (Microsoft) C:\WINDOWS\SysWOW64\cob-au.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imgutil.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbisurf.ax
2015-10-30 08:19 - 2015-10-30 08:19 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdchange.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncHost.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdmlog.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSEXT32.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiawow64.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxpps.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdmps.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\tvratings.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncInfrastructureps.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToStatusProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSERES.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDriverRetrievalClient.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdmlog.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00032256 _____ (Microsoft) C:\WINDOWS\SysWOW64\usk.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentHost.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tvratings.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsepno.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShextAutoplay.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinFax.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\elsTrans.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00030560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WpdUpFltr.sys
2015-10-30 08:19 - 2015-10-30 08:19 - 00030400 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToStatusProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00029408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraSettingsUIHost.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ms3dthumbnailprovider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MemoryDiagnostic.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\DsmUserTask.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licmgr10.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WPDShextAutoplay.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscisvif.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\srwmi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscTimer.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\elsTrans.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00024006 _____ C:\WINDOWS\SysWOW64\gb2312.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00024006 _____ C:\WINDOWS\system32\gb2312.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ms3dthumbnailprovider.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00022984 _____ C:\WINDOWS\SysWOW64\bopomofo.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00022984 _____ C:\WINDOWS\system32\bopomofo.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00022528 _____ (Microsoft) C:\WINDOWS\SysWOW64\grb.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00021504 _____ (Microsoft) C:\WINDOWS\SysWOW64\pegi-pt.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00021504 _____ (Microsoft) C:\WINDOWS\SysWOW64\pegi.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscisvif.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\VscMgrPS.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dscproxy.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteWipeCSP.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\amcompat.tlb
2015-10-30 08:19 - 2015-10-30 08:19 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\srdelayed.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSUNATD.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\amcompat.tlb
2015-10-30 08:19 - 2015-10-30 08:19 - 00019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntosext.sys
2015-10-30 08:19 - 2015-10-30 08:19 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00018600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00018600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vdmdbg.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncInfrastructureps.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srdelayed.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00016740 _____ C:\WINDOWS\SysWOW64\ShiftJIS.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00016740 _____ C:\WINDOWS\system32\ShiftJIS.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00016384 _____ (Microsoft) C:\WINDOWS\SysWOW64\djctq.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentTask.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00015872 _____ (Microsoft) C:\WINDOWS\SysWOW64\pcbp.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wclSqm.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msidcrl40.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncHostps.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecondaryTileExperienceCallback.ProxyStub.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootim.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VscMgrPS.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msidcrl40.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshta.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00012876 _____ C:\WINDOWS\SysWOW64\korean.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00012876 _____ C:\WINDOWS\system32\korean.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncHostps.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiaExtensionHost64.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WallpaperHost.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\getuname.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00010429 _____ C:\WINDOWS\system32\ScavengeSpace.xml
2015-10-30 08:19 - 2015-10-30 08:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LAPRXY.DLL
2015-10-30 08:19 - 2015-10-30 08:19 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00008960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\typelib.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00008960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storage.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00008960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole2nls.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00008960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole2disp.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00008960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole2.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00008960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compobj.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00008928 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-10-30 08:19 - 2015-10-30 08:19 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ir32_32.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\getuname.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wclWdi.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSEVENT.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00008484 _____ C:\WINDOWS\SysWOW64\kanji_2.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00008484 _____ C:\WINDOWS\system32\kanji_2.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00008352 _____ C:\WINDOWS\system32\ResPriImageList
2015-10-30 08:19 - 2015-10-30 08:19 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2015-10-30 08:19 - 2015-10-30 08:19 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2015-10-30 08:19 - 2015-10-30 08:19 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2015-10-30 08:19 - 2015-10-30 08:19 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2015-10-30 08:19 - 2015-10-30 08:19 - 00006948 _____ C:\WINDOWS\SysWOW64\kanji_1.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00006948 _____ C:\WINDOWS\system32\kanji_1.uce
2015-10-30 08:19 - 2015-10-30 08:19 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2015-10-30 08:19 - 2015-10-30 08:19 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00005120 _____ (Microsoft) C:\WINDOWS\SysWOW64\WEB.rs
2015-10-30 08:19 - 2015-10-30 08:19 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2015-10-30 08:19 - 2015-10-30 08:19 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrEvents.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmerror.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asferror.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmerror.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\blbres.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 00002349 ____S C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk
2015-10-30 08:19 - 2015-10-30 08:19 - 00002199 ____S C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrintDialog.lnk
2015-10-30 08:19 - 2015-10-30 08:19 - 00002197 ____S C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Devices Flow.lnk
2015-10-30 08:19 - 2015-10-30 08:19 - 00001649 _____ C:\WINDOWS\SysWOW64\WindowsCodecsRaw.txt
2015-10-30 08:19 - 2015-10-30 08:19 - 00001649 _____ C:\WINDOWS\system32\WindowsCodecsRaw.txt
2015-10-30 08:18 - 2015-10-30 10:07 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mblctr.exe
2015-10-30 08:18 - 2015-10-30 10:07 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll
2015-10-30 08:18 - 2015-10-30 10:07 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditNativeSnapIn.dll
2015-10-30 08:18 - 2015-10-30 10:07 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpolmsg.dll
2015-10-30 08:18 - 2015-10-30 10:07 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 04170752 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 03608064 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysis.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 01978880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 01359872 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00833536 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwcreator.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCacheProvider.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvgogl32.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrptadm.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2015-10-30 08:18 - 2015-10-30 10:06 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SnippingTool.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmscan.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSh.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00307312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscobj.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmstormod.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddputils.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ppcsnap.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SNTSearch.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddpchunk.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tspubwmi.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationSettings.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscobj.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmstormod.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvgocl32.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrreg.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmshell.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCleaner.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveprompt.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00152576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvgu1132.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00147808 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00147439 _____ C:\WINDOWS\system32\gpedit.msc
2015-10-30 08:18 - 2015-10-30 10:06 - 00146389 _____ C:\WINDOWS\system32\printmanagement.msc
2015-10-30 08:18 - 2015-10-30 10:06 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddptrace.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\adrclient.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfg.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmshell.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00120458 _____ C:\WINDOWS\system32\secpol.msc
2015-10-30 08:18 - 2015-10-30 10:06 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\baaupdate.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00109056 _____ C:\WINDOWS\system32\RDVGHelper.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adrclient.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizardElev.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizard.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvgumd32.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageInspector.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmlib.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmlib.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsign.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmtrace.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dggpext.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\DFDWiz.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintBrmUi.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmtrace.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistHttpTrans.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddp_ps.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00052064 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedapplauncher.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\RotMgr.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrcomp.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessCsp.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00043566 _____ C:\WINDOWS\system32\rsop.msc
2015-10-30 08:18 - 2015-10-30 10:06 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistAD.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00041312 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmbeddedAppLauncherConfig.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm_ps.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00029536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2015-10-30 08:18 - 2015-10-30 10:06 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwinsta.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\qprocess.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32_DeviceGuard.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\quser.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgport.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\qappsrv.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetppui.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tskill.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsdiscon.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscon.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoff.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rwinsta.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\chglogon.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgusr.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\CIWmi.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\reset.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\change.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm_ps.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\query.exe
2015-10-30 08:18 - 2015-10-30 10:06 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSErrRedir.dll
2015-10-30 08:18 - 2015-10-30 10:06 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeSysprep.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 46258688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imageres.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 46258688 _____ (Microsoft Corporation) C:\WINDOWS\system32\imageres.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 24602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 22573656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 22394368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 21125920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 15048704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DDORes.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 13377024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 09569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmres.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 09569792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmres.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 07825920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 07805120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSetup.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 07527936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 07477600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 06974280 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 06734336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 06675968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 05865824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizimg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 05648560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 05511168 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 05391360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 05237336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 05120512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthFWSnapin.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 04894720 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 04827648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 04758528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 04502864 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 04405248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 04268360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 04143104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 04064320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 03789824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\accessibilitycpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 03679232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 03577344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 03440660 _____ C:\WINDOWS\SysWOW64\Drivers\gm.dls
2015-10-30 08:18 - 2015-10-30 08:18 - 03294208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 03170304 _____ C:\WINDOWS\SysWOW64\boot.sdi
2015-10-30 08:18 - 2015-10-30 08:18 - 03065344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 03053568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 03046400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02918296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02876928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02849792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02771968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-10-30 08:18 - 2015-10-30 08:18 - 02723840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02641928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 02634240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02632192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02624000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02597376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02596352 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02587696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02548432 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02527232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02485760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 02361856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02285568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02195128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02185832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02177024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 02144512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02121728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02106368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02102272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02064896 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02058240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\batmeter.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02005688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01997320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01987072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certmgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01934296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplaySwitch.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 01923440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplaySwitch.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 01915392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01872896 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01865584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01858424 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01847296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 01824264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01798144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01759688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 01755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01718272 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01679872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01676288 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01613664 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01589248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01582592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfshim.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01562112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01557504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01541280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01537024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01537024 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01535024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01520828 _____ C:\WINDOWS\system32\WpcNBModel.bin
2015-10-30 08:18 - 2015-10-30 08:18 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdt.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 01504768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01386496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm60.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01371792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01355344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01349128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01336832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-30 08:18 - 2015-10-30 08:18 - 01311232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\connect.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01298432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comres.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01297408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01284960 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01276928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01240064 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ogldrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01222144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dfshim.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01206784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01196032 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01194496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01187840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01180672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\networkexplorer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01174528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01166848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Pimstore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01162144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shellstyle.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\system32\shellstyle.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 01150976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 01138688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01123328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01100800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ogldrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01096192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 01085736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01083904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01083136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 01081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01068544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\onexui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01065472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskres.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01057960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01041920 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-30 08:18 - 2015-10-30 08:18 - 01020416 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkObjCore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 01009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00992256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi3.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00974680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00966656 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlceqp40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00965120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00952320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00946176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00930656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00928096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00924944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc40u.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00924944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallControlPanel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00889856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dim700.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00886112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi3.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00852992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00851456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdosys.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00846080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00839680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ir41_32original.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00836208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00820704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00814592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00807608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00794432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00789504 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00785088 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00773168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ipsecsnp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00759808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00746496 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ir50_32original.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00739328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlceqp40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkObjCore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00730352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00726288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanpref.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00716640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00707600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00706560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagesp1.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagesp1.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00692064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsuiext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00686984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00686080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00679776 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00675056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00673088 _____ C:\WINDOWS\SysWOW64\mlang.dat
2015-10-30 08:18 - 2015-10-30 08:18 - 00673088 _____ C:\WINDOWS\system32\mlang.dat
2015-10-30 08:18 - 2015-10-30 08:18 - 00672768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsuiext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vault.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlsrv32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00660992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dccw.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc_ssp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comuid.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppinst.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00644096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dccw.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00643072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00640464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00638304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00633760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\main.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00622592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\main.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\colorui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\riched20.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devmgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00620176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00619008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp60.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00613888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\colorui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dramp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00594976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp110_win.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00589856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00585568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00579424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IasMigPlugin.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00579424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provcore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psr.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_isv.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00563712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_9.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dfrgui.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\glmf32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlcese40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00538736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00536064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2015-10-30 08:18 - 2015-10-30 08:18 - 00535088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00526304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clbcatq.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00526068 _____ C:\WINDOWS\system32\staticurllist.bin
2015-10-30 08:18 - 2015-10-30 08:18 - 00525288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00521704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2015-10-30 08:18 - 2015-10-30 08:18 - 00516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\riched20.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdri.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00512816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00507904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxApplicabilityEngine.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00500576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00499432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00490752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnfldr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00486400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmdial32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_ssp_isv.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_ssp.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00481280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00481280 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00478720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnfldr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\filemgmt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\provsvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPTpm12.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\shwebsvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00454048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00453464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\localsec.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp60.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00442880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00440664 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ipsmsnap.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DbgModel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00435712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glmf32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsquery.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlcese40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shwebsvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\termmgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00430816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00426664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-10-30 08:18 - 2015-10-30 08:18 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\irprops.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdlgs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00417752 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\winsqlite3.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2015-10-30 08:18 - 2015-10-30 08:18 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdohlp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hnetcfg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdelta.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexch40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00408528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp110_win.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-10-30 08:18 - 2015-10-30 08:18 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsquery.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00403296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dim.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2015-10-30 08:18 - 2015-10-30 08:18 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscoree.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shrpubw.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wbemcomn.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xwizards.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00389472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SurfaceHubHandlers.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00385376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshipsec.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00380957 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\expsrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10_1core.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00380152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00379904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFSv1.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\termmgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00377696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00377560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00375648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hdwwiz.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00371360 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00371200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassdo.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00367968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgrx.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00366768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptuiwizard.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\srchadmin.dll
         

12. FRST Part 3

Code: Alles auswählenAufklappen

ATTFilter

2015-10-30 08:18 - 2015-10-30 08:18 - 00364544 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00360960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxclu.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authfwcfg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00358240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certreq.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00355680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10_1core.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00354144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secproc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00350680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\verifier.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secproc_isv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\eudcedit.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscoree.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\difxapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10core.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00339344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00338432 _____ (Intel Corporation.) C:\WINDOWS\SysWOW64\ir41_qcxoriginal.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00332656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00332104 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcfile.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00328520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cttune.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00324448 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00322560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certCredProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcjt32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10core.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00316640 _____ C:\WINDOWS\WMSysPr9.prx
2015-10-30 08:18 - 2015-10-30 08:18 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscandui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cttune.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00312160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSATAPI.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmontr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00307352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00306840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00304640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eudcedit.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthFWGP.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00300104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcbase.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00299600 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00298576 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00296800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysdm.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneOm.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdprint.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00293376 _____ C:\WINDOWS\SysWOW64\HrtfApo.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3ui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingASDS.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00292192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsnt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollUI.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00288224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskraid.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00278424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbroker.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\drt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00276336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00273752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2015-10-30 08:18 - 2015-10-30 08:18 - 00270672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powrprof.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00269616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00268040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wavemsp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsCfg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00262496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00260360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcuiu.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00258280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00258048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdprint.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00257024 _____ C:\WINDOWS\system32\MTFServer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2015-10-30 08:18 - 2015-10-30 08:18 - 00256192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt20.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00252928 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00252064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscandui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qwave.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00245368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVol.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3gpui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgprint.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mycomput.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2015-10-30 08:18 - 2015-10-30 08:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsnap.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mlang.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00230752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wavemsp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netdiagfx.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provthrd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00227680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00227328 _____ C:\WINDOWS\system32\MTF.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcint.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00224768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00224768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsldp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvisioningHandlers.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offfilt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstask.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsRasterService.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2015-10-30 08:18 - 2015-10-30 08:18 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msls31.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00220064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndfapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00219040 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qcap.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dskquoui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00218456 _____ C:\WINDOWS\system32\weretw.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00217976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgmgr32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskmgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsicpl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdiageng.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlceoledb40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xwtpdui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apds.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CortanaMapiHelper.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsldpc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00212272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVol.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00211938 _____ C:\WINDOWS\SysWOW64\lcphrase.tbl
2015-10-30 08:18 - 2015-10-30 08:18 - 00211938 _____ C:\WINDOWS\system32\lcphrase.tbl
2015-10-30 08:18 - 2015-10-30 08:18 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingFolder.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\remotepg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\onex.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remotepg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmime.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdmaud.drv
2015-10-30 08:18 - 2015-10-30 08:18 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00204128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ifsutil.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00204105 _____ C:\WINDOWS\SysWOW64\winrm.vbs
         

12. FRST Part 4

Code: Alles auswählenAufklappen

ATTFilter

2015-10-30 08:18 - 2015-10-30 08:18 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlDiagnostics.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icsigd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassam.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedyn.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00202592 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchangeHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmd.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00200536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpresult.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmidx.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00200192 _____ (Intel Corporation.) C:\WINDOWS\SysWOW64\ir50_qcoriginal.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msoeacct.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairingFolder.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00197632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iac25_32.ax
2015-10-30 08:18 - 2015-10-30 08:18 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00196808 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00195618 _____ C:\WINDOWS\SysWOW64\C_10002.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\PersonaX.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrdc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mlang.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\prncache.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactHarvesterDS.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00188768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlunirl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00187744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00187488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlandlg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsdmo.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\rgb9rast.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\fms.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msls31.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ C:\WINDOWS\system32\ism32k.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdiageng.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dskquoui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10_1.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00183896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\els.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00183808 _____ (Intel Corporation.) C:\WINDOWS\SysWOW64\ir50_qcxoriginal.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miguiresource.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00181776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsAuth.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\verifiergui.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsadmin.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00179256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\slr100.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00177698 _____ C:\WINDOWS\SysWOW64\C_10003.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Cortana.Persona.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00177208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsBroker.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdiagprv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaatext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvenotify.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.HardwareId.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00176624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntasn1.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlceoledb40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00175120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00173602 _____ C:\WINDOWS\SysWOW64\C_10008.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uireng.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\desk.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2015-10-30 08:18 - 2015-10-30 08:18 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\modemui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcorehc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\desk.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00169928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00168624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rometadata.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00167640 _____ C:\WINDOWS\SysWOW64\chs_singlechar_pinyin.dat
2015-10-30 08:18 - 2015-10-30 08:18 - 00167640 _____ C:\WINDOWS\system32\chs_singlechar_pinyin.dat
2015-10-30 08:18 - 2015-10-30 08:18 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\softkbd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00167336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ocsetapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itircl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fde.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00164224 _____ C:\WINDOWS\SysWOW64\weretw.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfmon.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mydocs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cabview.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00162850 _____ C:\WINDOWS\SysWOW64\C_10001.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdminst.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CortanaMapiHelper.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00159584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsRasterService.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdiagprv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mimofcodec.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keymgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00157696 _____ C:\WINDOWS\SysWOW64\MTF.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmgp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10_1.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00157536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimCfg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\McxDriv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmitomi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mydocs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00154464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fms.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdadiag.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00152576 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00150840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntmarta.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\L2SecHC.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cabview.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00149019 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crtdll.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsicli.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ulib.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskpart.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00147808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsprop.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmCommon.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EthernetMediaManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00146944 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ivfsrc.ax
2015-10-30 08:18 - 2015-10-30 08:18 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2015-10-30 08:18 - 2015-10-30 08:18 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00145640 _____ C:\WINDOWS\SysWOW64\devmgmt.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00145519 _____ C:\WINDOWS\SysWOW64\perfmon.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netjoin.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00145127 _____ C:\WINDOWS\SysWOW64\eventvwr.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00145059 _____ C:\WINDOWS\SysWOW64\taskschd.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00144998 _____ C:\WINDOWS\SysWOW64\lusrmgr.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00144998 _____ C:\WINDOWS\system32\lusrmgr.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00144909 _____ C:\WINDOWS\SysWOW64\fsmgmt.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00144862 _____ C:\WINDOWS\SysWOW64\tpm.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\verifiergui.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlcecompact40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoplay.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00142904 _____ C:\WINDOWS\SysWOW64\slmgr.vbs
2015-10-30 08:18 - 2015-10-30 08:18 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCCSEngineShared.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00141664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uudf.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XamlDiagnostics.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Cortana.Persona.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\playtomenu.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrecst.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlhtml.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbctrac.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dsui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00137936 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\softkbd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prncache.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgcore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassvcs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpsapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00134352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00133984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxlib.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00133800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dssenh.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmidcom.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00132744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\gcdef.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usbceip.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fde.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00129888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00129368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00129160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devobj.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PersonaX.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00128648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimAuth.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsquirt.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Compression.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnscmmc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMediaManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaatext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netid.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\repair-bde.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2015-10-30 08:18 - 2015-10-30 08:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvfw32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fundisc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00124480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00124118 _____ C:\WINDOWS\SysWOW64\comexp.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xwtpw32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gcdef.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsExtensibilityHandlers.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00122944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00122944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cabinet.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00122504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dskquota.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00121880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rekeywiz.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmstyle.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dsui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsicpl.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00120672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlcecompact40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mimofcodec.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00120320 _____ (Intel Corporation.) C:\WINDOWS\SysWOW64\ir41_qcoriginal.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.ps.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Kswdmcap.ax
2015-10-30 08:18 - 2015-10-30 08:18 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgcore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsadu.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00117824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\control.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.ProxyStub.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppwmi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rshx32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00116216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdart.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcshext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceElementSource.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00115091 _____ C:\WINDOWS\SysWOW64\WF.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprmsg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IDStore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmsynth.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\control.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthFWWizFwk.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtstocom.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmview.ocx
2015-10-30 08:18 - 2015-10-30 08:18 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_OneCore_BatterySaver.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmusic.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00113656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxva2.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00113256 _____ C:\WINDOWS\SysWOW64\compmgmt.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasnap.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advpack.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2015-10-30 08:18 - 2015-10-30 08:18 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssadmin.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00111608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontview.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapiui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapiui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resmon.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\telephon.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbccp32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ufat.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\telephon.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00107408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oledlg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00106520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontview.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\remotesp.tsp
2015-10-30 08:18 - 2015-10-30 08:18 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\joinutil.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbnetlib.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletProxy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFSvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsadu.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngcredui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastInputMgr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\console.dll
         

12. FRST Part 5

Code: Alles auswählenAufklappen

ATTFilter

2015-10-30 08:18 - 2015-10-30 08:18 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\systeminfo.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\logagent.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2015-10-30 08:18 - 2015-10-30 08:18 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mskeyprotcli.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\tasklist.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xwreg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\loadperf.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\OptionalFeatures.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcksp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00101776 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\txflog.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Fondue.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlgpclnt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msoert2.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00099648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\avifil32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\joy.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00099176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logman.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Fondue.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comrepl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00097640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdsapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00097088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskkill.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winrscmd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoipRT.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmiv2.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dskquota.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmscript.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Narrator.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthExt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlsrv32.rll
2015-10-30 08:18 - 2015-10-30 08:18 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceProperties.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbio.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolss.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00092746 _____ C:\WINDOWS\SysWOW64\services.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olethk32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\joy.cpl
2015-10-30 08:18 - 2015-10-30 08:18 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceProperties.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\console.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00092480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fphc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpauditapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usbui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\radardt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mibincodec.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00090912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secproc_ssp_isv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secproc_ssp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapistub.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapi32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FingerprintEnrollment.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dispdiag.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmInit.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\networkhelper.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndfhcdiscovery.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00088496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00088416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlsbres.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remotesp.tsp
2015-10-30 08:18 - 2015-10-30 08:18 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2015-10-30 08:18 - 2015-10-30 08:18 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingWizard.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\colorcpl.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpnsp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spfileq.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\colorcpl.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00085720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00085312 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mciavi32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcirt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00084312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesRemote.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesProtection.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesPerformance.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesHardware.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesDataExecutionPrevention.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesComputerName.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesAdvanced.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvvmtransport.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netsh.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmstp.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtfwd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesRemote.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesProtection.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesHardware.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesDataExecutionPrevention.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesComputerName.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesAdvanced.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\amstream.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00082608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olecli32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\PINEnrollment.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPELoggingDictationHelper.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00082096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fingerprintcredential.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipcontainer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00081560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscories.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wecutil.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tasklist.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlaySndSrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventvwr.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSAppXHelper.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00081112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SPInf.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairingWizard.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pnrphc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00080560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmifw.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanext.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttpcom.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DpiScaling.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systeminfo.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bootcfg.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nslookup.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cliconfg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DpiScaling.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBrokerUI.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintIsolationHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DocumentPerformanceEvents.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\frprov.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00076464 _____ (Microsoft Corporation) C:\WINDOWS\system32\sessionmsg.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iashlpr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMSRoamingSecurity.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskkill.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcompos.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallButtons.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uexfat.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngcksp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mibincodec.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00073880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscories.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpbcreds.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpapimig.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbccu32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcad32.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndishc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sihost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slwga.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Query.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbccr32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmonui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eqossnap.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDScanProxy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Groupinghc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00071280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Printers.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUX.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00071008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\colbact.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaExt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertPolEng.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipsec.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SCardDlg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\makecab.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\avicap32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00069232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptsp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00069224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\playlistfolder.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00068752 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\loghours.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsockhc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinMsoIrmProtector.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvvmtransport.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\drtprov.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmci.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\driverquery.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationHostProxy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samcli.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hbaapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00066594 _____ C:\WINDOWS\SysWOW64\C_437.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066594 _____ C:\WINDOWS\system32\C_437.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoveDeviceContextHandler.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_875.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_870.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_500.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_21027.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_21025.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20924.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20905.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20880.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20871.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20838.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20833.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20424.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20423.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20420.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20297.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20290.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20285.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20284.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20280.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20278.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20277.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20273.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20269.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20108.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20107.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20106.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_20105.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1252.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1149.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1148.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1147.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1146.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1145.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1144.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1143.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1142.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1141.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1140.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1047.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_1026.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10082.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10081.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10079.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10029.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10021.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10017.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10010.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10007.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10006.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10005.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10004.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_10000.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\SysWOW64\C_037.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066082 _____ C:\WINDOWS\system32\C_1252.NLS
2015-10-30 08:18 - 2015-10-30 08:18 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcirt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00065880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PSHED.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspatchc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\btpanui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MuiUnattend.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\getmac.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msident.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00064624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wtsapi32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00064584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WfHC.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\radarrs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00064072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndadmin.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentprf.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\g711codc.ax
2015-10-30 08:18 - 2015-10-30 08:18 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prvdmofcomp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msobjs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hdwwiz.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsRdpWebAccess.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\f3ahvoas.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00063081 _____ C:\WINDOWS\SysWOW64\certlm.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00063070 _____ C:\WINDOWS\SysWOW64\certmgr.msc
2015-10-30 08:18 - 2015-10-30 08:18 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinOpcIrmProtector.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdmat.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\frprov.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintPlatformConfig.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WorkFoldersRes.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scripto.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersRes.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintIsolationProxy.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\openfiles.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RunLegacyCPLElevated.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00061248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2015-10-30 08:18 - 2015-10-30 08:18 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3cfg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptext.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpmonui.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\reg.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geocommon.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00060124 _____ C:\WINDOWS\system32\tcpmon.ini
2015-10-30 08:18 - 2015-10-30 08:18 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sc.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\l2gpstore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcProCsp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wecapi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RunLegacyCPLElevated.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.UI.GameBar.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeservice.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00059232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PSHED.DLL
2015-10-30 08:18 - 2015-10-30 08:18 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.Fontgroups.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\whoami.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vfwwdm32.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasdatastore.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dxof.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssec.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\threadpoolwinrt.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Storprop.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhonePlatformAbstraction.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\winver.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.ServiceHostBuilder.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00057912 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xwizard.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprovisionsp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dispci.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winver.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPELoggingDictationHelper.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasads.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DfsShlEx.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngprovider.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\bidispl.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SortWindows6Compat.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\l2nacp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00056352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00056320 _____ (Microsoft) C:\WINDOWS\system32\cero.rs
         

Edit: Ist vielleicht besser, wenn ich das ganze in eine zip packe?

Nee, so is genau richtig

ZIP kann ich nicht laden und öffnen mit dem Rechner hier, und Logs direkt im Thread macht die analyse auch extrem einfacher.




ESET Online Scanner

• Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
• Lade und starte Eset Online Scanner
• Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
• Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
• Klicke auf Starten.
• Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
• Klicke am Ende des Suchlaufs auf Fertig stellen.
• Schließe das Fenster von ESET.
• Explorer öffnen.
• C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
• Logfile hier posten.
• Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
• Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte SecurityCheck und:

• Speichere es auf dem Desktop.
• Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
• Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?