| |
| |||||||
Log-Analyse und Auswertung: Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
30.11.2015, 13:59
| #1 |
| |  Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen Hallo, Es öffnen sich unterschiedliche Tabs in Mozilla FF und anderen Browsern. Fenster öffnen sich, die zur Installation verschiedener Programme auffordern. Diese Fenster lassen sich zum Teil nicht schließen. Avast schlägt sehr häufig Alarm und meldet Bedrohungen und schädliche Software. Hier erstmal die Logs, die einem Helfer hoffentlich schon etwas aufschlussreiches Sagen. Beim Öffnen von GMER wurde vor ROOTKIT gewarnt, weshalb ich den vollständigen Scan verneint habe. Die Häkchen bei IAT/EAT habe ich daraufhin erntfernt. Der Scan mit GMER wurde jedoch mit dem HInweis auf Fehler : attempted_writetoread ..... abgebrochen und ein Neustart durch Win10 veranlasst. VIELEN DANK IM VORAUS, nano. Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 12:58 on 30/11/2015 (Basti)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:29-11-2015
durchgeführt von Basti (Administrator) auf BASTI-THINK (30-11-2015 12:58:53)
Gestartet von E:\Downloads
Geladene Profile: Basti (Verfügbare Profile: Basti)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AuthenTec, Inc) C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Avid Technology, Inc..) C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
() C:\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\knsi7655.tmpfs
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
() C:\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\jnsi8F57.tmp
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(TODO: <公司名>) C:\Program Files (x86)\SFK\SSFK.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(DTools LIMITED) C:\ProgramData\tWMiniProt\WMiniPro.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlk.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AuthenTec Inc.) C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Users\Basti\AppData\Local\gmsd_de_005010161\upgmsd_de_005010161.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Avid Technology, Inc.) C:\Windows\System32\M-AudioTaskBarIcon.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
() C:\Users\Basti\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\gmsd_de_005010161\gmsd_de_005010161.exe
() C:\Users\Basti\AppData\Roaming\DailyWiki\DailyWiki.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
() C:\Users\Basti\AppData\Roaming\DailyWiki\DailyWiki.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
() C:\Users\Basti\AppData\Roaming\DailyWiki\DailyWiki.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe
() C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [178960 2012-03-15] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [M-Audio Taskbar Icon] => C:\Windows\system32\M-AudioTaskBarIcon.exe [798728 2010-12-07] (Avid Technology, Inc.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [293672 2013-06-14] (Lenovo Group Limited)
HKLM\...\Run: [AcWin7Hlpr] => C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [63728 2015-06-08] (Lenovo)
HKLM\...\Run: [SynLenovoHelper] => C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe [164032 2015-11-30] (Synaptics)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954880 2015-11-30] (Synaptics Incorporated)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.)
HKLM-x32\...\Run: [PWMTRV] => rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [1091376 2012-01-17] (Lenovo)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [DigidesignMMERefresh] => C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [77824 2010-06-23] (Avid Technology, Inc..)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-28] (AVAST Software)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-16] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\Run: [gmsd_de_005010161] => C:\Program Files (x86)\gmsd_de_005010161\gmsd_de_005010161.exe [4337104 2015-11-29] ()
HKLM-x32\...\Run: [DailyWiki] => C:\Users\Basti\AppData\Roaming\DailyWiki\DailyWiki.exe [48673472 2015-10-13] ()
HKLM-x32\...\RunOnce: [upgmsd_de_005010161.exe] => C:\Users\Basti\AppData\Local\gmsd_de_005010161\upgmsd_de_005010161.exe [3281584 2015-11-29] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\...\Run: [Amazon Music] => C:\Users\Basti\AppData\Local\Amazon Music\Amazon Music Helper.exe [5890368 2015-10-29] ()
Lsa: [Notification Packages] scecli ACGina
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-28] (AVAST Software)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => Keine Datei
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => Keine Datei
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => Keine Datei
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => Keine Datei
Startup: C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6600 (Netzwerk).lnk [2015-11-30]
ShortcutTarget: Tintenwarnungen überwachen - HP Officejet 6600 (Netzwerk).lnk -> C:\Program Files\HP\HP Officejet 6600\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
CHR HKU\S-1-5-21-852299283-3463242558-1453265187-1000\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog9-x64 01 C:\Windows\system32\LavasoftTcpService64.dll [425744 2015-11-29] (Lavasoft Limited)
Winsock: Catalog9-x64 02 C:\Windows\system32\LavasoftTcpService64.dll [425744 2015-11-29] (Lavasoft Limited)
Winsock: Catalog9-x64 03 C:\Windows\system32\LavasoftTcpService64.dll [425744 2015-11-29] (Lavasoft Limited)
Winsock: Catalog9-x64 04 C:\Windows\system32\LavasoftTcpService64.dll [425744 2015-11-29] (Lavasoft Limited)
Winsock: Catalog9-x64 05 C:\Windows\system32\LavasoftTcpService64.dll [425744 2015-11-29] (Lavasoft Limited)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{51b7dcd1-fd32-4c38-92d3-92b53f287e80}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9f9920ce-b6fd-4099-b3a0-e83f3a76f481}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com/welcome/thinkpad
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\Software\Microsoft\Internet Explorer\Main,Start Page = google.de
SearchScopes: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENP_deDE501
SearchScopes: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D112915-AE3372CAF8274412FA2F&form=CONBDF&conlogo=CT3330942&q={searchTerms}
SearchScopes: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENP_deDE501
SearchScopes: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> {711BF1B7-7149-41C7-AB9D-F9055502B174} URL = hxxps://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=287194&p={searchTerms}
SearchScopes: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://de.search.yahoo.com/search?fr=vmn&type=vmn__webcompa__1_0__ya__ch_WCYID10029_DE_151129__yaie&p={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-28] (Oracle Corporation)
BHO: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2013-08-07] (AuthenTec Inc.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-28] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-28] (Oracle Corporation)
BHO: Kein Name -> {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} -> Keine Datei
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-28] (Oracle Corporation)
BHO-x32: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2013-08-07] (AuthenTec Inc.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-28] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-28] (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Keine Datei
Toolbar: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Keine Datei
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.oursurfing.com/?type=sc&ts=1448883468&z=14cbbc0963818bb008e434ag8z0z2bfbdb1c1z5q2t&from=tt4u&uid=WDCXWD5000BPKT-08PK4T0_WD-WX21C626889568895
FireFox:
========
FF ProfilePath: C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\cbfayl8i.default
FF NewTab: chrome://quick_start/content/index.html
FF DefaultSearchEngine: oursurfing
FF DefaultSearchUrl: hxxps://www.google.com/search?trackid=sp-006
FF SearchEngineOrder.1: Google (avast)
FF SelectedSearchEngine: oursurfing
FF Homepage: hxxp://www.oursurfing.com/?type=hp&ts=1448883468&z=14cbbc0963818bb008e434ag8z0z2bfbdb1c1z5q2t&from=tt4u&uid=WDCXWD5000BPKT-08PK4T0_WD-WX21C626889568895
FF Keyword.URL: hxxps://www.google.com/search?trackid=sp-006
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-15] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-28] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-15] ()
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll [2013-08-07] (AuthenTec, Inc)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-28] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\cbfayl8i.default\searchplugins\oursurfing.xml [2015-11-30]
FF SearchPlugin: C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\cbfayl8i.default\searchplugins\yahoo-lavasoft.xml [2015-11-30]
FF Extension: deskCut - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\cbfayl8i.default\extensions\deskCutv2@gmail.com [2015-11-30] [ist nicht signiert]
FF Extension: YahooToolsProtected - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\cbfayl8i.default\extensions\yahooprotected@gmail.com [2015-11-30] [ist nicht signiert]
FF Extension: Firebug - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\cbfayl8i.default\Extensions\firebug@software.joehewitt.com.xpi [2015-10-28]
FF Extension: Hotspot Shield Helper (Please allow this installation) - C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com [2015-11-03] [ist nicht signiert]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\websitelogon@truesuite.com [2015-11-03] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [VIP1X@verisign.com] - C:\Program Files (x86)\Symantec\VIP Access Client => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-28]
FF HKLM-x32\...\Firefox\Extensions: [VIP5X@verisign.com] - C:\Program Files (x86)\Symantec\VIP Access Client => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-11-28]
FF HKLM-x32\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\cbfayl8i.default\extensions\deskCutv2@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [yahooprotected@gmail.com] - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\cbfayl8i.default\extensions\yahooprotected@gmail.com
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.oursurfing.com/?type=sc&ts=1448883468&z=14cbbc0963818bb008e434ag8z0z2bfbdb1c1z5q2t&from=tt4u&uid=WDCXWD5000BPKT-08PK4T0_WD-WX21C626889568895
Chrome:
=======
CHR HomePage: Default -> hxxp://www.oursurfing.com/?type=hp&ts=1448883468&z=14cbbc0963818bb008e434ag8z0z2bfbdb1c1z5q2t&from=tt4u&uid=WDCXWD5000BPKT-08PK4T0_WD-WX21C626889568895
CHR StartupUrls: Default -> "hxxp://www.oursurfing.com/?type=hp&ts=1448883468&z=14cbbc0963818bb008e434ag8z0z2bfbdb1c1z5q2t&from=tt4u&uid=WDCXWD5000BPKT-08PK4T0_WD-WX21C626889568895"
CHR DefaultSearchURL: Default -> hxxp://www.oursurfing.com/web/?type=ds&ts=1448883468&z=14cbbc0963818bb008e434ag8z0z2bfbdb1c1z5q2t&from=tt4u&uid=WDCXWD5000BPKT-08PK4T0_WD-WX21C626889568895&q={searchTerms}
CHR DefaultSearchKeyword: Default -> oursurfing
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\pdf.dll => Keine Datei
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll => Keine Datei
CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101753.dll => Keine Datei
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll => Keine Datei
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll => Keine Datei
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll => Keine Datei
CHR Profile: C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-21]
CHR Extension: (Google Drive) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-04]
CHR Extension: (YouTube) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-21]
CHR Extension: (Website Logon) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\clglhglbidpdbjffpfcldkifhdegdfle [2013-12-23]
CHR Extension: (Google-Suche) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-21]
CHR Extension: (Avast Online Security) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-06-21]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-04]
CHR Extension: (Google Mail) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-21]
CHR HKLM-x32\...\Chrome\Extension: [clglhglbidpdbjffpfcldkifhdegdfle] - C:\Program Files\Lenovo Fingerprint Reader\x86\tschrome.crx [2013-04-01]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-28]
StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe hxxp://www.oursurfing.com/?type=sc&ts=1448883468&z=14cbbc0963818bb008e434ag8z0z2bfbdb1c1z5q2t&from=tt4u&uid=WDCXWD5000BPKT-08PK4T0_WD-WX21C626889568895
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-28] (AVAST Software)
R2 DigiRefresh; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [77824 2010-06-23] (Avid Technology, Inc..) [Datei ist nicht signiert]
R2 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [169776 2012-01-17] (Lenovo)
R2 FPLService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2139944 2013-08-07] (AuthenTec, Inc)
R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [187688 2013-06-14] (Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo Group Limited)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272424 2015-08-17] (Lenovo)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility LLC)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-11-30] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-11-19] ()
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Datei ist nicht signiert]
R2 pupivyhi; C:\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\jnsi8F57.tmp [240640 2015-11-29] () [Datei ist nicht signiert]
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [118576 2014-11-26] ()
R2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [170144 2015-11-30] (TODO: <公司名>)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [21536 2015-09-29] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [255168 2015-11-30] (Synaptics Incorporated)
S2 ThinkVantage Registry Monitor Service; C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe [1028096 2010-08-31] (Lenovo Group Limited) [Datei ist nicht signiert]
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401704 2013-07-22] (AuthenTec, Inc.)
S3 TVT Backup Service; C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrservice.exe [1492280 2012-02-06] (Lenovo Group Limited)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WdsManPro; C:\ProgramData\tWMiniProt\WMiniPro.exe [309384 2015-11-30] (DTools LIMITED)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-11-19] (Intel® Corporation)
R2 hudohudo; C:\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\knsi7655.tmpfs [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-28] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [19600 2012-08-21] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-28] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-28] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-28] (AVAST Software)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
S3 Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [70416 2012-01-17] (Windows (R) Win 7 DDK provider)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [52912 2015-11-30] (Synaptics Incorporated)
R3 Tvti2c; C:\Windows\system32\DRIVERS\Tvti2c.sys [40248 2011-05-29] (Lenovo Information Product(ShenZhen China) Inc.)
R3 tvtvcamd; C:\Windows\system32\DRIVERS\tvtvcamd.sys [27432 2011-12-08] (ThinkVantage Communications Utility)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U4 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U4 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-30 12:58 - 2015-11-30 12:58 - 00000000 _____ C:\Users\Basti\defogger_reenable
2015-11-30 12:50 - 2015-11-30 12:50 - 00016148 _____ C:\WINDOWS\system32\BASTI-THINK_Basti_HistoryPrediction.bin
2015-11-30 12:38 - 2015-11-30 12:48 - 00000000 ____D C:\Program Files (x86)\SFK
2015-11-30 12:38 - 2015-11-30 12:38 - 00000098 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-11-30 12:38 - 2015-11-30 12:38 - 00000000 ____D C:\Users\Basti\AppData\Roaming\oursurfing
2015-11-30 12:38 - 2015-11-30 12:38 - 00000000 ____D C:\ProgramData\tWMiniProt
2015-11-30 12:37 - 2015-11-30 12:37 - 00000000 ____D C:\Users\Basti\AppData\Roaming\ScreenSnapshotTool
2015-11-30 12:37 - 2015-11-30 12:37 - 00000000 ____D C:\Program Files (x86)\ScreenSnapshotTool
2015-11-30 12:32 - 2015-11-30 12:32 - 00000000 ____D C:\Users\Basti\AppData\Local\NetworkTiles
2015-11-30 12:25 - 2015-11-30 12:51 - 00000000 ____D C:\Users\Basti\AppData\Local\DailyWiki
2015-11-30 12:25 - 2015-11-30 12:25 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DailyWiki
2015-11-30 12:24 - 2015-11-30 12:25 - 00000000 ____D C:\Users\Basti\AppData\Roaming\DailyWiki
2015-11-30 12:14 - 2015-11-30 12:58 - 00000000 ____D C:\FRST
2015-11-30 11:53 - 2015-11-30 11:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fingerprint Reader
2015-11-30 11:31 - 2015-11-30 11:31 - 00002407 _____ C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-30 11:31 - 2015-11-30 11:31 - 00000000 ___RD C:\Users\Basti\OneDrive
2015-11-30 11:31 - 2015-11-30 11:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2015-11-30 11:29 - 2015-11-30 11:29 - 00000000 ____D C:\Users\Basti\AppData\Local\MicrosoftEdge
2015-11-30 11:29 - 2014-11-26 11:01 - 00004664 _____ C:\WINDOWS\system32\Drivers\CxSfPt.dat
2015-11-30 10:27 - 2015-11-30 10:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2015-11-30 10:27 - 2015-11-30 10:27 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2015-11-30 10:26 - 2015-11-30 10:26 - 07231400 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 03153264 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\UCI64A96.DLL
2015-11-30 10:26 - 2015-11-30 10:26 - 01991784 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 01052208 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64BP16.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00695688 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\C3DHPExt64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00431048 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CSpkExt64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00340656 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00283928 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00151791 _____ C:\WINDOWS\system32\Drivers\DS1Parm.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00071024 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxPageMaster64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00014718 _____ C:\WINDOWS\system32\Drivers\MicGain.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00011842 _____ C:\WINDOWS\system32\Drivers\EdgeEQ.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00010107 _____ C:\WINDOWS\system32\Drivers\MicEQ.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00008269 _____ C:\WINDOWS\system32\Drivers\AFA.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00006520 _____ C:\WINDOWS\system32\Drivers\ISAPSII.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00006312 _____ C:\WINDOWS\system32\Drivers\FXMisc.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00003657 _____ C:\WINDOWS\system32\Drivers\BIT_CLK.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00003027 _____ C:\WINDOWS\system32\Drivers\SPKVol.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00002171 _____ C:\WINDOWS\system32\Drivers\OrVerbs.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00001816 _____ C:\WINDOWS\system32\Drivers\ALTMIXER.INI
2015-11-30 10:24 - 2015-11-30 10:27 - 00000000 ____D C:\Users\Basti\AppData\Local\Comms
2015-11-30 10:23 - 2015-11-30 10:23 - 00430256 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-11-30 10:23 - 2015-11-30 10:23 - 00276160 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo34.dll
2015-11-30 10:23 - 2015-11-30 10:23 - 00067248 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2015-11-30 10:23 - 2015-11-30 10:23 - 00052912 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-11-30 10:23 - 2015-11-30 10:23 - 00052400 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-11-30 10:23 - 2015-11-30 10:23 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-11-30 10:22 - 2015-11-30 10:22 - 00001058 _____ C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2015-11-30 10:22 - 2015-11-30 10:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Publishers
2015-11-30 10:22 - 2015-07-09 20:39 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-11-30 10:22 - 2015-07-09 20:36 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-11-30 10:22 - 2015-07-09 20:28 - 06358016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-11-30 10:22 - 2015-07-09 20:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-11-30 10:22 - 2015-07-09 20:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-11-30 10:21 - 2015-11-30 12:50 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-30 10:21 - 2015-11-30 12:13 - 00000000 ____D C:\Users\Basti\AppData\Local\Packages
2015-11-30 10:20 - 2015-11-30 10:20 - 00000020 ___SH C:\Users\Basti\ntuser.ini
2015-11-30 10:20 - 2015-11-30 10:20 - 00000000 ____D C:\Users\Basti\AppData\Local\TileDataLayer
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-11-30 08:26 - 2015-11-30 08:26 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-11-30 08:21 - 2015-07-10 11:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-11-30 08:16 - 2015-11-30 08:16 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-11-30 08:12 - 2015-11-30 08:12 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-11-30 08:10 - 2015-11-30 12:58 - 00000000 ____D C:\Users\Basti
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Vorlagen
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Startmenü
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Netzwerkumgebung
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Lokale Einstellungen
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Eigene Dateien
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Druckumgebung
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Documents\Eigene Videos
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Documents\Eigene Musik
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Documents\Eigene Bilder
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\AppData\Local\Verlauf
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\AppData\Local\Anwendungsdaten
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Anwendungsdaten
2015-11-30 08:08 - 2015-11-30 12:53 - 02077062 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-30 08:08 - 2015-11-30 08:08 - 01980268 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-11-30 08:07 - 2015-11-30 10:27 - 00000000 ____D C:\Program Files\CONEXANT
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____D C:\Program Files\Synaptics
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____D C:\Program Files\AuthenTec
2015-11-30 08:02 - 2015-11-30 12:00 - 00000000 ___DC C:\WINDOWS\Panther
2015-11-30 07:59 - 2015-11-30 07:59 - 00000000 ____D C:\Windows.old
2015-11-30 07:57 - 2015-11-30 07:57 - 24591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 22320576 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 21873152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 20854232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 19333632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 18810368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 16710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 13024256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 12502016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 11552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 11260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 09885184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03589632 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02661376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02415616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02224128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02150696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02147592 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02116960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01983328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01914880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01867672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01793024 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01769568 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01680896 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01601024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01561360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01396576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-11-30 07:57 - 2015-11-30 07:57 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 01161728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01085776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-11-30 07:57 - 2015-11-30 07:57 - 00991584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-11-30 07:57 - 2015-11-30 07:57 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00858624 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00643616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00606392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00539216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-11-30 07:57 - 2015-11-30 07:57 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00477696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00412672 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00403968 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-11-30 07:55 - 2015-11-30 07:55 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files\MSBuild
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\inetpub
2015-11-30 07:51 - 2015-06-17 18:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-11-30 07:51 - 2015-06-17 18:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-11-30 07:51 - 2015-06-17 18:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-11-30 07:51 - 2015-05-29 21:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-11-30 07:51 - 2015-05-29 21:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-11-30 07:51 - 2015-05-29 21:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-11-30 07:22 - 2015-11-30 08:27 - 00010453 _____ C:\WINDOWS\diagerr.xml
2015-11-30 07:22 - 2015-11-30 08:27 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2015-11-29 21:29 - 2015-11-30 11:40 - 00000000 ____D C:\Users\Basti\AppData\Local\Lavasoft
2015-11-29 21:29 - 2015-11-29 21:29 - 00000000 ____D C:\Users\Public\Documents\Guid
2015-11-29 21:29 - 2015-11-29 21:29 - 00000000 ____D C:\Users\Public\Documents\Baidu
2015-11-29 21:28 - 2015-11-30 08:19 - 00002872 _____ C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini
2015-11-29 21:28 - 2015-11-30 08:19 - 00002872 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2015-11-29 21:28 - 2015-11-29 21:28 - 00425744 _____ (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService64.dll
2015-11-29 21:28 - 2015-11-29 21:28 - 00345360 _____ (Lavasoft Limited) C:\WINDOWS\SysWOW64\LavasoftTcpService.dll
2015-11-29 21:28 - 2015-11-29 21:28 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Lavasoft
2015-11-29 21:28 - 2015-11-29 21:28 - 00000000 ____D C:\ProgramData\Lavasoft
2015-11-29 21:28 - 2015-11-29 21:28 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2015-11-29 20:44 - 2015-11-30 12:53 - 00000000 ____D C:\Users\Basti\AppData\Local\gmsd_de_005010161
2015-11-29 20:44 - 2015-11-30 12:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP
2015-11-29 20:44 - 2015-11-30 12:25 - 00000000 ____D C:\Program Files (x86)\gmsd_de_005010161
2015-11-29 20:32 - 2009-06-10 22:00 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2015-11-29 20:31 - 2015-11-30 12:47 - 00000000 ____D C:\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3
2015-11-29 20:31 - 2015-11-30 08:17 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASPackage
2015-11-29 20:31 - 2015-11-29 20:31 - 00000000 ____D C:\Users\Basti\AppData\Roaming\ASPackage
2015-11-29 20:30 - 2015-11-29 20:32 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Opera Software
2015-11-29 20:30 - 2015-11-29 20:32 - 00000000 ____D C:\Users\Basti\AppData\Local\Opera Software
2015-11-28 14:20 - 2015-11-28 14:20 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-11-28 14:20 - 2015-11-28 14:20 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-11-15 20:31 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2015-11-15 20:31 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-11-15 20:31 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2015-11-15 20:31 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-11-03 23:00 - 2015-11-04 20:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-30 12:55 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-30 12:53 - 2015-07-10 17:34 - 00884826 _____ C:\WINDOWS\system32\perfh007.dat
2015-11-30 12:53 - 2015-07-10 17:34 - 00195924 _____ C:\WINDOWS\system32\perfc007.dat
2015-11-30 12:53 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2015-11-30 12:53 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-11-30 12:52 - 2013-04-30 19:44 - 00001110 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-30 12:52 - 2013-04-30 19:44 - 00001106 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-30 12:50 - 2015-08-16 20:21 - 00000000 ____D C:\Temp
2015-11-30 12:50 - 2013-09-12 20:24 - 00000000 ____D C:\Users\Basti\AppData\LocalLow\AuthenTec
2015-11-30 12:50 - 2012-09-15 14:13 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-30 12:45 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-30 12:45 - 2015-07-10 13:20 - 00259496 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-30 12:44 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-11-30 12:37 - 2012-11-12 18:53 - 00001457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-11-30 12:25 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-11-30 12:14 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-30 12:00 - 2012-09-21 21:42 - 00000000 ____D C:\Users\Basti\AppData\Local\CrashDumps
2015-11-30 11:58 - 2012-11-19 12:00 - 00000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-11-30 11:39 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2015-11-30 10:26 - 2013-06-26 19:52 - 03270960 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-11-30 10:26 - 2013-06-26 19:52 - 01317096 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\Drivers\CHDRT64.sys
2015-11-30 10:26 - 2012-09-20 22:58 - 00000000 ____D C:\ProgramData\Conexant
2015-11-30 10:23 - 2015-07-28 17:01 - 01813392 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-11-30 10:23 - 2015-07-28 17:01 - 00773312 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-11-30 10:23 - 2015-07-28 17:01 - 00629440 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-11-30 10:23 - 2015-07-28 17:01 - 00279216 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2015-11-30 10:23 - 2015-07-28 17:01 - 00052912 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-11-30 10:22 - 2015-07-10 17:35 - 00000000 ____D C:\WINDOWS\OCR
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-11-30 10:20 - 2009-07-14 04:20 - 00000000 ____D C:\Users\Default.migrated
2015-11-30 08:29 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-11-30 08:27 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows NT
2015-11-30 08:26 - 2015-08-22 19:51 - 00003346 _____ C:\WINDOWS\System32\Tasks\{5C44334E-D070-4942-A00F-8264A221FF08}
2015-11-30 08:26 - 2015-08-16 20:21 - 00003596 _____ C:\WINDOWS\System32\Tasks\Motorola Device Manager Update
2015-11-30 08:26 - 2015-08-16 20:21 - 00003404 _____ C:\WINDOWS\System32\Tasks\Motorola Device Manager Initial Update
2015-11-30 08:26 - 2015-07-10 12:04 - 00000000 __RSD C:\WINDOWS\Media
2015-11-30 08:26 - 2015-07-10 12:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-11-30 08:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Registration
2015-11-30 08:26 - 2015-05-18 19:52 - 00003132 _____ C:\WINDOWS\System32\Tasks\{8244CBC6-1108-4C35-AF13-01243CC14407}
2015-11-30 08:26 - 2014-12-24 22:24 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-11-30 08:26 - 2014-06-28 11:25 - 00003240 _____ C:\WINDOWS\System32\Tasks\{B570C062-A09B-4FF8-A272-7E95B67E15DB}
2015-11-30 08:26 - 2013-09-27 23:31 - 00004924 _____ C:\WINDOWS\System32\Tasks\ShutdownNachSicherung
2015-11-30 08:26 - 2013-08-10 12:45 - 00003558 _____ C:\WINDOWS\System32\Tasks\{1FAE95A7-433C-462A-81AB-9102086B1B6A}
2015-11-30 08:26 - 2013-04-30 19:44 - 00004216 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-30 08:26 - 2013-04-30 19:44 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-30 08:26 - 2012-11-19 12:00 - 00002882 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-11-30 08:26 - 2012-09-29 19:17 - 00003112 _____ C:\WINDOWS\System32\Tasks\{377F2728-61E6-4F48-8603-B97D69F9CFC5}
2015-11-30 08:26 - 2012-09-22 22:50 - 00004292 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-11-30 08:26 - 2012-09-22 21:39 - 00003264 _____ C:\WINDOWS\System32\Tasks\{E63801AF-7C96-47BF-95A1-B81983D4317D}
2015-11-30 08:26 - 2012-09-21 20:19 - 00003140 _____ C:\WINDOWS\System32\Tasks\{71E3E912-F65D-4A3D-A8F6-64187E5EA26C}
2015-11-30 08:26 - 2012-09-15 14:13 - 00003932 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-11-30 08:26 - 2012-09-15 13:45 - 00003456 _____ C:\WINDOWS\System32\Tasks\{95F202ED-6D23-40DC-94A2-A3CD281F11B0}
2015-11-30 08:23 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-11-30 08:21 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-11-30 08:17 - 2015-09-11 21:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-11-30 08:17 - 2015-08-16 21:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android SDK Tools
2015-11-30 08:17 - 2015-08-16 21:42 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Android SDK Tools
2015-11-30 08:17 - 2015-08-16 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager
2015-11-30 08:17 - 2015-08-16 20:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2015-11-30 08:17 - 2015-08-16 20:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-11-30 08:17 - 2015-08-16 19:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot
2015-11-30 08:17 - 2015-07-30 15:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-11-30 08:17 - 2015-07-10 12:04 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2015-11-30 08:17 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Help
2015-11-30 08:17 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-11-30 08:17 - 2015-05-20 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Videoverwandte Programme
2015-11-30 08:17 - 2015-05-20 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Produktpalette
2015-11-30 08:17 - 2014-09-02 12:46 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-11-30 08:17 - 2014-07-09 08:42 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music
2015-11-30 08:17 - 2014-06-04 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-11-30 08:17 - 2014-05-27 22:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-11-30 08:17 - 2014-05-24 07:07 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2015-11-30 08:17 - 2013-12-25 08:28 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeRIP MP3 Converter
2015-11-30 08:17 - 2013-10-16 12:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-30 08:17 - 2013-06-08 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WAV To MP3
2015-11-30 08:17 - 2013-04-30 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-30 08:17 - 2012-11-25 00:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-11-30 08:17 - 2012-11-19 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-11-30 08:17 - 2012-09-27 20:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hydrogen
2015-11-30 08:17 - 2012-09-20 20:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digidesign
2015-11-30 08:17 - 2012-09-15 21:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2015-11-30 08:17 - 2012-09-15 12:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Absolute Software
2015-11-30 08:17 - 2012-08-28 19:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel AppUp(SM) center
2015-11-30 08:17 - 2012-08-28 19:43 - 00000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2015-11-30 08:17 - 2012-08-28 19:33 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-11-30 08:13 - 2015-07-10 17:34 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-11-30 08:13 - 2012-08-28 19:37 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2015-11-30 08:12 - 2015-09-28 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-11-30 08:12 - 2015-07-10 14:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\schemas
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-30 08:12 - 2014-10-02 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-11-30 08:12 - 2014-06-12 12:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
2015-11-30 08:12 - 2012-09-20 20:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio
2015-11-30 08:12 - 2012-08-28 20:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2015-11-30 08:12 - 2011-12-08 21:02 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-11-30 08:12 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-11-30 08:12 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-11-30 08:08 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-11-30 08:02 - 2015-07-10 12:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-11-30 07:58 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-11-30 07:58 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-11-30 07:58 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-30 07:58 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-11-30 07:58 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-11-30 07:58 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-11-30 07:57 - 2015-07-10 12:06 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-11-30 07:57 - 2015-07-10 12:06 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-11-30 07:52 - 2015-07-10 12:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-11-30 07:52 - 2015-07-10 12:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-11-30 07:52 - 2015-07-10 12:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-11-30 07:52 - 2015-07-10 12:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-11-30 07:52 - 2015-07-10 12:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-11-30 07:52 - 2015-07-10 12:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-11-30 07:52 - 2015-07-10 12:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-11-30 07:26 - 2009-07-14 05:45 - 00031472 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-30 07:26 - 2009-07-14 05:45 - 00031472 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-30 07:23 - 2015-07-10 18:28 - 00000000 ___HD C:\$Windows.~BT
2015-11-28 23:11 - 2014-01-19 00:00 - 00000000 ____D C:\ProgramData\Oracle
2015-11-28 23:06 - 2015-08-16 20:11 - 00000000 ____D C:\Program Files\Java
2015-11-28 23:06 - 2012-09-17 06:32 - 00000000 ____D C:\Program Files (x86)\Java
2015-11-28 23:05 - 2015-08-22 19:32 - 00000000 ____D C:\Users\Basti\.oracle_jre_usage
2015-11-28 23:04 - 2015-08-16 20:12 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-11-28 14:20 - 2014-04-30 18:51 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-11-28 14:20 - 2014-01-09 09:28 - 00154256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-11-28 14:20 - 2013-03-25 12:48 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-11-28 14:20 - 2013-03-25 12:48 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 01059656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 00449992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-11-28 10:42 - 2014-06-04 09:02 - 00000000 ____D C:\Users\Basti\AppData\Roaming\vlc
2015-11-28 08:39 - 2014-11-16 16:30 - 00000000 ____D C:\Users\Basti\AppData\Roaming\dvdcss
2015-11-16 08:24 - 2013-08-15 11:52 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-16 08:14 - 2012-09-17 06:52 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-09 11:17 - 2012-10-27 08:37 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Skype
2015-11-06 10:12 - 2012-09-15 12:20 - 00085608 _____ C:\Users\Basti\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-05 21:41 - 2014-08-13 12:04 - 00001139 _____ C:\Users\Basti\Desktop\Amazon Music.lnk
2015-11-05 21:41 - 2014-07-09 08:42 - 00000000 ____D C:\Users\Basti\AppData\Local\Amazon Music
2015-11-04 20:15 - 2012-11-12 18:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-03 08:51 - 2012-08-28 20:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2015-11-03 08:51 - 2012-08-28 19:39 - 00000000 ____D C:\Program Files (x86)\Lenovo
2015-11-03 08:51 - 2012-08-28 13:01 - 00000000 ____D C:\ProgramData\Lenovo
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2012-09-15 12:19 - 2012-09-19 06:19 - 0014056 _____ () C:\Users\Basti\AppData\Roaming\AbsoluteReminder.xml
2015-03-31 08:45 - 2015-03-31 08:45 - 0003584 _____ () C:\Users\Basti\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-09-15 20:40 - 2015-09-15 20:40 - 0000829 _____ () C:\Users\Basti\AppData\Local\recently-used.xbel
2012-09-20 23:28 - 2012-09-20 23:28 - 0000017 _____ () C:\Users\Basti\AppData\Local\resmon.resmoncfg
2014-10-02 20:36 - 2014-10-02 20:36 - 0000057 _____ () C:\ProgramData\Ament.ini
2013-06-26 19:53 - 2013-06-26 19:53 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-03-31 16:28 - 2013-03-31 16:28 - 0001534 _____ () C:\ProgramData\ss.ini
2015-05-14 11:22 - 2015-05-14 11:22 - 0004966 _____ () C:\ProgramData\wmzddnmb.cix
2015-11-30 12:38 - 2015-11-30 12:38 - 0000098 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
Einige Dateien in TEMP:
====================
C:\Users\Basti\AppData\Local\Temp\InstallHelper.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-11-30 08:03
==================== Ende von FRST.txt ============================
|
|
30.11.2015, 15:10
| #2 |
| /// the machine /// TB-Ausbilder    | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen hi,
__________________bitte noch die Addition.txt posten.
__________________ |
|
01.12.2015, 11:09
| #3 |
| | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen Hi,
__________________Das mache ich heute Abend nach der Arbeit. Bis später Guten Abend, Hier noch die Addition-Log. Viele Grüße Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-11-2015
durchgeführt von Basti (2015-11-30 12:16:16)
Gestartet von E:\Downloads
Windows 10 Home (X64) (2015-11-30 09:20:47)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
516BC1AF36B14D65A137 (S-1-5-21-852299283-3463242558-1453265187-1003 - Limited - Enabled)
Administrator (S-1-5-21-852299283-3463242558-1453265187-500 - Administrator - Disabled)
Basti (S-1-5-21-852299283-3463242558-1453265187-1000 - Administrator - Enabled) => C:\Users\Basti
DefaultAccount (S-1-5-21-852299283-3463242558-1453265187-503 - Limited - Disabled)
fbwuser5B73 (S-1-5-21-852299283-3463242558-1453265187-1284 - Limited - Enabled)
fbwuser9A6F (S-1-5-21-852299283-3463242558-1453265187-1283 - Limited - Enabled)
fbwuserEB58 (S-1-5-21-852299283-3463242558-1453265187-1282 - Limited - Enabled)
Gast (S-1-5-21-852299283-3463242558-1453265187-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-852299283-3463242558-1453265187-1002 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Absolute Reminder (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 2.0.0.19 - Absolute Software)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 19.0.0.241 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Amazon Music (HKU\S-1-5-21-852299283-3463242558-1453265187-1000\...\Amazon Amazon Music) (Version: 3.11.3.1102 - Amazon Services LLC)
Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
AnySend (HKLM-x32\...\ASPackage) (Version: - CMI Limited) <==== ACHTUNG
Anzeige am Bildschirm (HKLM\...\OnScreenDisplay) (Version: 8.42.20 - )
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 11.1.2241 - AVAST Software)
Avid Pro Tools SE 8.0.3 (HKLM-x32\...\{371F27A1-9502-4762-AE97-1C1938B21055}) (Version: 8.0.3 - Digidesign, ein Geschäftsbereich von Avid Technology, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
CLIQZ (HKLM-x32\...\{5A0C0737-6AFE-4DC6-A8B4-6DFE509ACD75}_is1) (Version: 1.0.0 - CLIQZ.com)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Create Recovery Media (HKLM-x32\...\{50DC5136-21E8-48BC-97E5-1AD055F6B0B6}) (Version: 1.20.0.00 - Lenovo Group Limited)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Energie-Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.54 - )
Fingerprint Reader (HKLM\...\{7DD99174-299B-4450-A179-7F27F4C2D042}) (Version: 6.0.200.105 - AuthenTec, Inc.)
FreeRIP MP3 Converter 4.6.0 (HKLM-x32\...\{501451DE-5808-4599-B544-8BD0915B6B24}_is1) (Version: 4.6.0 - GreenTree Applications SRL)
GamesDesktop 014.005010161 (HKLM-x32\...\gmsd_de_005010161_is1) (Version: - GAMESDESKTOP) <==== ACHTUNG
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Officejet 6600 - Grundlegende Software für das Gerät (HKLM\...\{F58934BD-F483-43EB-B307-CFFD88B18455}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
Hydrogen 0.9.6 preview release for windows (HKLM-x32\...\{B24839E5-A70C-48AD-B4D9-B9FB46B4B038}_is1) (Version: - hydrogen-music.org)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Integrated Camera Driver Installer Package Ver.1.2.1.18 (HKLM-x32\...\{A78800AF-1779-4AE8-8EBE-16E1BE727C71}) (Version: 1.2.1.18 - RICOH)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2778 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{3015F546-6C3E-4E6A-B564-BCDF88C0BA2A}) (Version: 2.1.1.0153 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation)
Intel(R) WiDi (HKLM-x32\...\{93F34C5C-ACAA-48F3-9B26-70359A117F12}) (Version: 3.0.12.0 - Intel Corporation)
Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Intel® PROSet/Wireless Software (HKLM-x32\...\{a2a04474-104a-49b3-9bf5-33afee260030}) (Version: 17.14.0 - Intel Corporation)
Interlok driver setup x64 (HKLM\...\{25613C10-27D2-410B-942B-D922D5C3A7BE}) (Version: 5.8.13 - PACE Anti-Piracy)
Java 8 Update 66 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Java SE Development Kit 7 Update 79 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170790}) (Version: 1.7.0.790 - Oracle)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.01 - )
Lenovo Patch Utility (HKLM-x32\...\{6E6E7725-C7BC-4C39-8B3F-14B67331A120}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Patch Utility (x32 Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{0369F866-2CE0-4EB9-B426-88FA122C6E82}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Patch Utility 64 bit (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.10.15 - Lenovo)
Lenovo Registration (HKLM-x32\...\{6707C034-ED6B-4B6A-B21F-969B3606FBDE}) (Version: 1.0.4 - Lenovo Inc.)
Lenovo Solution Center (HKLM\...\{E92E1FF1-B188-43FE-BECA-2248E227E67D}) (Version: 2.8.005.00 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0013 - Lenovo)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0009.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0005.00 - Lenovo)
M-Audio FastTrack Driver 6.0.6 (x64) (HKLM\...\{91A8C38A-0239-11E0-9658-189EDFD72085}) (Version: 6.0.6 - M-Audio)
Message Center Plus (HKLM\...\{3849486C-FF09-4F5D-B491-3E179D58EE15}) (Version: 3.1.0004.00 - Lenovo Group Limited)
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Minimal ADB and Fastboot version 1.2 (HKLM-x32\...\{06C90FCC-4C95-4142-A0AF-D3A4C12882DE}_is1) (Version: 1.2 - Sam Rodberg)
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility)
Motorola Device Software Update (x32 Version: 13.09.3001 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC)
Mozilla Firefox 42.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
Mozilla Thunderbird 38.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.2.0 (x86 de)) (Version: 38.2.0 - Mozilla)
Mozilla Thunderbird 38.3.0 (x86 de) (HKU\S-1-5-21-852299283-3463242558-1453265187-1000\...\Mozilla Thunderbird 38.3.0 (x86 de)) (Version: 38.3.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyFreeCodec (HKU\S-1-5-21-852299283-3463242558-1453265187-1000\...\MyFreeCodec) (Version: - )
Nur Entfernen der CopyTrans Suite möglich (HKU\S-1-5-21-852299283-3463242558-1453265187-1000\...\CopyTrans Suite) (Version: 4.004 - WindSolutions)
OneKey Recovery Pro (HKLM-x32\...\{FF162784-CFFE-4193-AE24-7FC476812ABE}) (Version: 4.50.0009.00 - Lenovo Group Limited)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
RapidBoot HDD Accelerator (HKLM-x32\...\Fastboot) (Version: 1.00.0802 - Lenovo)
RapidBoot Shield (HKLM\...\{5E2652DF-743F-482B-A593-C95F431A5769}) (Version: 1.23 - Lenovo)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.29005 - Realtek Semiconductor Corp.)
Samsung Universal Print Driver 2 (HKLM-x32\...\Samsung Universal Print Driver 2) (Version: 2.50.06.00 - Samsung Electronics Co., Ltd.)
SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital)
Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - ) <==== ACHTUNG
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.2 - Synaptics Incorporated)
ThinkVantage Access Connections (HKLM-x32\...\{8E537894-A559-4D60-B3CB-F4485E3D24E3}) (Version: 6.25.65 - Lenovo)
ThinkVantage Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 3.0.45.0 - Lenovo)
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
VideoPad Video-Editor (HKLM-x32\...\VideoPad) (Version: 4.02 - NCH Software)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WAV To MP3 V2 (HKLM-x32\...\WAV To MP3_is1) (Version: - hxxp://www.WAVMP3.net)
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM (01/19/2011 1.0.0009.0) (HKLM\...\4CA7CFBB29889F25ACB3DF6E3A42BAE29EB43B20) (Version: 01/19/2011 1.0.0009.0 - Western Digital Technologies)
Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass (01/27/2014 9.0.0000.00000) (HKLM\...\9CA77E2A8332A0824C54DA611BBE4CA24AB1F750) (Version: 01/27/2014 9.0.0000.00000 - Google, Inc.)
Windows-Treiberpaket - Intel (iaStor) hdc (11/29/2011 11.0.0.1032) (HKLM\...\64A62163FE43328D13305746CB8BCC93F2DF6545) (Version: 11/29/2011 11.0.0.1032 - Intel)
Windows-Treiberpaket - Lenovo 1.65.05.21 (01/11/2012 1.65.05.21) (HKLM\...\FD2ED46D31CE7DF190049D079E92DE03D347A634) (Version: 01/11/2012 1.65.05.21 - Lenovo)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-852299283-3463242558-1453265187-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Basti\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {03FE939D-1674-43C6-99D1-C3290F37163A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {05143A44-FF55-4AFD-A130-2DF697E99615} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {07D91719-EFB7-4B1D-8981-20F7A62ACA49} - System32\Tasks\{B570C062-A09B-4FF8-A272-7E95B67E15DB} => pcalua.exe -a E:\Downloads\DeepRipper1.exe -d E:\Downloads
Task: {0948091C-4543-4880-8AE5-4B89EA0CBB1B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {11A3BD06-F145-42FB-BABB-B38F7890661F} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {14067B8C-B19A-4851-ADF8-B18234128737} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-15] (Adobe Systems Incorporated)
Task: {14E78383-ABD4-4A96-B71B-87726EA8ABE6} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {1779D6FC-0D57-45FA-833A-6C6F4DB26BBB} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {1AB7D9FA-BF04-4B76-B28F-FF2A8189F4CF} - System32\Tasks\TVT\LaunchRnR => C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrcmd.exe [2012-02-06] (Lenovo Limited Group Corporation)
Task: {1B5E8FA4-8510-4F92-BC21-9BD00C603DA2} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE [2015-07-10] (Microsoft Corporation)
Task: {1CE74941-AC01-4789-A981-60BAC20C46A0} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {1EFA5D7C-C637-4357-AD4B-17D5F0158994} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {1FE1D477-E394-4062-B3CF-DAD06E4D4ABA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {2061A897-6841-4218-AE09-B46D090DF544} - System32\Tasks\Lenovo\Message Center Plus Launcher => C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe [2012-05-15] (Lenovo)
Task: {21CB58AF-6AFB-4863-AC74-A585F90B1A99} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {227F3B0E-0ADB-42B3-A46C-ABEF8F48EF25} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {289731B9-A08E-4A81-9240-11818E2A4551} - System32\Tasks\ShutdownNachSicherung => C:\Windows\System32\shutdown.exe [2015-07-10] (Microsoft Corporation)
Task: {342F1C49-1EBB-44D0-8A6D-D9F170A9FD1C} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {3A2FF5FC-3504-4163-B20D-3E0298321644} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {3B94AD8E-4285-4426-B317-19DF28AA426C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {419F3A41-7DFE-43CF-B1FD-35068F638E78} - System32\Tasks\{377F2728-61E6-4F48-8603-B97D69F9CFC5} => C:\Program Files (x86)\Hydrogen\Hydrogen.exe [2011-02-02] ()
Task: {441D0358-3C5F-4DD1-9C23-6F74E8D18204} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-11-28] (AVAST Software)
Task: {47F8B18D-391A-4BF9-8FD3-A7A29511CC6B} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {4B0F4B9E-892F-49B9-8775-2F96B075B7F6} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {59FC5E17-04BC-4091-832E-3CFA67D208FD} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2015-09-29] ()
Task: {5B7FAD60-E111-48DD-BB6C-E8B82B2C2BE0} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {63BB2C79-08BD-4AE2-8055-E9900868EFFE} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {65C572A5-93AA-4F34-9475-000EC271AF07} - System32\Tasks\TVT\UpdateRnR => C:\Program Files (x86)\Common Files\Lenovo\Scheduler\tvtsetsched.exe [2012-02-06] ()
Task: {6F5D5B84-2FBE-443E-8B08-D2E57218CC47} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {7937AA97-3A8E-4540-A785-010C9DB4BCEB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {7C416A76-2E51-45D8-8881-5CF68C5C46B5} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2015-08-17] (Lenovo)
Task: {80438DF2-09A5-4B01-9AE8-EA3FB14A897B} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {88B6B59A-45B4-4647-A6D5-33E7E3F2CD67} - System32\Tasks\{95F202ED-6D23-40DC-94A2-A3CD281F11B0} => pcalua.exe -a "C:\Users\Basti\Desktop\OpenOffice.org 3.4.1 (de) Installation Files\setup.exe" -d "C:\Users\Basti\Desktop\OpenOffice.org 3.4.1 (de) Installation Files"
Task: {9037CC0A-2AA1-4702-B51A-C046B9A7C964} - System32\Tasks\{5C44334E-D070-4942-A00F-8264A221FF08} => pcalua.exe -a "C:\Program Files (x86)\X-Setup Pro\bin\xqdcXSPStart.exe" -d "C:\Program Files (x86)\X-Setup Pro"
Task: {91866D7B-86B2-4E27-A795-219C988EC9E0} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {9D1243BE-302E-4334-B77E-BA1BDAF833DF} - System32\Tasks\{71E3E912-F65D-4A3D-A8F6-64187E5EA26C} => C:\Program Files (x86)\Digidesign\Pro Tools\ProToolsSE.exe [2010-06-23] (Avid Technology, Inc..)
Task: {9F0D963C-CDED-4B02-9478-C4C9F4C8ACF9} - System32\Tasks\TVT\ChangePWD => C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrcmd.exe [2012-02-06] (Lenovo Limited Group Corporation)
Task: {A42062E5-81C7-411C-951D-C7DCAB8E7F46} - System32\Tasks\{E63801AF-7C96-47BF-95A1-B81983D4317D} => pcalua.exe -a E:\Downloads\avira_free_antivirus_de.exe -d E:\Downloads
Task: {AAF82FB1-D2D9-437A-9CEB-CE82879AB90A} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-08-17] ()
Task: {AB373F90-9C5E-47FE-915B-B17E41A39BC3} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {AFD5E57A-1ED0-4A63-9480-E18F37209B8F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {B1F3DDBF-1D4D-42FC-8CC2-1B568C6CAF3E} - System32\Tasks\{8244CBC6-1108-4C35-AF13-01243CC14407} => C:\Program Files (x86)\Movavi Video Suite 11\Suite.exe
Task: {B9FA8972-9000-4644-AA60-0579F4F2CAAF} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {BE85F8D1-F1FA-41B7-9265-404CCD68A5B6} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {C0C15E23-6A43-410D-8952-AD50A59E316D} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {C18288D9-416E-4A7D-A955-8970D2BB644F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {C782F128-E5E3-4471-8301-B782CE264CAA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {C9FD6C60-7924-4B97-AD7B-B88A9C21BAE5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {CADABDBC-3ADB-4A05-91CA-7EFB84BC7514} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {CB2ED866-D21D-428E-97DC-1792DDD8A9A5} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {CBB8E32F-C56A-4452-A491-4DAEF0C3D4E8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {CE2178E1-B3B7-4001-94E8-F6244F8FDF6A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {D51BBE0D-B507-4984-B416-39A4E9540A98} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {D5F93D6F-819C-4BC5-B1D7-EE67E5D7587D} - System32\Tasks\Lenovo\LSC\LSCTaskService => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCTaskService.exe [2015-08-17] (Lenovo)
Task: {DB6906A8-137E-4C1D-9BB3-718D2BDDAA38} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {DE34820F-90C9-4915-939E-FA63BABED439} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {E450C898-470B-49A7-8282-01673BD1D75F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {F110B929-5F6E-43EE-B40C-8BF85C111093} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {F2A9999C-481D-4C22-94DB-2E47F4E18C1E} - System32\Tasks\{1FAE95A7-433C-462A-81AB-9102086B1B6A} => pcalua.exe -a E:\Downloads\SE_Extreme_Tweak_Installer_1.9(ICS)\SE_Extreme_Tweak_Installer_1.9(ICS)\SE_Extreme_Tweak_Installer.exe -d E:\Downloads\SE_Extreme_Tweak_Installer_1.9(ICS)\SE_Extreme_Tweak_Installer_1.9(ICS)
Task: {F3915771-F74A-4C8A-973D-EF52C1E72901} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2015-08-17] (Lenovo)
Task: {F3A6A985-DD52-44A5-82CA-A06D4E8D681C} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2015-08-17] (Lenovo)
Task: {F839821F-2CBC-40F1-8E75-1F4E17E01241} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {FCD8B955-D473-4D4F-A110-3BBCA44370CD} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {FE3E8732-3C5A-4BB2-B398-7E7FAEC0C7DD} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2015-08-17] ()
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-11-30 07:57 - 2015-11-30 07:57 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-07-30 15:10 - 2014-04-16 09:22 - 00029184 _____ () C:\WINDOWS\System32\usp02l.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-11-29 20:43 - 2015-11-29 20:43 - 00687616 _____ () C:\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\knsi7655.tmpfs
2015-11-29 20:32 - 2015-11-29 20:32 - 00240640 _____ () C:\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\jnsi8F57.tmp
2015-07-30 15:11 - 2014-11-26 12:07 - 00118576 _____ () C:\Windows\SysWOW64\SecUPDUtilSvc.exe
2015-11-29 20:32 - 2015-11-30 12:01 - 00617984 _____ () C:\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\hnsiA6CF.tmp
2015-07-30 15:10 - 2014-12-30 18:38 - 01200640 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\usp02du.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2013-08-07 03:03 - 2013-08-07 03:03 - 01130792 ____N () C:\Program Files\Lenovo Fingerprint Reader\DataManager.dll
2013-08-07 03:04 - 2013-08-07 03:04 - 00087848 ____N () C:\Program Files\Lenovo Fingerprint Reader\ssutil.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 11:59 - 2015-07-10 11:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 06576640 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 12:00 - 2015-07-10 17:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01806848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 17:45 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-06-01 20:00 - 2015-06-01 20:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-08-28 19:40 - 2010-10-26 12:40 - 00049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2014-07-09 08:42 - 2015-10-29 22:25 - 05890368 _____ () C:\Users\Basti\AppData\Local\Amazon Music\Amazon Music Helper.exe
2012-08-28 19:43 - 2013-04-23 05:54 - 00104960 ____N () C:\Program Files (x86)\ThinkPad\Utilities\GR\PWMRT64V.DLL
2015-11-29 20:44 - 2015-11-29 14:26 - 04337104 _____ () C:\Program Files (x86)\gmsd_de_005010161\gmsd_de_005010161.exe
2013-08-07 03:04 - 2013-08-07 03:04 - 04624168 ____N () C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
2015-11-28 14:20 - 2015-11-28 14:20 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-11-28 14:20 - 2015-11-28 14:20 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-11-30 08:27 - 2015-11-30 08:27 - 02996736 _____ () C:\Program Files\AVAST Software\Avast\defs\15113000\algo.dll
2015-11-28 14:20 - 2015-11-28 14:20 - 00466448 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2012-08-28 19:50 - 2012-01-17 07:29 - 00030512 ____N () C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBServiceps.dll
2013-09-12 12:17 - 2011-08-02 19:58 - 02201088 ____N () C:\Program Files\Lenovo\Communications Utility\cxcore210.dll
2013-09-12 12:17 - 2011-08-02 19:58 - 02085888 ____N () C:\Program Files\Lenovo\Communications Utility\cv210.dll
2014-04-07 15:31 - 2014-04-07 15:31 - 00172032 _____ () C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
2015-11-28 14:20 - 2015-11-28 14:20 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-08-07 03:04 - 2013-08-07 03:04 - 00900904 ____N () C:\Program Files\Lenovo Fingerprint Reader\x86\DataManager.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Basti\AppData\Local\rieFgq10Hv3bB:Sp20xAIa56xWVqLnKItRvSq
AlternateDataStreams: C:\Users\Basti\AppData\Local\zOvz5389BnzHb:i7VGsJ7wjrti4ViDx6Zo
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-852299283-3463242558-1453265187-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-852299283-3463242558-1453265187-1000\...\webcompanion.com -> hxxp://webcompanion.com
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Think\Think_Blue.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupfolder: C:^Users^Basti^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk => C:\Windows\pss\EvernoteClipper.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Basti^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\Windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Speed Launcher => 1418757303
MSCONFIG\startupreg: Amazon Music => "C:\Users\Basti\AppData\Local\Amazon Music\Amazon Music Helper.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Dolby Advanced Audio v2 => "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
MSCONFIG\startupreg: HP Officejet 6600 (NET) => "C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe" -deviceID "CN44C8517R05RN:NW" -scfn "HP Officejet 6600 (NET)" -AutoStart 1
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: Lenovo Registration => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
MSCONFIG\startupreg: swg => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: TpShocks => TpShocks.exe
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{5E7967D8-ED22-407C-914A-B691D77C4C37}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{A8059C62-284B-49B6-B305-F1E9064B3C5E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3365D1F9-A4C6-403E-BA02-9F806149CA36}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{02EEFB22-91A4-4B29-B409-8ED0E17A0DD3}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{02E7494A-C5CA-4E4F-9817-50A959F56DB2}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{438DD0C6-A1B1-4B09-87FF-F1474DCAE61B}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe
FirewallRules: [{9D8408B6-6DA1-404C-9E30-FCDFE1F49A75}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [UDP Query User{293CA3C6-9AAA-44E8-92D9-46A52760D811}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{DDE4A99B-0BD9-4E74-A0D4-87266DD7575F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{D91F55BE-2F01-4648-B4D3-801791A57A74}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D6ED8459-CB88-4BA7-9D7F-560A85B823E1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{992D2169-F624-44BC-9E9F-20A15421895B}] => (Allow) C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{3D45472D-3432-4C20-9F18-14F49FDB15AB}] => (Allow) C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{CD78B751-D861-448A-810F-1FB599E570CE}] => (Allow) C:\Program Files\HP\HP Officejet 6600\Bin\DeviceSetup.exe
FirewallRules: [{3775D269-FB74-4226-8F7D-8AB6E133E5F3}] => (Allow) C:\Program Files\HP\HP Officejet 6600\bin\SendAFax.exe
FirewallRules: [{25AFCEF0-9BA7-4D01-AF2C-7396A6A76FAB}] => (Allow) C:\Program Files\HP\HP Officejet 6600\bin\DigitalWizards.exe
FirewallRules: [{1B49FEF1-146F-460F-9112-0337686ECB66}] => (Allow) C:\Program Files\HP\HP Officejet 6600\bin\FaxApplications.exe
FirewallRules: [{AD4FC9AA-2390-449D-8923-7EEEEEC783C0}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{BCD88866-316F-471A-9CB5-93178A30FDCE}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{3A0CEDC8-C7A4-4A28-8741-861574BCE76B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{CF288428-2974-4E8F-97D2-748C68C0A545}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel WiDi\WiDiApp.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/30/2015 10:27:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: CxAudMsg64.exe, Version: 1.6.0.0, Zeitstempel: 0x4fd1c0c1
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10240.16392, Zeitstempel: 0x55a864a2
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000ea28c
ID des fehlerhaften Prozesses: 0x768
Startzeit der fehlerhaften Anwendung: 0xCxAudMsg64.exe0
Pfad der fehlerhaften Anwendung: CxAudMsg64.exe1
Pfad des fehlerhaften Moduls: CxAudMsg64.exe2
Berichtskennung: CxAudMsg64.exe3
Vollständiger Name des fehlerhaften Pakets: CxAudMsg64.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: CxAudMsg64.exe5
Error: (11/30/2015 08:26:42 AM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Windows Search wird aufgrund eines Problems bei der Indizierung The catalog is corrupt beendet.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. 0xc0041801 (0xc0041801)
Error: (11/30/2015 08:26:39 AM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vom Suchdienst wurden beschädigte Datendateien im Index {id=3600} erkannt. Vom Dienst wird versucht, dieses Problem durch Neuerstellung des Indexes automatisch zu beheben.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. 0xc0041801 (0xc0041801)
Error: (11/30/2015 08:26:37 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "IntelWLANEventProvider" wurde versucht, die Abfrage "select * from CIntelQosEvent" zu registrieren, deren Zielklasse "CIntelQosEvent" im Namespace "//./ROOT/default" nicht vorhanden ist. Die Abfrage wird ignoriert.
Error: (11/30/2015 08:26:37 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "IntelWLANEventProvider" wurde versucht, die Abfrage "select * from CIntelDot1xEvent" zu registrieren, deren Zielklasse "CIntelDot1xEvent" im Namespace "//./ROOT/default" nicht vorhanden ist. Die Abfrage wird ignoriert.
Error: (11/30/2015 08:26:37 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "IntelWLANEventProvider" wurde versucht, die Abfrage "select * from CIntelWLANEvent" zu registrieren, deren Zielklasse "CIntelWLANEvent" im Namespace "//./ROOT/default" nicht vorhanden ist. Die Abfrage wird ignoriert.
Error: (11/30/2015 08:26:37 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "" wurde versucht, die Abfrage "select * from CIntelQosEvent" zu registrieren, deren Zielklasse "CIntelQosEvent" im Namespace "//./ROOT/default" nicht vorhanden ist. Die Abfrage wird ignoriert.
Error: (11/30/2015 08:26:37 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "" wurde versucht, die Abfrage "select * from CIntelDot1xEvent" zu registrieren, deren Zielklasse "CIntelDot1xEvent" im Namespace "//./ROOT/default" nicht vorhanden ist. Die Abfrage wird ignoriert.
Error: (11/30/2015 08:26:37 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "" wurde versucht, die Abfrage "select * from CIntelWLANEvent" zu registrieren, deren Zielklasse "CIntelWLANEvent" im Namespace "//./ROOT/default" nicht vorhanden ist. Die Abfrage wird ignoriert.
Systemfehler:
=============
Error: (11/30/2015 00:13:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80246007 fehlgeschlagen: Microsoft Visual C++ 2015 Runtime Package
Error: (11/30/2015 11:54:46 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst ThinkVantage Registry Monitor Service erreicht.
Error: (11/30/2015 11:52:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Net.Pipe-Listeneradapter" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (11/30/2015 11:52:07 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Net.Pipe-Listeneradapter erreicht.
Error: (11/30/2015 11:52:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Net.Msmq-Listeneradapter" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (11/30/2015 11:52:07 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Net.Msmq-Listeneradapter erreicht.
Error: (11/30/2015 11:51:22 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Conexant SmartAudio service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (11/30/2015 11:51:21 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Net.Tcp-Listeneradapter" ist vom Dienst "Net.Tcp-Portfreigabedienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (11/30/2015 11:50:37 AM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT-AUTORITÄT)
Description: Fehler "126" beim Laden der Kennwortbenachrichtigungs-DLL "ACGina". Stellen Sie sicher, dass der in der Registrierung definierte DLL-Pfad "HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages" sich auf einen korrekten und absoluten Pfad (<Laufwerk>:\<Pfad>\<Dateiname>.<Erw.>) bezieht und nicht auf einen relativen oder ungültigen Pfad. Wenn der DLL-Pfad falsch ist, stellen Sie sicher, dass sich alle Hilfsdateien im gleichen Verzeichnis befinden und dass das Systemkonto sowohl auf den DLL-Pfad als auch die Hilfsdateien Lesezugriff hat. Wenden Sie sich an den Anbieter der Benachrichtigungs-DLL, um weitere Unterstützung zu erhalten. Weitere Informationen finden Sie im Internet unter "hxxp://go.microsoft.com/fwlink/?LinkId=245898".
Error: (11/30/2015 11:49:49 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i3-2328M CPU @ 2.20GHz
Prozentuale Nutzung des RAM: 50%
Installierter physikalischer RAM: 3685.46 MB
Verfügbarer physikalischer RAM: 1808.17 MB
Summe virtueller Speicher: 7397.46 MB
Verfügbarer virtueller Speicher: 5577.23 MB
==================== Laufwerke ================================
Drive c: (Windows7_OS) (Fixed) (Total:227.22 GB) (Free:130.88 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive e: (Daten) (Fixed) (Total:219.5 GB) (Free:80.93 GB) NTFS
Drive q: (Recovery) (Fixed) (Total:17.58 GB) (Free:5.17 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 65BD4490)
Partition 1: (Active) - (Size=1.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=227.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=219.5 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=17.6 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
ich würde mich nach wie vor über Hilfe freuen!  Hier noch der Log von AdwCleaner: Code:
ATTFilter # AdwCleaner v5.023 - Bericht erstellt am 01/12/2015 um 07:58:20
# Aktualisiert am 30/11/2015 von Xplode
# Datenbank : 2015-11-30.1 [Server]
# Betriebssystem : Windows 10 Home (x64)
# Benutzername : Basti - BASTI-THINK
# Gestartet von : E:\Downloads\adwcleaner_5.023.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
[-] Dienst Gelöscht : hudohudo
[-] Dienst Gelöscht : pupivyhi
***** [ Ordner ] *****
[-] Ordner Gelöscht : C:\FreeRIP
[-] Ordner Gelöscht : C:\Program Files (x86)\FreeRIP
[-] Ordner Gelöscht : C:\Program Files (x86)\myfree codec
[-] Ordner Gelöscht : C:\Program Files (x86)\ScreenSnapshotTool
[-] Ordner Gelöscht : C:\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3
[-] Ordner Gelöscht : C:\Program Files (x86)\gmsd_de_005010162
[-] Ordner Gelöscht : C:\Program Files (x86)\Mozilla Firefox\Extensions\afurladvisor@anchorfree.com
[-] Ordner Gelöscht : C:\ProgramData\Partner
|
|
01.12.2015, 20:33
| #4 |
| /// the machine /// TB-Ausbilder | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen Lade Dir bitte von hier  Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Downloade Dir bitte  Malwarebytes Anti-Malware
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.12.2015, 00:15
| #5 |
| | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen OK.. alles erledigt. Der Revo Uninstaller hat die Programme nicht gefunden. Ich hatte zwischenzeitlich schon das Adware Removal Tool und MBAM heute Mittag durchlaufen lassen. Liegt es evt. daran? Vielen Dank für deine Mühe! Hier die 3 Log-Dateien von MBAM: MBAM 1: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 01.12.2015 Suchlaufzeit: 13:21 Protokolldatei: MBAM_1.txt Administrator: Ja Version: 2.01.6.1022 Malware-Datenbank: v2015.12.01.03 Rootkit-Datenbank: v2015.11.26.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 8 CPU: x64 Dateisystem: NTFS Benutzer: Basti Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 429074 Abgelaufene Zeit: 12 Min., 11 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 4 Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MRT.exe, In Quarantäne, [dd9c2320593116208c967204857f827e], Security.Hijack, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MsMpEng.exe, In Quarantäne, [d0a950f33456e6509aa13e386b99a15f], Trojan.Agent, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MRT.exe, In Quarantäne, [f980b78ce1a9cc6a9f83d5a1fc086898], Security.Hijack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MsMpEng.exe, In Quarantäne, [adcc95aebdcdee48ca71b7bf17ed13ed], Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 01.12.2015 Suchlaufzeit: 13:38 Protokolldatei: MBAM_2.txt Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2015.12.01.03 Rootkit-Datenbank: v2015.11.26.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: Basti Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 412314 Abgelaufene Zeit: 11 Min., 42 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 1 PUP.Optional.BundleInstaller, C:\Users\Basti\AppData\Local\Temp\nsc2AF.tmp, 2500, Löschen bei Neustart, [4f98e1bebbd087af11a245aa56ad24dc] Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 2 PUP.Optional.BundleInstaller, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\GINOQUCI, In Quarantäne, [4f98e1bebbd087af11a245aa56ad24dc], PUP.Optional.YahooVNM, HKU\S-1-5-21-852299283-3463242558-1453265187-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}, In Quarantäne, [3bac554abfcc1026b0b07f33a65de31d], Registrierungswerte: 3 PUP.Optional.BundleInstaller, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ginoquci|ImagePath, C:\Users\Basti\AppData\Local\Temp\nsc2AF.tmp, In Quarantäne, [4f98e1bebbd087af11a245aa56ad24dc] PUP.Optional.YahooVNM, HKU\S-1-5-21-852299283-3463242558-1453265187-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}|URL, https://de.search.yahoo.com/search?fr=vmn&type=vmn__webcompa__1_0__ya__ch_WCYID10029_DE_151129__yaie&p={searchTerms}, In Quarantäne, [3bac554abfcc1026b0b07f33a65de31d] PUP.Optional.YahooVNM, HKU\S-1-5-21-852299283-3463242558-1453265187-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}|TopResultURL, https://de.search.yahoo.com/search?fr=vmn&type=vmn__webcompa__1_0__ya__ch_WCYID10029_DE_151129__yaie&p={searchTerms}, In Quarantäne, [11d66a35b2d965d1f967545e24df4fb1] Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 11 PUP.Optional.CheckOffer, C:\Users\Basti\AppData\Local\Temp\nsbC8C5.tmp, In Quarantäne, [9c4b36692b60fb3b874f1fe4857cdd23], PUP.Optional.CheckOffer, C:\Users\Basti\AppData\Local\Temp\nsc9C0C.tmp, In Quarantäne, [c81f811ee5a644f22bab788b0ef341bf], PUP.Optional.DailyWiki, C:\Users\Basti\AppData\Local\Temp\nsh81EC.tmp, In Quarantäne, [30b7e1bee0abe056b710b200778a3cc4], PUP.Optional.ChinAd, C:\Users\Basti\AppData\Local\Temp\InstallHelper.exe, In Quarantäne, [13d4e9b6e0ab05312d3f653bf11050b0], PUP.Optional.CheckOffer, C:\Users\Basti\AppData\Local\Temp\nslA398.tmp\nsCBHTML5.dll, In Quarantäne, [83645f409dee80b6ebeb55ae6f923ac6], PUP.Optional.Tuto4PC, C:\Users\Basti\AppData\Local\Temp\is-13T4H.tmp\gentlemjmp_ieu.exe, In Quarantäne, [24c38f106328cf6747837c36b948817f], PUP.Optional.Tuto4PC, C:\Users\Basti\AppData\Local\Temp\is-IECVV.tmp\gentlemjmp_ieu.exe, In Quarantäne, [687f89167615fd39fbcff2c0e9182fd1], PUP.Optional.OurSeaching, C:\Users\Basti\AppData\Local\Temp\is-NDTUN.tmp\426.exe, In Quarantäne, [73747e21b5d651e56194c5c511f3ee12], PUP.Optional.EoRezo, C:\Users\Basti\AppData\Local\Temp\is-NMS1S.tmp\package_bobrowser_installer_multilang.exe, In Quarantäne, [08df1c8327647abc6dd44f0222df5da3], PUP.Optional.Tuto4PC, C:\Users\Basti\AppData\Local\Temp\is-P72RI.tmp\gentlemjmp_ieu.exe, In Quarantäne, [05e2d1cefc8f1d198c3e08aa9c65b947], PUP.Optional.BundleInstaller, C:\Users\Basti\AppData\Local\Temp\nsc2AF.tmp, Löschen bei Neustart, [4f98e1bebbd087af11a245aa56ad24dc], Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 01.12.2015 Suchlaufzeit: 23:06 Protokolldatei: MBAM_3.txt Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2015.12.01.07 Rootkit-Datenbank: v2015.11.26.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: Basti Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 412561 Abgelaufene Zeit: 11 Min., 56 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) JRT Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 10 Home x64
Ran by Basti (Administrator) on 01.12.2015 at 23:24:11,90
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 4
Successfully deleted: C:\ProgramData\lavasoft\web companion (Folder)
Successfully deleted: C:\Users\Basti\AppData\Roaming\lavasoft\web companion (Folder)
Successfully deleted: C:\Program Files (x86)\lavasoft\web companion (Folder)
Successfully deleted: C:\WINDOWS\SysWOW64\REN4098.tmp (File)
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01.12.2015 at 23:51:07,48
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Und das frische FRST-LOG:1.TEIL Code:
ATTFilter ==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AuthenTec, Inc) C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Avid Technology, Inc..) C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [178960 2012-03-15] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [M-Audio Taskbar Icon] => C:\Windows\system32\M-AudioTaskBarIcon.exe [798728 2010-12-07] (Avid Technology, Inc.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [293672 2013-06-14] (Lenovo Group Limited)
HKLM\...\Run: [AcWin7Hlpr] => C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [63728 2015-06-08] (Lenovo)
HKLM\...\Run: [SynLenovoHelper] => C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe [163960 2015-11-30] (Synaptics)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.)
HKLM-x32\...\Run: [PWMTRV] => rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [1091376 2012-01-17] (Lenovo)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [DigidesignMMERefresh] => C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [77824 2010-06-23] (Avid Technology, Inc..)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-28] (AVAST Software)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-16] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\...\Run: [Amazon Music] => C:\Users\Basti\AppData\Local\Amazon Music\Amazon Music Helper.exe [5890368 2015-10-29] ()
Lsa: [Notification Packages] scecli ACGina
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-28] (AVAST Software)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => Keine Datei
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => Keine Datei
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => Keine Datei
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => Keine Datei
Startup: C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6600 (Netzwerk).lnk [2015-11-30]
ShortcutTarget: Tintenwarnungen überwachen - HP Officejet 6600 (Netzwerk).lnk -> C:\Program Files\HP\HP Officejet 6600\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
CHR HKU\S-1-5-21-852299283-3463242558-1453265187-1000\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{51b7dcd1-fd32-4c38-92d3-92b53f287e80}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9f9920ce-b6fd-4099-b3a0-e83f3a76f481}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com/welcome/thinkpad
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\Software\Microsoft\Internet Explorer\Main,Start Page = google.de
SearchScopes: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENP_deDE501
SearchScopes: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENP_deDE501
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-28] (Oracle Corporation)
BHO: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2013-08-07] (AuthenTec Inc.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-28] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-28] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-28] (Oracle Corporation)
BHO-x32: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2013-08-07] (AuthenTec Inc.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-28] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-28] (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Keine Datei
Toolbar: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Keine Datei
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Keine Datei
FireFox:
========
FF ProfilePath: C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\cbfayl8i.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-15] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-28] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-15] ()
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll [2013-08-07] (AuthenTec, Inc)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-28] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\websitelogon@truesuite.com [2015-11-03] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [VIP1X@verisign.com] - C:\Program Files (x86)\Symantec\VIP Access Client => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-28]
FF HKLM-x32\...\Firefox\Extensions: [VIP5X@verisign.com] - C:\Program Files (x86)\Symantec\VIP Access Client => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-11-28]
Chrome:
=======
CHR Profile: C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-21]
CHR Extension: (Google Drive) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-04]
CHR Extension: (YouTube) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-21]
CHR Extension: (Website Logon) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\clglhglbidpdbjffpfcldkifhdegdfle [2013-12-23]
CHR Extension: (Google Search) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-21]
CHR Extension: (Avast Online Security) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-06-21]
CHR Extension: (Google Wallet) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-04]
CHR Extension: (Gmail) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-21]
CHR HKLM-x32\...\Chrome\Extension: [clglhglbidpdbjffpfcldkifhdegdfle] - C:\Program Files\Lenovo Fingerprint Reader\x86\tschrome.crx [2013-04-01]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-28]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-28] (AVAST Software)
R2 DigiRefresh; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [77824 2010-06-23] (Avid Technology, Inc..) [Datei ist nicht signiert]
R2 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [169776 2012-01-17] (Lenovo)
R2 FPLService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2139944 2013-08-07] (AuthenTec, Inc)
R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [187688 2013-06-14] (Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo Group Limited)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272424 2015-08-17] (Lenovo)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility LLC)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-11-30] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-11-19] ()
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Datei ist nicht signiert]
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [118576 2014-11-26] ()
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [21536 2015-09-29] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [255096 2015-11-30] (Synaptics Incorporated)
S2 ThinkVantage Registry Monitor Service; C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe [1028096 2010-08-31] (Lenovo Group Limited) [Datei ist nicht signiert]
S3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401704 2013-07-22] (AuthenTec, Inc.)
S3 TVT Backup Service; C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrservice.exe [1492280 2012-02-06] (Lenovo Group Limited)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-11-19] (Intel® Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-28] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [19600 2012-08-21] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-28] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-28] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-28] (AVAST Software)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
S3 Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [70416 2012-01-17] (Windows (R) Win 7 DDK provider)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-01] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [51320 2015-11-30] (Synaptics Incorporated)
R3 Tvti2c; C:\Windows\system32\DRIVERS\Tvti2c.sys [40248 2011-05-29] (Lenovo Information Product(ShenZhen China) Inc.)
R3 tvtvcamd; C:\Windows\system32\DRIVERS\tvtvcamd.sys [27432 2011-12-08] (ThinkVantage Communications Utility)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U4 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U4 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-01 23:51 - 2015-12-01 23:51 - 00000847 _____ C:\Users\Basti\Desktop\JRT_01.txt
2015-12-01 23:51 - 2015-12-01 23:51 - 00000847 _____ C:\Users\Basti\Desktop\JRT.txt
2015-12-01 23:50 - 2015-12-01 23:50 - 00016148 _____ C:\WINDOWS\system32\BASTI-THINK_Basti_HistoryPrediction.bin
2015-12-01 23:22 - 2015-12-01 23:22 - 00001198 _____ C:\Users\Basti\Desktop\MBAM_3.txt
2015-12-01 23:21 - 2015-12-01 23:21 - 00003907 _____ C:\Users\Basti\Desktop\MBAM_2.txt
2015-12-01 23:20 - 2015-12-01 23:20 - 00001819 _____ C:\Users\Basti\Desktop\MBAM_1.txt
2015-12-01 23:00 - 2015-12-01 23:03 - 00004162 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{59628844-6AAA-4B9C-8F4E-E3B612706C01}
2015-12-01 22:49 - 2015-12-01 22:49 - 00001348 _____ C:\Users\Basti\Desktop\Revo Uninstaller.lnk
2015-12-01 22:49 - 2015-12-01 22:49 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2015-12-01 22:49 - 2015-12-01 22:49 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-12-01 13:20 - 2015-12-01 23:06 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-12-01 13:20 - 2015-12-01 13:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2015-12-01 13:20 - 2015-12-01 13:35 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2015-12-01 13:20 - 2015-12-01 13:20 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-12-01 13:20 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-12-01 13:20 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-12-01 13:20 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-12-01 11:16 - 2015-12-01 11:16 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-12-01 07:56 - 2015-12-01 07:58 - 00000000 ____D C:\AdwCleaner
2015-11-30 23:13 - 2015-12-01 08:10 - 00000017 _____ C:\WINDOWS\SysWOW64\history.dat
2015-11-30 22:16 - 2015-11-30 22:35 - 00000000 ____D C:\Program Files (x86)\Adware Removal Tool by TSA
2015-11-30 22:16 - 2015-11-30 22:16 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\subinacl.exe
2015-11-30 19:38 - 2015-11-30 19:38 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Videos
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 ____D C:\Users\DefaultAppPool
2015-11-30 19:38 - 2015-11-30 08:16 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2015-11-30 19:38 - 2015-11-30 08:16 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2015-11-30 13:41 - 2015-11-30 13:41 - 00428664 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-11-30 13:41 - 2015-11-30 13:41 - 00279672 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo34-4.dll
2015-11-30 13:41 - 2015-11-30 13:41 - 00065656 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2015-11-30 13:41 - 2015-11-30 13:41 - 00051320 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-11-30 13:41 - 2015-11-30 13:41 - 00050808 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-11-30 13:37 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-30 13:37 - 2015-11-05 06:06 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-30 13:37 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-30 13:37 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-30 13:37 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-30 13:37 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2015-11-30 13:37 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-30 13:37 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-30 13:37 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-30 13:37 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-30 13:37 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-11-30 13:37 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-11-30 13:37 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-11-30 13:37 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-11-30 13:37 - 2015-09-17 07:49 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-11-30 13:37 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-11-30 13:37 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-11-30 13:37 - 2015-09-17 07:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-11-30 13:37 - 2015-09-17 06:56 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-11-30 13:37 - 2015-09-17 06:48 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-11-30 13:37 - 2015-09-17 06:46 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-11-30 13:37 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-11-30 13:37 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-11-30 13:37 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-11-30 13:37 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-11-30 13:37 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-11-30 13:37 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-11-30 13:37 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-11-30 13:37 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-11-30 13:37 - 2015-08-03 03:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-11-30 13:37 - 2015-08-03 03:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-11-30 13:37 - 2015-08-03 03:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-11-30 13:37 - 2015-08-03 02:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-11-30 13:37 - 2015-07-30 07:16 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-11-30 13:37 - 2015-07-30 07:14 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-11-30 13:37 - 2015-07-30 05:26 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-11-30 13:37 - 2015-07-30 05:26 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-11-30 13:37 - 2015-07-30 05:24 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-11-30 13:37 - 2015-07-30 05:24 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-11-30 13:37 - 2015-07-30 05:22 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-11-30 13:37 - 2015-07-30 04:44 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-11-30 13:37 - 2015-07-30 04:06 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-11-30 13:37 - 2015-07-30 04:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-11-30 13:36 - 2015-11-05 06:15 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-30 13:36 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-30 13:36 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-30 13:36 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-30 13:36 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-30 13:36 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-30 13:36 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-11-30 13:36 - 2015-11-05 05:20 - 21873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-30 13:36 - 2015-11-05 05:18 - 24597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-30 13:36 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-30 13:36 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-30 13:36 - 2015-11-05 05:10 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-30 13:36 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-30 13:36 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-30 13:36 - 2015-11-05 05:05 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-30 13:36 - 2015-11-05 05:03 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-30 13:36 - 2015-11-05 05:01 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-30 13:36 - 2015-11-05 05:01 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-30 13:36 - 2015-11-05 04:59 - 03587072 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-30 13:36 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-30 13:36 - 2015-11-05 04:58 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-30 13:36 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-30 13:36 - 2015-11-05 04:56 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-30 13:36 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-30 13:36 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-30 13:36 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-30 13:36 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-11-30 13:36 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-30 13:36 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-30 13:36 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-11-30 13:36 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-11-30 13:36 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-11-30 13:36 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-11-30 13:36 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-11-30 13:36 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-11-30 13:36 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-11-30 13:36 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-11-30 13:36 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-11-30 13:36 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-11-30 13:36 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-11-30 13:36 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-11-30 13:36 - 2015-09-17 07:50 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-11-30 13:36 - 2015-09-17 07:50 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-11-30 13:36 - 2015-09-17 07:50 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-11-30 13:36 - 2015-09-17 07:50 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-11-30 13:36 - 2015-09-17 07:49 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-11-30 13:36 - 2015-09-17 07:49 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-11-30 13:36 - 2015-09-17 07:49 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-11-30 13:36 - 2015-09-17 07:48 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-11-30 13:36 - 2015-09-17 07:48 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-11-30 13:36 - 2015-09-17 07:48 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-11-30 13:36 - 2015-09-17 07:48 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-11-30 13:36 - 2015-09-17 07:48 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-11-30 13:36 - 2015-09-17 07:48 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-11-30 13:36 - 2015-09-17 07:48 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-11-30 13:36 - 2015-09-17 07:48 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-11-30 13:36 - 2015-09-17 07:44 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-11-30 13:36 - 2015-09-17 07:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-11-30 13:36 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-11-30 13:36 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-11-30 13:36 - 2015-09-17 07:27 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-11-30 13:36 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-11-30 13:36 - 2015-09-17 07:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-11-30 13:36 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2015-11-30 13:36 - 2015-09-17 07:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-11-30 13:36 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-11-30 13:36 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-11-30 13:36 - 2015-09-17 07:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-11-30 13:36 - 2015-09-17 07:11 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-11-30 13:36 - 2015-09-17 07:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-11-30 13:36 - 2015-09-17 07:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-11-30 13:36 - 2015-09-17 07:05 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-11-30 13:36 - 2015-09-17 07:05 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-11-30 13:36 - 2015-09-17 07:04 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-11-30 13:36 - 2015-09-17 07:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-11-30 13:36 - 2015-09-17 06:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-11-30 13:36 - 2015-09-17 06:57 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-11-30 13:36 - 2015-09-17 06:57 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-11-30 13:36 - 2015-09-17 06:56 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-11-30 13:36 - 2015-09-17 06:55 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-11-30 13:36 - 2015-09-17 06:55 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-11-30 13:36 - 2015-09-17 06:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-11-30 13:36 - 2015-09-17 06:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-11-30 13:36 - 2015-09-17 06:54 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-11-30 13:36 - 2015-09-17 06:52 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-11-30 13:36 - 2015-09-17 06:52 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-11-30 13:36 - 2015-09-17 06:52 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-11-30 13:36 - 2015-09-17 06:52 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-11-30 13:36 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-11-30 13:36 - 2015-09-17 06:50 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-11-30 13:36 - 2015-09-17 06:49 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-11-30 13:36 - 2015-09-17 06:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-11-30 13:36 - 2015-09-17 06:49 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-11-30 13:36 - 2015-09-17 06:48 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-11-30 13:36 - 2015-09-17 06:48 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-11-30 13:36 - 2015-09-17 06:48 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-11-30 13:36 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-11-30 13:36 - 2015-09-17 06:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-11-30 13:36 - 2015-09-17 06:45 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-11-30 13:36 - 2015-09-17 06:44 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-11-30 13:36 - 2015-09-17 06:44 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-11-30 13:36 - 2015-09-17 06:44 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-11-30 13:36 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-11-30 13:36 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2015-11-30 13:36 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-11-30 13:36 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-11-30 13:36 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-11-30 13:36 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-11-30 13:36 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-11-30 13:36 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-11-30 13:36 - 2015-08-27 06:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-11-30 13:36 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-11-30 13:36 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-11-30 13:36 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-11-30 13:36 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-11-30 13:36 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-11-30 13:36 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-11-30 13:36 - 2015-08-27 06:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-11-30 13:36 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-11-30 13:36 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-11-30 13:36 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-11-30 13:36 - 2015-08-18 08:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-11-30 13:36 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-11-30 13:36 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-11-30 13:36 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-11-30 13:36 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-11-30 13:36 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-11-30 13:36 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-11-30 13:36 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-11-30 13:36 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-11-30 13:36 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-11-30 13:36 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-11-30 13:36 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-11-30 13:36 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-11-30 13:36 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-11-30 13:36 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-11-30 13:36 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-11-30 13:36 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-11-30 13:36 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-11-30 13:36 - 2015-08-11 10:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-11-30 13:36 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-11-30 13:36 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-11-30 13:36 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-11-30 13:36 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-11-30 13:36 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-11-30 13:36 - 2015-08-11 09:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-11-30 13:36 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-11-30 13:36 - 2015-08-06 04:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-11-30 13:36 - 2015-08-06 03:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-11-30 13:36 - 2015-08-05 05:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-11-30 13:36 - 2015-08-05 04:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-11-30 13:36 - 2015-08-03 03:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-11-30 13:36 - 2015-08-03 02:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-11-30 13:36 - 2015-08-03 02:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-11-30 13:36 - 2015-08-03 02:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-11-30 13:36 - 2015-08-03 01:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-11-30 13:36 - 2015-07-30 07:23 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-11-30 13:36 - 2015-07-30 07:21 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-11-30 13:36 - 2015-07-30 07:17 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-11-30 13:36 - 2015-07-30 07:17 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-11-30 13:36 - 2015-07-30 07:15 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-11-30 13:36 - 2015-07-30 07:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-11-30 13:36 - 2015-07-30 07:03 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-11-30 13:36 - 2015-07-30 05:29 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-11-30 13:36 - 2015-07-30 05:25 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-11-30 13:36 - 2015-07-30 05:22 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-11-30 13:36 - 2015-07-30 04:52 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-11-30 13:36 - 2015-07-30 04:49 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-11-30 13:36 - 2015-07-30 04:46 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-11-30 13:36 - 2015-07-30 04:45 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-11-30 13:36 - 2015-07-30 04:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-11-30 13:36 - 2015-07-30 04:44 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-11-30 13:36 - 2015-07-30 04:44 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-11-30 13:36 - 2015-07-30 04:38 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-11-30 13:36 - 2015-07-30 04:29 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-11-30 13:36 - 2015-07-30 04:15 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-11-30 13:36 - 2015-07-30 04:07 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-11-30 13:36 - 2015-07-30 04:04 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-11-30 13:36 - 2015-07-30 03:58 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-11-30 13:35 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-30 13:35 - 2015-11-05 05:56 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-11-30 13:35 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-30 13:35 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-30 13:35 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-30 13:35 - 2015-11-05 05:01 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-30 13:35 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-30 13:35 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-11-30 13:35 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-11-30 13:35 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-11-30 13:35 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-11-30 13:35 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-11-30 13:35 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-11-30 13:35 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-11-30 13:35 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-11-30 13:35 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-11-30 13:35 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-11-30 13:35 - 2015-09-19 06:14 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-11-30 13:35 - 2015-09-17 07:49 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-11-30 13:35 - 2015-09-17 07:37 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-11-30 13:35 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-11-30 13:35 - 2015-09-17 07:09 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-11-30 13:35 - 2015-09-17 07:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-11-30 13:35 - 2015-09-17 07:06 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-11-30 13:35 - 2015-09-17 07:04 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-11-30 13:35 - 2015-09-17 07:04 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-11-30 13:35 - 2015-09-17 07:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-11-30 13:35 - 2015-09-17 07:03 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-11-30 13:35 - 2015-09-17 07:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-11-30 13:35 - 2015-09-17 07:02 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-11-30 13:35 - 2015-09-17 07:02 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-11-30 13:35 - 2015-09-17 06:57 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-11-30 13:35 - 2015-09-17 06:56 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-11-30 13:35 - 2015-09-17 06:55 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-11-30 13:35 - 2015-09-17 06:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-11-30 13:35 - 2015-09-17 06:55 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-11-30 13:35 - 2015-09-17 06:53 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-11-30 13:35 - 2015-09-17 06:52 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-11-30 13:35 - 2015-09-17 06:52 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-11-30 13:35 - 2015-09-17 06:52 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-11-30 13:35 - 2015-09-17 06:51 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-11-30 13:35 - 2015-09-17 06:51 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-11-30 13:35 - 2015-09-17 06:49 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-11-30 13:35 - 2015-09-17 06:48 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-11-30 13:35 - 2015-09-17 06:48 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-11-30 13:35 - 2015-09-17 06:47 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-11-30 13:35 - 2015-09-17 06:47 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-11-30 13:35 - 2015-09-17 06:46 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-11-30 13:35 - 2015-09-17 06:46 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-11-30 13:35 - 2015-09-17 06:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-11-30 13:35 - 2015-09-17 06:44 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-11-30 13:35 - 2015-09-17 06:43 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-11-30 13:35 - 2015-09-17 06:43 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-11-30 13:35 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-11-30 13:35 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-11-30 13:35 - 2015-09-17 06:38 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2015-11-30 13:35 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-11-30 13:35 - 2015-09-17 06:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-11-30 13:35 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-11-30 13:35 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-11-30 13:35 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-11-30 13:35 - 2015-08-18 08:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-11-30 13:35 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-11-30 13:35 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-11-30 13:35 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-11-30 13:35 - 2015-08-18 07:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-11-30 13:35 - 2015-08-11 11:04 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-11-30 13:35 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-11-30 13:35 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-11-30 13:35 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-11-30 13:35 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-11-30 13:35 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-11-30 13:35 - 2015-08-08 07:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-11-30 13:35 - 2015-08-04 04:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-11-30 13:35 - 2015-08-03 02:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-11-30 13:35 - 2015-08-03 02:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-11-30 13:35 - 2015-08-03 02:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-11-30 13:35 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-11-30 13:35 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-11-30 13:35 - 2015-08-03 02:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-11-30 13:35 - 2015-08-03 02:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-11-30 13:35 - 2015-08-03 02:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-11-30 13:35 - 2015-07-30 05:12 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-11-30 13:35 - 2015-07-30 04:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-11-30 13:35 - 2015-07-30 04:44 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-11-30 13:34 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-30 13:34 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-30 13:34 - 2015-11-05 05:05 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-30 13:34 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-11-30 13:34 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-30 13:34 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-11-30 13:34 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-11-30 13:34 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-11-30 13:34 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-11-30 13:34 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-11-30 13:34 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-11-30 13:34 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-11-30 13:34 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-11-30 13:34 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-11-30 13:34 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-11-30 13:34 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-11-30 13:34 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-11-30 13:34 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-11-30 13:34 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-11-30 13:34 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-11-30 13:34 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-11-30 13:34 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-11-30 13:34 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-11-30 13:34 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-11-30 13:34 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-11-30 13:34 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-11-30 13:34 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-11-30 13:34 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-11-30 13:34 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-11-30 13:34 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-11-30 13:34 - 2015-09-17 07:48 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-11-30 13:34 - 2015-09-17 07:48 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-11-30 13:34 - 2015-09-17 07:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-11-30 13:34 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-11-30 13:34 - 2015-09-17 07:09 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-11-30 13:34 - 2015-09-17 07:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-11-30 13:34 - 2015-09-17 07:08 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-11-30 13:34 - 2015-09-17 07:06 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-11-30 13:34 - 2015-09-17 07:03 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-11-30 13:34 - 2015-09-17 07:00 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-11-30 13:34 - 2015-09-17 06:57 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-11-30 13:34 - 2015-09-17 06:55 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-11-30 13:34 - 2015-09-17 06:55 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-11-30 13:34 - 2015-09-17 06:54 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-11-30 13:34 - 2015-09-17 06:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-11-30 13:34 - 2015-09-17 06:52 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-11-30 13:34 - 2015-09-17 06:52 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-11-30 13:34 - 2015-09-17 06:52 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-11-30 13:34 - 2015-09-17 06:51 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-11-30 13:34 - 2015-09-17 06:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-11-30 13:34 - 2015-09-17 06:50 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-11-30 13:34 - 2015-09-17 06:50 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-11-30 13:34 - 2015-09-17 06:50 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll
2015-11-30 13:34 - 2015-09-17 06:50 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll
2015-11-30 13:34 - 2015-09-17 06:49 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-11-30 13:34 - 2015-09-17 06:49 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-11-30 13:34 - 2015-09-17 06:49 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll
2015-11-30 13:34 - 2015-09-17 06:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-11-30 13:34 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2015-11-30 13:34 - 2015-09-17 06:46 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-11-30 13:34 - 2015-09-17 06:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-11-30 13:34 - 2015-09-17 06:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-11-30 13:34 - 2015-09-17 06:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-11-30 13:34 - 2015-09-17 06:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-11-30 13:34 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-11-30 13:34 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-11-30 13:34 - 2015-09-17 06:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-11-30 13:34 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-11-30 13:34 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-11-30 13:34 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-11-30 13:34 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-11-30 13:34 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-11-30 13:34 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-11-30 13:34 - 2015-09-17 06:16 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-11-30 13:34 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-11-30 13:34 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-11-30 13:34 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-11-30 13:34 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-11-30 13:34 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-11-30 13:34 - 2015-08-18 05:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-11-30 13:34 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-11-30 13:34 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-11-30 13:34 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-11-30 13:34 - 2015-08-11 10:40 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-11-30 13:34 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-11-30 13:34 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-11-30 13:34 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-11-30 13:34 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-11-30 13:34 - 2015-08-11 10:14 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-11-30 13:34 - 2015-08-11 10:13 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-11-30 13:34 - 2015-08-11 10:11 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-11-30 13:34 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-11-30 13:34 - 2015-08-11 10:10 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-11-30 13:34 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-11-30 13:34 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-11-30 13:34 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-11-30 13:34 - 2015-08-11 09:51 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-11-30 13:34 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-11-30 13:34 - 2015-08-11 09:50 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-11-30 13:34 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-11-30 13:34 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-11-30 13:34 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-11-30 13:34 - 2015-08-08 08:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-11-30 13:34 - 2015-08-08 08:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-11-30 13:34 - 2015-08-08 07:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-11-30 13:34 - 2015-08-08 07:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-11-30 13:34 - 2015-08-06 04:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-11-30 13:34 - 2015-08-04 05:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-11-30 13:34 - 2015-08-03 03:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-11-30 13:34 - 2015-08-03 03:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-11-30 13:34 - 2015-08-03 03:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-11-30 13:34 - 2015-08-03 02:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-11-30 13:34 - 2015-08-03 02:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-11-30 13:34 - 2015-08-03 02:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-11-30 13:34 - 2015-08-03 02:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-11-30 13:34 - 2015-07-30 06:24 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-11-30 13:34 - 2015-07-30 05:08 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-11-30 13:34 - 2015-07-30 04:41 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-11-30 13:34 - 2015-07-30 04:40 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-11-30 13:34 - 2015-07-30 04:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-11-30 13:29 - 2015-09-17 06:50 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-11-30 13:29 - 2015-09-17 06:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-11-30 13:29 - 2015-07-30 04:44 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-11-30 13:15 - 2015-11-30 13:15 - 00282152 _____ C:\WINDOWS\Minidump\113015-30406-01.dmp
2015-11-30 13:08 - 2015-11-30 13:15 - 572526834 _____ C:\WINDOWS\MEMORY.DMP
2015-11-30 13:08 - 2015-11-30 13:15 - 00000000 ____D C:\WINDOWS\Minidump
2015-11-30 13:08 - 2015-11-30 13:08 - 00283976 _____ C:\WINDOWS\Minidump\113015-30656-01.dmp
2015-11-30 12:58 - 2015-11-30 12:58 - 00000000 _____ C:\Users\Basti\defogger_reenable
2015-11-30 12:32 - 2015-11-30 12:32 - 00000000 ____D C:\Users\Basti\AppData\Local\NetworkTiles
2015-11-30 12:14 - 2015-12-01 23:54 - 00000000 ____D C:\FRST
2015-11-30 11:53 - 2015-11-30 11:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fingerprint Reader
2015-11-30 11:31 - 2015-11-30 11:31 - 00002407 _____ C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-30 11:31 - 2015-11-30 11:31 - 00000000 ___RD C:\Users\Basti\OneDrive
2015-11-30 11:31 - 2015-11-30 11:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2015-11-30 11:29 - 2015-11-30 11:29 - 00000000 ____D C:\Users\Basti\AppData\Local\MicrosoftEdge
2015-11-30 11:29 - 2014-11-26 11:01 - 00004664 _____ C:\WINDOWS\system32\Drivers\CxSfPt.dat
2015-11-30 10:27 - 2015-11-30 10:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2015-11-30 10:27 - 2015-11-30 10:27 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2015-11-30 10:26 - 2015-11-30 10:26 - 07231400 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 03153264 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\UCI64A96.DLL
2015-11-30 10:26 - 2015-11-30 10:26 - 01991784 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 01052208 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64BP16.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00695688 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\C3DHPExt64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00431048 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CSpkExt64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00340656 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00283928 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00151791 _____ C:\WINDOWS\system32\Drivers\DS1Parm.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00071024 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxPageMaster64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00014718 _____ C:\WINDOWS\system32\Drivers\MicGain.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00011842 _____ C:\WINDOWS\system32\Drivers\EdgeEQ.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00010107 _____ C:\WINDOWS\system32\Drivers\MicEQ.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00008269 _____ C:\WINDOWS\system32\Drivers\AFA.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00006520 _____ C:\WINDOWS\system32\Drivers\ISAPSII.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00006312 _____ C:\WINDOWS\system32\Drivers\FXMisc.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00003657 _____ C:\WINDOWS\system32\Drivers\BIT_CLK.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00003027 _____ C:\WINDOWS\system32\Drivers\SPKVol.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00002171 _____ C:\WINDOWS\system32\Drivers\OrVerbs.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00001816 _____ C:\WINDOWS\system32\Drivers\ALTMIXER.INI
2015-11-30 10:24 - 2015-11-30 10:27 - 00000000 ____D C:\Users\Basti\AppData\Local\Comms
2015-11-30 10:23 - 2015-11-30 10:23 - 00276160 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo34.dll
2015-11-30 10:23 - 2015-11-30 10:23 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-11-30 10:22 - 2015-11-30 10:22 - 00001058 _____ C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2015-11-30 10:22 - 2015-11-30 10:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Publishers
2015-11-30 10:22 - 2015-07-09 20:39 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-11-30 10:22 - 2015-07-09 20:36 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-11-30 10:22 - 2015-07-09 20:28 - 06358016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-11-30 10:22 - 2015-07-09 20:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-11-30 10:22 - 2015-07-09 20:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-11-30 10:21 - 2015-12-01 07:17 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-30 10:21 - 2015-12-01 07:17 - 00000000 ____D C:\Users\Basti\AppData\Local\Packages
2015-11-30 10:20 - 2015-11-30 10:20 - 00000020 ___SH C:\Users\Basti\ntuser.ini
2015-11-30 10:20 - 2015-11-30 10:20 - 00000000 ____D C:\Users\Basti\AppData\Local\TileDataLayer
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-11-30 08:26 - 2015-11-30 08:26 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-11-30 08:21 - 2015-07-10 11:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-11-30 08:16 - 2015-11-30 08:16 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-11-30 08:12 - 2015-11-30 08:12 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-11-30 08:10 - 2015-12-01 19:23 - 00000000 ____D C:\Users\Basti
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Vorlagen
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Startmenü
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Netzwerkumgebung
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Lokale Einstellungen
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Eigene Dateien
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Druckumgebung
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Documents\Eigene Videos
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Documents\Eigene Musik
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Documents\Eigene Bilder
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\AppData\Local\Verlauf
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\AppData\Local\Anwendungsdaten
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Anwendungsdaten
2015-11-30 08:08 - 2015-12-01 13:55 - 02077062 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-30 08:08 - 2015-11-30 08:08 - 01980268 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-11-30 08:07 - 2015-11-30 10:27 - 00000000 ____D C:\Program Files\CONEXANT
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____D C:\Program Files\Synaptics
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____D C:\Program Files\AuthenTec
2015-11-30 08:02 - 2015-11-30 12:00 - 00000000 ___DC C:\WINDOWS\Panther
2015-11-30 07:59 - 2015-11-30 07:59 - 00000000 ____D C:\Windows.old
2015-11-30 07:57 - 2015-11-30 07:57 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-11-30 07:55 - 2015-11-30 07:55 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files\MSBuild
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\inetpub
2015-11-30 07:51 - 2015-06-17 18:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-11-30 07:51 - 2015-06-17 18:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-11-30 07:51 - 2015-06-17 18:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-11-30 07:51 - 2015-05-29 21:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-11-30 07:51 - 2015-05-29 21:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-11-30 07:51 - 2015-05-29 21:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-11-30 07:22 - 2015-11-30 08:27 - 00010453 _____ C:\WINDOWS\diagerr.xml
2015-11-30 07:22 - 2015-11-30 08:27 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2015-11-29 21:29 - 2015-11-30 11:40 - 00000000 ____D C:\Users\Basti\AppData\Local\Lavasoft
2015-11-29 21:29 - 2015-11-29 21:29 - 00000000 ____D C:\Users\Public\Documents\Baidu
2015-11-29 21:28 - 2015-12-01 23:25 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Lavasoft
2015-11-29 21:28 - 2015-12-01 23:25 - 00000000 ____D C:\ProgramData\Lavasoft
2015-11-29 21:28 - 2015-12-01 23:25 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2015-11-29 21:28 - 2015-11-30 08:19 - 00002872 _____ C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini
2015-11-29 21:28 - 2015-11-30 08:19 - 00002872 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2015-11-29 21:28 - 2015-11-29 21:28 - 00425744 _____ (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService64.dll
2015-11-29 21:28 - 2015-11-29 21:28 - 00345360 _____ (Lavasoft Limited) C:\WINDOWS\SysWOW64\LavasoftTcpService.dll
2015-11-29 20:32 - 2009-06-10 22:00 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2015-11-29 20:30 - 2015-11-29 20:32 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Opera Software
2015-11-29 20:30 - 2015-11-29 20:32 - 00000000 ____D C:\Users\Basti\AppData\Local\Opera Software
2015-11-28 14:20 - 2015-11-28 14:20 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-11-28 14:20 - 2015-11-28 14:20 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-11-15 20:31 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2015-11-15 20:31 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-11-15 20:31 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2015-11-15 20:31 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-11-03 23:00 - 2015-11-04 20:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
|
|
02.12.2015, 00:18
| #6 |
| | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen FRST-LOG 2.TEIL Code:
ATTFilter ==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-01 23:52 - 2013-04-30 19:44 - 00001110 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-01 23:50 - 2012-09-15 14:13 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-01 23:00 - 2012-10-27 08:36 - 00000000 ____D C:\ProgramData\Skype
2015-12-01 22:46 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-01 21:12 - 2014-07-09 08:42 - 00000000 ____D C:\Users\Basti\AppData\Local\Amazon Music
2015-12-01 19:48 - 2012-10-27 08:37 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Skype
2015-12-01 19:40 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2015-12-01 19:07 - 2015-08-16 20:21 - 00000000 ____D C:\Temp
2015-12-01 19:07 - 2013-09-12 20:24 - 00000000 ____D C:\Users\Basti\AppData\LocalLow\AuthenTec
2015-12-01 19:07 - 2013-04-30 19:44 - 00001106 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-01 14:59 - 2014-06-04 09:02 - 00000000 ____D C:\Users\Basti\AppData\Roaming\vlc
2015-12-01 13:55 - 2015-07-10 17:34 - 00884826 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-01 13:55 - 2015-07-10 17:34 - 00195924 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-01 13:51 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-01 13:51 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-01 07:28 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-12-01 07:17 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-11-30 22:30 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-11-30 22:29 - 2015-07-10 13:20 - 00259496 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-30 22:26 - 2015-07-10 17:46 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-11-30 22:09 - 2012-11-12 18:53 - 00001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-11-30 13:41 - 2015-07-28 17:01 - 01804696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-11-30 13:41 - 2015-07-28 17:01 - 00777336 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-11-30 13:41 - 2015-07-28 17:01 - 00636536 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-11-30 13:41 - 2015-07-28 17:01 - 00277624 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2015-11-30 13:41 - 2015-07-28 17:01 - 00051320 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-11-30 13:41 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-30 12:00 - 2012-09-21 21:42 - 00000000 ____D C:\Users\Basti\AppData\Local\CrashDumps
2015-11-30 10:26 - 2013-06-26 19:52 - 03270960 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-11-30 10:26 - 2013-06-26 19:52 - 01317096 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\Drivers\CHDRT64.sys
2015-11-30 10:26 - 2012-09-20 22:58 - 00000000 ____D C:\ProgramData\Conexant
2015-11-30 10:22 - 2015-07-10 17:35 - 00000000 ____D C:\WINDOWS\OCR
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-11-30 10:20 - 2009-07-14 04:20 - 00000000 ____D C:\Users\Default.migrated
2015-11-30 08:29 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-11-30 08:27 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows NT
2015-11-30 08:26 - 2015-08-22 19:51 - 00003346 _____ C:\WINDOWS\System32\Tasks\{5C44334E-D070-4942-A00F-8264A221FF08}
2015-11-30 08:26 - 2015-08-16 20:21 - 00003596 _____ C:\WINDOWS\System32\Tasks\Motorola Device Manager Update
2015-11-30 08:26 - 2015-08-16 20:21 - 00003404 _____ C:\WINDOWS\System32\Tasks\Motorola Device Manager Initial Update
2015-11-30 08:26 - 2015-07-10 12:04 - 00000000 __RSD C:\WINDOWS\Media
2015-11-30 08:26 - 2015-07-10 12:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-11-30 08:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Registration
2015-11-30 08:26 - 2015-05-18 19:52 - 00003132 _____ C:\WINDOWS\System32\Tasks\{8244CBC6-1108-4C35-AF13-01243CC14407}
2015-11-30 08:26 - 2014-12-24 22:24 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-11-30 08:26 - 2014-06-28 11:25 - 00003240 _____ C:\WINDOWS\System32\Tasks\{B570C062-A09B-4FF8-A272-7E95B67E15DB}
2015-11-30 08:26 - 2013-09-27 23:31 - 00004924 _____ C:\WINDOWS\System32\Tasks\ShutdownNachSicherung
2015-11-30 08:26 - 2013-08-10 12:45 - 00003558 _____ C:\WINDOWS\System32\Tasks\{1FAE95A7-433C-462A-81AB-9102086B1B6A}
2015-11-30 08:26 - 2013-04-30 19:44 - 00004216 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-30 08:26 - 2013-04-30 19:44 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-30 08:26 - 2012-11-19 12:00 - 00002882 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-11-30 08:26 - 2012-09-29 19:17 - 00003112 _____ C:\WINDOWS\System32\Tasks\{377F2728-61E6-4F48-8603-B97D69F9CFC5}
2015-11-30 08:26 - 2012-09-22 22:50 - 00004292 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-11-30 08:26 - 2012-09-22 21:39 - 00003264 _____ C:\WINDOWS\System32\Tasks\{E63801AF-7C96-47BF-95A1-B81983D4317D}
2015-11-30 08:26 - 2012-09-21 20:19 - 00003140 _____ C:\WINDOWS\System32\Tasks\{71E3E912-F65D-4A3D-A8F6-64187E5EA26C}
2015-11-30 08:26 - 2012-09-15 14:13 - 00003932 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-11-30 08:26 - 2012-09-15 13:45 - 00003456 _____ C:\WINDOWS\System32\Tasks\{95F202ED-6D23-40DC-94A2-A3CD281F11B0}
2015-11-30 08:23 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-11-30 08:21 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-11-30 08:17 - 2015-09-11 21:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-11-30 08:17 - 2015-08-16 21:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android SDK Tools
2015-11-30 08:17 - 2015-08-16 21:42 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Android SDK Tools
2015-11-30 08:17 - 2015-08-16 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager
2015-11-30 08:17 - 2015-08-16 20:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2015-11-30 08:17 - 2015-08-16 20:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-11-30 08:17 - 2015-08-16 19:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot
2015-11-30 08:17 - 2015-07-30 15:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-11-30 08:17 - 2015-07-10 12:04 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2015-11-30 08:17 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Help
2015-11-30 08:17 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-11-30 08:17 - 2015-05-20 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Videoverwandte Programme
2015-11-30 08:17 - 2015-05-20 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Produktpalette
2015-11-30 08:17 - 2014-09-02 12:46 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-11-30 08:17 - 2014-07-09 08:42 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music
2015-11-30 08:17 - 2014-06-04 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-11-30 08:17 - 2014-05-27 22:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-11-30 08:17 - 2014-05-24 07:07 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2015-11-30 08:17 - 2013-12-25 08:28 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeRIP MP3 Converter
2015-11-30 08:17 - 2013-10-16 12:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-30 08:17 - 2013-06-08 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WAV To MP3
2015-11-30 08:17 - 2013-04-30 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-30 08:17 - 2012-11-25 00:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-11-30 08:17 - 2012-11-19 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-11-30 08:17 - 2012-09-27 20:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hydrogen
2015-11-30 08:17 - 2012-09-20 20:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digidesign
2015-11-30 08:17 - 2012-09-15 21:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2015-11-30 08:17 - 2012-09-15 12:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Absolute Software
2015-11-30 08:17 - 2012-08-28 19:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel AppUp(SM) center
2015-11-30 08:17 - 2012-08-28 19:43 - 00000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2015-11-30 08:17 - 2012-08-28 19:33 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-11-30 08:13 - 2015-07-10 17:34 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-11-30 08:13 - 2012-08-28 19:37 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2015-11-30 08:12 - 2015-07-10 14:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\schemas
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-30 08:12 - 2014-10-02 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-11-30 08:12 - 2012-09-20 20:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio
2015-11-30 08:12 - 2012-08-28 20:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2015-11-30 08:12 - 2011-12-08 21:02 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-11-30 08:12 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-11-30 08:12 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-11-30 08:08 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-11-30 08:02 - 2015-07-10 12:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-11-30 07:58 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-11-30 07:58 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-11-30 07:58 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-11-30 07:52 - 2015-07-10 12:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-11-30 07:52 - 2015-07-10 12:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-11-30 07:52 - 2015-07-10 12:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-11-30 07:52 - 2015-07-10 12:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-11-30 07:52 - 2015-07-10 12:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-11-30 07:52 - 2015-07-10 12:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-11-30 07:52 - 2015-07-10 12:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-11-30 07:26 - 2009-07-14 05:45 - 00031472 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-30 07:26 - 2009-07-14 05:45 - 00031472 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-30 07:23 - 2015-07-10 18:28 - 00000000 ___HD C:\$Windows.~BT
2015-11-28 23:11 - 2014-01-19 00:00 - 00000000 ____D C:\ProgramData\Oracle
2015-11-28 23:06 - 2015-08-16 20:11 - 00000000 ____D C:\Program Files\Java
2015-11-28 23:06 - 2012-09-17 06:32 - 00000000 ____D C:\Program Files (x86)\Java
2015-11-28 23:05 - 2015-08-22 19:32 - 00000000 ____D C:\Users\Basti\.oracle_jre_usage
2015-11-28 23:04 - 2015-08-16 20:12 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-11-28 14:20 - 2014-04-30 18:51 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-11-28 14:20 - 2014-01-09 09:28 - 00154256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-11-28 14:20 - 2013-03-25 12:48 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-11-28 14:20 - 2013-03-25 12:48 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 01059656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 00449992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-11-28 08:39 - 2014-11-16 16:30 - 00000000 ____D C:\Users\Basti\AppData\Roaming\dvdcss
2015-11-16 08:24 - 2013-08-15 11:52 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-16 08:14 - 2012-09-17 06:52 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-06 10:12 - 2012-09-15 12:20 - 00085608 _____ C:\Users\Basti\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-04 20:15 - 2012-11-12 18:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-03 19:20 - 2015-07-10 12:06 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-11-03 19:20 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-03 08:51 - 2012-08-28 20:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2015-11-03 08:51 - 2012-08-28 19:39 - 00000000 ____D C:\Program Files (x86)\Lenovo
2015-11-03 08:51 - 2012-08-28 13:01 - 00000000 ____D C:\ProgramData\Lenovo
Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2012-09-15 12:19 - 2012-09-19 06:19 - 0014056 _____ () C:\Users\Basti\AppData\Roaming\AbsoluteReminder.xml
2015-03-31 08:45 - 2015-03-31 08:45 - 0003584 _____ () C:\Users\Basti\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-09-15 20:40 - 2015-09-15 20:40 - 0000829 _____ () C:\Users\Basti\AppData\Local\recently-used.xbel
2012-09-20 23:28 - 2012-09-20 23:28 - 0000017 _____ () C:\Users\Basti\AppData\Local\resmon.resmoncfg
2014-10-02 20:36 - 2014-10-02 20:36 - 0000057 _____ () C:\ProgramData\Ament.ini
2013-06-26 19:53 - 2013-06-26 19:53 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-03-31 16:28 - 2013-03-31 16:28 - 0001534 _____ () C:\ProgramData\ss.ini
2015-05-14 11:22 - 2015-05-14 11:22 - 0004966 _____ () C:\ProgramData\wmzddnmb.cix
Einige Dateien in TEMP:
C:\Users\Basti\AppData\Local\Temp\fsd4788.exe
C:\Users\Basti\AppData\Local\Temp\sqlite3.dll
Bamital & volsnap
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
|
|
02.12.2015, 16:56
| #7 |
| /// the machine /// TB-Ausbilder | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochenESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.12.2015, 17:54
| #8 |
| | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen HI, der Laptop läuft wieder gut. Die Malware ist scheinbar runter, der Firefox läuft stabil. ESET zeigt nun über 60 Bedrohungen an!?!?! Hier die Ergebnisse von ESET, der Rest folgt: Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=5560980e59cfbe4789edaddca0ca88a0
# end=init
# utc_time=2015-12-03 08:43:17
# local_time=2015-12-03 09:43:17 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 27020
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=5560980e59cfbe4789edaddca0ca88a0
# end=updated
# utc_time=2015-12-03 08:45:55
# local_time=2015-12-03 09:45:55 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=5560980e59cfbe4789edaddca0ca88a0
# engine=27020
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2015-12-03 09:27:22
# local_time=2015-12-03 10:27:22 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='avast! Internet Security'
# compatibility_mode=779 16777213 85 74 400015 213555332 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 12588767 12608854 0 0
# scanned=113867
# found=12
# cleaned=0
# scan_time=2486
sh=819C1DBC766A477523F928D1E319B81FBFE85222 ft=1 fh=16643e1151624e35 vn="Variante von Win32/Adware.ConvertAd.ABM Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\jnsi8F57.tmp.vir"
sh=4C387A3796A332BAF50467EC9E311CBC08FEA58E ft=1 fh=7d7f3d62531d58a4 vn="Variante von Win32/Adware.ConvertAd.YU Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\knsi7655.tmpfs.vir"
sh=856B22010DB27E15D64E94F31AA7BEE088CEDB6E ft=1 fh=34512fdd02405430 vn="Variante von Win32/Adware.ConvertAd.ACS Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\rnst8AB2.exe.vir"
sh=59C70C54DE1968272DBE9FCF84209B3334353673 ft=1 fh=c71c0011ebbf3c72 vn="Variante von Win32/AdWare.EoRezo.AU Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\gmsd_de_005010162\gamesdesktop_widget.exe.vir"
sh=00A411482CD6BE95BCADD381EF48FE9C0B9A7B66 ft=1 fh=d2e66c570760deed vn="Variante von Win32/AdWare.EoRezo.AU Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\gmsd_de_005010162\gmsd_de_005010162.exe.vir"
sh=909BEA89BA235AF63F713E233E23F23FE23FBE48 ft=1 fh=630ebc6aeabacdcf vn="Variante von Win32/Toptools.D evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ScreenSnapshotTool\1.1.0.11070\InstallHelper.exe.vir"
sh=29600168B036C62699BF66096A0CB831F45017D0 ft=1 fh=5692ebc8643dbc8c vn="Variante von Win32/Toptools.D evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ScreenSnapshotTool\1.1.0.11070\ScreenSnapshot.exe.vir"
sh=13896B87FDDF639AE0E5F4E5E6761D00E76A4E50 ft=1 fh=aefb02d0559fac76 vn="Variante von Win32/Adware.EoRezo.AJ Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Basti\AppData\Local\gmsd_de_005010162\upgmsd_de_005010162.exe.vir"
sh=142ED2B621BEC1985D2799E250E509B37EB0F034 ft=1 fh=1ed4ed92946350b6 vn="Mehrere Bedrohungen" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Basti\AppData\Local\gmsd_de_005010162\Download\myoffergroup_de.exe.vir"
sh=C8CEF0AD2598B90F30A18D2798480D352CBC6389 ft=1 fh=c6dcc506de6a08b0 vn="Variante von Win32/Adware.ConvertAd.YU Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Basti\AppData\Roaming\ASPackage\ASPackage.exe.vir"
sh=8BF37903980EAF881CD3A34587D7C9D22A734C0D ft=1 fh=a31262bade30ff01 vn="Variante von Win32/Bundled.Toolbar.Google.C potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\NCH Software\VideoPad\videopad.exe"
sh=FB01C4037BCE600E8492FD4663404C96C87027E2 ft=1 fh=917157c7f3251cc1 vn="Variante von Win32/Bundled.Toolbar.Google.C potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\NCH Software\VideoPad\videopadsetup_v4.02.exe"
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=5560980e59cfbe4789edaddca0ca88a0
# end=init
# utc_time=2015-12-03 11:52:57
# local_time=2015-12-03 12:52:57 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 27023
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=5560980e59cfbe4789edaddca0ca88a0
# end=updated
# utc_time=2015-12-03 11:53:39
# local_time=2015-12-03 12:53:39 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=5560980e59cfbe4789edaddca0ca88a0
# engine=27023
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-12-03 02:14:27
# local_time=2015-12-03 03:14:27 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='avast! Internet Security'
# compatibility_mode=779 16777213 85 74 417240 213572557 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 12605992 12626079 0 0
# scanned=403980
# found=66
# cleaned=0
# scan_time=8448
sh=819C1DBC766A477523F928D1E319B81FBFE85222 ft=1 fh=16643e1151624e35 vn="Variante von Win32/Adware.ConvertAd.ABM Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\jnsi8F57.tmp.vir"
sh=4C387A3796A332BAF50467EC9E311CBC08FEA58E ft=1 fh=7d7f3d62531d58a4 vn="Variante von Win32/Adware.ConvertAd.YU Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\knsi7655.tmpfs.vir"
sh=856B22010DB27E15D64E94F31AA7BEE088CEDB6E ft=1 fh=34512fdd02405430 vn="Variante von Win32/Adware.ConvertAd.ACS Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\F474D981-1448825507-11CB-B54A-A092926E4ED3\rnst8AB2.exe.vir"
sh=59C70C54DE1968272DBE9FCF84209B3334353673 ft=1 fh=c71c0011ebbf3c72 vn="Variante von Win32/AdWare.EoRezo.AU Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\gmsd_de_005010162\gamesdesktop_widget.exe.vir"
sh=00A411482CD6BE95BCADD381EF48FE9C0B9A7B66 ft=1 fh=d2e66c570760deed vn="Variante von Win32/AdWare.EoRezo.AU Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\gmsd_de_005010162\gmsd_de_005010162.exe.vir"
sh=909BEA89BA235AF63F713E233E23F23FE23FBE48 ft=1 fh=630ebc6aeabacdcf vn="Variante von Win32/Toptools.D evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ScreenSnapshotTool\1.1.0.11070\InstallHelper.exe.vir"
sh=29600168B036C62699BF66096A0CB831F45017D0 ft=1 fh=5692ebc8643dbc8c vn="Variante von Win32/Toptools.D evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ScreenSnapshotTool\1.1.0.11070\ScreenSnapshot.exe.vir"
sh=13896B87FDDF639AE0E5F4E5E6761D00E76A4E50 ft=1 fh=aefb02d0559fac76 vn="Variante von Win32/Adware.EoRezo.AJ Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Basti\AppData\Local\gmsd_de_005010162\upgmsd_de_005010162.exe.vir"
sh=142ED2B621BEC1985D2799E250E509B37EB0F034 ft=1 fh=1ed4ed92946350b6 vn="Mehrere Bedrohungen" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Basti\AppData\Local\gmsd_de_005010162\Download\myoffergroup_de.exe.vir"
sh=C8CEF0AD2598B90F30A18D2798480D352CBC6389 ft=1 fh=c6dcc506de6a08b0 vn="Variante von Win32/Adware.ConvertAd.YU Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Basti\AppData\Roaming\ASPackage\ASPackage.exe.vir"
sh=E181459F7022A7F1BCE06D84AF1A7A337F7B08CF ft=1 fh=c71c001169e1a8ca vn="Win32/Adware.ConvertAd.ACP Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Microsoft\Windows\INetCache\IE\CA492N02\XdHzAc[1].exe"
sh=617A989886C2D4C35D2ADEF9377B40FC5327F106 ft=0 fh=0000000000000000 vn="Win32/Toolbar.TNT2.I evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Microsoft\Windows\INetCache\IE\DS6ZDV03\1[1].zip"
sh=A1889BF8FE6D8CA7CDE02AC512931E1FF9D98932 ft=1 fh=9ac083f18deba41f vn="Win32/WebDevAZ.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Microsoft\Windows\INetCache\IE\DS6ZDV03\smt[1].exe"
sh=826CB40B34C0F0AD8279B6B037D56E533B02A466 ft=1 fh=a35682461bd8eca9 vn="Win32/InstallMonetizer.BJ evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Microsoft\Windows\INetCache\IE\HNADGQC5\VuuPC_VO2_8907[1].exe"
sh=3C38C0BF6898405C1952F2CC4D880DE79ECB7025 ft=1 fh=6a970cdf4f7e8912 vn="Variante von Win32/Adware.ConvertAd.ACA.gen Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Microsoft\Windows\INetCache\IE\HNADGQC5\Z5YqHGV[1]"
sh=935F45B688E69410C8A2677748A58A0AEDC43567 ft=1 fh=e1f56b0d7613cf90 vn="Variante von MSIL/Adware.Imali.C Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Microsoft\Windows\INetCache\IE\IJ5GP6HZ\FinalInstaller_dotnet4[1].exe"
sh=EAFE66F18B061AD2F47726D7E93A381DDD15F673 ft=1 fh=eb65ea13568a82f7 vn="Win32/TrojanClicker.Agent.NXU Trojaner" ac=I fn="C:\Users\Basti\AppData\Local\Microsoft\Windows\INetCache\IE\N2Q6IYKT\WQK0UPP[1].exe"
sh=E5A8FA6169C7195369F39DC49676AAC100D24807 ft=1 fh=6a4bfd5fd08dd2fa vn="Variante von Win32/Adware.Imali.E Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Microsoft\Windows\INetCache\IE\RAJ36YK5\setup_362[1].exe"
sh=BE60327CAF1FBA636E5CCA55DFB5D6405EB7B729 ft=1 fh=59df99af6b6001c6 vn="Variante von Win32/Adware.MaxDriver.A Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Microsoft\Windows\INetCache\IE\RAJ36YK5\SpaceSondPro[1].exe"
sh=8B802B0A7346DACD92706382B6B91A93BBDC1DAF ft=1 fh=ef55a0c3c32ac582 vn="Variante von Win32/Adware.EoRezo.BD Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Microsoft\Windows\INetCache\IE\SKJVO43K\setup_gmsd_de[1].exe"
sh=935F45B688E69410C8A2677748A58A0AEDC43567 ft=1 fh=e1f56b0d7613cf90 vn="Variante von MSIL/Adware.Imali.C Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\fsd4788.exe"
sh=8B802B0A7346DACD92706382B6B91A93BBDC1DAF ft=1 fh=ef55a0c3c32ac582 vn="Variante von Win32/Adware.EoRezo.BD Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\nse624.tmp"
sh=EAFE66F18B061AD2F47726D7E93A381DDD15F673 ft=1 fh=eb65ea13568a82f7 vn="Win32/TrojanClicker.Agent.NXU Trojaner" ac=I fn="C:\Users\Basti\AppData\Local\Temp\nse6E23.tmp"
sh=49AC097642E8FE4ABA9E3862BE629E291023EAB2 ft=1 fh=41c10bac8a1fb235 vn="Variante von Win32/Adware.EoRezo.BD Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\nstD229.tmp"
sh=EAFE66F18B061AD2F47726D7E93A381DDD15F673 ft=1 fh=eb65ea13568a82f7 vn="Win32/TrojanClicker.Agent.NXU Trojaner" ac=I fn="C:\Users\Basti\AppData\Local\Temp\nsy9B59.tmp"
sh=DDD7F8CAE5E5B6B3639B43F03A58B3FF5054D73B ft=1 fh=d0c0b10af428053c vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-0UQJN.tmp\493.exe"
sh=D810387AD2A921B5DC9106AB0486956CFAE1C219 ft=1 fh=d0c0b10aa8c95592 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-0UQJN.tmp\600.exe"
sh=C24B04082D7278405170511156D2C3B9D80983D5 ft=1 fh=d0c0b10acecc9808 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-0UQJN.tmp\package_BubbleSound_installer_multilang.exe"
sh=70084A8EBAE49F044EEC8245318B4A80A95FF344 ft=1 fh=d0c0b10a08fbfaac vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-0UQJN.tmp\package_oursurfing_installer_multilang.exe"
sh=07090EE07A99CB6063F6D1E973D52E918048E9DB ft=1 fh=d0c0b10a6534f7d6 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-0UQJN.tmp\package_SByoutube_installer_multilang.exe"
sh=C78DFD1A8E05E0688933079124A7ECF82CA289F8 ft=1 fh=e7c5b284dea63228 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-NMS1S.tmp\600.exe"
sh=1D501BDE939319852D4E9C6AD632B4035796CA91 ft=1 fh=e7c5b284726b0402 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-NMS1S.tmp\package_BubbleSound_installer_multilang.exe"
sh=0B772D1F489E6F2FE7A38981D3D7CE981DA30533 ft=1 fh=e7c5b28484840202 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-NMS1S.tmp\package_istartsurfp_installer_multilang.exe"
sh=5DDBAEA358B0BEF4C219013264237F3AF80AA7FB ft=1 fh=e7c5b2849ac9aadd vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-NMS1S.tmp\package_oursurfing_installer_multilang.exe"
sh=658ACF89835B1487F96E1B9AE2987741F96DE4B2 ft=1 fh=e7c5b2848902c30a vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-NMS1S.tmp\package_SByoutube_installer_multilang.exe"
sh=EB62AAE35EAB6D79BC2685BA5F08C26C045F38D1 ft=1 fh=feb23e3b24b13319 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-U8BJ3.tmp\package_BubbleSound_installer_multilang.exe"
sh=777BDAF748DA35211A4D6C4A2629F6B53E89E9D2 ft=1 fh=feb23e3bf3b72a3d vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-U8BJ3.tmp\package_istartsurfp_installer_multilang.exe"
sh=9BDDBAEA8FD25DA1DB217CF63EE29A153FA62F0E ft=1 fh=feb23e3bf98c4d88 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-U8BJ3.tmp\package_oursurfing_installer_multilang.exe"
sh=DDCDDC7E03F387D36E74030F58E81356671AC9DC ft=1 fh=feb23e3bf7356ac5 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Users\Basti\AppData\Local\Temp\is-U8BJ3.tmp\package_SByoutube_installer_multilang.exe"
sh=33BB8A8FA0EE89BB08A075426A85722B418658C7 ft=0 fh=0000000000000000 vn="Variante von Android/Exploit.Lotoor.EZ Trojaner" ac=I fn="C:\Users\Basti\Desktop\DooMLoRD_Easy-Rooting-Toolkit_v17_perf-event-exploit\files\run_root_shell"
sh=97DB7F9D28841C0F92B98B7F728DC47B87345EA0 ft=1 fh=be64170711939822 vn="Variante von Win32/Adware.ConvertAd.ACN Anwendung" ac=I fn="C:\Windows\Temp\4D09.tmp.exe"
sh=B596B59778C33DCC6CA377AD5A47AF4399BB9055 ft=1 fh=15c63935187bb897 vn="Variante von Win32/Adware.ConvertAd.YU Anwendung" ac=I fn="C:\Windows\Temp\B8A9.tmp.exe"
sh=FC3CBD144378D6ABCDC8E25044BCA98971EEF245 ft=1 fh=766a103165d30703 vn="Variante von Win32/Adware.ConvertAd.ADE Anwendung" ac=I fn="C:\Windows\Temp\BCFF.tmp.exe"
sh=50C4ED18157F2E7190BBB3F77D5695547693ACE2 ft=1 fh=852b82cd8aad7385 vn="Variante von Win32/Adware.ConvertAd.ACX Anwendung" ac=I fn="C:\Windows\Temp\F053.tmp.exe"
sh=9C10C9ED874CB0800E0536ADB483D08B6EBBE15D ft=1 fh=d9bd0c34e8d5c5d5 vn="Variante von Win32/Adware.ConvertAd.ACS Anwendung" ac=I fn="C:\Windows\Temp\FF72.tmp.exe"
sh=534EB2542B0C864DF84C7625BB9EEF26D14A7160 ft=1 fh=ca7ac074ce9e8cb5 vn="Variante von Win32/Amonetize.LY evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\Blur+Version.21.11.56.per__10924_i1763204646_il2249635.exe"
sh=6C6EFAA8B30F38233373EBE5772C285849173B16 ft=1 fh=5820fd404d4cccab vn="Variante von Win32/InstallCore.ADV.gen evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\ICReinstall_nsn6DDB.tmp"
sh=909BEA89BA235AF63F713E233E23F23FE23FBE48 ft=1 fh=630ebc6aeabacdcf vn="Variante von Win32/Toptools.D evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\InstallHelper.exe"
sh=EAFE66F18B061AD2F47726D7E93A381DDD15F673 ft=1 fh=eb65ea13568a82f7 vn="Win32/TrojanClicker.Agent.NXU Trojaner" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\nsa8DDF.tmp"
sh=3C38C0BF6898405C1952F2CC4D880DE79ECB7025 ft=1 fh=6a970cdf4f7e8912 vn="Variante von Win32/Adware.ConvertAd.ACA.gen Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\nsc687.tmp"
sh=EAFE66F18B061AD2F47726D7E93A381DDD15F673 ft=1 fh=eb65ea13568a82f7 vn="Win32/TrojanClicker.Agent.NXU Trojaner" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\nsdB19.tmp"
sh=49AC097642E8FE4ABA9E3862BE629E291023EAB2 ft=1 fh=41c10bac8a1fb235 vn="Variante von Win32/Adware.EoRezo.BD Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\nskF2FE.tmp"
sh=6C6EFAA8B30F38233373EBE5772C285849173B16 ft=1 fh=5820fd404d4cccab vn="Variante von Win32/InstallCore.ADV.gen evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\nsn6DDB.tmp"
sh=3C38C0BF6898405C1952F2CC4D880DE79ECB7025 ft=1 fh=6a970cdf4f7e8912 vn="Variante von Win32/Adware.ConvertAd.ACA.gen Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\nsnEF16.tmp"
sh=EAFE66F18B061AD2F47726D7E93A381DDD15F673 ft=1 fh=eb65ea13568a82f7 vn="Win32/TrojanClicker.Agent.NXU Trojaner" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\nsnF839.tmp"
sh=49AC097642E8FE4ABA9E3862BE629E291023EAB2 ft=1 fh=41c10bac8a1fb235 vn="Variante von Win32/Adware.EoRezo.BD Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\nss722B.tmp"
sh=A1889BF8FE6D8CA7CDE02AC512931E1FF9D98932 ft=1 fh=9ac083f18deba41f vn="Win32/WebDevAZ.C evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\nssA3EC.tmp"
sh=49AC097642E8FE4ABA9E3862BE629E291023EAB2 ft=1 fh=41c10bac8a1fb235 vn="Variante von Win32/Adware.EoRezo.BD Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\nsx66CA.tmp"
sh=4101270357B096EF454463D13581E3D123C60560 ft=1 fh=2a17fddd6cb742ea vn="Variante von Win32/InstallCore.ACL evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\in77AE27EA\60239FAE_stp\RAM.dll"
sh=9E911E5C2D0880087D9DEBF405411893538CB316 ft=1 fh=f6000820c9713eb5 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\is-1B3RM.tmp\493.exe"
sh=A4B482F92ECA99F67D416D21630D8F4E3FDBE996 ft=1 fh=f600082001444977 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\is-1B3RM.tmp\package_BubbleSound_installer_multilang.exe"
sh=A57CF299032D8CDB2EAE395D337BF5F57799F838 ft=1 fh=f600082017743844 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\is-1B3RM.tmp\package_istartsurfp_installer_multilang.exe"
sh=9EB1F0F2EA5BDF88316722FB8EF24CD8DE85E8C5 ft=1 fh=f60008200b78b0e7 vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\is-1B3RM.tmp\package_oursurfing_installer_multilang.exe"
sh=8A2DFF5B96EB28E73B9C8B1C17A8FEF581D5AF34 ft=1 fh=f600082084a68bbe vn="Variante von Win32/Adware.EoRezo.AY Anwendung" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\is-1B3RM.tmp\package_SByoutube_installer_multilang.exe"
sh=1C9CFA194276862B5F1E802905202802A8E95640 ft=1 fh=fd26318b0b3e1d95 vn="Mehrere Bedrohungen" ac=I fn="C:\Windows.old\Users\Basti\AppData\Local\Temp\is-A3A3L.tmp\gentlemjmp_ieu.exe"
sh=F1161D945F9AA90E7B7D8A9927F79C019C363630 ft=1 fh=d000b1b13f006bd1 vn="Variante von Win32/Adware.ConvertAd.ACS Anwendung" ac=I fn="C:\Windows.old\Windows\Temp\94D7.tmp.exe"
Code:
ATTFilter Results of screen317's Security Check version 1.013 --- 11/28/15
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Defender
avast! Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Java 8 Update 66
Adobe Flash Player 19.0.0.245
Adobe Reader 10.1.16 Adobe Reader out of Date!
Mozilla Firefox (42.0)
Mozilla Thunderbird (38.2.0)
Google Chrome (46.0.2490.86)
Google Chrome (47.0.2526.73)
````````Process Check: objlist.exe by Laurent````````
AVAST Software Avast AvastSvc.exe
AVAST Software Avast AvastUI.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
|
|
03.12.2015, 17:59
| #9 |
| | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen Und FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:29-11-2015
durchgeführt von Basti (Administrator) auf BASTI-THINK (03-12-2015 17:54:41)
Gestartet von E:\Downloads
Geladene Profile: Basti (Verfügbare Profile: Basti & DefaultAppPool)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AuthenTec, Inc) C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Avid Technology, Inc..) C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlk.exe
(AuthenTec Inc.) C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Avid Technology, Inc.) C:\Windows\System32\M-AudioTaskBarIcon.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
() C:\Users\Basti\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe
() C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1120.13270.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe\DvdPlayer.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.23.23.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() E:\Downloads\SecurityCheck.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [178960 2012-03-15] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [M-Audio Taskbar Icon] => C:\Windows\system32\M-AudioTaskBarIcon.exe [798728 2010-12-07] (Avid Technology, Inc.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [293672 2013-06-14] (Lenovo Group Limited)
HKLM\...\Run: [AcWin7Hlpr] => C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [63728 2015-06-08] (Lenovo)
HKLM\...\Run: [SynLenovoHelper] => C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe [163960 2015-11-30] (Synaptics)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.)
HKLM-x32\...\Run: [PWMTRV] => rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [1091376 2012-01-17] (Lenovo)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [DigidesignMMERefresh] => C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [77824 2010-06-23] (Avid Technology, Inc..)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-28] (AVAST Software)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-16] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\...\Run: [Amazon Music] => C:\Users\Basti\AppData\Local\Amazon Music\Amazon Music Helper.exe [5890368 2015-10-29] ()
Lsa: [Notification Packages] scecli ACGina
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-28] (AVAST Software)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => Keine Datei
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => Keine Datei
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => Keine Datei
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => Keine Datei
Startup: C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6600 (Netzwerk).lnk [2015-11-30]
ShortcutTarget: Tintenwarnungen überwachen - HP Officejet 6600 (Netzwerk).lnk -> C:\Program Files\HP\HP Officejet 6600\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
CHR HKU\S-1-5-21-852299283-3463242558-1453265187-1000\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{51b7dcd1-fd32-4c38-92d3-92b53f287e80}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9f9920ce-b6fd-4099-b3a0-e83f3a76f481}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com/welcome/thinkpad
HKU\S-1-5-21-852299283-3463242558-1453265187-1000\Software\Microsoft\Internet Explorer\Main,Start Page = google.de
SearchScopes: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENP_deDE501
SearchScopes: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENP_deDE501
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-28] (Oracle Corporation)
BHO: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2013-08-07] (AuthenTec Inc.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-28] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-28] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-28] (Oracle Corporation)
BHO-x32: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2013-08-07] (AuthenTec Inc.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-28] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-28] (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Keine Datei
Toolbar: HKU\S-1-5-21-852299283-3463242558-1453265187-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Keine Datei
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Keine Datei
FireFox:
========
FF ProfilePath: C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\cbfayl8i.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-15] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-28] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-15] ()
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll [2013-08-07] (AuthenTec, Inc)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-28] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\websitelogon@truesuite.com [2015-11-03] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [VIP1X@verisign.com] - C:\Program Files (x86)\Symantec\VIP Access Client => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-28]
FF HKLM-x32\...\Firefox\Extensions: [VIP5X@verisign.com] - C:\Program Files (x86)\Symantec\VIP Access Client => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-11-28]
Chrome:
=======
CHR Profile: C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-21]
CHR Extension: (Google Drive) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-04]
CHR Extension: (YouTube) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-21]
CHR Extension: (Website Logon) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\clglhglbidpdbjffpfcldkifhdegdfle [2013-12-23]
CHR Extension: (Google Search) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-21]
CHR Extension: (Avast Online Security) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-06-21]
CHR Extension: (Google Wallet) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-04]
CHR Extension: (Gmail) - C:\Users\Basti\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-21]
CHR HKLM-x32\...\Chrome\Extension: [clglhglbidpdbjffpfcldkifhdegdfle] - C:\Program Files\Lenovo Fingerprint Reader\x86\tschrome.crx [2013-04-01]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-28]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-28] (AVAST Software)
R2 DigiRefresh; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [77824 2010-06-23] (Avid Technology, Inc..) [Datei ist nicht signiert]
R2 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [169776 2012-01-17] (Lenovo)
R2 FPLService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2139944 2013-08-07] (AuthenTec, Inc)
R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [187688 2013-06-14] (Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo Group Limited)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272424 2015-08-17] (Lenovo)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility LLC)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-11-30] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-11-19] ()
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Datei ist nicht signiert]
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [118576 2014-11-26] ()
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [21536 2015-11-11] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [255096 2015-11-30] (Synaptics Incorporated)
S2 ThinkVantage Registry Monitor Service; C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe [1028096 2010-08-31] (Lenovo Group Limited) [Datei ist nicht signiert]
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401704 2013-07-22] (AuthenTec, Inc.)
S3 TVT Backup Service; C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrservice.exe [1492280 2012-02-06] (Lenovo Group Limited)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-11-19] (Intel® Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-28] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [19600 2012-08-21] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-28] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-28] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-28] (AVAST Software)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
S3 Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [70416 2012-01-17] (Windows (R) Win 7 DDK provider)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-01] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [51320 2015-11-30] (Synaptics Incorporated)
R3 Tvti2c; C:\Windows\system32\DRIVERS\Tvti2c.sys [40248 2011-05-29] (Lenovo Information Product(ShenZhen China) Inc.)
R3 tvtvcamd; C:\Windows\system32\DRIVERS\tvtvcamd.sys [27432 2011-12-08] (ThinkVantage Communications Utility)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U4 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U4 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-03 17:31 - 2015-12-03 17:31 - 00016148 _____ C:\WINDOWS\system32\BASTI-THINK_Basti_HistoryPrediction.bin
2015-12-01 23:51 - 2015-12-01 23:51 - 00000847 _____ C:\Users\Basti\Desktop\JRT_01.txt
2015-12-01 23:51 - 2015-12-01 23:51 - 00000847 _____ C:\Users\Basti\Desktop\JRT.txt
2015-12-01 23:22 - 2015-12-01 23:22 - 00001198 _____ C:\Users\Basti\Desktop\MBAM_3.txt
2015-12-01 23:21 - 2015-12-01 23:21 - 00003907 _____ C:\Users\Basti\Desktop\MBAM_2.txt
2015-12-01 23:20 - 2015-12-01 23:20 - 00001819 _____ C:\Users\Basti\Desktop\MBAM_1.txt
2015-12-01 23:00 - 2015-12-03 15:38 - 00004162 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{59628844-6AAA-4B9C-8F4E-E3B612706C01}
2015-12-01 22:49 - 2015-12-01 22:49 - 00001348 _____ C:\Users\Basti\Desktop\Revo Uninstaller.lnk
2015-12-01 22:49 - 2015-12-01 22:49 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2015-12-01 22:49 - 2015-12-01 22:49 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-12-01 13:20 - 2015-12-01 23:06 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-12-01 13:20 - 2015-12-01 13:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2015-12-01 13:20 - 2015-12-01 13:35 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2015-12-01 13:20 - 2015-12-01 13:20 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-12-01 13:20 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-12-01 13:20 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-12-01 13:20 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-12-01 11:16 - 2015-12-01 11:16 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-12-01 07:56 - 2015-12-01 07:58 - 00000000 ____D C:\AdwCleaner
2015-11-30 23:13 - 2015-12-01 08:10 - 00000017 _____ C:\WINDOWS\SysWOW64\history.dat
2015-11-30 22:16 - 2015-11-30 22:35 - 00000000 ____D C:\Program Files (x86)\Adware Removal Tool by TSA
2015-11-30 22:16 - 2015-11-30 22:16 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\subinacl.exe
2015-11-30 19:38 - 2015-11-30 19:38 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Videos
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2015-11-30 19:38 - 2015-11-30 19:38 - 00000000 ____D C:\Users\DefaultAppPool
2015-11-30 19:38 - 2015-11-30 08:16 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2015-11-30 19:38 - 2015-11-30 08:16 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2015-11-30 13:41 - 2015-11-30 13:41 - 00428664 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-11-30 13:41 - 2015-11-30 13:41 - 00279672 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo34-4.dll
2015-11-30 13:41 - 2015-11-30 13:41 - 00065656 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2015-11-30 13:41 - 2015-11-30 13:41 - 00051320 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-11-30 13:41 - 2015-11-30 13:41 - 00050808 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-11-30 13:37 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-30 13:37 - 2015-11-05 06:06 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-30 13:37 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-30 13:37 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-30 13:37 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-30 13:37 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2015-11-30 13:37 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-30 13:37 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-30 13:37 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-30 13:37 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-30 13:37 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-11-30 13:37 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-11-30 13:37 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-11-30 13:37 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-11-30 13:37 - 2015-09-17 07:49 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-11-30 13:37 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-11-30 13:37 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-11-30 13:37 - 2015-09-17 07:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-11-30 13:37 - 2015-09-17 06:56 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-11-30 13:37 - 2015-09-17 06:48 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-11-30 13:37 - 2015-09-17 06:46 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-11-30 13:37 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-11-30 13:37 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-11-30 13:37 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-11-30 13:37 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-11-30 13:37 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-11-30 13:37 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-11-30 13:37 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-11-30 13:37 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-11-30 13:37 - 2015-08-03 03:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-11-30 13:37 - 2015-08-03 03:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-11-30 13:37 - 2015-08-03 03:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-11-30 13:37 - 2015-08-03 02:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-11-30 13:37 - 2015-07-30 07:16 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-11-30 13:37 - 2015-07-30 07:14 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-11-30 13:37 - 2015-07-30 05:26 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-11-30 13:37 - 2015-07-30 05:26 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-11-30 13:37 - 2015-07-30 05:24 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-11-30 13:37 - 2015-07-30 05:24 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-11-30 13:37 - 2015-07-30 05:22 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-11-30 13:37 - 2015-07-30 04:44 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-11-30 13:37 - 2015-07-30 04:06 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-11-30 13:37 - 2015-07-30 04:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-11-30 13:36 - 2015-11-05 06:15 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-30 13:36 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-30 13:36 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-30 13:36 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-30 13:36 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-30 13:36 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-30 13:36 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-11-30 13:36 - 2015-11-05 05:20 - 21873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-30 13:36 - 2015-11-05 05:18 - 24597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-30 13:36 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-30 13:36 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-30 13:36 - 2015-11-05 05:10 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-30 13:36 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-30 13:36 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-30 13:36 - 2015-11-05 05:05 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-30 13:36 - 2015-11-05 05:03 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-30 13:36 - 2015-11-05 05:01 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-30 13:36 - 2015-11-05 05:01 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-30 13:36 - 2015-11-05 04:59 - 03587072 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-30 13:36 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-30 13:36 - 2015-11-05 04:58 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-30 13:36 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-30 13:36 - 2015-11-05 04:56 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-30 13:36 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-30 13:36 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-30 13:36 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-30 13:36 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-11-30 13:36 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-30 13:36 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-30 13:36 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-11-30 13:36 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-11-30 13:36 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-11-30 13:36 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-11-30 13:36 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-11-30 13:36 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-11-30 13:36 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-11-30 13:36 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-11-30 13:36 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-11-30 13:36 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-11-30 13:36 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-11-30 13:36 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-11-30 13:36 - 2015-09-17 07:50 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-11-30 13:36 - 2015-09-17 07:50 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-11-30 13:36 - 2015-09-17 07:50 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-11-30 13:36 - 2015-09-17 07:50 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-11-30 13:36 - 2015-09-17 07:49 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-11-30 13:36 - 2015-09-17 07:49 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-11-30 13:36 - 2015-09-17 07:49 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-11-30 13:36 - 2015-09-17 07:48 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-11-30 13:36 - 2015-09-17 07:48 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-11-30 13:36 - 2015-09-17 07:48 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-11-30 13:36 - 2015-09-17 07:48 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-11-30 13:36 - 2015-09-17 07:48 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-11-30 13:36 - 2015-09-17 07:48 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-11-30 13:36 - 2015-09-17 07:48 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-11-30 13:36 - 2015-09-17 07:48 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-11-30 13:36 - 2015-09-17 07:48 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-11-30 13:36 - 2015-09-17 07:44 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-11-30 13:36 - 2015-09-17 07:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-11-30 13:36 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-11-30 13:36 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-11-30 13:36 - 2015-09-17 07:27 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-11-30 13:36 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-11-30 13:36 - 2015-09-17 07:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-11-30 13:36 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2015-11-30 13:36 - 2015-09-17 07:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-11-30 13:36 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-11-30 13:36 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-11-30 13:36 - 2015-09-17 07:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-11-30 13:36 - 2015-09-17 07:11 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-11-30 13:36 - 2015-09-17 07:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-11-30 13:36 - 2015-09-17 07:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-11-30 13:36 - 2015-09-17 07:05 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-11-30 13:36 - 2015-09-17 07:05 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-11-30 13:36 - 2015-09-17 07:04 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-11-30 13:36 - 2015-09-17 07:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-11-30 13:36 - 2015-09-17 06:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-11-30 13:36 - 2015-09-17 06:57 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-11-30 13:36 - 2015-09-17 06:57 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-11-30 13:36 - 2015-09-17 06:56 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-11-30 13:36 - 2015-09-17 06:55 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-11-30 13:36 - 2015-09-17 06:55 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-11-30 13:36 - 2015-09-17 06:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-11-30 13:36 - 2015-09-17 06:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-11-30 13:36 - 2015-09-17 06:54 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-11-30 13:36 - 2015-09-17 06:52 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-11-30 13:36 - 2015-09-17 06:52 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-11-30 13:36 - 2015-09-17 06:52 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-11-30 13:36 - 2015-09-17 06:52 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-11-30 13:36 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-11-30 13:36 - 2015-09-17 06:50 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-11-30 13:36 - 2015-09-17 06:49 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-11-30 13:36 - 2015-09-17 06:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-11-30 13:36 - 2015-09-17 06:49 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-11-30 13:36 - 2015-09-17 06:48 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-11-30 13:36 - 2015-09-17 06:48 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-11-30 13:36 - 2015-09-17 06:48 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-11-30 13:36 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-11-30 13:36 - 2015-09-17 06:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-11-30 13:36 - 2015-09-17 06:45 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-11-30 13:36 - 2015-09-17 06:44 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-11-30 13:36 - 2015-09-17 06:44 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-11-30 13:36 - 2015-09-17 06:44 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-11-30 13:36 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-11-30 13:36 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2015-11-30 13:36 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-11-30 13:36 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-11-30 13:36 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-11-30 13:36 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-11-30 13:36 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-11-30 13:36 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-11-30 13:36 - 2015-08-27 06:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-11-30 13:36 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-11-30 13:36 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-11-30 13:36 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-11-30 13:36 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-11-30 13:36 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-11-30 13:36 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-11-30 13:36 - 2015-08-27 06:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-11-30 13:36 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-11-30 13:36 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-11-30 13:36 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-11-30 13:36 - 2015-08-18 08:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-11-30 13:36 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-11-30 13:36 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-11-30 13:36 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-11-30 13:36 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-11-30 13:36 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-11-30 13:36 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-11-30 13:36 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-11-30 13:36 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-11-30 13:36 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-11-30 13:36 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-11-30 13:36 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-11-30 13:36 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-11-30 13:36 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-11-30 13:36 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-11-30 13:36 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-11-30 13:36 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-11-30 13:36 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-11-30 13:36 - 2015-08-11 10:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-11-30 13:36 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-11-30 13:36 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-11-30 13:36 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-11-30 13:36 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-11-30 13:36 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-11-30 13:36 - 2015-08-11 09:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-11-30 13:36 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-11-30 13:36 - 2015-08-06 04:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-11-30 13:36 - 2015-08-06 03:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-11-30 13:36 - 2015-08-05 05:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-11-30 13:36 - 2015-08-05 04:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-11-30 13:36 - 2015-08-03 03:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-11-30 13:36 - 2015-08-03 02:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-11-30 13:36 - 2015-08-03 02:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-11-30 13:36 - 2015-08-03 02:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-11-30 13:36 - 2015-08-03 01:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-11-30 13:36 - 2015-07-30 07:23 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-11-30 13:36 - 2015-07-30 07:21 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-11-30 13:36 - 2015-07-30 07:17 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-11-30 13:36 - 2015-07-30 07:17 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-11-30 13:36 - 2015-07-30 07:15 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-11-30 13:36 - 2015-07-30 07:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-11-30 13:36 - 2015-07-30 07:03 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-11-30 13:36 - 2015-07-30 05:29 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-11-30 13:36 - 2015-07-30 05:25 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-11-30 13:36 - 2015-07-30 05:22 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-11-30 13:36 - 2015-07-30 04:52 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-11-30 13:36 - 2015-07-30 04:49 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-11-30 13:36 - 2015-07-30 04:46 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-11-30 13:36 - 2015-07-30 04:45 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-11-30 13:36 - 2015-07-30 04:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-11-30 13:36 - 2015-07-30 04:44 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-11-30 13:36 - 2015-07-30 04:44 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-11-30 13:36 - 2015-07-30 04:38 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-11-30 13:36 - 2015-07-30 04:29 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-11-30 13:36 - 2015-07-30 04:15 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-11-30 13:36 - 2015-07-30 04:07 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-11-30 13:36 - 2015-07-30 04:04 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-11-30 13:36 - 2015-07-30 03:58 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-11-30 13:35 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-30 13:35 - 2015-11-05 05:56 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-11-30 13:35 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-30 13:35 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-30 13:35 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-30 13:35 - 2015-11-05 05:01 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-30 13:35 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-30 13:35 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-11-30 13:35 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-11-30 13:35 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-11-30 13:35 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-11-30 13:35 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-11-30 13:35 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-11-30 13:35 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-11-30 13:35 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-11-30 13:35 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-11-30 13:35 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-11-30 13:35 - 2015-09-19 06:14 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-11-30 13:35 - 2015-09-17 07:49 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-11-30 13:35 - 2015-09-17 07:37 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-11-30 13:35 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-11-30 13:35 - 2015-09-17 07:09 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-11-30 13:35 - 2015-09-17 07:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-11-30 13:35 - 2015-09-17 07:06 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-11-30 13:35 - 2015-09-17 07:04 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-11-30 13:35 - 2015-09-17 07:04 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-11-30 13:35 - 2015-09-17 07:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-11-30 13:35 - 2015-09-17 07:03 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-11-30 13:35 - 2015-09-17 07:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-11-30 13:35 - 2015-09-17 07:02 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-11-30 13:35 - 2015-09-17 07:02 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-11-30 13:35 - 2015-09-17 06:57 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-11-30 13:35 - 2015-09-17 06:56 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-11-30 13:35 - 2015-09-17 06:55 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-11-30 13:35 - 2015-09-17 06:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-11-30 13:35 - 2015-09-17 06:55 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-11-30 13:35 - 2015-09-17 06:53 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-11-30 13:35 - 2015-09-17 06:52 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-11-30 13:35 - 2015-09-17 06:52 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-11-30 13:35 - 2015-09-17 06:52 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-11-30 13:35 - 2015-09-17 06:51 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-11-30 13:35 - 2015-09-17 06:51 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-11-30 13:35 - 2015-09-17 06:49 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-11-30 13:35 - 2015-09-17 06:48 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-11-30 13:35 - 2015-09-17 06:48 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-11-30 13:35 - 2015-09-17 06:47 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-11-30 13:35 - 2015-09-17 06:47 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-11-30 13:35 - 2015-09-17 06:46 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-11-30 13:35 - 2015-09-17 06:46 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-11-30 13:35 - 2015-09-17 06:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-11-30 13:35 - 2015-09-17 06:44 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-11-30 13:35 - 2015-09-17 06:43 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-11-30 13:35 - 2015-09-17 06:43 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-11-30 13:35 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-11-30 13:35 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-11-30 13:35 - 2015-09-17 06:38 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2015-11-30 13:35 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-11-30 13:35 - 2015-09-17 06:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-11-30 13:35 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-11-30 13:35 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-11-30 13:35 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-11-30 13:35 - 2015-08-18 08:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-11-30 13:35 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-11-30 13:35 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-11-30 13:35 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-11-30 13:35 - 2015-08-18 07:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-11-30 13:35 - 2015-08-11 11:04 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-11-30 13:35 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-11-30 13:35 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-11-30 13:35 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-11-30 13:35 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-11-30 13:35 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-11-30 13:35 - 2015-08-08 07:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-11-30 13:35 - 2015-08-04 04:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-11-30 13:35 - 2015-08-03 02:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-11-30 13:35 - 2015-08-03 02:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-11-30 13:35 - 2015-08-03 02:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-11-30 13:35 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-11-30 13:35 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-11-30 13:35 - 2015-08-03 02:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-11-30 13:35 - 2015-08-03 02:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-11-30 13:35 - 2015-08-03 02:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-11-30 13:35 - 2015-07-30 05:12 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-11-30 13:35 - 2015-07-30 04:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-11-30 13:35 - 2015-07-30 04:44 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-11-30 13:34 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-30 13:34 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-30 13:34 - 2015-11-05 05:05 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-30 13:34 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-11-30 13:34 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-30 13:34 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-11-30 13:34 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-11-30 13:34 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-11-30 13:34 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-11-30 13:34 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-11-30 13:34 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-11-30 13:34 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-11-30 13:34 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-11-30 13:34 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-11-30 13:34 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-11-30 13:34 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-11-30 13:34 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-11-30 13:34 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-11-30 13:34 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-11-30 13:34 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-11-30 13:34 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-11-30 13:34 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-11-30 13:34 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-11-30 13:34 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-11-30 13:34 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-11-30 13:34 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-11-30 13:34 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-11-30 13:34 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-11-30 13:34 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-11-30 13:34 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-11-30 13:34 - 2015-09-17 07:48 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-11-30 13:34 - 2015-09-17 07:48 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-11-30 13:34 - 2015-09-17 07:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-11-30 13:34 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-11-30 13:34 - 2015-09-17 07:09 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-11-30 13:34 - 2015-09-17 07:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-11-30 13:34 - 2015-09-17 07:08 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-11-30 13:34 - 2015-09-17 07:06 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-11-30 13:34 - 2015-09-17 07:03 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-11-30 13:34 - 2015-09-17 07:00 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-11-30 13:34 - 2015-09-17 06:57 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-11-30 13:34 - 2015-09-17 06:55 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-11-30 13:34 - 2015-09-17 06:55 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-11-30 13:34 - 2015-09-17 06:54 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-11-30 13:34 - 2015-09-17 06:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-11-30 13:34 - 2015-09-17 06:52 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-11-30 13:34 - 2015-09-17 06:52 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-11-30 13:34 - 2015-09-17 06:52 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-11-30 13:34 - 2015-09-17 06:51 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-11-30 13:34 - 2015-09-17 06:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-11-30 13:34 - 2015-09-17 06:50 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-11-30 13:34 - 2015-09-17 06:50 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-11-30 13:34 - 2015-09-17 06:50 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll
2015-11-30 13:34 - 2015-09-17 06:50 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll
2015-11-30 13:34 - 2015-09-17 06:49 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-11-30 13:34 - 2015-09-17 06:49 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-11-30 13:34 - 2015-09-17 06:49 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll
2015-11-30 13:34 - 2015-09-17 06:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-11-30 13:34 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2015-11-30 13:34 - 2015-09-17 06:46 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-11-30 13:34 - 2015-09-17 06:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-11-30 13:34 - 2015-09-17 06:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-11-30 13:34 - 2015-09-17 06:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-11-30 13:34 - 2015-09-17 06:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-11-30 13:34 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-11-30 13:34 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-11-30 13:34 - 2015-09-17 06:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-11-30 13:34 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-11-30 13:34 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-11-30 13:34 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-11-30 13:34 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-11-30 13:34 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-11-30 13:34 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-11-30 13:34 - 2015-09-17 06:16 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-11-30 13:34 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-11-30 13:34 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-11-30 13:34 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-11-30 13:34 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-11-30 13:34 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-11-30 13:34 - 2015-08-18 05:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-11-30 13:34 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-11-30 13:34 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-11-30 13:34 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-11-30 13:34 - 2015-08-11 10:40 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-11-30 13:34 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-11-30 13:34 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-11-30 13:34 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-11-30 13:34 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-11-30 13:34 - 2015-08-11 10:14 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-11-30 13:34 - 2015-08-11 10:13 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-11-30 13:34 - 2015-08-11 10:11 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-11-30 13:34 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-11-30 13:34 - 2015-08-11 10:10 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-11-30 13:34 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-11-30 13:34 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-11-30 13:34 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-11-30 13:34 - 2015-08-11 09:51 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-11-30 13:34 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-11-30 13:34 - 2015-08-11 09:50 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-11-30 13:34 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-11-30 13:34 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-11-30 13:34 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-11-30 13:34 - 2015-08-08 08:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-11-30 13:34 - 2015-08-08 08:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-11-30 13:34 - 2015-08-08 07:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-11-30 13:34 - 2015-08-08 07:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-11-30 13:34 - 2015-08-06 04:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-11-30 13:34 - 2015-08-04 05:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-11-30 13:34 - 2015-08-03 03:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-11-30 13:34 - 2015-08-03 03:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-11-30 13:34 - 2015-08-03 03:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-11-30 13:34 - 2015-08-03 02:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-11-30 13:34 - 2015-08-03 02:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-11-30 13:34 - 2015-08-03 02:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-11-30 13:34 - 2015-08-03 02:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-11-30 13:34 - 2015-07-30 06:24 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-11-30 13:34 - 2015-07-30 05:08 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-11-30 13:34 - 2015-07-30 04:41 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-11-30 13:34 - 2015-07-30 04:40 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-11-30 13:34 - 2015-07-30 04:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-11-30 13:29 - 2015-09-17 06:50 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-11-30 13:29 - 2015-09-17 06:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-11-30 13:29 - 2015-07-30 04:44 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-11-30 13:15 - 2015-11-30 13:15 - 00282152 _____ C:\WINDOWS\Minidump\113015-30406-01.dmp
2015-11-30 13:08 - 2015-11-30 13:15 - 572526834 _____ C:\WINDOWS\MEMORY.DMP
2015-11-30 13:08 - 2015-11-30 13:15 - 00000000 ____D C:\WINDOWS\Minidump
2015-11-30 13:08 - 2015-11-30 13:08 - 00283976 _____ C:\WINDOWS\Minidump\113015-30656-01.dmp
2015-11-30 12:58 - 2015-11-30 12:58 - 00000000 _____ C:\Users\Basti\defogger_reenable
2015-11-30 12:32 - 2015-11-30 12:32 - 00000000 ____D C:\Users\Basti\AppData\Local\NetworkTiles
2015-11-30 12:14 - 2015-12-03 17:54 - 00000000 ____D C:\FRST
2015-11-30 11:53 - 2015-11-30 11:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fingerprint Reader
2015-11-30 11:31 - 2015-11-30 11:31 - 00002407 _____ C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-30 11:31 - 2015-11-30 11:31 - 00000000 ___RD C:\Users\Basti\OneDrive
2015-11-30 11:31 - 2015-11-30 11:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2015-11-30 11:29 - 2015-11-30 11:29 - 00000000 ____D C:\Users\Basti\AppData\Local\MicrosoftEdge
2015-11-30 11:29 - 2014-11-26 11:01 - 00004664 _____ C:\WINDOWS\system32\Drivers\CxSfPt.dat
2015-11-30 10:27 - 2015-11-30 10:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2015-11-30 10:27 - 2015-11-30 10:27 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2015-11-30 10:26 - 2015-11-30 10:26 - 07231400 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 03153264 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\UCI64A96.DLL
2015-11-30 10:26 - 2015-11-30 10:26 - 01991784 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 01052208 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64BP16.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00695688 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\C3DHPExt64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00431048 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CSpkExt64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00340656 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00283928 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00151791 _____ C:\WINDOWS\system32\Drivers\DS1Parm.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00071024 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxPageMaster64.dll
2015-11-30 10:26 - 2015-11-30 10:26 - 00014718 _____ C:\WINDOWS\system32\Drivers\MicGain.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00011842 _____ C:\WINDOWS\system32\Drivers\EdgeEQ.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00010107 _____ C:\WINDOWS\system32\Drivers\MicEQ.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00008269 _____ C:\WINDOWS\system32\Drivers\AFA.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00006520 _____ C:\WINDOWS\system32\Drivers\ISAPSII.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00006312 _____ C:\WINDOWS\system32\Drivers\FXMisc.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00003657 _____ C:\WINDOWS\system32\Drivers\BIT_CLK.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00003027 _____ C:\WINDOWS\system32\Drivers\SPKVol.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00002171 _____ C:\WINDOWS\system32\Drivers\OrVerbs.ini
2015-11-30 10:26 - 2015-11-30 10:26 - 00001816 _____ C:\WINDOWS\system32\Drivers\ALTMIXER.INI
2015-11-30 10:24 - 2015-11-30 10:27 - 00000000 ____D C:\Users\Basti\AppData\Local\Comms
2015-11-30 10:23 - 2015-11-30 10:23 - 00276160 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo34.dll
2015-11-30 10:23 - 2015-11-30 10:23 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-11-30 10:22 - 2015-11-30 10:22 - 00001058 _____ C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2015-11-30 10:22 - 2015-11-30 10:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Publishers
2015-11-30 10:22 - 2015-07-09 20:39 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-11-30 10:22 - 2015-07-09 20:36 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-11-30 10:22 - 2015-07-09 20:28 - 06358016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-11-30 10:22 - 2015-07-09 20:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-11-30 10:22 - 2015-07-09 20:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-11-30 10:21 - 2015-12-01 07:17 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-30 10:21 - 2015-12-01 07:17 - 00000000 ____D C:\Users\Basti\AppData\Local\Packages
2015-11-30 10:20 - 2015-11-30 10:20 - 00000020 ___SH C:\Users\Basti\ntuser.ini
2015-11-30 10:20 - 2015-11-30 10:20 - 00000000 ____D C:\Users\Basti\AppData\Local\TileDataLayer
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-11-30 08:27 - 2015-11-30 08:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-11-30 08:26 - 2015-11-30 08:26 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-11-30 08:21 - 2015-07-10 11:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-11-30 08:16 - 2015-11-30 08:16 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2015-11-30 08:16 - 2015-11-30 08:16 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-11-30 08:12 - 2015-11-30 08:12 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-11-30 08:10 - 2015-12-02 13:32 - 00000000 ____D C:\Users\Basti
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Vorlagen
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Startmenü
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Netzwerkumgebung
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Lokale Einstellungen
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Eigene Dateien
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Druckumgebung
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Documents\Eigene Videos
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Documents\Eigene Musik
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Documents\Eigene Bilder
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\AppData\Local\Verlauf
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\AppData\Local\Anwendungsdaten
2015-11-30 08:10 - 2015-11-30 08:10 - 00000000 _SHDL C:\Users\Basti\Anwendungsdaten
2015-11-30 08:08 - 2015-12-01 13:55 - 02077062 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-30 08:08 - 2015-11-30 08:08 - 01980268 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-11-30 08:07 - 2015-11-30 10:27 - 00000000 ____D C:\Program Files\CONEXANT
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____D C:\Program Files\Synaptics
2015-11-30 08:07 - 2015-11-30 08:07 - 00000000 ____D C:\Program Files\AuthenTec
2015-11-30 08:02 - 2015-11-30 12:00 - 00000000 ___DC C:\WINDOWS\Panther
2015-11-30 07:59 - 2015-11-30 07:59 - 00000000 ____D C:\Windows.old
2015-11-30 07:57 - 2015-11-30 07:57 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-11-30 07:57 - 2015-11-30 07:57 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-11-30 07:57 - 2015-11-30 07:57 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-11-30 07:57 - 2015-11-30 07:57 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-11-30 07:55 - 2015-11-30 07:55 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files\MSBuild
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-11-30 07:52 - 2015-11-30 07:52 - 00000000 ____D C:\inetpub
2015-11-30 07:51 - 2015-06-17 18:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-11-30 07:51 - 2015-06-17 18:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-11-30 07:51 - 2015-06-17 18:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-11-30 07:51 - 2015-05-29 21:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-11-30 07:51 - 2015-05-29 21:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-11-30 07:51 - 2015-05-29 21:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-11-30 07:22 - 2015-11-30 08:27 - 00010453 _____ C:\WINDOWS\diagerr.xml
2015-11-30 07:22 - 2015-11-30 08:27 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2015-11-29 21:29 - 2015-11-30 11:40 - 00000000 ____D C:\Users\Basti\AppData\Local\Lavasoft
2015-11-29 21:29 - 2015-11-29 21:29 - 00000000 ____D C:\Users\Public\Documents\Baidu
2015-11-29 21:28 - 2015-12-01 23:25 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Lavasoft
2015-11-29 21:28 - 2015-12-01 23:25 - 00000000 ____D C:\ProgramData\Lavasoft
2015-11-29 21:28 - 2015-12-01 23:25 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2015-11-29 21:28 - 2015-11-30 08:19 - 00002872 _____ C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini
2015-11-29 21:28 - 2015-11-30 08:19 - 00002872 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2015-11-29 21:28 - 2015-11-29 21:28 - 00425744 _____ (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService64.dll
2015-11-29 21:28 - 2015-11-29 21:28 - 00345360 _____ (Lavasoft Limited) C:\WINDOWS\SysWOW64\LavasoftTcpService.dll
2015-11-29 20:32 - 2009-06-10 22:00 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2015-11-29 20:30 - 2015-11-29 20:32 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Opera Software
2015-11-29 20:30 - 2015-11-29 20:32 - 00000000 ____D C:\Users\Basti\AppData\Local\Opera Software
2015-11-28 14:20 - 2015-11-28 14:20 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-11-28 14:20 - 2015-11-28 14:20 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-11-15 20:31 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2015-11-15 20:31 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-11-15 20:31 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2015-11-15 20:31 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-11-03 23:00 - 2015-11-04 20:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
|
|
03.12.2015, 18:00
| #10 |
| | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen FRST Part 2: Code:
ATTFilter ==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-03 17:52 - 2013-04-30 19:44 - 00001110 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-03 17:50 - 2012-09-15 14:13 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-03 15:29 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-12-03 13:46 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-03 12:52 - 2013-04-30 19:44 - 00001106 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-03 10:36 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2015-12-03 09:42 - 2012-08-28 13:01 - 00000000 ____D C:\ProgramData\Lenovo
2015-12-03 09:41 - 2012-09-15 21:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2015-12-03 09:41 - 2012-08-28 20:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2015-12-03 09:41 - 2012-08-28 19:44 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2015-12-03 09:41 - 2012-08-28 19:43 - 00000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2015-12-03 09:41 - 2012-08-28 19:39 - 00000000 ____D C:\Program Files (x86)\Lenovo
2015-12-03 09:34 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-03 09:30 - 2013-09-12 20:24 - 00000000 ____D C:\Users\Basti\AppData\LocalLow\AuthenTec
2015-12-01 23:56 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-12-01 23:00 - 2012-10-27 08:36 - 00000000 ____D C:\ProgramData\Skype
2015-12-01 21:12 - 2014-07-09 08:42 - 00000000 ____D C:\Users\Basti\AppData\Local\Amazon Music
2015-12-01 19:48 - 2012-10-27 08:37 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Skype
2015-12-01 19:07 - 2015-08-16 20:21 - 00000000 ____D C:\Temp
2015-12-01 14:59 - 2014-06-04 09:02 - 00000000 ____D C:\Users\Basti\AppData\Roaming\vlc
2015-12-01 13:55 - 2015-07-10 17:34 - 00884826 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-01 13:55 - 2015-07-10 17:34 - 00195924 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-01 13:51 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-01 13:51 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-01 07:28 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-11-30 22:29 - 2015-07-10 13:20 - 00259496 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-30 22:26 - 2015-07-10 17:46 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-11-30 22:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-11-30 22:09 - 2012-11-12 18:53 - 00001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-11-30 13:41 - 2015-07-28 17:01 - 01804696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-11-30 13:41 - 2015-07-28 17:01 - 00777336 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-11-30 13:41 - 2015-07-28 17:01 - 00636536 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-11-30 13:41 - 2015-07-28 17:01 - 00277624 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2015-11-30 13:41 - 2015-07-28 17:01 - 00051320 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-11-30 13:41 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-30 12:00 - 2012-09-21 21:42 - 00000000 ____D C:\Users\Basti\AppData\Local\CrashDumps
2015-11-30 10:26 - 2013-06-26 19:52 - 03270960 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-11-30 10:26 - 2013-06-26 19:52 - 01317096 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\Drivers\CHDRT64.sys
2015-11-30 10:26 - 2012-09-20 22:58 - 00000000 ____D C:\ProgramData\Conexant
2015-11-30 10:22 - 2015-07-10 17:35 - 00000000 ____D C:\WINDOWS\OCR
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-11-30 10:21 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-11-30 10:20 - 2009-07-14 04:20 - 00000000 ____D C:\Users\Default.migrated
2015-11-30 08:27 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows NT
2015-11-30 08:26 - 2015-08-22 19:51 - 00003346 _____ C:\WINDOWS\System32\Tasks\{5C44334E-D070-4942-A00F-8264A221FF08}
2015-11-30 08:26 - 2015-08-16 20:21 - 00003596 _____ C:\WINDOWS\System32\Tasks\Motorola Device Manager Update
2015-11-30 08:26 - 2015-08-16 20:21 - 00003404 _____ C:\WINDOWS\System32\Tasks\Motorola Device Manager Initial Update
2015-11-30 08:26 - 2015-07-10 12:04 - 00000000 __RSD C:\WINDOWS\Media
2015-11-30 08:26 - 2015-07-10 12:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-11-30 08:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Registration
2015-11-30 08:26 - 2015-05-18 19:52 - 00003132 _____ C:\WINDOWS\System32\Tasks\{8244CBC6-1108-4C35-AF13-01243CC14407}
2015-11-30 08:26 - 2014-12-24 22:24 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-11-30 08:26 - 2014-06-28 11:25 - 00003240 _____ C:\WINDOWS\System32\Tasks\{B570C062-A09B-4FF8-A272-7E95B67E15DB}
2015-11-30 08:26 - 2013-09-27 23:31 - 00004924 _____ C:\WINDOWS\System32\Tasks\ShutdownNachSicherung
2015-11-30 08:26 - 2013-08-10 12:45 - 00003558 _____ C:\WINDOWS\System32\Tasks\{1FAE95A7-433C-462A-81AB-9102086B1B6A}
2015-11-30 08:26 - 2013-04-30 19:44 - 00004216 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-30 08:26 - 2013-04-30 19:44 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-30 08:26 - 2012-11-19 12:00 - 00002882 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-11-30 08:26 - 2012-09-29 19:17 - 00003112 _____ C:\WINDOWS\System32\Tasks\{377F2728-61E6-4F48-8603-B97D69F9CFC5}
2015-11-30 08:26 - 2012-09-22 22:50 - 00004292 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-11-30 08:26 - 2012-09-22 21:39 - 00003264 _____ C:\WINDOWS\System32\Tasks\{E63801AF-7C96-47BF-95A1-B81983D4317D}
2015-11-30 08:26 - 2012-09-21 20:19 - 00003140 _____ C:\WINDOWS\System32\Tasks\{71E3E912-F65D-4A3D-A8F6-64187E5EA26C}
2015-11-30 08:26 - 2012-09-15 14:13 - 00003932 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-11-30 08:26 - 2012-09-15 13:45 - 00003456 _____ C:\WINDOWS\System32\Tasks\{95F202ED-6D23-40DC-94A2-A3CD281F11B0}
2015-11-30 08:23 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-11-30 08:21 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-11-30 08:17 - 2015-09-11 21:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-11-30 08:17 - 2015-08-16 21:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android SDK Tools
2015-11-30 08:17 - 2015-08-16 21:42 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Android SDK Tools
2015-11-30 08:17 - 2015-08-16 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager
2015-11-30 08:17 - 2015-08-16 20:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2015-11-30 08:17 - 2015-08-16 20:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-11-30 08:17 - 2015-08-16 19:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot
2015-11-30 08:17 - 2015-07-30 15:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-11-30 08:17 - 2015-07-10 12:04 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2015-11-30 08:17 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Help
2015-11-30 08:17 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-11-30 08:17 - 2015-05-20 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Videoverwandte Programme
2015-11-30 08:17 - 2015-05-20 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Produktpalette
2015-11-30 08:17 - 2014-09-02 12:46 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-11-30 08:17 - 2014-07-09 08:42 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music
2015-11-30 08:17 - 2014-06-04 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-11-30 08:17 - 2014-05-27 22:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-11-30 08:17 - 2014-05-24 07:07 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2015-11-30 08:17 - 2013-12-25 08:28 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeRIP MP3 Converter
2015-11-30 08:17 - 2013-10-16 12:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-30 08:17 - 2013-06-08 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WAV To MP3
2015-11-30 08:17 - 2013-04-30 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-30 08:17 - 2012-11-25 00:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-11-30 08:17 - 2012-11-19 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-11-30 08:17 - 2012-09-27 20:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hydrogen
2015-11-30 08:17 - 2012-09-20 20:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digidesign
2015-11-30 08:17 - 2012-09-15 12:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Absolute Software
2015-11-30 08:17 - 2012-08-28 19:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel AppUp(SM) center
2015-11-30 08:17 - 2012-08-28 19:33 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-11-30 08:13 - 2015-07-10 17:34 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-30 08:13 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-11-30 08:13 - 2012-08-28 19:37 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2015-11-30 08:12 - 2015-07-10 14:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\schemas
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-11-30 08:12 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-30 08:12 - 2014-10-02 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-11-30 08:12 - 2012-09-20 20:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio
2015-11-30 08:12 - 2012-08-28 20:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2015-11-30 08:12 - 2011-12-08 21:02 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-11-30 08:12 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-11-30 08:12 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-11-30 08:08 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-11-30 08:02 - 2015-07-10 12:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-11-30 07:58 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-11-30 07:58 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-11-30 07:58 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-11-30 07:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-11-30 07:52 - 2015-07-10 12:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-11-30 07:52 - 2015-07-10 12:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-11-30 07:52 - 2015-07-10 12:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-11-30 07:52 - 2015-07-10 12:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-11-30 07:52 - 2015-07-10 12:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-11-30 07:52 - 2015-07-10 12:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-11-30 07:52 - 2015-07-10 12:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-11-30 07:52 - 2015-07-10 12:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-11-30 07:52 - 2015-07-10 12:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-11-30 07:52 - 2015-07-10 12:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-11-30 07:52 - 2015-07-10 12:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-11-30 07:26 - 2009-07-14 05:45 - 00031472 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-30 07:26 - 2009-07-14 05:45 - 00031472 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-30 07:23 - 2015-07-10 18:28 - 00000000 ___HD C:\$Windows.~BT
2015-11-28 23:11 - 2014-01-19 00:00 - 00000000 ____D C:\ProgramData\Oracle
2015-11-28 23:06 - 2015-08-16 20:11 - 00000000 ____D C:\Program Files\Java
2015-11-28 23:06 - 2012-09-17 06:32 - 00000000 ____D C:\Program Files (x86)\Java
2015-11-28 23:05 - 2015-08-22 19:32 - 00000000 ____D C:\Users\Basti\.oracle_jre_usage
2015-11-28 23:04 - 2015-08-16 20:12 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-11-28 14:20 - 2014-04-30 18:51 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-11-28 14:20 - 2014-01-09 09:28 - 00154256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-11-28 14:20 - 2013-03-25 12:48 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-11-28 14:20 - 2013-03-25 12:48 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 01059656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 00449992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-11-28 14:20 - 2012-09-22 22:50 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-11-28 08:39 - 2014-11-16 16:30 - 00000000 ____D C:\Users\Basti\AppData\Roaming\dvdcss
2015-11-16 08:24 - 2013-08-15 11:52 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-16 08:14 - 2012-09-17 06:52 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-06 10:12 - 2012-09-15 12:20 - 00085608 _____ C:\Users\Basti\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-04 20:15 - 2012-11-12 18:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-03 19:20 - 2015-07-10 12:06 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-11-03 19:20 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2012-09-15 12:19 - 2012-09-19 06:19 - 0014056 _____ () C:\Users\Basti\AppData\Roaming\AbsoluteReminder.xml
2015-03-31 08:45 - 2015-03-31 08:45 - 0003584 _____ () C:\Users\Basti\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-09-15 20:40 - 2015-09-15 20:40 - 0000829 _____ () C:\Users\Basti\AppData\Local\recently-used.xbel
2012-09-20 23:28 - 2012-09-20 23:28 - 0000017 _____ () C:\Users\Basti\AppData\Local\resmon.resmoncfg
2014-10-02 20:36 - 2014-10-02 20:36 - 0000057 _____ () C:\ProgramData\Ament.ini
2013-06-26 19:53 - 2013-06-26 19:53 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-03-31 16:28 - 2013-03-31 16:28 - 0001534 _____ () C:\ProgramData\ss.ini
2015-05-14 11:22 - 2015-05-14 11:22 - 0004966 _____ () C:\ProgramData\wmzddnmb.cix
Einige Dateien in TEMP:
====================
C:\Users\Basti\AppData\Local\Temp\fsd4788.exe
C:\Users\Basti\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-11-30 08:03
==================== Ende von FRST.txt ============================
|
|
04.12.2015, 15:38
| #11 |
| /// the machine /// TB-Ausbilder | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen Adobe updaten. Ordner Windows.old löschen. Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter Emptytemp:
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Cleanup: (Die Reihenfolge ist hier entscheidend) Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken. Falls Combofix verwendet wurde:  Combofix deinstallieren .
Alle Logs gepostet? Dann lade Dir bitte  DelFix herunter.
Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen. Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...  und/oder das Forum mit einer kleinen Spende  unterstützen.   Absicherung:Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen: Browser Java Flash-Player PDF-Reader Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren. Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen. Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig. Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank. Meine Empfehlung:  Emsisoft Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen. Optional:  NoScript verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen. Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen.Lade Software von einem sauberen Portal wie  .Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen. Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwarecleaner . Abschließend noch ein paar grundsätzliche Bemerkungen: Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems. Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.12.2015, 21:00
| #12 |
| | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen Fixlog: Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-11-2015
durchgeführt von Basti (2015-12-04 20:53:38) Run:1
Gestartet von E:\Downloads
Geladene Profile: Basti (Verfügbare Profile: Basti & DefaultAppPool)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
Emptytemp:
*****************
EmptyTemp: => 676.9 MB temporäre Dateien entfernt.
Das System musste neu gestartet werden.
==== Ende von Fixlog 20:54:09 ====
|
|
05.12.2015, 22:15
| #13 |
| /// the machine /// TB-Ausbilder | Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen fertig
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Automatisches Öffnen von Tabs, nicht zu beendende Installationen, Scan mit GMER wird abgebrochen |
| dnsapi.dll, flash player, hotspot, iexplore.exe, lavasofttcpservice64.dll, officejet, prozesse, pup.optional.bundleinstaller, pup.optional.checkoffer, pup.optional.chinad, pup.optional.dailywiki, pup.optional.eorezo, pup.optional.ourseaching, pup.optional.tuto4pc, pup.optional.yahoovnm, security.hijack, services.exe, trojan.agent |
dann auf 
und dann auf 
. 
+ R Taste und schreibe Combofix /Uninstall in das 
Linear-Darstellung
