Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 05.01.2016, 16:24   #1
pinsel
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Icon22

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Hallo liebe PC-Fans und Fachmenschen,
ich habe wahrscheinlich ein Virus auf meinem PC, dieser ist 3 Wochen alt und dies Virus auch.
Windows 8.1. Avastbeschreibung. Win32:Rootkit-gen(rtk), Objekt C:\Windows\SysWOW64\Windowsd.web.dll
Habe seitdem beim Start sofort die Meldung Von Hitmanpro: Malware. Jedesmal, insgesamt mehrere Dutzend mal, immer nur eins zur Zeit, sieht anders aus als die Anzeige von Avast. Heute Malwarebites, HitmanPro und Avast laufen lassen, nach löschen von PUPs durch Malearebites, das kein Virus gefunden hat, keine Anzeige mehr durch eins der Programme.
Möglicherweise müsste ich Euch die Dateien alle schicken, muß dazu sagen, daß ich Neuling bin und kaum Ahnung habe bei Fachausdrücken.
Vielleicht ist das Problem ja "gegessen", glaube ich allerdings nicht.
Ich freue mich über Antwort!
Freundliche Grüße,
pinsel. (Ich bastele etwas Grafik am PC).

Alt 05.01.2016, 16:43   #2
Deathkid535
/// Malwareteam
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?





Mein Name ist Dennis und ich werde dir bei der Bereinigung helfen.

Bitte beachte, dass es ein paar Regeln gibt:
  • Bitte lies meine Posts komplett durch bevor du sie abarbeitest
  • Wenn ein Problem auftauchen sollte, unterbreche deine Arbeit, poste die entstandenen Logs und schildere dieses so genau wie möglich.
  • Bitte kein Crossposting
  • Installiere oder Deinstalliere keine Software ohne Aufforderung
  • Bitte verwende nur die Tools welche hier im Thread erwähnt werden
  • Antworte innerhalb von 24h um eine sinnvolle Bereinigung zu ermöglichen
  • Poste die Logs immer in CODE-Tags (#-Button), zur Not die Logs einfach aufteilen

Sollte ich nicht innerhalb von 48h antworten, schreibe mir eine PM!

Wir schauen uns das auf jeden Fall mal genauer an. Poste bitte die Logs von allen Programmen die du drüberlaufen hast lassen.

Schritt # 1: FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Schritt # 2: TDSS-Killer

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.


Schritt # 3: Bitte Posten
  • Die FRST.txt
  • Die Addition.txt
  • Das Log von TDSS-Killer
__________________

__________________

Alt 05.01.2016, 17:58   #3
pinsel
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Hallo Dennis, danke für prompte Antwort!
Ist dies das richtige Fenster fürs Posten? Wie bekomme ich jetzt die Logdateien von FRST hier hinein? Bitte entschuldige meine Ahnungslosigkeit, bin Anfängerin.
Grüße von Susanne
__________________

Alt 05.01.2016, 17:59   #4
Deathkid535
/// Malwareteam
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Hi,

kein Problem . Poste die Logs bitte so:

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Alt 05.01.2016, 19:10   #5
pinsel
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Hallo Dennis, meine Logdateien in 2 Teilen, sie sin d zu groß.
Nochmals Grüße, Susanne
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-12-2015
durchgeführt von Charlotte (2016-01-05 17:38:35)
Gestartet von C:\Users\Charlotte\Downloads
Windows 8.1 Connected (X64) (2015-12-12 18:20:06)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3783643309-3904551039-2328678029-500 - Administrator - Disabled)
Charlotte (S-1-5-21-3783643309-3904551039-2328678029-1001 - Administrator - Enabled) => C:\Users\Charlotte
Gast (S-1-5-21-3783643309-3904551039-2328678029-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3783643309-3904551039-2328678029-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Illustrator CS2 (HKLM-x32\...\Adobe Illustrator CS2) (Version: 12.000.000 - Adobe Systems Inc.)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version:  3.0 - Adobe Systems, Inc.)
Aeon (HKLM-x32\...\Aeon) (Version: 3.7.3 - SoundSpectrum)
Alcor Micro USB Card Reader Driver  (HKLM-x32\...\AmUStor) (Version: 20.21.3317.03861 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver  (x32 Version: 20.21.3317.03861 - Alcor Micro Corp.) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
Bejeweled 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden
Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon MG5500 series Benutzerregistrierung (HKLM-x32\...\Canon MG5500 series Benutzerregistrierung) (Version:  - *Canon Inc.)
Canon MG5500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5500_series) (Version:  - Canon Inc.)
Canon MG5500 series On-screen Manual (HKLM-x32\...\Canon MG5500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Crazy Chicken Soccer (x32 Version: 2.2.0.110 - WildTangent) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.7.4023 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.2.5426 - CyberLink Corp.)
Cyberlink PhotoDirector (Version: 5.0.2.5426 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.7.4016 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.1.3004 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.1.3004 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4.4119 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
DSL Soforthilfe (HKLM-x32\...\DSL Soforthilfe) (Version: 1.1.0.51 - Telefónica Germany GmbH & Co. OHG)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.3 (HKLM-x32\...\{E461B1AC-BC3C-11E3-B5B8-00163E98E7D6}) (Version: 5.3.0.3360 - Evernote Corp.)
Farm Frenzy (x32 Version: 3.0.2.59 - WildTangent) Hidden
Foxit PhantomPDF (HKLM-x32\...\{00CD7D62-056A-4F0F-9143-44522D44E6DD}) (Version: 6.0.32.507 - Foxit Corporation)
Free M4a to MP3 Converter 9.1 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version:  - ManiacTools.com)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Governor of Poker 2 Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.12.253 - SurfRight B.V.)
HP Documentation (HKLM-x32\...\{4B4EDB7B-4F54-4B86-8A4A-E1C5803CA374}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7745.4851 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.0.30.219 - Hewlett-Packard Company)
Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3993 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}) (Version: 12.3.2.35 - Apple Inc.)
Jewel Match 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 44.0 (x64 de) (HKLM\...\Mozilla Firefox 44.0 (x64 de)) (Version: 44.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.0.5840 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.5.0 (x86 de)) (Version: 38.5.0 - Mozilla)
PDF24 Creator 7.4.1 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
Perfect Effects Free 9 (HKLM-x32\...\Perfect Effects Free 9) (Version: 9.5.0 - on1)
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden
Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Ranch Rush 2 - Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7487 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.7316 - CyberLink Corp.) Hidden
Redfield Plugins (HKLM-x32\...\Redfield Plugins) (Version:  - )
SafeZone Stable 1.46.1990.139 (x32 Version: 1.46.1990.139 - Avast Software) Hidden
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Virtual Families (x32 Version: 2.2.0.98 - WildTangent) Hidden
virtualPhotographer 1.5.6 (HKLM-x32\...\virtualPhotographer_is1) (Version:  - optikVerve Labs)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App for HP (x32 Version: 4.0.11.9 - WildTangent) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3783643309-3904551039-2328678029-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {003D468E-21B6-4B75-90A8-0F7051A88134} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29] (Adobe Systems Incorporated)
Task: {04E6B1D5-B736-4547-BF1C-B3599D803643} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {0ED787D9-FDF7-4A68-BB84-DD24FC2720E4} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2015-11-23] (Microsoft Corporation)
Task: {17DA2BFC-9C20-42CD-ABC3-99940772D8D4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {181DA48B-752F-412D-A4FE-53EC6A5404A9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {19DC33A6-F357-40FB-A35F-D0FDD9027711} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {48A6788A-4E7A-4757-848D-E189ED8928CE} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-13] (AVAST Software)
Task: {5ADD74FE-A198-476F-A0EF-88724B633E17} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {7340927E-D953-4F47-8560-7B1FA0CAD4AC} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {82C8BC15-8A2D-4609-9454-D28DFC9A8BF0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-15] (AVAST Software)
Task: {9A6A79B0-34FF-4E2D-A703-E7CCFBFEB17A} - System32\Tasks\SafeZone scheduled Autoupdate 1450019097 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2015-12-01] (Avast Software)
Task: {B25EC778-8CE7-4984-8994-B692119E1322} - System32\Tasks\HPCeeScheduleForCharlotte => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {B8FFA411-8CB5-44B8-9687-EDE0CDDAD19C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {BA48FCCD-F364-42BF-B684-E7B4DCC4D3D1} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\HPCeeScheduleForCharlotte.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-03-28 14:31 - 2014-03-28 14:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2015-11-20 14:57 - 2015-11-20 14:57 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-11-20 14:57 - 2015-11-20 14:57 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-21 11:04 - 2014-04-14 19:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-06-11 05:19 - 2014-06-11 05:19 - 00622080 _____ () C:\windows\system32\spool\DRIVERS\x64\3\JobCapsA.DLL
2014-03-28 14:36 - 2014-03-28 14:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2015-12-15 12:14 - 2013-11-21 21:57 - 20585888 ____N () C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
2015-12-13 02:22 - 2015-12-13 02:22 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-04 18:32 - 2016-01-04 18:32 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010401\algo.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-05 14:02 - 2016-01-05 14:02 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010500\algo.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-12-18 15:50 - 2015-11-18 13:04 - 00074272 _____ () C:\Program Files (x86)\PDF24\zlib.dll
2015-12-18 15:50 - 2015-11-18 13:04 - 00052256 _____ () C:\Program Files (x86)\PDF24\OperationUI.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3783643309-3904551039-2328678029-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Charlotte\Pictures\Downloads\Aes Dana Pollen.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{E0C47317-8C92-4AC9-B600-8D0B202EEA68}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{CD87E94D-4B89-4816-81F4-B47BBE218155}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{78099B17-AEEB-4C4F-A27A-2C6EB7D09F3D}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{3B0878E7-1CA4-45F8-ADC7-ADF2791786C4}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{4029A559-B2F8-47FD-AF71-5B969327FDB5}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{5852526D-22DA-404B-AD83-3B3EF51BEE3B}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{3C00CED3-E961-4DDA-92E9-50B1526B8F0D}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{C95101D5-0044-4A88-8515-33828C6575D1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7AD2F20C-3E20-4989-8084-282B2568706E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{70BA25E1-BF55-4A7B-B5DD-3987E0100011}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{356ADAC6-D439-42A3-AEBA-7A9A359718A4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{91CA2C73-DE78-4D75-A8ED-78DE90D82C0B}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{95E9E65C-8458-4DAB-B8A8-1EBA0F13F6B4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{ACBF3D3F-879F-40AC-A177-826B75FFFC95}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{5393BE24-31CB-45C5-9341-2446508B78D9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E2B53F1D-EF33-4477-AC6D-64801BED9CE0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D047B5DD-2EDF-4B28-951C-B1D6D5E2EF39}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{584FFCEA-BD1B-4301-90E0-A0593093F316}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3BF831E8-C65C-4D67-95E2-486FEEE0C31D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{D38B5962-D868-4EB1-A893-928AAC09C767}] => (Allow) C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
FirewallRules: [{97BD545B-13A6-4565-97F5-B420586ADEAE}] => (Allow) C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
FirewallRules: [{1E409008-21B8-4A19-8E85-60621AC36BB0}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [TCP Query User{C161B16F-1932-486C-B702-2C15BF4BE500}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe
FirewallRules: [UDP Query User{3ABD8F5A-C958-4112-9C07-85030F20643F}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe

==================== Wiederherstellungspunkte =========================

02-01-2016 04:31:04 Prüfpunkt von HitmanPro
03-01-2016 17:54:41 Prüfpunkt von HitmanPro
04-01-2016 18:28:54 Prüfpunkt von HitmanPro

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/05/2016 02:44:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 02:44:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 08:41:38 AM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Die Registrierungsinformationen der Leistungsindikatoren für WSearchIdxPi für die Instanz   konnten wegen des folgenden Fehlers nicht abgerufen werden: Der Vorgang wurde erfolgreich beendet.   0x0.

Error: (01/05/2016 08:41:38 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Die Leistungsüberwachung für den Gatherer-Dienst kann nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Kontext:  Anwendung, SystemIndex Katalog

Error: (01/05/2016 08:41:37 AM) (Source: Windows Search Service) (EventID: 3006) (User: )
Description: Die Leistungsüberwachung kann für den Gatherer-Dienst nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Error: (01/05/2016 07:48:26 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 07:48:25 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 07:45:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.18064, Zeitstempel: 0x56042d8f
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18146, Zeitstempel: 0x5650b9bb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003dcfe
ID des fehlerhaften Prozesses: 0x48c
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Vollständiger Name des fehlerhaften Pakets: GWXUX.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GWXUX.exe5

Error: (01/05/2016 07:24:25 AM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Die Registrierungsinformationen der Leistungsindikatoren für WSearchIdxPi für die Instanz   konnten wegen des folgenden Fehlers nicht abgerufen werden: Der Vorgang wurde erfolgreich beendet.   0x0.

Error: (01/05/2016 07:24:25 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Die Leistungsüberwachung für den Gatherer-Dienst kann nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Kontext:  Anwendung, SystemIndex Katalog


Systemfehler:
=============
Error: (01/05/2016 07:45:52 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 07:17:07 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 07:16:37 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (01/05/2016 06:19:33 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (01/05/2016 06:19:03 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 06:07:58 AM) (Source: bowser) (EventID: 8016) (User: )
Description: Der Suchdiensttreiber erhielt zu viele nicht erlaubte Datagramme vom Remotecomputer "O2" zum Namen "SUSANNE" auf Transport "NetBT_Tcpip_{3798836E-956E-41C9-A5DB-86798AC64C7A}". Das Datagramm steht in den Daten.
Es werden keine weiteren Ereignisse erzeugt, solange die Rücksetzfrequenz nicht abgelaufen ist.

Error: (01/05/2016 06:07:56 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "HitmanPro 3.7 Crusader (Boot)" wurde mit dem folgenden dienstspezifischen Fehler beendet: 
%%0

Error: (01/04/2016 08:20:42 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
%%1

Error: (01/04/2016 08:20:33 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
%%1

Error: (01/04/2016 06:42:39 PM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

A
==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Pentium(R) CPU J2900 @ 2.41GHz
Prozentuale Nutzung des RAM: 40%
Installierter physikalischer RAM: 3976.81 MB
Verfügbarer physikalischer RAM: 2361.97 MB
Summe virtueller Speicher: 4872.81 MB
Verfügbarer virtueller Speicher: 2912.28 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:448.93 GB) (Free:201.38 GB) NTFS
Drive d: (Recovery Image) (Fixed) (Total:15.35 GB) (Free:1.92 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: (INTENSO) (Fixed) (Total:1862.55 GB) (Free:1862.55 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 699BA039)

Partition: GPT.

========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: 740A20C4)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=0C)

==================== Ende von Addition.txt ============================
         
nUMMER 2:
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-12-2015
durchgeführt von Charlotte (2016-01-05 17:38:35)
Gestartet von C:\Users\Charlotte\Downloads
Windows 8.1 Connected (X64) (2015-12-12 18:20:06)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3783643309-3904551039-2328678029-500 - Administrator - Disabled)
Charlotte (S-1-5-21-3783643309-3904551039-2328678029-1001 - Administrator - Enabled) => C:\Users\Charlotte
Gast (S-1-5-21-3783643309-3904551039-2328678029-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3783643309-3904551039-2328678029-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Illustrator CS2 (HKLM-x32\...\Adobe Illustrator CS2) (Version: 12.000.000 - Adobe Systems Inc.)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version:  3.0 - Adobe Systems, Inc.)
Aeon (HKLM-x32\...\Aeon) (Version: 3.7.3 - SoundSpectrum)
Alcor Micro USB Card Reader Driver  (HKLM-x32\...\AmUStor) (Version: 20.21.3317.03861 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver  (x32 Version: 20.21.3317.03861 - Alcor Micro Corp.) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
Bejeweled 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden
Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon MG5500 series Benutzerregistrierung (HKLM-x32\...\Canon MG5500 series Benutzerregistrierung) (Version:  - *Canon Inc.)
Canon MG5500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5500_series) (Version:  - Canon Inc.)
Canon MG5500 series On-screen Manual (HKLM-x32\...\Canon MG5500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Crazy Chicken Soccer (x32 Version: 2.2.0.110 - WildTangent) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.7.4023 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.2.5426 - CyberLink Corp.)
Cyberlink PhotoDirector (Version: 5.0.2.5426 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.7.4016 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.1.3004 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.1.3004 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4.4119 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
DSL Soforthilfe (HKLM-x32\...\DSL Soforthilfe) (Version: 1.1.0.51 - Telefónica Germany GmbH & Co. OHG)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.3 (HKLM-x32\...\{E461B1AC-BC3C-11E3-B5B8-00163E98E7D6}) (Version: 5.3.0.3360 - Evernote Corp.)
Farm Frenzy (x32 Version: 3.0.2.59 - WildTangent) Hidden
Foxit PhantomPDF (HKLM-x32\...\{00CD7D62-056A-4F0F-9143-44522D44E6DD}) (Version: 6.0.32.507 - Foxit Corporation)
Free M4a to MP3 Converter 9.1 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version:  - ManiacTools.com)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Governor of Poker 2 Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.12.253 - SurfRight B.V.)
HP Documentation (HKLM-x32\...\{4B4EDB7B-4F54-4B86-8A4A-E1C5803CA374}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7745.4851 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.0.30.219 - Hewlett-Packard Company)
Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3993 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}) (Version: 12.3.2.35 - Apple Inc.)
Jewel Match 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 44.0 (x64 de) (HKLM\...\Mozilla Firefox 44.0 (x64 de)) (Version: 44.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.0.5840 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.5.0 (x86 de)) (Version: 38.5.0 - Mozilla)
PDF24 Creator 7.4.1 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
Perfect Effects Free 9 (HKLM-x32\...\Perfect Effects Free 9) (Version: 9.5.0 - on1)
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden
Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Ranch Rush 2 - Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7487 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.7316 - CyberLink Corp.) Hidden
Redfield Plugins (HKLM-x32\...\Redfield Plugins) (Version:  - )
SafeZone Stable 1.46.1990.139 (x32 Version: 1.46.1990.139 - Avast Software) Hidden
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Virtual Families (x32 Version: 2.2.0.98 - WildTangent) Hidden
virtualPhotographer 1.5.6 (HKLM-x32\...\virtualPhotographer_is1) (Version:  - optikVerve Labs)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App for HP (x32 Version: 4.0.11.9 - WildTangent) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3783643309-3904551039-2328678029-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {003D468E-21B6-4B75-90A8-0F7051A88134} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29] (Adobe Systems Incorporated)
Task: {04E6B1D5-B736-4547-BF1C-B3599D803643} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {0ED787D9-FDF7-4A68-BB84-DD24FC2720E4} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2015-11-23] (Microsoft Corporation)
Task: {17DA2BFC-9C20-42CD-ABC3-99940772D8D4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {181DA48B-752F-412D-A4FE-53EC6A5404A9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {19DC33A6-F357-40FB-A35F-D0FDD9027711} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {48A6788A-4E7A-4757-848D-E189ED8928CE} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-13] (AVAST Software)
Task: {5ADD74FE-A198-476F-A0EF-88724B633E17} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {7340927E-D953-4F47-8560-7B1FA0CAD4AC} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {82C8BC15-8A2D-4609-9454-D28DFC9A8BF0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-15] (AVAST Software)
Task: {9A6A79B0-34FF-4E2D-A703-E7CCFBFEB17A} - System32\Tasks\SafeZone scheduled Autoupdate 1450019097 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2015-12-01] (Avast Software)
Task: {B25EC778-8CE7-4984-8994-B692119E1322} - System32\Tasks\HPCeeScheduleForCharlotte => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {B8FFA411-8CB5-44B8-9687-EDE0CDDAD19C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {BA48FCCD-F364-42BF-B684-E7B4DCC4D3D1} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\HPCeeScheduleForCharlotte.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-03-28 14:31 - 2014-03-28 14:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2015-11-20 14:57 - 2015-11-20 14:57 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-11-20 14:57 - 2015-11-20 14:57 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-21 11:04 - 2014-04-14 19:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-06-11 05:19 - 2014-06-11 05:19 - 00622080 _____ () C:\windows\system32\spool\DRIVERS\x64\3\JobCapsA.DLL
2014-03-28 14:36 - 2014-03-28 14:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2015-12-15 12:14 - 2013-11-21 21:57 - 20585888 ____N () C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
2015-12-13 02:22 - 2015-12-13 02:22 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-04 18:32 - 2016-01-04 18:32 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010401\algo.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-05 14:02 - 2016-01-05 14:02 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010500\algo.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-12-18 15:50 - 2015-11-18 13:04 - 00074272 _____ () C:\Program Files (x86)\PDF24\zlib.dll
2015-12-18 15:50 - 2015-11-18 13:04 - 00052256 _____ () C:\Program Files (x86)\PDF24\OperationUI.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3783643309-3904551039-2328678029-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Charlotte\Pictures\Downloads\Aes Dana Pollen.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{E0C47317-8C92-4AC9-B600-8D0B202EEA68}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{CD87E94D-4B89-4816-81F4-B47BBE218155}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{78099B17-AEEB-4C4F-A27A-2C6EB7D09F3D}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{3B0878E7-1CA4-45F8-ADC7-ADF2791786C4}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{4029A559-B2F8-47FD-AF71-5B969327FDB5}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{5852526D-22DA-404B-AD83-3B3EF51BEE3B}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{3C00CED3-E961-4DDA-92E9-50B1526B8F0D}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{C95101D5-0044-4A88-8515-33828C6575D1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7AD2F20C-3E20-4989-8084-282B2568706E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{70BA25E1-BF55-4A7B-B5DD-3987E0100011}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{356ADAC6-D439-42A3-AEBA-7A9A359718A4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{91CA2C73-DE78-4D75-A8ED-78DE90D82C0B}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{95E9E65C-8458-4DAB-B8A8-1EBA0F13F6B4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{ACBF3D3F-879F-40AC-A177-826B75FFFC95}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{5393BE24-31CB-45C5-9341-2446508B78D9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E2B53F1D-EF33-4477-AC6D-64801BED9CE0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D047B5DD-2EDF-4B28-951C-B1D6D5E2EF39}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{584FFCEA-BD1B-4301-90E0-A0593093F316}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3BF831E8-C65C-4D67-95E2-486FEEE0C31D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{D38B5962-D868-4EB1-A893-928AAC09C767}] => (Allow) C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
FirewallRules: [{97BD545B-13A6-4565-97F5-B420586ADEAE}] => (Allow) C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
FirewallRules: [{1E409008-21B8-4A19-8E85-60621AC36BB0}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [TCP Query User{C161B16F-1932-486C-B702-2C15BF4BE500}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe
FirewallRules: [UDP Query User{3ABD8F5A-C958-4112-9C07-85030F20643F}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe

==================== Wiederherstellungspunkte =========================

02-01-2016 04:31:04 Prüfpunkt von HitmanPro
03-01-2016 17:54:41 Prüfpunkt von HitmanPro
04-01-2016 18:28:54 Prüfpunkt von HitmanPro

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/05/2016 02:44:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 02:44:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 08:41:38 AM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Die Registrierungsinformationen der Leistungsindikatoren für WSearchIdxPi für die Instanz   konnten wegen des folgenden Fehlers nicht abgerufen werden: Der Vorgang wurde erfolgreich beendet.   0x0.

Error: (01/05/2016 08:41:38 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Die Leistungsüberwachung für den Gatherer-Dienst kann nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Kontext:  Anwendung, SystemIndex Katalog

Error: (01/05/2016 08:41:37 AM) (Source: Windows Search Service) (EventID: 3006) (User: )
Description: Die Leistungsüberwachung kann für den Gatherer-Dienst nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Error: (01/05/2016 07:48:26 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 07:48:25 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 07:45:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.18064, Zeitstempel: 0x56042d8f
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18146, Zeitstempel: 0x5650b9bb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003dcfe
ID des fehlerhaften Prozesses: 0x48c
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Vollständiger Name des fehlerhaften Pakets: GWXUX.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GWXUX.exe5

Error: (01/05/2016 07:24:25 AM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Die Registrierungsinformationen der Leistungsindikatoren für WSearchIdxPi für die Instanz   konnten wegen des folgenden Fehlers nicht abgerufen werden: Der Vorgang wurde erfolgreich beendet.   0x0.

Error: (01/05/2016 07:24:25 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Die Leistungsüberwachung für den Gatherer-Dienst kann nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Kontext:  Anwendung, SystemIndex Katalog


Systemfehler:
=============
Error: (01/05/2016 07:45:52 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 07:17:07 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 07:16:37 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (01/05/2016 06:19:33 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (01/05/2016 06:19:03 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 06:07:58 AM) (Source: bowser) (EventID: 8016) (User: )
Description: Der Suchdiensttreiber erhielt zu viele nicht erlaubte Datagramme vom Remotecomputer "O2" zum Namen "SUSANNE" auf Transport "NetBT_Tcpip_{3798836E-956E-41C9-A5DB-86798AC64C7A}". Das Datagramm steht in den Daten.
Es werden keine weiteren Ereignisse erzeugt, solange die Rücksetzfrequenz nicht abgelaufen ist.

Error: (01/05/2016 06:07:56 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "HitmanPro 3.7 Crusader (Boot)" wurde mit dem folgenden dienstspezifischen Fehler beendet: 
%%0

Error: (01/04/2016 08:20:42 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
%%1

Error: (01/04/2016 08:20:33 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
%%1

Error: (01/04/2016 06:42:39 PM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

A
==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Pentium(R) CPU J2900 @ 2.41GHz
Prozentuale Nutzung des RAM: 40%
Installierter physikalischer RAM: 3976.81 MB
Verfügbarer physikalischer RAM: 2361.97 MB
Summe virtueller Speicher: 4872.81 MB
Verfügbarer virtueller Speicher: 2912.28 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:448.93 GB) (Free:201.38 GB) NTFS
Drive d: (Recovery Image) (Fixed) (Total:15.35 GB) (Free:1.92 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: (INTENSO) (Fixed) (Total:1862.55 GB) (Free:1862.55 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 699BA039)

Partition: GPT.

========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: 740A20C4)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=0C)

==================== Ende von Addition.txt ============================
         


Alt 05.01.2016, 19:18   #6
Deathkid535
/// Malwareteam
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Hi,

du hast 2 mal die Additions.txt gepostet. Ich brauch die FRST.txt und das Log von TDSS-Killer auch noch bitte
__________________
--> Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?

Alt 05.01.2016, 20:17   #7
pinsel
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-12-2015
durchgeführt von Charlotte (2016-01-05 17:38:35)
Gestartet von C:\Users\Charlotte\Downloads
Windows 8.1 Connected (X64) (2015-12-12 18:20:06)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3783643309-3904551039-2328678029-500 - Administrator - Disabled)
Charlotte (S-1-5-21-3783643309-3904551039-2328678029-1001 - Administrator - Enabled) => C:\Users\Charlotte
Gast (S-1-5-21-3783643309-3904551039-2328678029-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3783643309-3904551039-2328678029-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Illustrator CS2 (HKLM-x32\...\Adobe Illustrator CS2) (Version: 12.000.000 - Adobe Systems Inc.)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version:  3.0 - Adobe Systems, Inc.)
Aeon (HKLM-x32\...\Aeon) (Version: 3.7.3 - SoundSpectrum)
Alcor Micro USB Card Reader Driver  (HKLM-x32\...\AmUStor) (Version: 20.21.3317.03861 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver  (x32 Version: 20.21.3317.03861 - Alcor Micro Corp.) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
Bejeweled 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden
Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon MG5500 series Benutzerregistrierung (HKLM-x32\...\Canon MG5500 series Benutzerregistrierung) (Version:  - *Canon Inc.)
Canon MG5500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5500_series) (Version:  - Canon Inc.)
Canon MG5500 series On-screen Manual (HKLM-x32\...\Canon MG5500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Crazy Chicken Soccer (x32 Version: 2.2.0.110 - WildTangent) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.7.4023 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.2.5426 - CyberLink Corp.)
Cyberlink PhotoDirector (Version: 5.0.2.5426 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.7.4016 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.1.3004 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.1.3004 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4.4119 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
DSL Soforthilfe (HKLM-x32\...\DSL Soforthilfe) (Version: 1.1.0.51 - Telefónica Germany GmbH & Co. OHG)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.3 (HKLM-x32\...\{E461B1AC-BC3C-11E3-B5B8-00163E98E7D6}) (Version: 5.3.0.3360 - Evernote Corp.)
Farm Frenzy (x32 Version: 3.0.2.59 - WildTangent) Hidden
Foxit PhantomPDF (HKLM-x32\...\{00CD7D62-056A-4F0F-9143-44522D44E6DD}) (Version: 6.0.32.507 - Foxit Corporation)
Free M4a to MP3 Converter 9.1 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version:  - ManiacTools.com)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Governor of Poker 2 Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.12.253 - SurfRight B.V.)
HP Documentation (HKLM-x32\...\{4B4EDB7B-4F54-4B86-8A4A-E1C5803CA374}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7745.4851 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.0.30.219 - Hewlett-Packard Company)
Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3993 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}) (Version: 12.3.2.35 - Apple Inc.)
Jewel Match 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 44.0 (x64 de) (HKLM\...\Mozilla Firefox 44.0 (x64 de)) (Version: 44.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.0.5840 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.5.0 (x86 de)) (Version: 38.5.0 - Mozilla)
PDF24 Creator 7.4.1 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
Perfect Effects Free 9 (HKLM-x32\...\Perfect Effects Free 9) (Version: 9.5.0 - on1)
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden
Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Ranch Rush 2 - Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7487 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.7316 - CyberLink Corp.) Hidden
Redfield Plugins (HKLM-x32\...\Redfield Plugins) (Version:  - )
SafeZone Stable 1.46.1990.139 (x32 Version: 1.46.1990.139 - Avast Software) Hidden
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Virtual Families (x32 Version: 2.2.0.98 - WildTangent) Hidden
virtualPhotographer 1.5.6 (HKLM-x32\...\virtualPhotographer_is1) (Version:  - optikVerve Labs)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App for HP (x32 Version: 4.0.11.9 - WildTangent) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3783643309-3904551039-2328678029-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {003D468E-21B6-4B75-90A8-0F7051A88134} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29] (Adobe Systems Incorporated)
Task: {04E6B1D5-B736-4547-BF1C-B3599D803643} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {0ED787D9-FDF7-4A68-BB84-DD24FC2720E4} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2015-11-23] (Microsoft Corporation)
Task: {17DA2BFC-9C20-42CD-ABC3-99940772D8D4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {181DA48B-752F-412D-A4FE-53EC6A5404A9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {19DC33A6-F357-40FB-A35F-D0FDD9027711} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {48A6788A-4E7A-4757-848D-E189ED8928CE} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-13] (AVAST Software)
Task: {5ADD74FE-A198-476F-A0EF-88724B633E17} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {7340927E-D953-4F47-8560-7B1FA0CAD4AC} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {82C8BC15-8A2D-4609-9454-D28DFC9A8BF0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-15] (AVAST Software)
Task: {9A6A79B0-34FF-4E2D-A703-E7CCFBFEB17A} - System32\Tasks\SafeZone scheduled Autoupdate 1450019097 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2015-12-01] (Avast Software)
Task: {B25EC778-8CE7-4984-8994-B692119E1322} - System32\Tasks\HPCeeScheduleForCharlotte => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {B8FFA411-8CB5-44B8-9687-EDE0CDDAD19C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {BA48FCCD-F364-42BF-B684-E7B4DCC4D3D1} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\HPCeeScheduleForCharlotte.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-03-28 14:31 - 2014-03-28 14:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2015-11-20 14:57 - 2015-11-20 14:57 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-11-20 14:57 - 2015-11-20 14:57 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-21 11:04 - 2014-04-14 19:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-06-11 05:19 - 2014-06-11 05:19 - 00622080 _____ () C:\windows\system32\spool\DRIVERS\x64\3\JobCapsA.DLL
2014-03-28 14:36 - 2014-03-28 14:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2015-12-15 12:14 - 2013-11-21 21:57 - 20585888 ____N () C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
2015-12-13 02:22 - 2015-12-13 02:22 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-04 18:32 - 2016-01-04 18:32 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010401\algo.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-05 14:02 - 2016-01-05 14:02 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010500\algo.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-12-18 15:50 - 2015-11-18 13:04 - 00074272 _____ () C:\Program Files (x86)\PDF24\zlib.dll
2015-12-18 15:50 - 2015-11-18 13:04 - 00052256 _____ () C:\Program Files (x86)\PDF24\OperationUI.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3783643309-3904551039-2328678029-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Charlotte\Pictures\Downloads\Aes Dana Pollen.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{E0C47317-8C92-4AC9-B600-8D0B202EEA68}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{CD87E94D-4B89-4816-81F4-B47BBE218155}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{78099B17-AEEB-4C4F-A27A-2C6EB7D09F3D}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{3B0878E7-1CA4-45F8-ADC7-ADF2791786C4}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{4029A559-B2F8-47FD-AF71-5B969327FDB5}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{5852526D-22DA-404B-AD83-3B3EF51BEE3B}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{3C00CED3-E961-4DDA-92E9-50B1526B8F0D}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{C95101D5-0044-4A88-8515-33828C6575D1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7AD2F20C-3E20-4989-8084-282B2568706E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{70BA25E1-BF55-4A7B-B5DD-3987E0100011}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{356ADAC6-D439-42A3-AEBA-7A9A359718A4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{91CA2C73-DE78-4D75-A8ED-78DE90D82C0B}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{95E9E65C-8458-4DAB-B8A8-1EBA0F13F6B4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{ACBF3D3F-879F-40AC-A177-826B75FFFC95}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{5393BE24-31CB-45C5-9341-2446508B78D9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E2B53F1D-EF33-4477-AC6D-64801BED9CE0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D047B5DD-2EDF-4B28-951C-B1D6D5E2EF39}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{584FFCEA-BD1B-4301-90E0-A0593093F316}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3BF831E8-C65C-4D67-95E2-486FEEE0C31D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{D38B5962-D868-4EB1-A893-928AAC09C767}] => (Allow) C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
FirewallRules: [{97BD545B-13A6-4565-97F5-B420586ADEAE}] => (Allow) C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
FirewallRules: [{1E409008-21B8-4A19-8E85-60621AC36BB0}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [TCP Query User{C161B16F-1932-486C-B702-2C15BF4BE500}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe
FirewallRules: [UDP Query User{3ABD8F5A-C958-4112-9C07-85030F20643F}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe

==================== Wiederherstellungspunkte =========================

02-01-2016 04:31:04 Prüfpunkt von HitmanPro
03-01-2016 17:54:41 Prüfpunkt von HitmanPro
04-01-2016 18:28:54 Prüfpunkt von HitmanPro

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/05/2016 02:44:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 02:44:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 08:41:38 AM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Die Registrierungsinformationen der Leistungsindikatoren für WSearchIdxPi für die Instanz   konnten wegen des folgenden Fehlers nicht abgerufen werden: Der Vorgang wurde erfolgreich beendet.   0x0.

Error: (01/05/2016 08:41:38 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Die Leistungsüberwachung für den Gatherer-Dienst kann nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Kontext:  Anwendung, SystemIndex Katalog

Error: (01/05/2016 08:41:37 AM) (Source: Windows Search Service) (EventID: 3006) (User: )
Description: Die Leistungsüberwachung kann für den Gatherer-Dienst nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Error: (01/05/2016 07:48:26 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 07:48:25 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 07:45:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.18064, Zeitstempel: 0x56042d8f
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18146, Zeitstempel: 0x5650b9bb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003dcfe
ID des fehlerhaften Prozesses: 0x48c
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Vollständiger Name des fehlerhaften Pakets: GWXUX.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GWXUX.exe5

Error: (01/05/2016 07:24:25 AM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Die Registrierungsinformationen der Leistungsindikatoren für WSearchIdxPi für die Instanz   konnten wegen des folgenden Fehlers nicht abgerufen werden: Der Vorgang wurde erfolgreich beendet.   0x0.

Error: (01/05/2016 07:24:25 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Die Leistungsüberwachung für den Gatherer-Dienst kann nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Kontext:  Anwendung, SystemIndex Katalog


Systemfehler:
=============
Error: (01/05/2016 07:45:52 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 07:17:07 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 07:16:37 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (01/05/2016 06:19:33 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (01/05/2016 06:19:03 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 06:07:58 AM) (Source: bowser) (EventID: 8016) (User: )
Description: Der Suchdiensttreiber erhielt zu viele nicht erlaubte Datagramme vom Remotecomputer "O2" zum Namen "SUSANNE" auf Transport "NetBT_Tcpip_{3798836E-956E-41C9-A5DB-86798AC64C7A}". Das Datagramm steht in den Daten.
Es werden keine weiteren Ereignisse erzeugt, solange die Rücksetzfrequenz nicht abgelaufen ist.

Error: (01/05/2016 06:07:56 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "HitmanPro 3.7 Crusader (Boot)" wurde mit dem folgenden dienstspezifischen Fehler beendet: 
%%0

Error: (01/04/2016 08:20:42 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
%%1

Error: (01/04/2016 08:20:33 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
%%1

Error: (01/04/2016 06:42:39 PM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

A
==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Pentium(R) CPU J2900 @ 2.41GHz
Prozentuale Nutzung des RAM: 40%
Installierter physikalischer RAM: 3976.81 MB
Verfügbarer physikalischer RAM: 2361.97 MB
Summe virtueller Speicher: 4872.81 MB
Verfügbarer virtueller Speicher: 2912.28 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:448.93 GB) (Free:201.38 GB) NTFS
Drive d: (Recovery Image) (Fixed) (Total:15.35 GB) (Free:1.92 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: (INTENSO) (Fixed) (Total:1862.55 GB) (Free:1862.55 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 699BA039)

Partition: GPT.

========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: 740A20C4)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=0C)

==================== Ende von Addition.txt ============================
         
Nr. 3
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-12-2015
durchgeführt von Charlotte (2016-01-05 17:38:35)
Gestartet von C:\Users\Charlotte\Downloads
Windows 8.1 Connected (X64) (2015-12-12 18:20:06)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3783643309-3904551039-2328678029-500 - Administrator - Disabled)
Charlotte (S-1-5-21-3783643309-3904551039-2328678029-1001 - Administrator - Enabled) => C:\Users\Charlotte
Gast (S-1-5-21-3783643309-3904551039-2328678029-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3783643309-3904551039-2328678029-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Illustrator CS2 (HKLM-x32\...\Adobe Illustrator CS2) (Version: 12.000.000 - Adobe Systems Inc.)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version:  3.0 - Adobe Systems, Inc.)
Aeon (HKLM-x32\...\Aeon) (Version: 3.7.3 - SoundSpectrum)
Alcor Micro USB Card Reader Driver  (HKLM-x32\...\AmUStor) (Version: 20.21.3317.03861 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver  (x32 Version: 20.21.3317.03861 - Alcor Micro Corp.) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
Bejeweled 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden
Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon MG5500 series Benutzerregistrierung (HKLM-x32\...\Canon MG5500 series Benutzerregistrierung) (Version:  - *Canon Inc.)
Canon MG5500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5500_series) (Version:  - Canon Inc.)
Canon MG5500 series On-screen Manual (HKLM-x32\...\Canon MG5500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Crazy Chicken Soccer (x32 Version: 2.2.0.110 - WildTangent) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.7.4023 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.2.5426 - CyberLink Corp.)
Cyberlink PhotoDirector (Version: 5.0.2.5426 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.7.4016 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.1.3004 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.1.3004 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4.4119 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
DSL Soforthilfe (HKLM-x32\...\DSL Soforthilfe) (Version: 1.1.0.51 - Telefónica Germany GmbH & Co. OHG)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.3 (HKLM-x32\...\{E461B1AC-BC3C-11E3-B5B8-00163E98E7D6}) (Version: 5.3.0.3360 - Evernote Corp.)
Farm Frenzy (x32 Version: 3.0.2.59 - WildTangent) Hidden
Foxit PhantomPDF (HKLM-x32\...\{00CD7D62-056A-4F0F-9143-44522D44E6DD}) (Version: 6.0.32.507 - Foxit Corporation)
Free M4a to MP3 Converter 9.1 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version:  - ManiacTools.com)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Governor of Poker 2 Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.12.253 - SurfRight B.V.)
HP Documentation (HKLM-x32\...\{4B4EDB7B-4F54-4B86-8A4A-E1C5803CA374}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7745.4851 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.0.30.219 - Hewlett-Packard Company)
Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3993 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}) (Version: 12.3.2.35 - Apple Inc.)
Jewel Match 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 44.0 (x64 de) (HKLM\...\Mozilla Firefox 44.0 (x64 de)) (Version: 44.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.0.5840 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.5.0 (x86 de)) (Version: 38.5.0 - Mozilla)
PDF24 Creator 7.4.1 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
Perfect Effects Free 9 (HKLM-x32\...\Perfect Effects Free 9) (Version: 9.5.0 - on1)
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden
Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Ranch Rush 2 - Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7487 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.7316 - CyberLink Corp.) Hidden
Redfield Plugins (HKLM-x32\...\Redfield Plugins) (Version:  - )
SafeZone Stable 1.46.1990.139 (x32 Version: 1.46.1990.139 - Avast Software) Hidden
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Virtual Families (x32 Version: 2.2.0.98 - WildTangent) Hidden
virtualPhotographer 1.5.6 (HKLM-x32\...\virtualPhotographer_is1) (Version:  - optikVerve Labs)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App for HP (x32 Version: 4.0.11.9 - WildTangent) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3783643309-3904551039-2328678029-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {003D468E-21B6-4B75-90A8-0F7051A88134} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29] (Adobe Systems Incorporated)
Task: {04E6B1D5-B736-4547-BF1C-B3599D803643} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {0ED787D9-FDF7-4A68-BB84-DD24FC2720E4} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2015-11-23] (Microsoft Corporation)
Task: {17DA2BFC-9C20-42CD-ABC3-99940772D8D4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {181DA48B-752F-412D-A4FE-53EC6A5404A9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {19DC33A6-F357-40FB-A35F-D0FDD9027711} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {48A6788A-4E7A-4757-848D-E189ED8928CE} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-13] (AVAST Software)
Task: {5ADD74FE-A198-476F-A0EF-88724B633E17} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {7340927E-D953-4F47-8560-7B1FA0CAD4AC} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {82C8BC15-8A2D-4609-9454-D28DFC9A8BF0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-15] (AVAST Software)
Task: {9A6A79B0-34FF-4E2D-A703-E7CCFBFEB17A} - System32\Tasks\SafeZone scheduled Autoupdate 1450019097 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2015-12-01] (Avast Software)
Task: {B25EC778-8CE7-4984-8994-B692119E1322} - System32\Tasks\HPCeeScheduleForCharlotte => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {B8FFA411-8CB5-44B8-9687-EDE0CDDAD19C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {BA48FCCD-F364-42BF-B684-E7B4DCC4D3D1} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\HPCeeScheduleForCharlotte.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-03-28 14:31 - 2014-03-28 14:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2015-11-20 14:57 - 2015-11-20 14:57 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-11-20 14:57 - 2015-11-20 14:57 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-21 11:04 - 2014-04-14 19:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-06-11 05:19 - 2014-06-11 05:19 - 00622080 _____ () C:\windows\system32\spool\DRIVERS\x64\3\JobCapsA.DLL
2014-03-28 14:36 - 2014-03-28 14:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2015-12-15 12:14 - 2013-11-21 21:57 - 20585888 ____N () C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
2015-12-13 02:22 - 2015-12-13 02:22 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-04 18:32 - 2016-01-04 18:32 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010401\algo.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-05 14:02 - 2016-01-05 14:02 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010500\algo.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-12-18 15:50 - 2015-11-18 13:04 - 00074272 _____ () C:\Program Files (x86)\PDF24\zlib.dll
2015-12-18 15:50 - 2015-11-18 13:04 - 00052256 _____ () C:\Program Files (x86)\PDF24\OperationUI.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3783643309-3904551039-2328678029-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Charlotte\Pictures\Downloads\Aes Dana Pollen.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{E0C47317-8C92-4AC9-B600-8D0B202EEA68}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{CD87E94D-4B89-4816-81F4-B47BBE218155}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{78099B17-AEEB-4C4F-A27A-2C6EB7D09F3D}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{3B0878E7-1CA4-45F8-ADC7-ADF2791786C4}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{4029A559-B2F8-47FD-AF71-5B969327FDB5}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{5852526D-22DA-404B-AD83-3B3EF51BEE3B}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{3C00CED3-E961-4DDA-92E9-50B1526B8F0D}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{C95101D5-0044-4A88-8515-33828C6575D1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7AD2F20C-3E20-4989-8084-282B2568706E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{70BA25E1-BF55-4A7B-B5DD-3987E0100011}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{356ADAC6-D439-42A3-AEBA-7A9A359718A4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{91CA2C73-DE78-4D75-A8ED-78DE90D82C0B}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{95E9E65C-8458-4DAB-B8A8-1EBA0F13F6B4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{ACBF3D3F-879F-40AC-A177-826B75FFFC95}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{5393BE24-31CB-45C5-9341-2446508B78D9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E2B53F1D-EF33-4477-AC6D-64801BED9CE0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D047B5DD-2EDF-4B28-951C-B1D6D5E2EF39}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{584FFCEA-BD1B-4301-90E0-A0593093F316}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3BF831E8-C65C-4D67-95E2-486FEEE0C31D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{D38B5962-D868-4EB1-A893-928AAC09C767}] => (Allow) C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
FirewallRules: [{97BD545B-13A6-4565-97F5-B420586ADEAE}] => (Allow) C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
FirewallRules: [{1E409008-21B8-4A19-8E85-60621AC36BB0}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [TCP Query User{C161B16F-1932-486C-B702-2C15BF4BE500}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe
FirewallRules: [UDP Query User{3ABD8F5A-C958-4112-9C07-85030F20643F}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe

==================== Wiederherstellungspunkte =========================

02-01-2016 04:31:04 Prüfpunkt von HitmanPro
03-01-2016 17:54:41 Prüfpunkt von HitmanPro
04-01-2016 18:28:54 Prüfpunkt von HitmanPro

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/05/2016 02:44:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 02:44:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 08:41:38 AM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Die Registrierungsinformationen der Leistungsindikatoren für WSearchIdxPi für die Instanz   konnten wegen des folgenden Fehlers nicht abgerufen werden: Der Vorgang wurde erfolgreich beendet.   0x0.

Error: (01/05/2016 08:41:38 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Die Leistungsüberwachung für den Gatherer-Dienst kann nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Kontext:  Anwendung, SystemIndex Katalog

Error: (01/05/2016 08:41:37 AM) (Source: Windows Search Service) (EventID: 3006) (User: )
Description: Die Leistungsüberwachung kann für den Gatherer-Dienst nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Error: (01/05/2016 07:48:26 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 07:48:25 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 07:45:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.18064, Zeitstempel: 0x56042d8f
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18146, Zeitstempel: 0x5650b9bb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003dcfe
ID des fehlerhaften Prozesses: 0x48c
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Vollständiger Name des fehlerhaften Pakets: GWXUX.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GWXUX.exe5

Error: (01/05/2016 07:24:25 AM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Die Registrierungsinformationen der Leistungsindikatoren für WSearchIdxPi für die Instanz   konnten wegen des folgenden Fehlers nicht abgerufen werden: Der Vorgang wurde erfolgreich beendet.   0x0.

Error: (01/05/2016 07:24:25 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Die Leistungsüberwachung für den Gatherer-Dienst kann nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Kontext:  Anwendung, SystemIndex Katalog


Systemfehler:
=============
Error: (01/05/2016 07:45:52 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 07:17:07 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 07:16:37 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (01/05/2016 06:19:33 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (01/05/2016 06:19:03 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 06:07:58 AM) (Source: bowser) (EventID: 8016) (User: )
Description: Der Suchdiensttreiber erhielt zu viele nicht erlaubte Datagramme vom Remotecomputer "O2" zum Namen "SUSANNE" auf Transport "NetBT_Tcpip_{3798836E-956E-41C9-A5DB-86798AC64C7A}". Das Datagramm steht in den Daten.
Es werden keine weiteren Ereignisse erzeugt, solange die Rücksetzfrequenz nicht abgelaufen ist.

Error: (01/05/2016 06:07:56 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "HitmanPro 3.7 Crusader (Boot)" wurde mit dem folgenden dienstspezifischen Fehler beendet: 
%%0

Error: (01/04/2016 08:20:42 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
%%1

Error: (01/04/2016 08:20:33 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
%%1

Error: (01/04/2016 06:42:39 PM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

A
==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Pentium(R) CPU J2900 @ 2.41GHz
Prozentuale Nutzung des RAM: 40%
Installierter physikalischer RAM: 3976.81 MB
Verfügbarer physikalischer RAM: 2361.97 MB
Summe virtueller Speicher: 4872.81 MB
Verfügbarer virtueller Speicher: 2912.28 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:448.93 GB) (Free:201.38 GB) NTFS
Drive d: (Recovery Image) (Fixed) (Total:15.35 GB) (Free:1.92 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: (INTENSO) (Fixed) (Total:1862.55 GB) (Free:1862.55 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 699BA039)

Partition: GPT.

========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: 740A20C4)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=0C)

==================== Ende von Addition.txt ============================
         
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-12-2015
durchgeführt von Charlotte (2016-01-05 17:38:35)
Gestartet von C:\Users\Charlotte\Downloads
Windows 8.1 Connected (X64) (2015-12-12 18:20:06)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3783643309-3904551039-2328678029-500 - Administrator - Disabled)
Charlotte (S-1-5-21-3783643309-3904551039-2328678029-1001 - Administrator - Enabled) => C:\Users\Charlotte
Gast (S-1-5-21-3783643309-3904551039-2328678029-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3783643309-3904551039-2328678029-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Illustrator CS2 (HKLM-x32\...\Adobe Illustrator CS2) (Version: 12.000.000 - Adobe Systems Inc.)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version:  3.0 - Adobe Systems, Inc.)
Aeon (HKLM-x32\...\Aeon) (Version: 3.7.3 - SoundSpectrum)
Alcor Micro USB Card Reader Driver  (HKLM-x32\...\AmUStor) (Version: 20.21.3317.03861 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver  (x32 Version: 20.21.3317.03861 - Alcor Micro Corp.) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
Bejeweled 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden
Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon MG5500 series Benutzerregistrierung (HKLM-x32\...\Canon MG5500 series Benutzerregistrierung) (Version:  - *Canon Inc.)
Canon MG5500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5500_series) (Version:  - Canon Inc.)
Canon MG5500 series On-screen Manual (HKLM-x32\...\Canon MG5500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Crazy Chicken Soccer (x32 Version: 2.2.0.110 - WildTangent) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.7.4023 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.2.5426 - CyberLink Corp.)
Cyberlink PhotoDirector (Version: 5.0.2.5426 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.7.4016 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.1.3004 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.1.3004 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4.4119 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
DSL Soforthilfe (HKLM-x32\...\DSL Soforthilfe) (Version: 1.1.0.51 - Telefónica Germany GmbH & Co. OHG)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.3 (HKLM-x32\...\{E461B1AC-BC3C-11E3-B5B8-00163E98E7D6}) (Version: 5.3.0.3360 - Evernote Corp.)
Farm Frenzy (x32 Version: 3.0.2.59 - WildTangent) Hidden
Foxit PhantomPDF (HKLM-x32\...\{00CD7D62-056A-4F0F-9143-44522D44E6DD}) (Version: 6.0.32.507 - Foxit Corporation)
Free M4a to MP3 Converter 9.1 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version:  - ManiacTools.com)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Governor of Poker 2 Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.12.253 - SurfRight B.V.)
HP Documentation (HKLM-x32\...\{4B4EDB7B-4F54-4B86-8A4A-E1C5803CA374}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7745.4851 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.0.30.219 - Hewlett-Packard Company)
Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3993 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}) (Version: 12.3.2.35 - Apple Inc.)
Jewel Match 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 44.0 (x64 de) (HKLM\...\Mozilla Firefox 44.0 (x64 de)) (Version: 44.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.0.5840 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.5.0 (x86 de)) (Version: 38.5.0 - Mozilla)
PDF24 Creator 7.4.1 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
Perfect Effects Free 9 (HKLM-x32\...\Perfect Effects Free 9) (Version: 9.5.0 - on1)
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden
Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Ranch Rush 2 - Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7487 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.7316 - CyberLink Corp.) Hidden
Redfield Plugins (HKLM-x32\...\Redfield Plugins) (Version:  - )
SafeZone Stable 1.46.1990.139 (x32 Version: 1.46.1990.139 - Avast Software) Hidden
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Virtual Families (x32 Version: 2.2.0.98 - WildTangent) Hidden
virtualPhotographer 1.5.6 (HKLM-x32\...\virtualPhotographer_is1) (Version:  - optikVerve Labs)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App for HP (x32 Version: 4.0.11.9 - WildTangent) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3783643309-3904551039-2328678029-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {003D468E-21B6-4B75-90A8-0F7051A88134} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29] (Adobe Systems Incorporated)
Task: {04E6B1D5-B736-4547-BF1C-B3599D803643} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {0ED787D9-FDF7-4A68-BB84-DD24FC2720E4} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2015-11-23] (Microsoft Corporation)
Task: {17DA2BFC-9C20-42CD-ABC3-99940772D8D4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {181DA48B-752F-412D-A4FE-53EC6A5404A9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {19DC33A6-F357-40FB-A35F-D0FDD9027711} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {48A6788A-4E7A-4757-848D-E189ED8928CE} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-13] (AVAST Software)
Task: {5ADD74FE-A198-476F-A0EF-88724B633E17} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {7340927E-D953-4F47-8560-7B1FA0CAD4AC} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {82C8BC15-8A2D-4609-9454-D28DFC9A8BF0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-15] (AVAST Software)
Task: {9A6A79B0-34FF-4E2D-A703-E7CCFBFEB17A} - System32\Tasks\SafeZone scheduled Autoupdate 1450019097 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2015-12-01] (Avast Software)
Task: {B25EC778-8CE7-4984-8994-B692119E1322} - System32\Tasks\HPCeeScheduleForCharlotte => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {B8FFA411-8CB5-44B8-9687-EDE0CDDAD19C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {BA48FCCD-F364-42BF-B684-E7B4DCC4D3D1} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\HPCeeScheduleForCharlotte.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-03-28 14:31 - 2014-03-28 14:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2015-11-20 14:57 - 2015-11-20 14:57 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-11-20 14:57 - 2015-11-20 14:57 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-21 11:04 - 2014-04-14 19:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-06-11 05:19 - 2014-06-11 05:19 - 00622080 _____ () C:\windows\system32\spool\DRIVERS\x64\3\JobCapsA.DLL
2014-03-28 14:36 - 2014-03-28 14:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2015-12-15 12:14 - 2013-11-21 21:57 - 20585888 ____N () C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
2015-12-13 02:22 - 2015-12-13 02:22 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-04 18:32 - 2016-01-04 18:32 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010401\algo.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-05 14:02 - 2016-01-05 14:02 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010500\algo.dll
2015-12-13 02:22 - 2015-12-13 02:22 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-12-18 15:50 - 2015-11-18 13:04 - 00074272 _____ () C:\Program Files (x86)\PDF24\zlib.dll
2015-12-18 15:50 - 2015-11-18 13:04 - 00052256 _____ () C:\Program Files (x86)\PDF24\OperationUI.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3783643309-3904551039-2328678029-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Charlotte\Pictures\Downloads\Aes Dana Pollen.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{E0C47317-8C92-4AC9-B600-8D0B202EEA68}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{CD87E94D-4B89-4816-81F4-B47BBE218155}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{78099B17-AEEB-4C4F-A27A-2C6EB7D09F3D}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{3B0878E7-1CA4-45F8-ADC7-ADF2791786C4}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{4029A559-B2F8-47FD-AF71-5B969327FDB5}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{5852526D-22DA-404B-AD83-3B3EF51BEE3B}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{3C00CED3-E961-4DDA-92E9-50B1526B8F0D}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{C95101D5-0044-4A88-8515-33828C6575D1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7AD2F20C-3E20-4989-8084-282B2568706E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{70BA25E1-BF55-4A7B-B5DD-3987E0100011}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{356ADAC6-D439-42A3-AEBA-7A9A359718A4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{91CA2C73-DE78-4D75-A8ED-78DE90D82C0B}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{95E9E65C-8458-4DAB-B8A8-1EBA0F13F6B4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{ACBF3D3F-879F-40AC-A177-826B75FFFC95}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{5393BE24-31CB-45C5-9341-2446508B78D9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E2B53F1D-EF33-4477-AC6D-64801BED9CE0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D047B5DD-2EDF-4B28-951C-B1D6D5E2EF39}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{584FFCEA-BD1B-4301-90E0-A0593093F316}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3BF831E8-C65C-4D67-95E2-486FEEE0C31D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{D38B5962-D868-4EB1-A893-928AAC09C767}] => (Allow) C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
FirewallRules: [{97BD545B-13A6-4565-97F5-B420586ADEAE}] => (Allow) C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
FirewallRules: [{1E409008-21B8-4A19-8E85-60621AC36BB0}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [TCP Query User{C161B16F-1932-486C-B702-2C15BF4BE500}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe
FirewallRules: [UDP Query User{3ABD8F5A-C958-4112-9C07-85030F20643F}C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe] => (Allow) C:\program files\onone software\perfect effects free 9\perfect effects free 9.exe

==================== Wiederherstellungspunkte =========================

02-01-2016 04:31:04 Prüfpunkt von HitmanPro
03-01-2016 17:54:41 Prüfpunkt von HitmanPro
04-01-2016 18:28:54 Prüfpunkt von HitmanPro

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/05/2016 02:44:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 02:44:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 08:41:38 AM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Die Registrierungsinformationen der Leistungsindikatoren für WSearchIdxPi für die Instanz   konnten wegen des folgenden Fehlers nicht abgerufen werden: Der Vorgang wurde erfolgreich beendet.   0x0.

Error: (01/05/2016 08:41:38 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Die Leistungsüberwachung für den Gatherer-Dienst kann nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Kontext:  Anwendung, SystemIndex Katalog

Error: (01/05/2016 08:41:37 AM) (Source: Windows Search Service) (EventID: 3006) (User: )
Description: Die Leistungsüberwachung kann für den Gatherer-Dienst nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Error: (01/05/2016 07:48:26 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 07:48:25 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/05/2016 07:45:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.18064, Zeitstempel: 0x56042d8f
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18146, Zeitstempel: 0x5650b9bb
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003dcfe
ID des fehlerhaften Prozesses: 0x48c
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Vollständiger Name des fehlerhaften Pakets: GWXUX.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GWXUX.exe5

Error: (01/05/2016 07:24:25 AM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Die Registrierungsinformationen der Leistungsindikatoren für WSearchIdxPi für die Instanz   konnten wegen des folgenden Fehlers nicht abgerufen werden: Der Vorgang wurde erfolgreich beendet.   0x0.

Error: (01/05/2016 07:24:25 AM) (Source: Windows Search Service) (EventID: 3007) (User: )
Description: Die Leistungsüberwachung für den Gatherer-Dienst kann nicht initialisiert werden, da die Datenquellen nicht geladen sind oder das freigegebene Speicherobjekt nicht geöffnet werden konnte. Dies beeinträchtigt lediglich die Verfügbarkeit der Leistungsindikatoren. Starten Sie den Computer erneut.

Kontext:  Anwendung, SystemIndex Katalog


Systemfehler:
=============
Error: (01/05/2016 07:45:52 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 07:17:07 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 07:16:37 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (01/05/2016 06:19:33 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (01/05/2016 06:19:03 AM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (01/05/2016 06:07:58 AM) (Source: bowser) (EventID: 8016) (User: )
Description: Der Suchdiensttreiber erhielt zu viele nicht erlaubte Datagramme vom Remotecomputer "O2" zum Namen "SUSANNE" auf Transport "NetBT_Tcpip_{3798836E-956E-41C9-A5DB-86798AC64C7A}". Das Datagramm steht in den Daten.
Es werden keine weiteren Ereignisse erzeugt, solange die Rücksetzfrequenz nicht abgelaufen ist.

Error: (01/05/2016 06:07:56 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "HitmanPro 3.7 Crusader (Boot)" wurde mit dem folgenden dienstspezifischen Fehler beendet: 
%%0

Error: (01/04/2016 08:20:42 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
%%1

Error: (01/04/2016 08:20:33 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
%%1

Error: (01/04/2016 06:42:39 PM) (Source: DCOM) (EventID: 10010) (User: Susanne)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

A
==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Pentium(R) CPU J2900 @ 2.41GHz
Prozentuale Nutzung des RAM: 40%
Installierter physikalischer RAM: 3976.81 MB
Verfügbarer physikalischer RAM: 2361.97 MB
Summe virtueller Speicher: 4872.81 MB
Verfügbarer virtueller Speicher: 2912.28 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:448.93 GB) (Free:201.38 GB) NTFS
Drive d: (Recovery Image) (Fixed) (Total:15.35 GB) (Free:1.92 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: (INTENSO) (Fixed) (Total:1862.55 GB) (Free:1862.55 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 699BA039)

Partition: GPT.

========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: 740A20C4)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=0C)

==================== Ende von Addition.txt ============================
         
Ist jetzt alles da? Ich hzabe die Datei vom TDSSKiller offen, aber wenn ich Strg. + V drücke, erscheint jedesmal das ende von Addition.txt

Hi nochmal, ich weiß nicht, was ich falsch mache. ich markiere die dateien in den log-files und poste sie dann mit Code-Tags und Strg.+V, jedes Mal erscheint nur die eine Addition.txt
in der Antwort. Ich markiere sie im Editor, vielleicht ist das falsch? Ist denn jetzt jedes mal dieselbe Datei angekommen? Sollte es wohl morgen noch einmal probieren.
Auf jeden Fall Noch einen schönen Rest-ABEND FÜR dICH:
MFg
sUSANNE

Alt 05.01.2016, 20:22   #8
Deathkid535
/// Malwareteam
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Hallo Susanne,

Du hast mir jetzt noch 3 mal die Additions gepostet

Mach einfach das Log auf das du posten willst, markiere den gesamten Text, Rechtsklick Kopieren und hier Rechtsklick Einfügen

Alt 05.01.2016, 20:39   #9
pinsel
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



18:11:10.0647 0x11e4 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
18:11:10.0647 0x11e4 UEFI system
18:11:28.0171 0x11e4 ============================================================
18:11:28.0171 0x11e4 Current date / time: 2016/01/05 18:11:28.0171
18:11:28.0171 0x11e4 SystemInfo:
18:11:28.0171 0x11e4
18:11:28.0171 0x11e4 OS Version: 6.3.9600 ServicePack: 0.0
18:11:28.0171 0x11e4 Product type: Workstation
18:11:28.0171 0x11e4 ComputerName: SUSANNE
18:11:28.0171 0x11e4 UserName: Charlotte
18:11:28.0171 0x11e4 Windows directory: C:\windows
18:11:28.0171 0x11e4 System windows directory: C:\windows
18:11:28.0171 0x11e4 Running under WOW64
18:11:28.0171 0x11e4 Processor architecture: Intel x64
18:11:28.0171 0x11e4 Number of processors: 4
18:11:28.0171 0x11e4 Page size: 0x1000
18:11:28.0171 0x11e4 Boot type: Normal boot
18:11:28.0171 0x11e4 ============================================================
18:11:32.0688 0x11e4 KLMD registered as C:\windows\system32\drivers\87015472.sys
18:11:33.0391 0x11e4 System UUID: {7102D813-CC7B-F86E-368B-173296CA249B}
18:11:34.0579 0x11e4 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:11:34.0626 0x11e4 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1115800 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:11:34.0642 0x11e4 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1115800 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:11:34.0642 0x11e4 ============================================================
18:11:34.0642 0x11e4 \Device\Harddisk0\DR0:
18:11:34.0642 0x11e4 GPT partitions:
18:11:34.0642 0x11e4 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {7B336B9C-1269-4035-8B59-C1FF52F04C48}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1FF800
18:11:34.0642 0x11e4 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {39C3CE1A-B9CB-4315-A608-DAD970D1E57E}, Name: EFI system partition, StartLBA 0x200000, BlocksNum 0xB4000
18:11:34.0642 0x11e4 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {405A4CD5-5DAE-4372-B9A9-780231F9F422}, Name: Microsoft reserved partition, StartLBA 0x2B4000, BlocksNum 0x40000
18:11:34.0642 0x11e4 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {6561FEFC-D98F-433E-B637-F1E4DC989400}, Name: Basic data partition, StartLBA 0x2F4000, BlocksNum 0x381DD800
18:11:34.0642 0x11e4 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {D53BE56D-BD12-48F1-B146-4E1303146B13}, Name: Basic data partition, StartLBA 0x384D1800, BlocksNum 0x1EB2000
18:11:34.0642 0x11e4 MBR partitions:
18:11:34.0642 0x11e4 \Device\Harddisk1\DR1:
18:11:34.0642 0x11e4 MBR partitions:
18:11:34.0642 0x11e4 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x800, BlocksNum 0xE8E06CC1
18:11:34.0642 0x11e4 \Device\Harddisk1\DR1:
18:11:34.0642 0x11e4 MBR partitions:
18:11:34.0642 0x11e4 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x800, BlocksNum 0xE8E06CC1
18:11:34.0642 0x11e4 ============================================================
18:11:34.0673 0x11e4 C: <-> \Device\Harddisk0\DR0\Partition4
18:11:34.0720 0x11e4 D: <-> \Device\Harddisk0\DR0\Partition5
18:11:34.0720 0x11e4 F: <-> \Device\Harddisk1\DR1\Partition1
18:11:34.0720 0x11e4 ============================================================
18:11:34.0720 0x11e4 Initialize success
18:11:34.0720 0x11e4 ============================================================
18:15:53.0062 0x06f0 ============================================================
18:15:53.0062 0x06f0 Scan started
18:15:53.0062 0x06f0 Mode: Manual; SigCheck; TDLFS;
18:15:53.0062 0x06f0 ============================================================
18:15:53.0062 0x06f0 KSN ping started
18:15:55.0818 0x06f0 KSN ping finished: true
18:15:57.0759 0x06f0 ================ Scan system memory ========================
18:15:57.0759 0x06f0 System memory - ok
18:15:57.0761 0x06f0 ================ Scan services =============================
18:15:57.0968 0x06f0 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\windows\System32\drivers\1394ohci.sys
18:15:58.0179 0x06f0 1394ohci - ok
18:15:58.0223 0x06f0 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\windows\system32\drivers\3ware.sys
18:15:58.0321 0x06f0 3ware - ok
18:15:58.0407 0x06f0 [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\windows\system32\drivers\ACPI.sys
18:15:58.0536 0x06f0 ACPI - ok
18:15:58.0557 0x06f0 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\windows\system32\Drivers\acpiex.sys
18:15:58.0627 0x06f0 acpiex - ok
18:15:58.0656 0x06f0 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\windows\System32\drivers\acpipagr.sys
18:15:58.0741 0x06f0 acpipagr - ok
18:15:58.0771 0x06f0 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\windows\System32\drivers\acpipmi.sys
18:15:58.0872 0x06f0 AcpiPmi - ok
18:15:58.0882 0x06f0 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\windows\System32\drivers\acpitime.sys
18:15:58.0931 0x06f0 acpitime - ok
18:15:58.0991 0x06f0 [ 8B46D5A1D3EF08232C04D0EAFB871FB2, 5306F8452EF675851CB0015F9E5C5EB750137D6D65C9CB7E47F8EF5B10A44D10 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
18:15:59.0009 0x06f0 Adobe LM Service - detected UnsignedFile.Multi.Generic ( 1 )
18:16:01.0635 0x06f0 Detect skipped due to KSN trusted
18:16:01.0635 0x06f0 Adobe LM Service - ok
18:16:01.0760 0x06f0 [ C3E7E1F3C85A6788F3BA078BA214341E, A3D72ACE045730DC1C8A6F4E3937C5C765AB447BF7C573BEC53DE8148EB4A1C8 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:16:01.0791 0x06f0 AdobeFlashPlayerUpdateSvc - ok
18:16:01.0838 0x06f0 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\windows\system32\drivers\ADP80XX.SYS
18:16:01.0932 0x06f0 ADP80XX - ok
18:16:01.0995 0x06f0 [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
18:16:02.0057 0x06f0 AeLookupSvc - ok
18:16:02.0135 0x06f0 [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD C:\windows\system32\drivers\afd.sys
18:16:02.0229 0x06f0 AFD - ok
18:16:02.0245 0x06f0 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\windows\system32\drivers\agp440.sys
18:16:02.0292 0x06f0 agp440 - ok
18:16:02.0339 0x06f0 [ F0CB6DB513CAC393D04A0FCE0A59E1BF, E6EE159D0E6B1F666946B1FE421874044E89BB2EB60A521BAA111A1229FA7B2D ] ahcache C:\windows\system32\DRIVERS\ahcache.sys
18:16:02.0401 0x06f0 ahcache - ok
18:16:02.0448 0x06f0 [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\windows\System32\alg.exe
18:16:02.0495 0x06f0 ALG - ok
18:16:02.0511 0x06f0 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\windows\System32\drivers\amdk8.sys
18:16:02.0557 0x06f0 AmdK8 - ok
18:16:02.0573 0x06f0 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\windows\System32\drivers\amdppm.sys
18:16:02.0620 0x06f0 AmdPPM - ok
18:16:02.0636 0x06f0 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\windows\system32\drivers\amdsata.sys
18:16:02.0714 0x06f0 amdsata - ok
18:16:02.0761 0x06f0 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\windows\system32\drivers\amdsbs.sys
18:16:02.0807 0x06f0 amdsbs - ok
18:16:02.0823 0x06f0 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\windows\system32\drivers\amdxata.sys
18:16:02.0886 0x06f0 amdxata - ok
18:16:02.0932 0x06f0 [ E5F36F2FF6E8BC2E9E51655489EA753D, 83A7BA29D411C039511A9306C0136099572EE8E306E1C87207F3E721568C0136 ] AmUStor C:\windows\system32\drivers\AmUStor.SYS
18:16:03.0057 0x06f0 AmUStor - ok
18:16:03.0120 0x06f0 [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc C:\windows\system32\inetsrv\apphostsvc.dll
18:16:03.0182 0x06f0 AppHostSvc - ok
18:16:03.0214 0x06f0 [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\windows\system32\drivers\appid.sys
18:16:03.0324 0x06f0 AppID - ok
18:16:03.0356 0x06f0 [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc C:\windows\System32\appidsvc.dll
18:16:03.0387 0x06f0 AppIDSvc - ok
18:16:03.0434 0x06f0 [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo C:\windows\System32\appinfo.dll
18:16:03.0481 0x06f0 Appinfo - ok
18:16:03.0590 0x06f0 [ 2D564BB1C4559A517B390A031955714D, 3048C187FD107C958D43DD8B954AB55FDD1BC538D3E0066CBFCB428C7A8A87E1 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:16:03.0606 0x06f0 Apple Mobile Device Service - ok
18:16:03.0699 0x06f0 [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\windows\system32\AppReadiness.dll
18:16:03.0746 0x06f0 AppReadiness - ok
18:16:03.0856 0x06f0 [ 573542B5E97772021B73E854DA861DAA, C3FD00FA28060F8D7CDFD455BBB5FF8239CB76DDFFF2BDAE6AA944674DD993D3 ] AppXSvc C:\windows\system32\appxdeploymentserver.dll
18:16:03.0918 0x06f0 AppXSvc - ok
18:16:03.0950 0x06f0 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\windows\system32\drivers\arcsas.sys
18:16:04.0059 0x06f0 arcsas - ok
18:16:04.0168 0x06f0 [ AA2E8C6B8D7EA7BAF04C988801927F48, 4B82043F1B9C67CDCDC71102F7AEE05EEA8F9775A5CB33AE80F4DCDB42521C40 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:16:04.0215 0x06f0 aspnet_state - ok
18:16:04.0231 0x06f0 [ 7BC1F2FC2A9D79E1EBBBF6D69AC3BA1F, 236265BE3F1B2130025A3A10152893BD0D18AD8965732361058B775F010539A2 ] aswHwid C:\windows\system32\drivers\aswHwid.sys
18:16:04.0278 0x06f0 aswHwid - ok
18:16:04.0309 0x06f0 [ 42AE0F2BF37CE46EB01A753F96FCC9B8, 3FCECB863664CA9877BF00B7B9E781608BD19CB9E409C98A45D1AFA4E7187882 ] aswKbd C:\windows\system32\drivers\aswKbd.sys
18:16:04.0340 0x06f0 aswKbd - ok
18:16:04.0387 0x06f0 [ 68E76C1675AC171A84F5B7230652E19D, A707A4E51110B15FF7D73C95D4D9C1E457FC9D93E1479BDB67EBDDDD6AC28D8E ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
18:16:04.0450 0x06f0 aswMonFlt - ok
18:16:04.0497 0x06f0 [ E017E15F8EFD7675976743A8FBECCEBB, 64B3628E65AA0BC9093374726C76418CF4CB99743E8BE98A969CF5CA82E6D7EE ] aswNdisFlt C:\windows\system32\DRIVERS\aswNdisFlt.sys
18:16:04.0559 0x06f0 aswNdisFlt - ok
18:16:04.0590 0x06f0 [ 2D6B49A071216796106E7804AB2BA7DC, 6A58A3B36EA05A24333482F87CFD315F73E56A64E46493E82E0FE9115E284168 ] aswRdr C:\windows\system32\drivers\aswRdr2.sys
18:16:04.0653 0x06f0 aswRdr - ok
18:16:04.0668 0x06f0 [ E46B51C99BB750A81AC6A68362475A5C, 2A61C09902B39696D151B9D5E6A60FFC3CF3EA02613EC64BBAB4DEE3C78838E2 ] aswRvrt C:\windows\system32\drivers\aswRvrt.sys
18:16:04.0700 0x06f0 aswRvrt - ok
18:16:04.0778 0x06f0 [ A428CC308673A5E74F91D92E4A2B205D, 0A768AA4BD1CD22B5181EDA692F7CB9A43F627BB4FFEEFBB8CBC77A45107A443 ] aswSnx C:\windows\system32\drivers\aswSnx.sys
18:16:04.0856 0x06f0 aswSnx - ok
18:16:04.0934 0x06f0 [ C24A42A7689DB63EEF157797AA7012B5, AC25AFAD13E59DFBF68B9F9B9527F266F4671A5E0A1F04D9EA71D36C00AC21E9 ] aswSP C:\windows\system32\drivers\aswSP.sys
18:16:05.0028 0x06f0 aswSP - ok
18:16:05.0059 0x06f0 [ D9079E1A1C2A1F8ED5F37AF8E6CD3161, 629E3A642C5E3BEA65CDD2E08CAD69F9649A98BDA906678B51D3D2C9DB5BB253 ] aswStm C:\windows\system32\drivers\aswStm.sys
18:16:05.0090 0x06f0 aswStm - ok
18:16:05.0106 0x06f0 [ 3BEC32A0B646D914921FD56AA39998C1, 8DB7CBF3DEF8EAE1D7D28C38B3A0FCD5C2A04D772078B907F35C66451355A04A ] aswVmm C:\windows\system32\drivers\aswVmm.sys
18:16:05.0169 0x06f0 aswVmm - ok
18:16:05.0200 0x06f0 [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
18:16:05.0247 0x06f0 AsyncMac - ok
18:16:05.0278 0x06f0 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\windows\system32\drivers\atapi.sys
18:16:05.0325 0x06f0 atapi - ok
18:16:05.0372 0x06f0 [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\windows\System32\AudioEndpointBuilder.dll
18:16:05.0434 0x06f0 AudioEndpointBuilder - ok
18:16:05.0481 0x06f0 [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv C:\windows\System32\Audiosrv.dll
18:16:05.0543 0x06f0 Audiosrv - ok
18:16:05.0590 0x06f0 [ F5CB8703A4F51EE30E5C090C78073AA4, 90683F39E9AA315FFB66A9F014AD1BEBF19EA62908247C133455815F6632E578 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:16:05.0622 0x06f0 avast! Antivirus - ok
18:16:05.0684 0x06f0 [ 21144F53F79975801AB9A9A027707A85, 445F4838EF0B42A94D997244FE72744E72C7D669C169BC60F23DD3286AF32051 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
18:16:05.0715 0x06f0 avast! Firewall - ok
18:16:05.0762 0x06f0 [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\windows\System32\AxInstSV.dll
18:16:05.0809 0x06f0 AxInstSV - ok
18:16:05.0872 0x06f0 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
18:16:05.0950 0x06f0 b06bdrv - ok
18:16:05.0965 0x06f0 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\windows\System32\drivers\BasicDisplay.sys
18:16:06.0012 0x06f0 BasicDisplay - ok
18:16:06.0028 0x06f0 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\windows\System32\drivers\BasicRender.sys
18:16:06.0122 0x06f0 BasicRender - ok
18:16:06.0153 0x06f0 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\windows\System32\drivers\bcmfn2.sys
18:16:06.0231 0x06f0 bcmfn2 - ok
18:16:06.0278 0x06f0 [ 4B6F61BD394DCEDA9B06D702836531C2, 83C739467BD9A00FE09BCE83BB9409EA2DA62FCDD2384F9EE98626226223E918 ] BDESVC C:\windows\System32\bdesvc.dll
18:16:06.0325 0x06f0 BDESVC - ok
18:16:06.0340 0x06f0 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\windows\system32\drivers\Beep.sys
18:16:06.0434 0x06f0 Beep - ok
18:16:06.0497 0x06f0 [ 8F2AD111B47A190F325EE7495D3C1803, C61F1506E74A9EFBB61B8A06B30886B6E891C33211F755F30B924EBA202ECEC5 ] BFE C:\windows\System32\bfe.dll
18:16:06.0575 0x06f0 BFE - ok
18:16:06.0653 0x06f0 [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\windows\System32\qmgr.dll
18:16:06.0731 0x06f0 BITS - ok
18:16:06.0794 0x06f0 [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:16:06.0840 0x06f0 Bonjour Service - ok
18:16:06.0872 0x06f0 [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser C:\windows\system32\DRIVERS\bowser.sys
18:16:06.0981 0x06f0 bowser - ok
18:16:07.0044 0x06f0 [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\windows\System32\bisrv.dll
18:16:07.0137 0x06f0 BrokerInfrastructure - ok
18:16:07.0184 0x06f0 [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\windows\System32\browser.dll
18:16:07.0231 0x06f0 Browser - ok
18:16:07.0262 0x06f0 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\windows\System32\drivers\BthAvrcpTg.sys
18:16:07.0310 0x06f0 BthAvrcpTg - ok
18:16:07.0357 0x06f0 [ 67343511D80BF3D6D9EEDB5BA8D0B06B, 28436B2E62762686C4FF4FA3F9E7ABB56DA9D6884B6C924ACC544161400593DD ] BthHFEnum C:\windows\System32\drivers\bthhfenum.sys
18:16:07.0419 0x06f0 BthHFEnum - ok
18:16:07.0435 0x06f0 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\windows\System32\drivers\BthHFHid.sys
18:16:07.0497 0x06f0 bthhfhid - ok
18:16:07.0544 0x06f0 [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\windows\System32\BthHFSrv.dll
18:16:07.0607 0x06f0 BthHFSrv - ok
18:16:07.0622 0x06f0 [ 66B791F6B11DC4303DD18A224A501542, 502AE4D6FFC6B0FCED081B0E0F61F699F96F20DFEE737B53828F5DEE3BD0FCB1 ] BTHMODEM C:\windows\System32\drivers\bthmodem.sys
18:16:07.0732 0x06f0 BTHMODEM - ok
18:16:07.0763 0x06f0 [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\windows\system32\bthserv.dll
18:16:07.0810 0x06f0 bthserv - ok
18:16:07.0810 0x06f0 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
18:16:07.0904 0x06f0 cdfs - ok
18:16:07.0950 0x06f0 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\windows\System32\drivers\cdrom.sys
18:16:08.0029 0x06f0 cdrom - ok
18:16:08.0091 0x06f0 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\windows\System32\certprop.dll
18:16:08.0154 0x06f0 CertPropSvc - ok
18:16:08.0169 0x06f0 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\windows\System32\drivers\circlass.sys
18:16:08.0216 0x06f0 circlass - ok
18:16:08.0279 0x06f0 [ 8EB7E70C2D348FE2476A2E3F2D585E3D, 2B5D407FACF1D049261026CC552A7C93B028A661B0F4E959815EAE7670054127 ] CLFS C:\windows\system32\drivers\CLFS.sys
18:16:08.0372 0x06f0 CLFS - ok
18:16:08.0404 0x06f0 [ 5C646CAC91E086F7FF53C7F2E857F263, 67AF6FBF88B7EE530A9BA53833EAFCC78BF8362E82BF81180858F1D17DFC73E6 ] CLVirtualDrive C:\windows\system32\DRIVERS\CLVirtualDrive.sys
18:16:08.0497 0x06f0 CLVirtualDrive - ok
18:16:08.0529 0x06f0 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\windows\System32\drivers\CmBatt.sys
18:16:08.0622 0x06f0 CmBatt - ok
18:16:08.0685 0x06f0 [ 0DE32A0BB1FE2A773666572F79584520, C417C12476B937265BEDC9A2C3C3F6C50FD19AEC096362337B0921627A2A92EA ] CNG C:\windows\system32\Drivers\cng.sys
18:16:08.0794 0x06f0 CNG - ok
18:16:08.0826 0x06f0 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\windows\System32\drivers\CompositeBus.sys
18:16:08.0888 0x06f0 CompositeBus - ok
18:16:08.0904 0x06f0 COMSysApp - ok
18:16:08.0904 0x06f0 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\windows\system32\drivers\condrv.sys
18:16:08.0951 0x06f0 condrv - ok
18:16:09.0060 0x06f0 [ 91952BEF58CD97FCFE2B22F1632C6B03, 219B544DAA0B4954A7B1AE1DA294D2111B2DADC990EFFB7CC921E96B0F093FF3 ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
18:16:09.0122 0x06f0 cphs - ok
18:16:09.0185 0x06f0 [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\windows\system32\cryptsvc.dll
18:16:09.0247 0x06f0 CryptSvc - ok
18:16:09.0279 0x06f0 [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam C:\windows\system32\drivers\dam.sys
18:16:09.0342 0x06f0 dam - ok
18:16:09.0435 0x06f0 [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] DcomLaunch C:\windows\system32\rpcss.dll
18:16:09.0498 0x06f0 DcomLaunch - ok
18:16:09.0576 0x06f0 [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\windows\System32\defragsvc.dll
18:16:09.0638 0x06f0 defragsvc - ok
18:16:09.0701 0x06f0 [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\windows\system32\das.dll
18:16:09.0795 0x06f0 DeviceAssociationService - ok
18:16:09.0842 0x06f0 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\windows\system32\umpnpmgr.dll
18:16:09.0904 0x06f0 DeviceInstall - ok
18:16:09.0935 0x06f0 [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc C:\windows\system32\Drivers\dfsc.sys
18:16:09.0998 0x06f0 Dfsc - ok
18:16:10.0060 0x06f0 [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\windows\system32\dhcpcore.dll
18:16:10.0123 0x06f0 Dhcp - ok
18:16:10.0154 0x06f0 [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk C:\windows\system32\drivers\disk.sys
18:16:10.0232 0x06f0 disk - ok
18:16:10.0248 0x06f0 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\windows\System32\drivers\dmvsc.sys
18:16:10.0373 0x06f0 dmvsc - ok
18:16:10.0420 0x06f0 [ 33ADFB7453BF3271463712C4BCE61AD1, A1DB30F874BA7B2C4C653494D70B46B94BF7D39D0DD8559F6CA7A14B676FD617 ] Dnscache C:\windows\System32\dnsrslvr.dll
18:16:10.0482 0x06f0 Dnscache - ok
18:16:10.0529 0x06f0 [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\windows\System32\dot3svc.dll
18:16:10.0607 0x06f0 dot3svc - ok
18:16:10.0639 0x06f0 [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\windows\system32\dps.dll
18:16:10.0685 0x06f0 DPS - ok
18:16:10.0717 0x06f0 [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
18:16:10.0763 0x06f0 drmkaud - ok
18:16:10.0810 0x06f0 [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\windows\System32\DeviceSetupManager.dll
18:16:10.0842 0x06f0 DsmSvc - ok
18:16:10.0920 0x06f0 [ E1BB0B6F00F470B451AB45EA13EBA0B3, 3A2FC2175B69A5EB98D6C2D563DBFDCB320647AB87A14E47FAE800423DCACDAB ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
18:16:11.0138 0x06f0 DXGKrnl - ok
18:16:11.0201 0x06f0 [ FA988D76745C917CDFE20031C06DE860, B01AA3611869854D3BCA8B6CD7A6F48CC3537145DD3EBE50F5BEF72239924BF7 ] e1iexpress C:\windows\system32\DRIVERS\e1i63x64.sys
18:16:11.0311 0x06f0 e1iexpress - ok
18:16:11.0342 0x06f0 [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\windows\System32\eapsvc.dll
18:16:11.0420 0x06f0 Eaphost - ok
18:16:11.0577 0x06f0 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\windows\system32\drivers\evbda.sys
18:16:11.0795 0x06f0 ebdrv - ok
18:16:11.0858 0x06f0 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\windows\System32\lsass.exe
18:16:11.0889 0x06f0 EFS - ok
18:16:11.0905 0x06f0 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\windows\system32\drivers\EhStorClass.sys
18:16:11.0967 0x06f0 EhStorClass - ok
18:16:11.0998 0x06f0 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\windows\system32\drivers\EhStorTcgDrv.sys
18:16:12.0061 0x06f0 EhStorTcgDrv - ok
18:16:12.0076 0x06f0 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\windows\System32\drivers\errdev.sys
18:16:12.0123 0x06f0 ErrDev - ok
18:16:12.0217 0x06f0 [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\windows\system32\es.dll
18:16:12.0280 0x06f0 EventSystem - ok
18:16:12.0295 0x06f0 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\windows\system32\drivers\exfat.sys
18:16:12.0373 0x06f0 exfat - ok
18:16:12.0405 0x06f0 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\windows\system32\drivers\fastfat.sys
18:16:12.0467 0x06f0 fastfat - ok
18:16:12.0530 0x06f0 [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\windows\system32\fxssvc.exe
18:16:12.0623 0x06f0 Fax - ok
18:16:12.0639 0x06f0 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\windows\System32\drivers\fdc.sys
18:16:12.0717 0x06f0 fdc - ok
18:16:12.0748 0x06f0 [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\windows\system32\fdPHost.dll
18:16:12.0795 0x06f0 fdPHost - ok
18:16:12.0827 0x06f0 [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\windows\system32\fdrespub.dll
18:16:12.0889 0x06f0 FDResPub - ok
18:16:12.0936 0x06f0 [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\windows\system32\fhsvc.dll
18:16:12.0983 0x06f0 fhsvc - ok
18:16:12.0998 0x06f0 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
18:16:13.0045 0x06f0 FileInfo - ok
18:16:13.0061 0x06f0 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\windows\system32\drivers\filetrace.sys
18:16:13.0139 0x06f0 Filetrace - ok
18:16:13.0155 0x06f0 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\windows\System32\drivers\flpydisk.sys
18:16:13.0186 0x06f0 flpydisk - ok
18:16:13.0264 0x06f0 [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\windows\system32\drivers\fltmgr.sys
18:16:13.0327 0x06f0 FltMgr - ok
18:16:13.0405 0x06f0 [ 2F225BC85B84C04EA01BAB8D8DACFA83, 1F6E20C8F0FFD3FA60BDF556FB8392FE014E6519C3F314D1D22D394DB2A040CA ] FontCache C:\windows\system32\FntCache.dll
18:16:13.0515 0x06f0 FontCache - ok
18:16:13.0577 0x06f0 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:16:13.0608 0x06f0 FontCache3.0.0.0 - ok
18:16:13.0655 0x06f0 [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\windows\system32\drivers\FsDepends.sys
18:16:13.0718 0x06f0 FsDepends - ok
18:16:13.0764 0x06f0 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
18:16:13.0843 0x06f0 Fs_Rec - ok
18:16:13.0936 0x06f0 [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
18:16:14.0014 0x06f0 fvevol - ok
18:16:14.0030 0x06f0 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\windows\System32\drivers\fxppm.sys
18:16:14.0077 0x06f0 FxPPM - ok
18:16:14.0093 0x06f0 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
18:16:14.0124 0x06f0 gagp30kx - ok
18:16:14.0186 0x06f0 [ 4A336C92A790A3F7C2D9952C73FCFA16, 2EB400EBAA2B50A97F442D18107316A172A92660F5D712D1C58D39172C9CD80C ] GamesAppIntegrationService C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
18:16:14.0233 0x06f0 GamesAppIntegrationService - ok
18:16:14.0265 0x06f0 [ A404AE536DD73FC8118A15BFF0BD4FC0, EA24D7866FEB40DD72713601E14DBDA60497324222196B8E0791DA656DBF5DA7 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
18:16:14.0296 0x06f0 GamesAppService - ok
18:16:14.0327 0x06f0 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\windows\System32\drivers\vmgencounter.sys
18:16:14.0359 0x06f0 gencounter - ok
18:16:14.0421 0x06f0 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\windows\system32\Drivers\msgpioclx.sys
18:16:14.0468 0x06f0 GPIOClx0101 - ok
18:16:14.0577 0x06f0 [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc C:\windows\System32\gpsvc.dll
18:16:14.0655 0x06f0 gpsvc - ok
18:16:14.0702 0x06f0 [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
18:16:14.0780 0x06f0 HdAudAddService - ok
18:16:14.0827 0x06f0 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\windows\System32\drivers\HDAudBus.sys
18:16:14.0905 0x06f0 HDAudBus - ok
18:16:14.0921 0x06f0 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\windows\System32\drivers\HidBatt.sys
18:16:14.0999 0x06f0 HidBatt - ok
18:16:15.0015 0x06f0 [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth C:\windows\System32\drivers\hidbth.sys
18:16:15.0077 0x06f0 HidBth - ok
18:16:15.0093 0x06f0 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\windows\System32\drivers\hidi2c.sys
18:16:15.0155 0x06f0 hidi2c - ok
18:16:15.0171 0x06f0 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\windows\System32\drivers\hidir.sys
18:16:15.0202 0x06f0 HidIr - ok
18:16:15.0249 0x06f0 [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\windows\system32\hidserv.dll
18:16:15.0312 0x06f0 hidserv - ok
18:16:15.0343 0x06f0 [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb C:\windows\System32\drivers\hidusb.sys
18:16:15.0421 0x06f0 HidUsb - ok
18:16:15.0468 0x06f0 [ F08C53D4BAE5840B3FA835105EA254A6, 30E5BC6E317E6E2E51D5FC5A814D40A333A0A27BDC55EF6013661317679DDBF7 ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe
18:16:15.0499 0x06f0 HitmanProScheduler - ok
18:16:15.0546 0x06f0 [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\windows\system32\kmsvc.dll
18:16:15.0593 0x06f0 hkmsvc - ok
18:16:15.0640 0x06f0 [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\windows\system32\ListSvc.dll
18:16:15.0702 0x06f0 HomeGroupListener - ok
18:16:15.0796 0x06f0 [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\windows\system32\provsvc.dll
18:16:15.0858 0x06f0 HomeGroupProvider - ok
18:16:15.0952 0x06f0 [ 7B7DE6B3DC30F3246958F42C67A6F7BB, 4B66B90CFEC2231B905B21DECC4EC7C6500E546F080A452EF67E724EDF37ADD9 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
18:16:15.0999 0x06f0 hpqwmiex - ok
18:16:16.0031 0x06f0 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
18:16:16.0077 0x06f0 HpSAMD - ok
18:16:16.0124 0x06f0 [ CB5A8B34FA37AE53053F2D3DF05AC1E6, 2C7357079A66AE609F49900181B013E735B4A01C45DA316CD1E8698F93DE6EA8 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
18:16:16.0156 0x06f0 HPSupportSolutionsFrameworkService - ok
18:16:16.0218 0x06f0 [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP C:\windows\system32\drivers\HTTP.sys
18:16:16.0327 0x06f0 HTTP - ok
18:16:16.0343 0x06f0 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
18:16:16.0405 0x06f0 hwpolicy - ok
18:16:16.0405 0x06f0 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\windows\System32\drivers\hyperkbd.sys
18:16:16.0484 0x06f0 hyperkbd - ok
18:16:16.0499 0x06f0 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\windows\system32\DRIVERS\HyperVideo.sys
18:16:16.0546 0x06f0 HyperVideo - ok
18:16:16.0593 0x06f0 [ D887446F3F6051C60C26F4FD1FC8D43F, A3235C64E9D5378E3409FA7CDD9DB0DD1B3CE6A6EB018F2C40558EB9C427A498 ] i8042prt C:\windows\System32\drivers\i8042prt.sys
18:16:16.0656 0x06f0 i8042prt - ok
18:16:16.0671 0x06f0 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\windows\System32\drivers\iaLPSSi_GPIO.sys
18:16:16.0702 0x06f0 iaLPSSi_GPIO - ok
18:16:16.0734 0x06f0 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\windows\System32\drivers\iaLPSSi_I2C.sys
18:16:16.0796 0x06f0 iaLPSSi_I2C - ok
18:16:16.0827 0x06f0 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\windows\system32\drivers\iaStorAV.sys
18:16:16.0921 0x06f0 iaStorAV - ok
18:16:16.0952 0x06f0 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
18:16:17.0046 0x06f0 iaStorV - ok
18:16:17.0093 0x06f0 [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
18:16:17.0140 0x06f0 ICCS - ok
18:16:17.0140 0x06f0 IEEtwCollectorService - ok
18:16:17.0296 0x06f0 [ 684179EA32A488C14028CF9ABF88BE8F, 4F3A834B1DBC7FFA1F1CB91A5E69E753C784C4E48F9625058FEAEB6789FB497B ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
18:16:17.0469 0x06f0 igfx - ok
18:16:17.0547 0x06f0 [ 64E72669AB8945F823F70A462F76FB51, DD5D615C5B5292924BB6848975CCADC5DF9E4C2DE12308A999D555D5B84C0345 ] igfxCUIService1.0.0.0 C:\windows\system32\igfxCUIService.exe
18:16:17.0593 0x06f0 igfxCUIService1.0.0.0 - ok
18:16:17.0656 0x06f0 [ AF8A43C376F83A4A1E7DA16461EDE114, EBA10519B074888355A4FC11D52FF1E6A52F88F754B7F1F9863A8313638645CB ] IKEEXT C:\windows\System32\ikeext.dll
18:16:17.0734 0x06f0 IKEEXT - ok
18:16:17.0765 0x06f0 [ FC7C456AF9B9811499EDBD10616832EE, CA2D8B0E672D3AE449C2FF0B9E142D74E8C72FD877D11162A9F7CC51AF58220F ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
18:16:17.0828 0x06f0 intaud_WaveExtensible - ok
18:16:18.0047 0x06f0 [ 734E92848983F17822B4F71C5F912C6C, 1A11816FF47CA73270AFCCB57B85A4AA9CDCFAEA21D129062694484677AA601D ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
18:16:18.0359 0x06f0 IntcAzAudAddService - ok
18:16:18.0406 0x06f0 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\windows\system32\drivers\intelide.sys
18:16:18.0453 0x06f0 intelide - ok
18:16:18.0484 0x06f0 [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep C:\windows\system32\drivers\intelpep.sys
18:16:18.0547 0x06f0 intelpep - ok
18:16:18.0547 0x06f0 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\windows\System32\drivers\intelppm.sys
18:16:18.0593 0x06f0 intelppm - ok
18:16:18.0609 0x06f0 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
18:16:18.0672 0x06f0 IpFilterDriver - ok
18:16:18.0765 0x06f0 [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
18:16:18.0844 0x06f0 iphlpsvc - ok
18:16:18.0875 0x06f0 [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV C:\windows\System32\drivers\IPMIDrv.sys
18:16:18.0937 0x06f0 IPMIDRV - ok
18:16:18.0984 0x06f0 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\windows\system32\drivers\ipnat.sys
18:16:19.0047 0x06f0 IPNAT - ok
18:16:19.0125 0x06f0 [ BD713ED20CFD71C32C4BE1928423AE9A, E0EE95FEA3930EA335D9B1FF74EEFAA61ECEC89AEBB1D0E43A1E1088F9990273 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:16:19.0172 0x06f0 iPod Service - ok
18:16:19.0187 0x06f0 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\windows\system32\drivers\irenum.sys
18:16:19.0234 0x06f0 IRENUM - ok
18:16:19.0234 0x06f0 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\windows\system32\drivers\isapnp.sys
18:16:19.0281 0x06f0 isapnp - ok
18:16:19.0313 0x06f0 [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt C:\windows\System32\drivers\msiscsi.sys
18:16:19.0438 0x06f0 iScsiPrt - ok
18:16:19.0469 0x06f0 [ A90C843F4FDD7A07129BA73C6BE13976, A76DEA9F09E3B2F18D3B646A0DD39E2773EC62E2F3C55421BA61C12190D78C1C ] iwdbus C:\windows\System32\drivers\iwdbus.sys
18:16:19.0516 0x06f0 iwdbus - ok
18:16:19.0563 0x06f0 [ A1D4D34A56DF1D5122CDB265038A2E72, AE061BA1A65C98AF875FA18878B014B57E33594D4AC4C39B050AA532E2220F83 ] kbdclass C:\windows\System32\drivers\kbdclass.sys
18:16:19.0610 0x06f0 kbdclass - ok
18:16:19.0657 0x06f0 [ 4A34D7084B862A92F3ABC4969166B3D3, 87B2635873DA4DD06D9E3B8E4313CBDBDC1488E4E340EC2101393EC65823771F ] kbdhid C:\windows\System32\drivers\kbdhid.sys
18:16:19.0719 0x06f0 kbdhid - ok
18:16:19.0750 0x06f0 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\windows\system32\DRIVERS\kdnic.sys
18:16:19.0782 0x06f0 kdnic - ok
18:16:19.0797 0x06f0 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\windows\system32\lsass.exe
18:16:19.0844 0x06f0 KeyIso - ok
18:16:19.0891 0x06f0 [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
18:16:19.0953 0x06f0 KSecDD - ok
18:16:20.0000 0x06f0 [ 35C19AF2116F67914712D7C4CBE47B8C, 5F976726880A6E51D7ABFA7E3EF7294C6FB7F383DC5710A2C2EC8DD26DAEC204 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
18:16:20.0078 0x06f0 KSecPkg - ok
18:16:20.0110 0x06f0 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
18:16:20.0157 0x06f0 ksthunk - ok
18:16:20.0203 0x06f0 [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\windows\system32\msdtckrm.dll
18:16:20.0250 0x06f0 KtmRm - ok
18:16:20.0313 0x06f0 [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\windows\system32\srvsvc.dll
18:16:20.0360 0x06f0 LanmanServer - ok
18:16:20.0422 0x06f0 [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
18:16:20.0469 0x06f0 LanmanWorkstation - ok
18:16:20.0547 0x06f0 [ 2B7479EB47731A8ACBA28AF4C4BDA32D, 67AEB98E7B41337FEFD92CC81BFAD25FBB679998B318C110A4873B1AD8927A97 ] lfsvc C:\windows\System32\GeofenceMonitorService.dll
18:16:20.0625 0x06f0 lfsvc - ok
18:16:20.0641 0x06f0 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
18:16:20.0688 0x06f0 lltdio - ok
18:16:20.0735 0x06f0 [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\windows\System32\lltdsvc.dll
18:16:20.0782 0x06f0 lltdsvc - ok
18:16:20.0828 0x06f0 [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\windows\System32\lmhsvc.dll
18:16:20.0891 0x06f0 lmhosts - ok
18:16:20.0938 0x06f0 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
18:16:20.0985 0x06f0 LSI_SAS - ok
18:16:21.0000 0x06f0 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
18:16:21.0031 0x06f0 LSI_SAS2 - ok
18:16:21.0047 0x06f0 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\windows\system32\drivers\lsi_sas3.sys
18:16:21.0110 0x06f0 LSI_SAS3 - ok
18:16:21.0125 0x06f0 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\windows\system32\drivers\lsi_sss.sys
18:16:21.0156 0x06f0 LSI_SSS - ok
18:16:21.0250 0x06f0 [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\windows\System32\lsm.dll
18:16:21.0313 0x06f0 LSM - ok
18:16:21.0345 0x06f0 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\windows\system32\drivers\luafv.sys
18:16:21.0407 0x06f0 luafv - ok
18:16:21.0469 0x06f0 [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector C:\windows\system32\drivers\mbam.sys
18:16:21.0516 0x06f0 MBAMProtector - ok
18:16:21.0610 0x06f0 [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
18:16:21.0673 0x06f0 MBAMService - ok
18:16:21.0688 0x06f0 [ 85CFE7AB85B43B6B7AC7961AA3983A9F, 4E88B75818FD00C0ABBDF8E02EBFB550A67B46E5E13D3B3DF52611793F7DA0DD ] MBAMWebAccessControl C:\windows\system32\drivers\mwac.sys
18:16:21.0751 0x06f0 MBAMWebAccessControl - ok
18:16:21.0782 0x06f0 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\windows\system32\drivers\megasas.sys
18:16:21.0829 0x06f0 megasas - ok
18:16:21.0876 0x06f0 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\windows\system32\drivers\megasr.sys
18:16:21.0985 0x06f0 megasr - ok
18:16:22.0032 0x06f0 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\windows\system32\mmcss.dll
18:16:22.0079 0x06f0 MMCSS - ok
18:16:22.0095 0x06f0 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\windows\system32\drivers\modem.sys
18:16:22.0157 0x06f0 Modem - ok
18:16:22.0188 0x06f0 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\windows\System32\drivers\monitor.sys
18:16:22.0251 0x06f0 monitor - ok
18:16:22.0282 0x06f0 [ 2A2F8D5284E59815169A88F1FC9CEE28, 58EFBCF3C849FD088CFB7FE287FC7D9DD7E03D4E6AA98F0497C09E4596E42538 ] mouclass C:\windows\System32\drivers\mouclass.sys
18:16:22.0345 0x06f0 mouclass - ok
18:16:22.0376 0x06f0 [ 91223A2AE2955B3E0DA3DB79C3A897A6, 32B59CF1586C2300D60AF8A1D819515033ACC7F7A1F3523FC4AC7725E29B5A90 ] mouhid C:\windows\System32\drivers\mouhid.sys
18:16:22.0438 0x06f0 mouhid - ok
18:16:22.0485 0x06f0 [ 9A788037D768809DFD677F4BA08A224A, E0686B3318F924E440ADA439D6671D44D3FF97C13D45C2E0A3A7B9E23DA38350 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
18:16:22.0532 0x06f0 mountmgr - ok
18:16:22.0579 0x06f0 [ 1BF6DB50B5CFF50BF133D32BF7F93368, 6A75BF3C4379EF80DBA543848A88253861A3A1B44488AF34C66984ED38D0FA86 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:16:22.0610 0x06f0 MozillaMaintenance - ok
18:16:22.0642 0x06f0 [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
18:16:22.0704 0x06f0 mpsdrv - ok
18:16:22.0813 0x06f0 [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc C:\windows\system32\mpssvc.dll
18:16:22.0876 0x06f0 MpsSvc - ok
18:16:22.0907 0x06f0 [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
18:16:22.0970 0x06f0 MRxDAV - ok
18:16:23.0032 0x06f0 [ 89DE71940A0E7F5BA617AE08321EF5C3, BD056C9E18E902D6F118E59A6AC68415BFA0690A02D2B360F6C111CE3B5EAC67 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
18:16:23.0110 0x06f0 mrxsmb - ok
18:16:23.0157 0x06f0 [ BCBD64220AD85C26823453FF1DC3EFBD, 0245E3659E9135B9276F3CCFBEA0CEFFC4F4C0826F6D19B6329057620235F087 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
18:16:23.0251 0x06f0 mrxsmb10 - ok
18:16:23.0298 0x06f0 [ EE16457030175F449BAB0ABD279F4B6A, DF627054136079553A24AD12DC7374F1ACEEAD782EFFDC278996AD7BCCE98877 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
18:16:23.0345 0x06f0 mrxsmb20 - ok
18:16:23.0408 0x06f0 [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\windows\system32\DRIVERS\bridge.sys
18:16:23.0470 0x06f0 MsBridge - ok
18:16:23.0517 0x06f0 [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\windows\System32\msdtc.exe
18:16:23.0548 0x06f0 MSDTC - ok
18:16:23.0595 0x06f0 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\windows\system32\drivers\Msfs.sys
18:16:23.0642 0x06f0 Msfs - ok
18:16:23.0673 0x06f0 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\windows\System32\drivers\msgpiowin32.sys
18:16:23.0720 0x06f0 msgpiowin32 - ok
18:16:23.0720 0x06f0 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
18:16:23.0767 0x06f0 mshidkmdf - ok
18:16:23.0767 0x06f0 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\windows\System32\drivers\mshidumdf.sys
18:16:23.0798 0x06f0 mshidumdf - ok
18:16:23.0830 0x06f0 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\windows\system32\drivers\msisadrv.sys
18:16:23.0876 0x06f0 msisadrv - ok
18:16:23.0923 0x06f0 [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI C:\windows\system32\iscsiexe.dll
18:16:23.0986 0x06f0 MSiSCSI - ok
18:16:23.0986 0x06f0 msiserver - ok
18:16:24.0001 0x06f0 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
18:16:24.0033 0x06f0 MSKSSRV - ok
18:16:24.0064 0x06f0 [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\windows\system32\DRIVERS\mslldp.sys
18:16:24.0158 0x06f0 MsLldp - ok
18:16:24.0158 0x06f0 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
18:16:24.0236 0x06f0 MSPCLOCK - ok
18:16:24.0236 0x06f0 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
18:16:24.0299 0x06f0 MSPQM - ok
18:16:24.0346 0x06f0 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\windows\system32\drivers\MsRPC.sys
18:16:24.0424 0x06f0 MsRPC - ok
18:16:24.0455 0x06f0 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\windows\System32\drivers\mssmbios.sys
18:16:24.0502 0x06f0 mssmbios - ok
18:16:24.0502 0x06f0 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
18:16:24.0549 0x06f0 MSTEE - ok
18:16:24.0549 0x06f0 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\windows\System32\drivers\MTConfig.sys
18:16:24.0611 0x06f0 MTConfig - ok
18:16:24.0611 0x06f0 [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup C:\windows\system32\Drivers\mup.sys
18:16:24.0658 0x06f0 Mup - ok
18:16:24.0658 0x06f0 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\windows\system32\drivers\mvumis.sys
18:16:24.0705 0x06f0 mvumis - ok
18:16:24.0752 0x06f0 [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\windows\system32\qagentRT.dll
18:16:24.0799 0x06f0 napagent - ok
18:16:24.0861 0x06f0 [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
18:16:24.0971 0x06f0 NativeWifiP - ok
18:16:25.0018 0x06f0 [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\windows\System32\ncasvc.dll
18:16:25.0096 0x06f0 NcaSvc - ok
18:16:25.0143 0x06f0 [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\windows\System32\ncbservice.dll
18:16:25.0221 0x06f0 NcbService - ok
18:16:25.0268 0x06f0 [ 9ACED0F5B458C9011F39143326494E93, 9DFFC7EE7DE6FD92545EC6A203213C498A01EEFB0BC55460D339BCE498E56A7F ] NcdAutoSetup C:\windows\System32\NcdAutoSetup.dll
18:16:25.0315 0x06f0 NcdAutoSetup - ok
18:16:25.0424 0x06f0 [ 21FE65E2E67C4E31EE95CBD1F91C4B24, 6558F2BC10E6B09F7EE5264722FCF572B861EDB60A1433B58A4F4625EC0ABF63 ] NDIS C:\windows\system32\drivers\ndis.sys
18:16:25.0518 0x06f0 NDIS - ok
18:16:25.0565 0x06f0 [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
18:16:25.0627 0x06f0 NdisCap - ok
18:16:25.0659 0x06f0 [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\windows\system32\DRIVERS\NdisImPlatform.sys
18:16:25.0721 0x06f0 NdisImPlatform - ok
18:16:25.0737 0x06f0 [ 82821F4EEC776B4CF11695A38F3ABA46, 23184F9D31E662855DC4D23EFE7C2FE00E5487D3762B6024704A5D8C87762E1C ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
18:16:25.0799 0x06f0 NdisTapi - ok
18:16:25.0830 0x06f0 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
18:16:25.0909 0x06f0 Ndisuio - ok
18:16:25.0924 0x06f0 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\windows\System32\drivers\NdisVirtualBus.sys
18:16:26.0002 0x06f0 NdisVirtualBus - ok
18:16:26.0018 0x06f0 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
18:16:26.0080 0x06f0 NdisWan - ok
18:16:26.0096 0x06f0 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy C:\windows\system32\DRIVERS\ndiswan.sys
18:16:26.0159 0x06f0 NdisWanLegacy - ok
18:16:26.0190 0x06f0 [ DDD7F92A83F74D1476B71FBA9530A8DC, D3F94FC9F48854E09B0B77CE5E1C1DB948D54EAC63C5583437051BB893B5A386 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
18:16:26.0268 0x06f0 NDProxy - ok
18:16:26.0315 0x06f0 [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\windows\system32\drivers\Ndu.sys
18:16:26.0362 0x06f0 Ndu - ok
18:16:26.0409 0x06f0 [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
18:16:26.0471 0x06f0 NetBIOS - ok
18:16:26.0502 0x06f0 [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
18:16:26.0612 0x06f0 NetBT - ok
18:16:26.0643 0x06f0 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\windows\system32\lsass.exe
18:16:26.0690 0x06f0 Netlogon - ok
18:16:26.0737 0x06f0 [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\windows\System32\netman.dll
18:16:26.0784 0x06f0 Netman - ok
18:16:26.0831 0x06f0 [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\windows\System32\netprofmsvc.dll
18:16:26.0909 0x06f0 netprofm - ok
18:16:26.0971 0x06f0 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:16:27.0034 0x06f0 NetTcpPortSharing - ok
18:16:27.0065 0x06f0 [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\windows\System32\drivers\netvsc63.sys
18:16:27.0159 0x06f0 netvsc - ok
18:16:27.0206 0x06f0 [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\windows\System32\nlasvc.dll
18:16:27.0284 0x06f0 NlaSvc - ok
18:16:27.0316 0x06f0 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\windows\system32\drivers\Npfs.sys
18:16:27.0378 0x06f0 Npfs - ok
18:16:27.0409 0x06f0 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\windows\System32\drivers\npsvctrig.sys
18:16:27.0456 0x06f0 npsvctrig - ok
18:16:27.0503 0x06f0 [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\windows\system32\nsisvc.dll
18:16:27.0566 0x06f0 nsi - ok
18:16:27.0613 0x06f0 [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
18:16:27.0659 0x06f0 nsiproxy - ok
18:16:27.0800 0x06f0 [ 7F68063A5A0461E02BC860CE0E6BFDDC, 47E9F75D27B97278B74034B7D3951A26B1644911ED321455E08D935731C858DE ] Ntfs C:\windows\system32\drivers\Ntfs.sys
18:16:28.0003 0x06f0 Ntfs - ok
18:16:28.0034 0x06f0 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\windows\system32\drivers\Null.sys
18:16:28.0097 0x06f0 Null - ok
18:16:28.0113 0x06f0 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\windows\system32\drivers\nvraid.sys
18:16:28.0175 0x06f0 nvraid - ok
18:16:28.0191 0x06f0 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\windows\system32\drivers\nvstor.sys
18:16:28.0237 0x06f0 nvstor - ok
18:16:28.0237 0x06f0 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
18:16:28.0284 0x06f0 nv_agp - ok
18:16:28.0331 0x06f0 [ 8DD366F3B9F16ED722A6A66D956DA27F, 3A61B3D7B0D60CAA801FFDA086BFDDCF9C820CB11114DC60FDC9B30F828CC04F ] omniserv C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
18:16:28.0363 0x06f0 omniserv - detected UnsignedFile.Multi.Generic ( 1 )
18:16:31.0051 0x06f0 Detect skipped due to KSN trusted
18:16:31.0051 0x06f0 omniserv - ok
18:16:31.0113 0x06f0 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\windows\system32\pnrpsvc.dll
18:16:31.0191 0x06f0 p2pimsvc - ok
18:16:31.0270 0x06f0 [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\windows\system32\p2psvc.dll
18:16:31.0348 0x06f0 p2psvc - ok
18:16:31.0379 0x06f0 [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\windows\System32\drivers\parport.sys
18:16:31.0426 0x06f0 Parport - ok
18:16:31.0473 0x06f0 [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\windows\system32\drivers\partmgr.sys
18:16:31.0504 0x06f0 partmgr - ok
18:16:31.0582 0x06f0 [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc C:\windows\System32\pcasvc.dll
18:16:31.0691 0x06f0 PcaSvc - ok
18:16:31.0738 0x06f0 [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\windows\system32\drivers\pci.sys
18:16:31.0816 0x06f0 pci - ok
18:16:31.0832 0x06f0 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\windows\system32\drivers\pciide.sys
18:16:31.0863 0x06f0 pciide - ok
18:16:31.0879 0x06f0 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\windows\system32\drivers\pcmcia.sys
18:16:31.0926 0x06f0 pcmcia - ok
18:16:31.0941 0x06f0 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\windows\system32\drivers\pcw.sys
18:16:31.0973 0x06f0 pcw - ok
18:16:32.0004 0x06f0 [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc C:\windows\system32\drivers\pdc.sys
18:16:32.0051 0x06f0 pdc - ok
18:16:32.0082 0x06f0 [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\windows\system32\drivers\peauth.sys
18:16:32.0145 0x06f0 PEAUTH - ok
18:16:32.0223 0x06f0 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\windows\SysWow64\perfhost.exe
18:16:32.0286 0x06f0 PerfHost - ok
18:16:32.0395 0x06f0 [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\windows\system32\pla.dll
18:16:32.0504 0x06f0 pla - ok
18:16:32.0536 0x06f0 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\windows\system32\umpnpmgr.dll
18:16:32.0598 0x06f0 PlugPlay - ok
18:16:32.0645 0x06f0 [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
18:16:32.0692 0x06f0 PNRPAutoReg - ok
18:16:32.0723 0x06f0 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\windows\system32\pnrpsvc.dll
18:16:32.0770 0x06f0 PNRPsvc - ok
18:16:32.0833 0x06f0 [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent C:\windows\System32\ipsecsvc.dll
18:16:32.0895 0x06f0 PolicyAgent - ok
18:16:32.0926 0x06f0 [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\windows\system32\umpo.dll
18:16:33.0005 0x06f0 Power - ok
18:16:33.0036 0x06f0 [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
18:16:33.0098 0x06f0 PptpMiniport - ok
18:16:33.0270 0x06f0 [ 346F352E17EA5793C726D3F6582BA855, 5CD830CDCC73335EDC58D26D1BC8B8830DA885CA6D1E21BB7EE763354B5C35EA ] PrintNotify C:\windows\system32\spool\drivers\x64\3\PrintConfig.dll
18:16:33.0458 0x06f0 PrintNotify - ok
18:16:33.0473 0x06f0 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\windows\System32\drivers\processr.sys
18:16:33.0520 0x06f0 Processor - ok
18:16:33.0583 0x06f0 [ 19424364D8C03B990C4281BE53963FD0, 958FC8436E6B754858E20BC48B0D4B269991E8CA94C15C2761BF04ED52591907 ] ProfSvc C:\windows\system32\profsvc.dll
18:16:33.0645 0x06f0 ProfSvc - ok
18:16:33.0692 0x06f0 [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\windows\system32\DRIVERS\pacer.sys
18:16:33.0770 0x06f0 Psched - ok
18:16:33.0817 0x06f0 [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\windows\system32\qwave.dll
18:16:33.0895 0x06f0 QWAVE - ok
18:16:33.0942 0x06f0 [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
18:16:34.0004 0x06f0 QWAVEdrv - ok
18:16:34.0051 0x06f0 [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
18:16:34.0098 0x06f0 RasAcd - ok
18:16:34.0145 0x06f0 [ E8FFD8BE3C50E7A71C5FBB87BDD1128E, 3E3EB906CC9A1CCA09580DA9F94DD0E1162CABD343874B76718DC4F2E9069C4E ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
18:16:34.0208 0x06f0 RasAgileVpn - ok
18:16:34.0255 0x06f0 [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\windows\System32\rasauto.dll
18:16:34.0302 0x06f0 RasAuto - ok
18:16:34.0333 0x06f0 [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
18:16:34.0380 0x06f0 Rasl2tp - ok
18:16:34.0458 0x06f0 [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan C:\windows\System32\rasmans.dll
18:16:34.0521 0x06f0 RasMan - ok
18:16:34.0536 0x06f0 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
18:16:34.0567 0x06f0 RasPppoe - ok
18:16:34.0630 0x06f0 [ 41F631007A158FEBB67F0E2AD1601BBA, EB5EA7277F4178BC27E55BF850AEBCD84B6BED80B2383CFB29548824AAFED135 ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
18:16:34.0692 0x06f0 RasSstp - ok
18:16:34.0755 0x06f0 [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
18:16:34.0896 0x06f0 rdbss - ok
18:16:34.0927 0x06f0 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\windows\System32\drivers\rdpbus.sys
18:16:34.0989 0x06f0 rdpbus - ok
18:16:35.0005 0x06f0 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\windows\system32\drivers\rdpdr.sys
18:16:35.0083 0x06f0 RDPDR - ok
18:16:35.0130 0x06f0 [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
18:16:35.0177 0x06f0 RdpVideoMiniport - ok
18:16:35.0208 0x06f0 [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\windows\system32\drivers\rdyboost.sys
18:16:35.0270 0x06f0 rdyboost - ok
18:16:35.0334 0x06f0 [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS C:\windows\system32\drivers\ReFS.sys
18:16:35.0443 0x06f0 ReFS - ok
18:16:35.0474 0x06f0 [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess C:\windows\System32\mprdim.dll
18:16:35.0537 0x06f0 RemoteAccess - ok
18:16:35.0584 0x06f0 [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\windows\system32\regsvc.dll
18:16:35.0662 0x06f0 RemoteRegistry - ok
18:16:35.0771 0x06f0 [ 9E18DF158751CF968E7DF83256D70233, 89385DA5ABD283F289E37D7D9E33358B06216E9B3659B2E70F19FD5BA49C7F90 ] RichVideo64 C:\Program Files\CyberLink\Shared files\RichVideo64.exe
18:16:35.0802 0x06f0 RichVideo64 - ok
18:16:35.0865 0x06f0 [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
18:16:35.0912 0x06f0 RpcEptMapper - ok
18:16:35.0943 0x06f0 [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\windows\system32\locator.exe
18:16:35.0990 0x06f0 RpcLocator - ok
18:16:36.0068 0x06f0 [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] RpcSs C:\windows\system32\rpcss.dll
18:16:36.0130 0x06f0 RpcSs - ok
18:16:36.0162 0x06f0 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
18:16:36.0224 0x06f0 rspndr - ok
18:16:36.0255 0x06f0 [ 9CF8593B62102545CB1652A1D8748FDD, 818639795720A7567CCE01EBC24A0119BFDCEA1B7A5ED4A11B5012D763C1B5CC ] RSUSBSTOR C:\windows\System32\Drivers\RtsUStor.sys
18:16:36.0302 0x06f0 RSUSBSTOR - ok
18:16:36.0381 0x06f0 [ 55B2F67A9764B30AA32AD58915A92FA5, E6137D1F275BD72A50296E226E475BB98A2D244D693475C15BCE6E66C0EB8466 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
18:16:36.0396 0x06f0 RtkAudioService - ok
18:16:36.0443 0x06f0 [ 3AB1AA5155684F40E2F5215A258D2471, 3D6A5F603FA6809651A006EA31F57920A45642B6B9E8EC80E5399D1301F635E4 ] RTL8168 C:\windows\system32\DRIVERS\Rt630x64.sys
18:16:36.0521 0x06f0 RTL8168 - ok
18:16:36.0553 0x06f0 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\windows\System32\drivers\vms3cap.sys
18:16:36.0599 0x06f0 s3cap - ok
18:16:36.0631 0x06f0 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\windows\system32\lsass.exe
18:16:36.0662 0x06f0 SamSs - ok
18:16:36.0677 0x06f0 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\windows\system32\drivers\sbp2port.sys
18:16:36.0724 0x06f0 sbp2port - ok
18:16:36.0771 0x06f0 [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\windows\System32\SCardSvr.dll
18:16:36.0834 0x06f0 SCardSvr - ok
18:16:36.0865 0x06f0 [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\windows\System32\ScDeviceEnum.dll
18:16:36.0912 0x06f0 ScDeviceEnum - ok
18:16:36.0959 0x06f0 [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
18:16:37.0006 0x06f0 scfilter - ok
18:16:37.0100 0x06f0 [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule C:\windows\system32\schedsvc.dll
18:16:37.0209 0x06f0 Schedule - ok
18:16:37.0256 0x06f0 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\windows\System32\certprop.dll
18:16:37.0287 0x06f0 SCPolicySvc - ok
18:16:37.0318 0x06f0 [ 7B7C482CF48E6EE33664340D1A78E6FE, CE5077C4B0372F4F9F02B0B37AE58C0DAEFCA9D242065731A23F072506430575 ] sdbus C:\windows\System32\drivers\sdbus.sys
18:16:37.0365 0x06f0 sdbus - ok
18:16:37.0381 0x06f0 [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\windows\System32\drivers\sdstor.sys
18:16:37.0428 0x06f0 sdstor - ok
18:16:37.0443 0x06f0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\windows\system32\drivers\secdrv.sys
18:16:37.0506 0x06f0 secdrv - ok
18:16:37.0553 0x06f0 [ BA24CEA7152239F42ECD04AFB7C89D24, A2A11EABB0C283772B74667C7544B61BEB1B9745FBF065E831542129EB585AFA ] seclogon C:\windows\system32\seclogon.dll
18:16:37.0584 0x06f0 seclogon - ok
18:16:37.0631 0x06f0 [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\windows\System32\sens.dll
18:16:37.0678 0x06f0 SENS - ok
18:16:37.0725 0x06f0 [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\windows\system32\sensrsvc.dll
18:16:37.0772 0x06f0 SensrSvc - ok
18:16:37.0787 0x06f0 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\windows\system32\drivers\SerCx.sys
18:16:37.0818 0x06f0 SerCx - ok
18:16:37.0834 0x06f0 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\windows\system32\drivers\SerCx2.sys
18:16:37.0881 0x06f0 SerCx2 - ok
18:16:37.0896 0x06f0 [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\windows\System32\drivers\serenum.sys
18:16:37.0928 0x06f0 Serenum - ok
18:16:37.0943 0x06f0 [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\windows\System32\drivers\serial.sys
18:16:37.0974 0x06f0 Serial - ok
18:16:38.0021 0x06f0 [ 96B01F117057FB4DAE0FF919ACB55770, D0F58F1CAE4F81D60FCE60BB0065A34B4F897E8105DF17B6DAA334938CD25A56 ] sermouse C:\windows\System32\drivers\sermouse.sys
18:16:38.0068 0x06f0 sermouse - ok
18:16:38.0146 0x06f0 [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv C:\windows\system32\sessenv.dll
18:16:38.0225 0x06f0 SessionEnv - ok
18:16:38.0225 0x06f0 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\windows\System32\drivers\sfloppy.sys
18:16:38.0256 0x06f0 sfloppy - ok
18:16:38.0303 0x06f0 [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\windows\System32\ipnathlp.dll
18:16:38.0365 0x06f0 SharedAccess - ok
18:16:38.0412 0x06f0 [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\windows\System32\shsvcs.dll
18:16:38.0475 0x06f0 ShellHWDetection - ok
18:16:38.0490 0x06f0 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
18:16:38.0521 0x06f0 SiSRaid2 - ok
18:16:38.0537 0x06f0 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
18:16:38.0568 0x06f0 SiSRaid4 - ok
18:16:38.0600 0x06f0 [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\windows\System32\smphost.dll
18:16:38.0647 0x06f0 smphost - ok
18:16:38.0693 0x06f0 [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\windows\System32\snmptrap.exe
18:16:38.0725 0x06f0 SNMPTRAP - ok
18:16:38.0771 0x06f0 [ D24B1945ED1F9C96DA786DBBF1E983CE, B46CB0B72B7A3DF94A46B8D65E38535C5F8E72A55CF2DC48EFA1F9A0108691C4 ] spaceport C:\windows\system32\drivers\spaceport.sys
18:16:38.0850 0x06f0 spaceport - ok
18:16:38.0850 0x06f0 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\windows\system32\drivers\SpbCx.sys
18:16:38.0896 0x06f0 SpbCx - ok
18:16:38.0975 0x06f0 [ FCB156A6745631A67DEA61827061D483, 9275ABFA1E1E595969A71C0DA228D18D1B868BF46E097E1276142BD80F8A32C9 ] Spooler C:\windows\System32\spoolsv.exe
18:16:39.0053 0x06f0 Spooler - ok
18:16:39.0334 0x06f0 [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc C:\windows\system32\sppsvc.exe
18:16:39.0709 0x06f0 sppsvc - ok
18:16:39.0803 0x06f0 [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv C:\windows\system32\DRIVERS\srv.sys
18:16:39.0913 0x06f0 srv - ok
18:16:39.0944 0x13e0 Object required for P2P: [ C3E7E1F3C85A6788F3BA078BA214341E ] AdobeFlashPlayerUpdateSvc
18:16:40.0006 0x06f0 [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2 C:\windows\system32\DRIVERS\srv2.sys
18:16:40.0116 0x06f0 srv2 - ok
18:16:40.0163 0x06f0 [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
18:16:40.0225 0x06f0 srvnet - ok
18:16:40.0303 0x06f0 [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
18:16:40.0366 0x06f0 SSDPSRV - ok
18:16:40.0413 0x06f0 [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\windows\system32\sstpsvc.dll
18:16:40.0459 0x06f0 SstpSvc - ok
18:16:40.0491 0x06f0 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\windows\system32\drivers\stexstor.sys
18:16:40.0537 0x06f0 stexstor - ok
18:16:40.0616 0x06f0 [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\windows\System32\wiaservc.dll
18:16:40.0694 0x06f0 stisvc - ok
18:16:40.0725 0x06f0 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\windows\system32\drivers\storahci.sys
18:16:40.0772 0x06f0 storahci - ok
18:16:40.0803 0x06f0 [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\windows\system32\drivers\vmstorfl.sys
18:16:40.0850 0x06f0 storflt - ok
18:16:40.0881 0x06f0 [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme C:\windows\system32\drivers\stornvme.sys
18:16:40.0912 0x06f0 stornvme - ok
18:16:40.0959 0x06f0 [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\windows\system32\storsvc.dll
18:16:41.0022 0x06f0 StorSvc - ok
18:16:41.0038 0x06f0 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\windows\system32\drivers\storvsc.sys
18:16:41.0084 0x06f0 storvsc - ok
18:16:41.0116 0x06f0 [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\windows\system32\svsvc.dll
18:16:41.0178 0x06f0 svsvc - ok
18:16:41.0225 0x06f0 [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\windows\System32\drivers\swenum.sys
18:16:41.0272 0x06f0 swenum - ok
18:16:41.0351 0x06f0 [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\windows\System32\swprv.dll
18:16:41.0413 0x06f0 swprv - ok
18:16:41.0507 0x06f0 [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain C:\windows\system32\sysmain.dll
18:16:41.0601 0x06f0 SysMain - ok
18:16:41.0663 0x06f0 [ 23BECB70654B192A7E378DEE3DBD8D42, 7596174AE7508B62C40A429645198F6A420D0CD5B62A10AB78516113584E7EDB ] SystemEventsBroker C:\windows\System32\SystemEventsBrokerServer.dll
18:16:41.0725 0x06f0 SystemEventsBroker - ok
18:16:41.0772 0x06f0 [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\windows\System32\TabSvc.dll
18:16:41.0819 0x06f0 TabletInputService - ok
18:16:41.0866 0x06f0 [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\windows\System32\tapisrv.dll
18:16:41.0929 0x06f0 TapiSrv - ok
18:16:42.0069 0x06f0 [ 468273F7089A3A33D149955F0F203FA4, 18FD0B73FBD63550E904EE76D4323EFE163BFF8C3DC6DE67F4BE6003C7DC6879 ] Tcpip C:\windows\system32\drivers\tcpip.sys
18:16:42.0272 0x06f0 Tcpip - ok
18:16:42.0413 0x06f0 [ 468273F7089A3A33D149955F0F203FA4, 18FD0B73FBD63550E904EE76D4323EFE163BFF8C3DC6DE67F4BE6003C7DC6879 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
18:16:42.0601 0x06f0 TCPIP6 - ok
18:16:42.0632 0x13e0 Object send P2P result: true
18:16:42.0632 0x13e0 Object required for P2P: [ 21144F53F79975801AB9A9A027707A85 ] avast! Firewall
18:16:42.0648 0x06f0 [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
18:16:42.0695 0x06f0 tcpipreg - ok
18:16:42.0757 0x06f0 [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx C:\windows\system32\DRIVERS\tdx.sys
18:16:42.0788 0x06f0 tdx - ok
18:16:42.0820 0x06f0 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\windows\System32\drivers\terminpt.sys
18:16:42.0851 0x06f0 terminpt - ok
18:16:42.0945 0x06f0 [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\windows\System32\termsrv.dll
18:16:43.0023 0x06f0 TermService - ok
18:16:43.0070 0x06f0 [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\windows\system32\themeservice.dll
18:16:43.0117 0x06f0 Themes - ok
18:16:43.0163 0x06f0 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\windows\system32\mmcss.dll
18:16:43.0195 0x06f0 THREADORDER - ok
18:16:43.0257 0x06f0 [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\windows\System32\TimeBrokerServer.dll
18:16:43.0320 0x06f0 TimeBroker - ok
18:16:43.0335 0x06f0 [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM C:\windows\system32\drivers\tpm.sys
18:16:43.0382 0x06f0 TPM - ok
18:16:43.0429 0x06f0 [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\windows\System32\trkwks.dll
18:16:43.0476 0x06f0 TrkWks - ok
18:16:43.0523 0x06f0 [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
18:16:43.0585 0x06f0 TrustedInstaller - ok
18:16:43.0601 0x06f0 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
18:16:43.0663 0x06f0 TsUsbFlt - ok
18:16:43.0710 0x06f0 [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\windows\System32\drivers\TsUsbGD.sys
18:16:43.0773 0x06f0 TsUsbGD - ok
18:16:43.0788 0x06f0 [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
18:16:43.0866 0x06f0 tunnel - ok
18:16:43.0882 0x06f0 [ E624283C1A2F9BB4688A002914CC00A7, B6908C1FFDD6BCFFC5C2FC0C429FC3E237E340F891F80CFD737BE41E5EF7E328 ] TXEIx64 C:\windows\System32\drivers\TXEIx64.sys
18:16:43.0914 0x06f0 TXEIx64 - ok
18:16:43.0929 0x06f0 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\windows\system32\drivers\uagp35.sys
18:16:43.0960 0x06f0 uagp35 - ok
18:16:43.0976 0x06f0 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\windows\System32\drivers\uaspstor.sys
18:16:44.0023 0x06f0 UASPStor - ok
18:16:44.0070 0x06f0 [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\windows\System32\drivers\ucx01000.sys
18:16:44.0116 0x06f0 UCX01000 - ok
18:16:44.0148 0x06f0 [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs C:\windows\system32\DRIVERS\udfs.sys
18:16:44.0226 0x06f0 udfs - ok
18:16:44.0242 0x06f0 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\windows\System32\drivers\UEFI.sys
18:16:44.0273 0x06f0 UEFI - ok
18:16:44.0320 0x06f0 [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\windows\system32\UI0Detect.exe
18:16:44.0382 0x06f0 UI0Detect - ok
18:16:44.0413 0x06f0 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
18:16:44.0460 0x06f0 uliagpkx - ok
18:16:44.0476 0x06f0 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\windows\System32\drivers\umbus.sys
18:16:44.0523 0x06f0 umbus - ok
18:16:44.0523 0x06f0 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\windows\System32\drivers\umpass.sys
18:16:44.0554 0x06f0 UmPass - ok
18:16:44.0617 0x06f0 [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\windows\System32\umrdp.dll
18:16:44.0679 0x06f0 UmRdpService - ok
18:16:44.0757 0x06f0 [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\windows\System32\upnphost.dll
18:16:44.0804 0x06f0 upnphost - ok
18:16:44.0851 0x06f0 [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\windows\System32\drivers\usbccgp.sys
18:16:44.0898 0x06f0 usbccgp - ok
18:16:44.0929 0x06f0 [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\windows\System32\drivers\usbcir.sys
18:16:44.0992 0x06f0 usbcir - ok
18:16:45.0039 0x06f0 [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci C:\windows\System32\drivers\usbehci.sys
18:16:45.0086 0x06f0 usbehci - ok
18:16:45.0164 0x06f0 [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub C:\windows\System32\drivers\usbhub.sys
18:16:45.0242 0x06f0 usbhub - ok
18:16:45.0304 0x06f0 [ FAA564A13576F9284546BF016D27B551, 1D2CD13DC0B02DD40657EE4F93F4A13C78D2F2EF91685E563D78E217C96DF544 ] USBHUB3 C:\windows\System32\drivers\UsbHub3.sys
18:16:45.0336 0x13e0 Object send P2P result: true
18:16:45.0398 0x06f0 USBHUB3 - ok
18:16:45.0445 0x06f0 [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci C:\windows\System32\drivers\usbohci.sys
18:16:45.0523 0x06f0 usbohci - ok
18:16:45.0523 0x06f0 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\windows\System32\drivers\usbprint.sys
18:16:45.0570 0x06f0 usbprint - ok
18:16:45.0585 0x06f0 [ 0F030491BA4A27BD46F8B8ACEEE83F1A, 7063855611BEF94D4D229BA1BE507ECBDD89F5861641A407EB3E2919A352F9D4 ] usbscan C:\windows\System32\drivers\usbscan.sys
18:16:45.0632 0x06f0 usbscan - ok
18:16:45.0664 0x06f0 [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR C:\windows\System32\drivers\USBSTOR.SYS
18:16:45.0711 0x06f0 USBSTOR - ok
18:16:45.0742 0x06f0 [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci C:\windows\System32\drivers\usbuhci.sys
18:16:45.0804 0x06f0 usbuhci - ok
18:16:45.0851 0x06f0 [ 1A20F03700D2B2ED775E38D751EF2F63, 76F8BE9F412D4397437E60A7E6231C80EA9B4F5436C9A8FAB967C78604994AE9 ] USBXHCI C:\windows\System32\drivers\USBXHCI.SYS
18:16:45.0914 0x06f0 USBXHCI - ok
18:16:45.0929 0x06f0 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\windows\system32\lsass.exe
18:16:45.0945 0x06f0 VaultSvc - ok
18:16:45.0976 0x06f0 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
18:16:46.0007 0x06f0 vdrvroot - ok
18:16:46.0132 0x06f0 [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\windows\System32\vds.exe
18:16:46.0211 0x06f0 vds - ok
18:16:46.0242 0x06f0 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\windows\system32\drivers\VerifierExt.sys
18:16:46.0305 0x06f0 VerifierExt - ok
18:16:46.0367 0x06f0 [ C06E8481E068F170A258441639AC5792, 2F550530BACB511A195D5047F003B01CB6E04FA9A0DCCF638CB3D51FF5467DC7 ] vhdmp C:\windows\System32\drivers\vhdmp.sys
18:16:46.0430 0x06f0 vhdmp - ok
18:16:46.0461 0x06f0 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\windows\system32\drivers\viaide.sys
18:16:46.0492 0x06f0 viaide - ok
18:16:46.0524 0x06f0 [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus C:\windows\system32\drivers\vmbus.sys
18:16:46.0555 0x06f0 vmbus - ok
18:16:46.0570 0x06f0 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\windows\System32\drivers\VMBusHID.sys
18:16:46.0602 0x06f0 VMBusHID - ok
18:16:46.0664 0x06f0 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\windows\System32\ICSvc.dll
18:16:46.0711 0x06f0 vmicguestinterface - ok
18:16:46.0727 0x06f0 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat C:\windows\System32\ICSvc.dll
18:16:46.0774 0x06f0 vmicheartbeat - ok
18:16:46.0805 0x06f0 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\windows\System32\ICSvc.dll
18:16:46.0836 0x06f0 vmickvpexchange - ok
18:16:46.0867 0x06f0 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv C:\windows\System32\ICSvc.dll
18:16:46.0914 0x06f0 vmicrdv - ok
18:16:46.0930 0x06f0 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown C:\windows\System32\ICSvc.dll
18:16:46.0977 0x06f0 vmicshutdown - ok
18:16:47.0008 0x06f0 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync C:\windows\System32\ICSvc.dll
18:16:47.0055 0x06f0 vmictimesync - ok
18:16:47.0070 0x06f0 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss C:\windows\System32\ICSvc.dll
18:16:47.0117 0x06f0 vmicvss - ok
18:16:47.0133 0x06f0 [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr C:\windows\system32\drivers\volmgr.sys
18:16:47.0180 0x06f0 volmgr - ok
18:16:47.0195 0x06f0 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\windows\system32\drivers\volmgrx.sys
18:16:47.0274 0x06f0 volmgrx - ok
18:16:47.0336 0x06f0 [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap C:\windows\system32\drivers\volsnap.sys
18:16:47.0398 0x06f0 volsnap - ok
18:16:47.0430 0x06f0 [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci C:\windows\System32\drivers\vpci.sys
18:16:47.0477 0x06f0 vpci - ok
18:16:47.0492 0x06f0 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\windows\system32\drivers\vsmraid.sys
18:16:47.0555 0x06f0 vsmraid - ok
18:16:47.0649 0x06f0 [ 94FAFD473CDD80CE19A21FB9503D7ED1, 953E5E8C753C0017E1258695A76F60CC05D283F7476B9D9C5C8AC78B8E3FCE18 ] VSS C:\windows\system32\vssvc.exe
18:16:47.0758 0x06f0 VSS - ok
18:16:47.0774 0x06f0 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\windows\system32\drivers\vstxraid.sys
18:16:47.0821 0x06f0 VSTXRAID - ok
18:16:47.0852 0x06f0 [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\windows\System32\drivers\vwifibus.sys
18:16:47.0898 0x06f0 vwifibus - ok
18:16:47.0961 0x06f0 [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\windows\system32\w32time.dll
18:16:48.0055 0x06f0 W32Time - ok
18:16:48.0117 0x06f0 [ 8E553C859C83784DEC08B10AFC3EAC92, 41D8DBA1500DBD3AC9783169ACF545805EF05069F12866238992A30794369254 ] w3logsvc C:\windows\system32\inetsrv\w3logsvc.dll
18:16:48.0164 0x06f0 w3logsvc - ok
18:16:48.0164 0x06f0 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\windows\System32\drivers\wacompen.sys
18:16:48.0211 0x06f0 WacomPen - ok
18:16:48.0258 0x06f0 [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarp C:\windows\system32\DRIVERS\wanarp.sys
18:16:48.0321 0x06f0 Wanarp - ok
18:16:48.0336 0x06f0 [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
18:16:48.0383 0x06f0 Wanarpv6 - ok
18:16:48.0430 0x06f0 [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS C:\windows\system32\inetsrv\iisw3adm.dll
18:16:48.0493 0x06f0 WAS - ok
18:16:48.0602 0x06f0 [ A81988DCC4FA440AA88B84CA452F5E22, 3573AAA09971E8ADB6FEFA778E02B2D8EE5E4249267CF37A524D9F019CC836FB ] wbengine C:\windows\system32\wbengine.exe
18:16:48.0743 0x06f0 wbengine - ok
18:16:48.0805 0x06f0 [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
18:16:48.0899 0x06f0 WbioSrvc - ok
18:16:48.0961 0x06f0 [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\windows\System32\wcmsvc.dll
18:16:49.0024 0x06f0 Wcmsvc - ok
18:16:49.0071 0x06f0 [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\windows\System32\wcncsvc.dll
18:16:49.0118 0x06f0 wcncsvc - ok
18:16:49.0149 0x06f0 [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
18:16:49.0211 0x06f0 WcsPlugInService - ok
18:16:49.0227 0x06f0 [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot C:\windows\system32\drivers\WdBoot.sys
18:16:49.0274 0x06f0 WdBoot - ok
18:16:49.0368 0x06f0 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
18:16:49.0461 0x06f0 Wdf01000 - ok
18:16:49.0493 0x06f0 [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter C:\windows\system32\drivers\WdFilter.sys
18:16:49.0555 0x06f0 WdFilter - ok
18:16:49.0602 0x06f0 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\windows\system32\wdi.dll
18:16:49.0665 0x06f0 WdiServiceHost - ok
18:16:49.0680 0x06f0 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\windows\system32\wdi.dll
18:16:49.0711 0x06f0 WdiSystemHost - ok
18:16:49.0743 0x06f0 [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv C:\windows\system32\Drivers\WdNisDrv.sys
18:16:49.0774 0x06f0 WdNisDrv - ok
18:16:49.0805 0x06f0 WdNisSvc - ok
18:16:49.0852 0x06f0 [ 40F83492DB9ABBA59773A45FB487C8B2, 0D0DE0B0C9B929FEFD2674CCF17F5F2FC4B16EAB8E1981BBCE51B0305FD7D75E ] WebClient C:\windows\System32\webclnt.dll
18:16:49.0930 0x06f0 WebClient - ok
18:16:49.0977 0x06f0 [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\windows\system32\wecsvc.dll
18:16:50.0040 0x06f0 Wecsvc - ok
18:16:50.0071 0x06f0 [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\windows\system32\wephostsvc.dll
18:16:50.0118 0x06f0 WEPHOSTSVC - ok
18:16:50.0165 0x06f0 [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\windows\System32\wercplsupport.dll
18:16:50.0227 0x06f0 wercplsupport - ok
18:16:50.0290 0x06f0 [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\windows\System32\WerSvc.dll
18:16:50.0337 0x06f0 WerSvc - ok
18:16:50.0384 0x06f0 [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS C:\windows\system32\DRIVERS\wfplwfs.sys
18:16:50.0447 0x06f0 WFPLWFS - ok
18:16:50.0509 0x06f0 [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\windows\System32\wiarpc.dll
18:16:50.0540 0x06f0 WiaRpc - ok
18:16:50.0587 0x06f0 [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\windows\system32\drivers\wimmount.sys
18:16:50.0634 0x06f0 WIMMount - ok
18:16:50.0634 0x06f0 WinDefend - ok
18:16:50.0744 0x06f0 [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\windows\system32\winhttp.dll
18:16:50.0806 0x06f0 WinHttpAutoProxySvc - ok
18:16:50.0900 0x06f0 [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
18:16:50.0978 0x06f0 Winmgmt - ok
18:16:51.0134 0x06f0 [ 75436315AA383CF527695C6D49D0CA59, E3D55F2ACBD45D4D031FA6CA799394459C89BE50FF6ADE4FE36F2CAB2D2E63D0 ] WinRM C:\windows\system32\WsmSvc.dll
18:16:51.0322 0x06f0 WinRM - ok
18:16:51.0369 0x06f0 [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
18:16:51.0431 0x06f0 WinUsb - ok
18:16:51.0525 0x06f0 [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\windows\System32\wlansvc.dll
18:16:51.0634 0x06f0 WlanSvc - ok
18:16:51.0759 0x06f0 [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\windows\system32\wlidsvc.dll
18:16:51.0884 0x06f0 wlidsvc - ok
18:16:51.0900 0x06f0 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\windows\System32\drivers\wmiacpi.sys
18:16:51.0978 0x06f0 WmiAcpi - ok
18:16:52.0025 0x06f0 [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
18:16:52.0072 0x06f0 wmiApSrv - ok
18:16:52.0103 0x06f0 WMPNetworkSvc - ok
18:16:52.0134 0x06f0 [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\windows\system32\drivers\Wof.sys
18:16:52.0181 0x06f0 Wof - ok
18:16:52.0275 0x06f0 [ 588040D595BBF0856CA1ADD941A8ED17, CBC92BB5453FE1BEA6F33239B7CE884F312559591383408EA5F95A006156C5D3 ] workfolderssvc C:\windows\system32\workfolderssvc.dll
18:16:52.0400 0x06f0 workfolderssvc - ok
18:16:52.0431 0x06f0 [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\windows\system32\DRIVERS\wpcfltr.sys
18:16:52.0494 0x06f0 wpcfltr - ok
18:16:52.0525 0x06f0 [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\windows\System32\wpcsvc.dll
18:16:52.0588 0x06f0 WPCSvc - ok
18:16:52.0634 0x06f0 [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
18:16:52.0697 0x06f0 WPDBusEnum - ok
18:16:52.0728 0x06f0 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\windows\system32\drivers\WpdUpFltr.sys
18:16:52.0806 0x06f0 WpdUpFltr - ok
18:16:52.0838 0x06f0 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
18:16:52.0900 0x06f0 ws2ifsl - ok
18:16:52.0947 0x06f0 [ 5596C0960ED6ED7494BF2A55DE428684, C95CF09A657F37F421CC80E16F2F95B8EC59A8D5D48F104551155EAC8E53DCB2 ] wscsvc C:\windows\System32\wscsvc.dll
18:16:53.0025 0x06f0 wscsvc - ok
18:16:53.0025 0x06f0 WSearch - ok
18:16:53.0212 0x06f0 [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\windows\System32\WSService.dll
18:16:53.0432 0x06f0 WSService - ok
18:16:53.0619 0x06f0 [ 688DAAE720E39DA86822785195646663, DB6E0F89496BB74EDF8378E6AE06364B19249701F6ACD176A0DCA1951E81A63D ] wuauserv C:\windows\system32\wuaueng.dll
18:16:53.0838 0x06f0 wuauserv - ok
18:16:53.0885 0x06f0 [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
18:16:53.0963 0x06f0 WudfPf - ok
18:16:53.0994 0x06f0 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\windows\System32\drivers\WUDFRd.sys
18:16:54.0041 0x06f0 WUDFRd - ok
18:16:54.0088 0x06f0 [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\windows\System32\WUDFSvc.dll
18:16:54.0135 0x06f0 wudfsvc - ok
18:16:54.0166 0x06f0 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\windows\System32\drivers\WUDFRd.sys
18:16:54.0213 0x06f0 WUDFWpdFs - ok
18:16:54.0228 0x06f0 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp C:\windows\system32\DRIVERS\WUDFRd.sys
18:16:54.0275 0x06f0 WUDFWpdMtp - ok
18:16:54.0338 0x06f0 [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\windows\System32\wwansvc.dll
18:16:54.0400 0x06f0 WwanSvc - ok
18:16:54.0416 0x06f0 ================ Scan global ===============================
18:16:54.0478 0x06f0 [ 05B08C20B8428ECE088CB5635696A48D, 471642A2D0E5C3BB235962FC8D86A49AC30D7DDE80B97E348425BBFCDE4DCDC3 ] C:\windows\system32\basesrv.dll
18:16:54.0525 0x06f0 [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\windows\system32\winsrv.dll
18:16:54.0588 0x06f0 [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\windows\system32\sxssrv.dll
18:16:54.0635 0x06f0 [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\windows\system32\services.exe
18:16:54.0650 0x06f0 [ Global ] - ok
18:16:54.0650 0x06f0 ================ Scan MBR ==================================
18:16:54.0682 0x06f0 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
18:16:54.0791 0x06f0 \Device\Harddisk0\DR0 - ok
18:16:59.0011 0x06f0 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
18:16:59.0120 0x06f0 \Device\Harddisk1\DR1 - ok
18:16:59.0136 0x06f0 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
18:16:59.0167 0x06f0 \Device\Harddisk1\DR1 - ok
18:16:59.0167 0x06f0 ================ Scan VBR ==================================
18:16:59.0183 0x06f0 [ 1FD2B3472473B8BECAF909C4E9884A4E ] \Device\Harddisk0\DR0\Partition1
18:16:59.0199 0x06f0 \Device\Harddisk0\DR0\Partition1 - ok
18:16:59.0214 0x06f0 [ 4F81042C43BE9C6957F6C2D6D890C59E ] \Device\Harddisk0\DR0\Partition2
18:16:59.0230 0x06f0 \Device\Harddisk0\DR0\Partition2 - ok
18:16:59.0245 0x06f0 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
18:16:59.0245 0x06f0 \Device\Harddisk0\DR0\Partition3 - ok
18:16:59.0261 0x06f0 [ D27DBC8BC211B2067DD913C7BE871A0A ] \Device\Harddisk0\DR0\Partition4
18:16:59.0277 0x06f0 \Device\Harddisk0\DR0\Partition4 - ok
18:16:59.0308 0x06f0 [ 9CA0B5DBB051168E855EFB5E0698E2D2 ] \Device\Harddisk0\DR0\Partition5
18:16:59.0324 0x06f0 \Device\Harddisk0\DR0\Partition5 - ok
18:16:59.0324 0x06f0 [ 9F8750BDFDB0D9A1EF1F8D7D6F859D00 ] \Device\Harddisk1\DR1\Partition1
18:16:59.0324 0x06f0 \Device\Harddisk1\DR1\Partition1 - ok
18:16:59.0340 0x06f0 [ 9F8750BDFDB0D9A1EF1F8D7D6F859D00 ] \Device\Harddisk1\DR1\Partition1
18:16:59.0340 0x06f0 \Device\Harddisk1\DR1\Partition1 - ok
18:16:59.0340 0x06f0 ================ Scan generic autorun ======================
18:16:59.0699 0x06f0 [ 0FB69C93DB4A1EABCD53DB7346E5BD19, 04A94E835D94C25B2036A2A70EAA08B1293514DA0F8CB9D830FFF46424FC38C9 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
18:16:59.0980 0x06f0 RTHDVCPL - ok
18:17:00.0184 0x06f0 [ DE9938F17D9B173B1CA83E218F03CCC0, BC007746535036743640A17E4AB495114F1370A7522BA6391309266C0B7789A2 ] C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
18:17:00.0340 0x06f0 SimplePass - ok
18:17:00.0371 0x06f0 [ 9159063E3EF84A832DB5251447BACE9C, EE1DD20A5176816F484DD6945674750F43EC37B13355815FD20459097028EAA5 ] C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
18:17:00.0387 0x06f0 OPBHOBroker - ok
18:17:00.0418 0x06f0 [ AC382EA1AA21E592C808E46D95E6533D, B2941B6AAB48C245B47E94C74F0A1149A66428586ED3747C74C45BBFDA03741E ] C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
18:17:00.0434 0x06f0 OPBHOBrokerDesktop - ok
18:17:00.0512 0x06f0 [ C7F017C9B163E7DAB864649E8241F683, F007F107FCA0E3A12D7E900101EBF02C2453D4AA56BE18769E86B592C88C5106 ] C:\Program Files\iTunes\iTunesHelper.exe
18:17:00.0543 0x06f0 iTunesHelper - ok
18:17:00.0872 0x06f0 [ 8A312D5764B4FC4C55CEDDEED4652CF1, C4E726C9C77614CD32D5B76DA2E9A049EC490C2392D9A94B84712BCBF47BA7C6 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
18:17:01.0121 0x06f0 AvastUI.exe - ok
18:17:01.0278 0x06f0 [ 8AC10EC7431ABCB52A74CC9236907EB7, 40C1354165EDE1503D078C1274A9BA0B02C80B2628EB8BF663A23A87760B9C17 ] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
18:17:01.0340 0x06f0 CanonQuickMenu - ok
18:17:02.0106 0x06f0 [ C9521D28774183B5B53F8DCBC6283765, B35BB99FB917505258FA26D8E6544D45EE7D4B79C52C9DD699946A8A8BFAFD3E ] C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
18:17:02.0887 0x06f0 DSL Soforthilfe - ok
18:17:02.0981 0x06f0 [ 271B0D188430670509CB9943D5229205, 74CB5A9D8B5988AE08C0F65C601FC54F8745BAB6825B6FEEFBA8F068D656D8D7 ] C:\Program Files (x86)\QuickTime\QTTask.exe
18:17:03.0028 0x06f0 QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
18:17:05.0686 0x06f0 Detect skipped due to KSN trusted
18:17:05.0686 0x06f0 QuickTime Task - ok
18:17:05.0749 0x06f0 [ E3B5AF054806682787A1232021BD25E0, 6DBCF5625DF0323D12D3B8C41C8B75DCC3F93770FB8682BCEFA774F4680C2283 ] C:\Program Files (x86)\PDF24\pdf24.exe
18:17:05.0780 0x06f0 PDFPrint - ok
18:17:05.0780 0x06f0 Waiting for KSN requests completion. In queue: 9
18:17:06.0796 0x06f0 Waiting for KSN requests completion. In queue: 9
18:17:07.0796 0x06f0 Waiting for KSN requests completion. In queue: 9
18:17:08.0421 0x15d8 Object required for P2P: [ 8A312D5764B4FC4C55CEDDEED4652CF1 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
18:17:08.0797 0x06f0 Waiting for KSN requests completion. In queue: 4
18:17:09.0797 0x06f0 Waiting for KSN requests completion. In queue: 4
18:17:10.0813 0x06f0 Waiting for KSN requests completion. In queue: 4
18:17:11.0172 0x15d8 Object send P2P result: true
18:17:11.0861 0x06f0 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
18:17:11.0876 0x06f0 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.1.2245.1540 ), 0x41000 ( enabled : updated )
18:17:11.0876 0x06f0 FW detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.1.2245.1540 ), 0x41010 ( enabled )
18:17:14.0455 0x06f0 ============================================================
18:17:14.0455 0x06f0 Scan finished
18:17:14.0455 0x06f0 ============================================================
18:17:14.0471 0x1480 Detected object count: 0
18:17:14.0471 0x1480 Actual detected object count: 0

Alt 05.01.2016, 21:01   #10
Deathkid535
/// Malwareteam
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Hi,

Sehr gut

Ich brauch die FRST.txt auch noch bitte

Alt 05.01.2016, 23:08   #11
pinsel
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

FRST.txt - Datei verkleinern?



Hallo, guten Morgen
nochmal Susanne (pinsel) - wie kann ich die riesige Datei verkleinern, bzw. in mehrere Teile aufspalten? FRST.txt hat anscheinend über 500 000 Zeichen.
Ich könnte es wirklich schaffen...

Ansonsten: einen schönen Tag1

grüße von Susanne

Alt 05.01.2016, 23:57   #12
Deathkid535
/// Malwareteam
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Hi,

Guten Morgen? Das TB schläft nicht

Kopier die erste Hälfte, poste sie, dann die zweite Hälfte. Wenn du damit Probleme hast kann ich morgen Abend schnell ein Programm zusammenpfuschen, bin aber jetzt nicht am PC.

*Edit*

Wenn du Englisch verstehst kannst du die Anleitung machen http://www.freewaregenius.com/how-to...of-lines-rows/

Geändert von Deathkid535 (06.01.2016 um 00:09 Uhr)

Alt 06.01.2016, 00:23   #13
pinsel
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-12-2015
durchgeführt von Charlotte (Administrator) auf SUSANNE (05-01-2016 17:35:03)
Gestartet von C:\Users\Charlotte\Downloads
Geladene Profile: Charlotte (Verfügbare Profile: Charlotte)
Platform: Windows 8.1 Connected (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
() C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8465112 2015-12-13] (Realtek Semiconductor)
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-09] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-13] (AVAST Software)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM-x32\...\Run: [DSL Soforthilfe] => C:\Program Files (x86)\DSL Soforthilfe\DSL_Soforthilfe.exe [20585888 2013-11-21] ()
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [221216 2015-11-18] (Geek Software GmbH)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-13] (AVAST Software)
Startup: C:\Users\Charlotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2015-12-13]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3798836E-956E-41C9-A5DB-86798AC64C7A}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK14/4
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK14/4
HKU\S-1-5-21-3783643309-3904551039-2328678029-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3783643309-3904551039-2328678029-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK14/4
SearchScopes: HKLM -> {DFD19EA4-30F1-4FC3-BABA-074A279CECA7} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {DFD19EA4-30F1-4FC3-BABA-074A279CECA7} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3783643309-3904551039-2328678029-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3783643309-3904551039-2328678029-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3783643309-3904551039-2328678029-1001 -> {DFD19EA4-30F1-4FC3-BABA-074A279CECA7} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-13] (AVAST Software)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll => Keine Datei
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-13] (AVAST Software)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-04-04] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-10-19] (Hewlett-Packard Company)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)

FireFox:
========
FF ProfilePath: C:\Users\Charlotte\AppData\Roaming\Mozilla\Firefox\Profiles\njsgp6ru.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-29] ()
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-29] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF user.js: detected! => C:\Users\Charlotte\AppData\Roaming\Mozilla\Firefox\Profiles\njsgp6ru.default\user.js [2016-01-05]
FF Extension: DSL Soforthilfe - C:\Users\Charlotte\AppData\Roaming\Mozilla\Firefox\Profiles\njsgp6ru.default\Extensions\{95E05177-EA09-4386-8B79-FEB1EAC063E6} [2015-12-15] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-13]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-13]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-11-16]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-12-13]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2015-12-13] (Adobe Systems) [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-13] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109520 2015-12-13] (AVAST Software)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2015-12-13] (SurfRight B.V.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2015-12-13] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [Datei ist nicht signiert]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294104 2015-12-13] (Realtek Semiconductor)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-13] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-12-13] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-19] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [466400 2015-12-13] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-13] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-13] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-13] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-19] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-13] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-13] (AVAST Software)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-03-29] (Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-01-05 17:35 - 2016-01-05 17:35 - 00015343 _____ C:\Users\Charlotte\Downloads\FRST.txt
2016-01-05 17:32 - 2016-01-05 17:35 - 00000000 ____D C:\FRST
2016-01-05 17:31 - 2016-01-05 17:31 - 02370560 _____ (Farbar) C:\Users\Charlotte\Downloads\FRST64.exe
2016-01-05 06:54 - 2016-01-05 06:57 - 00113880 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2016-01-05 06:54 - 2016-01-05 06:54 - 00001125 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-01-05 06:54 - 2016-01-05 06:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-01-05 06:54 - 2016-01-05 06:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-01-05 06:54 - 2016-01-05 06:54 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-01-05 06:54 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2016-01-05 06:54 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2016-01-05 06:54 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2016-01-04 19:44 - 2016-01-04 19:44 - 00000329 _____ C:\Users\Charlotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System.lnk
2016-01-04 00:30 - 2016-01-04 00:36 - 00000000 ____D C:\Users\Charlotte\Downloads\gradients
2016-01-04 00:28 - 2016-01-04 00:28 - 00069461 _____ C:\Users\Charlotte\Downloads\75_photoshop_gradients_31685.zip
2016-01-04 00:08 - 2016-01-04 00:08 - 00000000 ____D C:\Users\Charlotte\Downloads\_
2016-01-03 23:42 - 2016-01-04 00:22 - 00000000 ____D C:\Users\Charlotte\Downloads\neverhappens
2016-01-03 23:41 - 2006-04-20 03:04 - 00047052 _____ C:\Users\Charlotte\Downloads\¢*╩¶Í╩©ðÁ─¢Ñ▒õ.grd
2016-01-03 23:37 - 2016-01-03 23:37 - 00003661 _____ C:\Users\Charlotte\Downloads\_.zip
2016-01-03 23:36 - 2016-01-03 23:36 - 00349317 _____ C:\Users\Charlotte\Downloads\neverhappens.zip
2016-01-03 19:21 - 2016-01-03 19:21 - 00000225 _____ C:\Users\Charlotte\Downloads\Digitally Imported - PsyChill(1).pls
2016-01-02 13:44 - 2016-01-02 13:44 - 00000000 ____H C:\Users\Charlotte\Documents\Default.rdp
2016-01-02 05:48 - 2016-01-02 05:49 - 00000000 ____D C:\Users\Charlotte\Win Fonts
2016-01-02 05:21 - 2016-01-02 05:25 - 00000000 ____D C:\Users\Charlotte\Downloads\Dafont-Top50-FontPack
2016-01-02 05:19 - 2016-01-02 05:20 - 05065889 _____ C:\Users\Charlotte\Downloads\Dafont-Top50-FontPack.zip
2016-01-02 05:18 - 2016-01-02 05:18 - 01466656 _____ C:\Users\Charlotte\Downloads\Font Pack Top 50 Free Font - CHIP-Installer.exe
2016-01-01 00:22 - 2016-01-01 00:22 - 00000000 ____D C:\Users\Charlotte\Downloads\LOTR_Fonts
2016-01-01 00:20 - 2016-01-01 00:21 - 01561327 _____ C:\Users\Charlotte\Downloads\LOTR_Fonts.zip
2016-01-01 00:17 - 2016-01-01 00:17 - 00181729 _____ C:\Users\Charlotte\Downloads\elandfont.zip
2016-01-01 00:17 - 2016-01-01 00:17 - 00000000 ____D C:\Users\Charlotte\Downloads\elandfont
2016-01-01 00:15 - 2016-01-01 00:15 - 00000000 ____D C:\Users\Charlotte\Downloads\El Font Gohtic - CHIP-Installer
2015-12-31 23:01 - 2015-12-31 23:01 - 00000000 ____D C:\Users\Charlotte\Downloads\dirty_and_classic
2015-12-31 23:00 - 2015-12-31 23:00 - 00280096 _____ C:\Users\Charlotte\Downloads\dirty_and_classic.zip
2015-12-31 22:57 - 2016-01-01 15:32 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-12-31 22:53 - 2015-12-31 22:53 - 01466656 _____ C:\Users\Charlotte\Downloads\Font Pack Herr der Ringe - CHIP-Installer.exe
2015-12-31 22:52 - 2015-12-31 22:52 - 01466656 _____ C:\Users\Charlotte\Downloads\El Font Gohtic - CHIP-Installer.exe
2015-12-31 08:19 - 2015-12-31 08:19 - 00000000 ____H C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-12-31 08:08 - 2015-12-31 08:12 - 00000000 ___HD C:\ProgramData\CanonIJMIG
2015-12-31 07:57 - 2015-12-31 07:57 - 00000000 ___HD C:\ProgramData\CanonIJEGV
2015-12-31 02:26 - 2015-12-31 02:53 - 00000000 ____D C:\Users\Charlotte\AppData\Roaming\onOne Software
2015-12-31 02:26 - 2015-12-31 02:26 - 00002128 _____ C:\Users\Public\Desktop\Perfect Effects Free 9.lnk
2015-12-31 02:26 - 2015-12-31 02:26 - 00000000 ____D C:\ProgramData\Nalpeiron
2015-12-31 02:26 - 2015-12-31 02:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\onOne Software
2015-12-31 02:25 - 2015-12-31 02:26 - 00000000 ____D C:\ProgramData\onOne Software
2015-12-31 02:25 - 2015-12-31 02:25 - 00000000 ____D C:\windows\SysWOW64\spool
2015-12-31 02:25 - 2015-12-31 02:25 - 00000000 ____D C:\Program Files\onOne Software
2015-12-31 02:25 - 2015-12-31 02:25 - 00000000 ____D C:\Program Files (x86)\onOne Software
2015-12-30 22:32 - 2015-12-30 22:32 - 00000000 ___HD C:\ProgramData\CanonIJScan
2015-12-30 19:58 - 2015-12-30 19:58 - 00001875 _____ C:\Users\Charlotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\avast! antivirus.lnk
2015-12-29 16:42 - 2015-12-29 16:42 - 00001973 _____ C:\Users\Charlotte\AppData\Local\recently-used.xbel
2015-12-29 16:10 - 2015-12-29 16:10 - 00000000 ____D C:\Users\Charlotte\Downloads\Snow-Overlays(1)
2015-12-29 15:56 - 2015-12-29 16:07 - 90926232 _____ C:\Users\Charlotte\Downloads\Snow-Overlays(1).zip
2015-12-29 15:52 - 2015-12-29 15:52 - 00000917 _____ C:\Users\Charlotte\Desktop\GIMP 2.lnk
2015-12-29 15:37 - 2015-12-29 16:42 - 00000000 ____D C:\Users\Charlotte\AppData\Local\gtk-2.0
2015-12-29 15:36 - 2015-12-29 15:36 - 00000000 ____D C:\Users\Charlotte\.thumbnails
2015-12-29 15:31 - 2015-12-30 01:59 - 00000000 ____D C:\Users\Charlotte\.gimp-2.8
2015-12-29 15:31 - 2015-12-29 15:31 - 00000000 ____D C:\Users\Charlotte\AppData\Local\gegl-0.2
2015-12-29 15:31 - 2015-12-29 15:31 - 00000000 ____D C:\Users\Charlotte\AppData\Local\fontconfig
2015-12-29 14:54 - 2015-12-29 15:20 - 96819488 _____ (The GIMP Team ) C:\Users\Charlotte\Downloads\gimp-2.8.16-setup.exe
2015-12-29 14:41 - 2015-12-29 14:41 - 10485760 _____ C:\Users\Charlotte\Downloads\Snow Overlays.psd.006
2015-12-29 14:41 - 2015-12-29 14:41 - 10485760 _____ C:\Users\Charlotte\Downloads\Snow Overlays.psd.005
2015-12-29 14:41 - 2015-12-29 14:41 - 01769784 _____ C:\Users\Charlotte\Downloads\Snow Overlays.psd.007
2015-12-29 14:40 - 2015-12-29 14:41 - 10485760 _____ C:\Users\Charlotte\Downloads\Snow Overlays.psd.004
2015-12-29 14:40 - 2015-12-29 14:40 - 10485760 _____ C:\Users\Charlotte\Downloads\Snow Overlays.psd.003
2015-12-29 14:40 - 2015-12-29 14:40 - 10485760 _____ C:\Users\Charlotte\Downloads\Snow Overlays.psd.002
2015-12-29 14:40 - 2015-12-29 14:40 - 10485760 _____ C:\Users\Charlotte\Downloads\Snow Overlays.psd.001
2015-12-29 14:03 - 2015-12-29 14:47 - 00000000 ____D C:\Users\Charlotte\Downloads\Snow without bg
2015-12-29 14:03 - 2015-12-29 14:47 - 00000000 ____D C:\Users\Charlotte\Downloads\Snow with black bg
2015-12-29 14:03 - 2015-10-11 21:58 - 64684344 ____N C:\Users\Charlotte\Downloads\Snow Overlays.psd
2015-12-29 13:46 - 2015-12-29 13:57 - 90926232 _____ C:\Users\Charlotte\Downloads\Snow-Overlays.zip
2015-12-28 22:36 - 2015-12-28 22:36 - 00000000 ____D C:\Users\Charlotte\AppData\Roaming\Free M4a to MP3 Converter
2015-12-28 22:30 - 2015-12-28 22:31 - 06614152 _____ (ManiacTools.com ) C:\Users\Charlotte\Downloads\m4a-to-mp3-converter.exe
2015-12-28 22:26 - 2015-12-28 22:37 - 00000000 ____D C:\Users\Charlotte\AppData\Roaming\AdvertismentImages
2015-12-28 21:50 - 2015-12-28 21:50 - 00000078 _____ C:\Users\Charlotte\Desktop\http___23.228.66.66_8000_ 1.url
2015-12-26 18:41 - 2015-12-27 10:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-12-22 14:51 - 2015-12-22 14:51 - 00000303 _____ C:\Users\Charlotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Heimnetzgruppe.lnk
2015-12-21 15:14 - 2015-12-21 15:14 - 00002254 _____ C:\Users\Charlotte\Desktop\HP Support Assistant.lnk
2015-12-20 17:49 - 2015-12-24 17:49 - 00003186 _____ C:\windows\System32\Tasks\HPCeeScheduleForCharlotte
2015-12-20 17:49 - 2015-12-24 17:49 - 00000364 _____ C:\windows\Tasks\HPCeeScheduleForCharlotte.job
2015-12-20 16:14 - 2015-12-20 16:14 - 00000066 _____ C:\Users\Charlotte\Downloads\listen.m3u
2015-12-18 15:55 - 2015-12-18 15:55 - 00000000 ____D C:\Users\Charlotte\AppData\Local\PDF24
2015-12-18 15:53 - 2016-01-04 00:00 - 00040960 ___SH C:\Users\Charlotte\Downloads\Thumbs.db
2015-12-18 15:50 - 2015-12-18 15:50 - 00001107 _____ C:\Users\Public\Desktop\ PDF24 Compress.lnk
2015-12-18 15:50 - 2015-12-18 15:50 - 00001102 _____ C:\Users\Public\Desktop\PDF24 Creator.lnk
2015-12-18 15:50 - 2015-12-18 15:50 - 00001082 _____ C:\Users\Public\Desktop\PDF24 Fax.lnk
2015-12-18 15:50 - 2015-12-18 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2015-12-18 15:50 - 2015-12-18 15:50 - 00000000 ____D C:\Program Files (x86)\PDF24
2015-12-18 15:42 - 2015-12-18 15:42 - 01466656 _____ C:\Users\Charlotte\Downloads\PDF24 Creator - CHIP-Installer.exe
2015-12-17 12:59 - 2015-12-17 12:59 - 00305493 _____ C:\Users\Charlotte\Downloads\ChristmasFreebie_SpeckyBoy.pdf
2015-12-17 12:48 - 2015-12-17 12:48 - 00001864 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2015-12-17 12:48 - 2015-12-17 12:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-12-17 12:47 - 2015-12-17 12:48 - 00000000 ____D C:\Program Files (x86)\QuickTime
2015-12-17 12:45 - 2015-12-17 12:45 - 00000000 ____D C:\Users\Charlotte\AppData\LocalLow\Apple Computer
2015-12-17 12:40 - 2015-12-17 12:44 - 42096984 _____ (Apple Inc.) C:\Users\Charlotte\Downloads\QuickTimeInstaller.exe
2015-12-17 12:33 - 2015-12-17 12:33 - 00002627 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CS2.lnk
2015-12-17 12:32 - 2015-12-17 12:32 - 00000000 ____D C:\windows\SysWOW64\Adobe
2015-12-17 12:32 - 2004-08-17 02:40 - 00016384 _____ C:\windows\SysWOW64\FileOps.exe
2015-12-17 12:27 - 2015-12-17 12:29 - 00000000 ____D C:\AI_CS2_GR_NonRet
2015-12-17 11:08 - 2015-12-17 12:24 - 686230268 _____ (Adobe Systems Inc. ) C:\Users\Charlotte\Downloads\AI_CS2_GR_NonRet.exe
2015-12-17 10:43 - 2015-12-17 10:45 - 18160590 _____ C:\Users\Charlotte\Downloads\ChristmasFreebie_SpeckyBoy.ai
2015-12-16 19:31 - 2015-12-16 19:33 - 00000000 ___SD C:\windows\system32\CompatTel
2015-12-15 19:16 - 2016-01-05 07:23 - 00000306 __RSH C:\ProgramData\ntuser.pol
2015-12-15 19:13 - 2016-01-05 06:06 - 00001542 _____ C:\windows\system32\.crusader
2015-12-15 18:41 - 2015-12-26 09:48 - 00826872 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2015-12-15 18:41 - 2015-12-26 09:48 - 00176632 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-15 12:50 - 2015-12-15 12:50 - 00000000 ____D C:\Users\Charlotte\AppData\Roaming\SoundSpectrum
2015-12-15 12:50 - 2015-12-15 12:50 - 00000000 ____D C:\Users\Charlotte\AppData\Local\SoundSpectrum
2015-12-15 12:24 - 2015-12-29 15:24 - 00000917 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2015-12-15 12:23 - 2015-12-15 12:23 - 00000000 ____D C:\Program Files\GIMP 2
2015-12-15 12:19 - 2015-12-15 12:20 - 10055776 _____ C:\Users\Charlotte\Downloads\freebies_2012.zip
2015-12-15 12:17 - 2015-12-15 12:17 - 00000000 ____D C:\Users\Charlotte\AppData\Local\TGE
2015-12-15 12:16 - 2015-12-16 00:00 - 00000000 ____D C:\Users\Charlotte\AppData\Local\mquadr.at
2015-12-15 12:16 - 2015-12-15 12:17 - 00000000 ____D C:\ProgramData\mquadr.at
2015-12-15 12:14 - 2015-12-15 12:16 - 00000000 __HDC C:\ProgramData\{CD3330DC-8B86-4AE3-B2E4-09E56CB3E702}
2015-12-15 12:14 - 2015-12-15 12:14 - 00001310 _____ C:\Users\Public\Desktop\DSL Soforthilfe.lnk
2015-12-15 12:14 - 2015-12-15 12:14 - 00001188 _____ C:\Users\Charlotte\AppData\Roaming\Microsoft\Windows\Start Menu\DSL Soforthilfe.lnk
2015-12-15 12:14 - 2015-12-15 12:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\o2
2015-12-15 12:14 - 2015-12-15 12:14 - 00000000 ____D C:\Program Files (x86)\DSL Soforthilfe
2015-12-15 12:14 - 2013-11-21 21:56 - 03748800 ____N (mquadr.at software engineering und consulting GmbH) C:\windows\SysWOW64\M2ElevatedCalls.dll
2015-12-15 12:14 - 2013-11-21 21:56 - 03490272 ____N (mquadr.at software engineering & consulting GmbH) C:\windows\SysWOW64\m2network64helper.exe
2015-12-15 12:14 - 2013-11-21 21:56 - 00962528 ____N (mquadr.at software engineering) C:\windows\SysWOW64\M2ElevatedNetworkAdapters.dll
2015-12-15 12:14 - 2012-12-03 14:58 - 00279040 ____N (Nicomsoft Ltd.) C:\windows\system32\WiFiMan.dll
2015-12-15 12:14 - 2012-12-03 14:57 - 00238592 ____N (Nicomsoft Ltd.) C:\windows\SysWOW64\WiFiMan.dll
2015-12-15 12:06 - 2005-01-23 15:24 - 00003248 _____ C:\Users\Charlotte\Downloads\Readme.txt
2015-12-15 12:06 - 2005-01-23 14:03 - 01013760 _____ () C:\Users\Charlotte\Downloads\EdgeWorks.8bf
2015-12-15 12:04 - 2015-12-15 12:04 - 00169049 _____ C:\Users\Charlotte\Downloads\edge31.zip
2015-12-15 12:03 - 2015-12-15 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aeon
2015-12-15 12:03 - 2015-12-15 12:03 - 00000000 ____D C:\Program Files (x86)\SoundSpectrum
2015-12-15 11:53 - 2015-12-28 22:36 - 00001174 _____ C:\Users\Charlotte\Desktop\Free M4a to MP3 Converter.lnk
2015-12-15 11:53 - 2015-12-28 22:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free M4a to MP3 Converter
2015-12-15 11:53 - 2015-12-28 22:36 - 00000000 ____D C:\Program Files (x86)\Free M4a to MP3 Converter
2015-12-15 09:30 - 2015-07-30 15:04 - 00124624 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-15 09:30 - 2015-07-30 14:48 - 00103120 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-15 08:47 - 2015-12-15 08:57 - 00000000 ____D C:\windows\system32\MRT
2015-12-15 08:47 - 2015-12-15 08:47 - 00000000 ____D C:\Users\Charlotte\AppData\Local\MediaShow
2015-12-15 08:47 - 2015-11-23 19:10 - 140158008 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-12-15 07:49 - 2014-10-29 04:59 - 00014144 _____ (Microsoft Corporation) C:\windows\system32\Drivers\swenum.sys
2015-12-15 07:49 - 2014-10-29 04:58 - 00014528 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmkaud.sys
2015-12-15 07:49 - 2014-10-29 04:57 - 01552704 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2015-12-15 07:49 - 2014-10-29 04:52 - 02485056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2015-12-15 07:49 - 2014-10-29 03:08 - 18822656 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.dll
2015-12-15 07:49 - 2014-10-29 02:33 - 15157760 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Xaml.dll
2015-12-15 07:49 - 2014-10-29 02:02 - 14354944 _____ (Microsoft Corporation) C:\windows\system32\twinui.dll
2015-12-15 07:49 - 2014-10-29 02:01 - 00843776 _____ (Microsoft Corporation) C:\windows\system32\uDWM.dll
2015-12-15 07:49 - 2014-10-29 02:00 - 00309760 _____ (Microsoft Corporation) C:\windows\system32\WSDMon.dll
2015-12-15 07:49 - 2014-10-29 01:52 - 15432704 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2015-12-15 07:49 - 2014-10-29 01:52 - 01275904 _____ (Microsoft Corporation) C:\windows\system32\SearchFolder.dll
2015-12-15 07:49 - 2014-10-29 01:50 - 12749824 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.dll
2015-12-15 07:49 - 2014-10-29 01:46 - 09530368 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Search.dll
2015-12-15 07:49 - 2014-10-29 01:45 - 13318144 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2015-12-15 07:49 - 2014-10-29 01:41 - 00971776 _____ (Microsoft Corporation) C:\windows\system32\WSShared.dll
2015-12-15 07:49 - 2014-10-29 01:39 - 02814464 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers.dll
2015-12-15 07:49 - 2014-10-29 01:37 - 06386176 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Search.dll
2015-12-15 07:49 - 2014-10-29 01:35 - 00811008 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSShared.dll
2015-12-15 07:49 - 2014-10-08 10:24 - 00467776 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBHUB3.SYS
2015-12-15 07:49 - 2014-09-25 04:42 - 00373568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2015-12-15 07:48 - 2014-10-29 04:59 - 03460472 _____ (Microsoft Corporation) C:\windows\system32\WSService.dll
2015-12-15 07:48 - 2014-10-29 04:57 - 03138720 _____ (Microsoft Corporation) C:\windows\system32\WMVCORE.DLL
2015-12-15 07:48 - 2014-10-29 04:52 - 02334080 _____ (Microsoft Corporation) C:\windows\system32\mfcore.dll
2015-12-15 07:48 - 2014-10-29 04:07 - 02324208 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfcore.dll
2015-12-15 07:48 - 2014-10-29 03:29 - 04483072 _____ (Microsoft Corporation) C:\windows\system32\UIRibbon.dll
2015-12-15 07:48 - 2014-10-29 03:24 - 04418560 _____ (Microsoft Corporation) C:\windows\system32\dbgeng.dll
2015-12-15 07:48 - 2014-10-29 02:56 - 03754496 _____ (Microsoft Corporation) C:\windows\system32\MSVidCtl.dll
2015-12-15 07:48 - 2014-10-29 02:51 - 00941056 _____ (Microsoft Corporation) C:\windows\system32\XpsFilt.dll
2015-12-15 07:48 - 2014-10-29 02:45 - 00165888 _____ (Microsoft Corporation) C:\windows\system32\rdpinput.exe
2015-12-15 07:48 - 2014-10-29 02:43 - 07075328 _____ (Microsoft Corporation) C:\windows\system32\glcndFilter.dll
2015-12-15 07:48 - 2014-10-29 02:40 - 00360448 _____ (Microsoft Corporation) C:\windows\system32\rdpclip.exe
2015-12-15 07:48 - 2014-10-29 02:38 - 04690432 _____ (Microsoft Corporation) C:\windows\system32\xpsrchvw.exe
2015-12-15 07:48 - 2014-10-29 02:35 - 04709888 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll
2015-12-15 07:48 - 2014-10-29 02:34 - 03097088 _____ (Microsoft Corporation) C:\windows\system32\msftedit.dll
2015-12-15 07:48 - 2014-10-29 02:28 - 03820544 _____ (Microsoft Corporation) C:\windows\system32\rdpcore.dll
2015-12-15 07:48 - 2014-10-29 02:22 - 03633664 _____ (Microsoft Corporation) C:\windows\system32\tquery.dll
2015-12-15 07:48 - 2014-10-29 02:16 - 05267968 _____ (Microsoft Corporation) C:\windows\SysWOW64\glcndFilter.dll
2015-12-15 07:48 - 2014-10-29 02:15 - 02259456 _____ (Microsoft Corporation) C:\windows\system32\dwmcore.dll
2015-12-15 07:48 - 2014-10-29 02:03 - 04067840 _____ (Microsoft Corporation) C:\windows\SysWOW64\d2d1.dll
2015-12-15 07:48 - 2014-10-29 02:02 - 02484736 _____ (Microsoft Corporation) C:\windows\SysWOW64\msftedit.dll
2015-12-15 07:48 - 2014-10-29 01:58 - 00926208 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2015-12-15 07:48 - 2014-10-29 01:54 - 07784960 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2015-12-15 07:48 - 2014-10-29 01:52 - 02554880 _____ (Microsoft Corporation) C:\windows\system32\mssrch.dll
2015-12-15 07:48 - 2014-10-29 01:43 - 05264384 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2015-12-15 07:48 - 2014-10-07 07:45 - 03307112 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2015-12-15 07:48 - 2014-10-07 04:44 - 02890296 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2015-12-15 07:47 - 2014-10-29 05:10 - 01816008 _____ (Microsoft Corporation) C:\windows\system32\taskschd.dll
2015-12-15 07:47 - 2014-10-29 05:00 - 02314952 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2015-12-15 07:47 - 2014-10-29 05:00 - 02229168 _____ (Microsoft Corporation) C:\windows\system32\d3d9.dll
2015-12-15 07:47 - 2014-10-29 05:00 - 00544408 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2015-12-15 07:47 - 2014-10-29 04:57 - 03118096 _____ (Microsoft Corporation) C:\windows\system32\WpcMon.exe
2015-12-15 07:47 - 2014-10-29 04:57 - 02745160 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2015-12-15 07:47 - 2014-10-29 04:57 - 01286048 _____ (Microsoft Corporation) C:\windows\system32\MSAudDecMFT.dll
2015-12-15 07:47 - 2014-10-29 04:55 - 02174976 _____ (Microsoft Corporation) C:\windows\system32\combase.dll
2015-12-15 07:47 - 2014-10-29 04:52 - 01518504 _____ (Microsoft Corporation) C:\windows\system32\winmde.dll
2015-12-15 07:47 - 2014-10-29 04:52 - 01509688 _____ (Microsoft Corporation) C:\windows\system32\wmpmde.dll
2015-12-15 07:47 - 2014-10-29 04:52 - 01288096 _____ (Microsoft Corporation) C:\windows\system32\mfnetsrc.dll
2015-12-15 07:47 - 2014-10-29 04:52 - 01165744 _____ (Microsoft Corporation) C:\windows\system32\mfasfsrcsnk.dll
2015-12-15 07:47 - 2014-10-29 04:12 - 01946144 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d11.dll
2015-12-15 07:47 - 2014-10-29 04:12 - 01907384 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d9.dll
2015-12-15 07:47 - 2014-10-29 04:12 - 00430176 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxgi.dll
2015-12-15 07:47 - 2014-10-29 04:11 - 02689392 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVCORE.DLL
2015-12-15 07:47 - 2014-10-29 04:11 - 02528760 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL
2015-12-15 07:47 - 2014-10-29 04:11 - 01024200 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSAudDecMFT.dll
2015-12-15 07:47 - 2014-10-29 04:10 - 01564464 _____ (Microsoft Corporation) C:\windows\SysWOW64\combase.dll
2015-12-15 07:47 - 2014-10-29 03:59 - 03109376 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2015-12-15 07:47 - 2014-10-29 03:25 - 00785920 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2015-12-15 07:47 - 2014-10-29 03:10 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2015-12-15 07:47 - 2014-10-29 03:00 - 02162176 _____ (Microsoft Corporation) C:\windows\system32\SRH.dll
2015-12-15 07:47 - 2014-10-29 02:57 - 02924032 _____ (Microsoft Corporation) C:\windows\system32\mmcndmgr.dll
2015-12-15 07:47 - 2014-10-29 02:47 - 02072064 _____ (Microsoft Corporation) C:\windows\system32\OpcServices.dll
2015-12-15 07:47 - 2014-10-29 02:44 - 02984448 _____ (Microsoft Corporation) C:\windows\SysWOW64\dbgeng.dll
2015-12-15 07:47 - 2014-10-29 02:39 - 02896384 _____ (Microsoft Corporation) C:\windows\system32\esent.dll
2015-12-15 07:47 - 2014-10-29 02:35 - 03256320 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2015-12-15 07:47 - 2014-10-29 02:31 - 02941952 _____ (Microsoft Corporation) C:\windows\system32\WpcWebSync.dll
2015-12-15 07:47 - 2014-10-29 02:26 - 03561984 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIRibbon.dll
2015-12-15 07:47 - 2014-10-29 02:24 - 02464768 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2015-12-15 07:47 - 2014-10-29 02:17 - 01360896 _____ (Microsoft Corporation) C:\windows\system32\gpsvc.dll
2015-12-15 07:47 - 2014-10-29 02:12 - 02749952 _____ (Microsoft Corporation) C:\windows\SysWOW64\tquery.dll
2015-12-15 07:47 - 2014-10-29 02:11 - 01639424 _____ (Microsoft Corporation) C:\windows\system32\wlidsvc.dll
2015-12-15 07:47 - 2014-10-29 02:08 - 02608640 _____ (Microsoft Corporation) C:\windows\system32\WsmSvc.dll
2015-12-15 07:47 - 2014-10-29 02:08 - 02542080 _____ (Microsoft Corporation) C:\windows\SysWOW64\esent.dll
2015-12-15 07:47 - 2014-10-29 02:08 - 02174976 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2015-12-15 07:47 - 2014-10-29 02:08 - 01822720 _____ (Microsoft Corporation) C:\windows\system32\dui70.dll
2015-12-15 07:47 - 2014-10-29 02:05 - 03273216 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpcore.dll
2015-12-15 07:47 - 2014-10-29 02:03 - 02635264 _____ (Microsoft Corporation) C:\windows\system32\CertEnroll.dll
2015-12-15 07:47 - 2014-10-29 01:54 - 01945600 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmcore.dll
2015-12-15 07:47 - 2014-10-29 01:52 - 02170368 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmSvc.dll
2015-12-15 07:47 - 2014-10-29 01:52 - 01461248 _____ (Microsoft Corporation) C:\windows\SysWOW64\dui70.dll
2015-12-15 07:47 - 2014-10-29 01:50 - 02317824 _____ (Microsoft Corporation) C:\windows\SysWOW64\CertEnroll.dll
2015-12-15 07:47 - 2014-10-29 01:48 - 03056128 _____ (Microsoft Corporation) C:\windows\system32\xpsservices.dll
2015-12-15 07:47 - 2014-10-29 01:46 - 01919488 _____ (Microsoft Corporation) C:\windows\system32\XpsPrint.dll
2015-12-15 07:47 - 2014-10-29 01:46 - 01348096 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentServer.dll
2015-12-15 07:47 - 2014-10-29 01:42 - 01922560 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssrch.dll
2015-12-15 07:47 - 2014-10-29 01:42 - 01221120 _____ (Microsoft Corporation) C:\windows\system32\twinui.appcore.dll
2015-12-15 07:47 - 2014-10-29 01:35 - 01668096 _____ (Microsoft Corporation) C:\windows\system32\workfolderssvc.dll
2015-12-15 07:47 - 2014-10-15 09:32 - 02025792 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2015-12-15 07:46 - 2014-10-29 04:57 - 02450216 _____ (Microsoft Corporation) C:\windows\system32\WMVENCOD.DLL
2015-12-15 07:46 - 2014-10-29 02:24 - 02364928 _____ (Microsoft Corporation) C:\windows\SysWOW64\mmcndmgr.dll
2015-12-15 07:46 - 2014-10-29 02:10 - 02469888 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll
2015-12-15 07:45 - 2014-10-29 05:04 - 01969912 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2015-12-15 07:45 - 2014-10-29 04:55 - 01543768 _____ (Microsoft Corporation) C:\windows\system32\webservices.dll
2015-12-15 07:45 - 2014-10-29 04:52 - 01064720 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2015-12-15 07:45 - 2014-10-29 04:52 - 00988544 _____ (Microsoft Corporation) C:\windows\system32\mfsrcsnk.dll
2015-12-15 07:45 - 2014-10-29 04:52 - 00952384 _____ (Microsoft Corporation) C:\windows\system32\mfmp4srcsnk.dll
2015-12-15 07:45 - 2014-10-29 04:15 - 01612480 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2015-12-15 07:45 - 2014-10-29 04:11 - 02447104 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVENCOD.DLL
2015-12-15 07:45 - 2014-10-29 04:10 - 01178104 _____ (Microsoft Corporation) C:\windows\SysWOW64\webservices.dll
2015-12-15 07:45 - 2014-10-29 04:07 - 01321192 _____ (Microsoft Corporation) C:\windows\SysWOW64\winmde.dll
2015-12-15 07:45 - 2014-10-29 04:07 - 01115104 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfnetsrc.dll
2015-12-15 07:45 - 2014-10-29 04:07 - 00959112 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfasfsrcsnk.dll
2015-12-15 07:45 - 2014-10-29 04:07 - 00785568 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmp4srcsnk.dll
2015-12-15 07:45 - 2014-10-29 03:28 - 01502208 _____ (Microsoft Corporation) C:\windows\system32\xpssvcs.dll
2015-12-15 07:45 - 2014-10-29 03:17 - 02003456 _____ (Microsoft Corporation) C:\windows\system32\mmc.exe
2015-12-15 07:45 - 2014-10-29 03:08 - 01540096 _____ (Microsoft Corporation) C:\windows\system32\diagperf.dll
2015-12-15 07:45 - 2014-10-29 02:56 - 01526784 _____ (Microsoft Corporation) C:\windows\system32\pla.dll
2015-12-15 07:45 - 2014-10-29 02:55 - 01697280 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2015-12-15 07:45 - 2014-10-29 02:50 - 01289216 _____ (Microsoft Corporation) C:\windows\system32\WMNetMgr.dll
2015-12-15 07:45 - 2014-10-29 02:48 - 01080832 _____ (Microsoft Corporation) C:\windows\system32\sbe.dll
2015-12-15 07:45 - 2014-10-29 02:45 - 00618496 _____ (Microsoft Corporation) C:\windows\SysWOW64\blackbox.dll
2015-12-15 07:45 - 2014-10-29 02:25 - 01812992 _____ (Microsoft Corporation) C:\windows\SysWOW64\SRH.dll
2015-12-15 07:45 - 2014-10-29 02:23 - 01500672 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2015-12-15 07:45 - 2014-10-29 02:22 - 02410496 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSVidCtl.dll
2015-12-15 07:45 - 2014-10-29 02:21 - 01250816 _____ (Microsoft Corporation) C:\windows\system32\UIAutomationCore.dll
2015-12-15 07:45 - 2014-10-29 02:19 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2015-12-15 07:45 - 2014-10-29 02:18 - 04180480 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_47.dll
2015-12-15 07:45 - 2014-10-29 02:14 - 03553280 _____ (Microsoft Corporation) C:\windows\SysWOW64\xpsrchvw.exe
2015-12-15 07:45 - 2014-10-29 01:56 - 01337344 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.dll
2015-12-15 07:45 - 2014-10-29 01:56 - 01028608 _____ (Microsoft Corporation) C:\windows\system32\MFMediaEngine.dll
2015-12-15 07:45 - 2014-10-29 01:47 - 02090496 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsAdminFlowUI.dll
2015-12-15 07:45 - 2014-10-29 01:41 - 02880000 _____ (Microsoft Corporation) C:\windows\system32\wpccpl.dll
2015-12-15 07:45 - 2014-10-29 01:41 - 01317376 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Streaming.dll
2015-12-15 07:45 - 2014-10-29 01:40 - 02104832 _____ (Microsoft Corporation) C:\windows\SysWOW64\xpsservices.dll
2015-12-15 07:45 - 2014-10-29 01:39 - 01000448 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchFolder.dll
2015-12-15 07:45 - 2014-10-29 01:36 - 00954880 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.appcore.dll
2015-12-15 07:44 - 2014-10-29 04:57 - 01576312 _____ (Microsoft Corporation) C:\windows\system32\propsys.dll
2015-12-15 07:44 - 2014-10-29 04:57 - 01210176 _____ (Microsoft Corporation) C:\windows\system32\WMADMOD.DLL
2015-12-15 07:44 - 2014-10-29 04:57 - 00723072 _____ (Microsoft Corporation) C:\windows\system32\SHCore.dll
2015-12-15 07:44 - 2014-10-29 04:55 - 01133200 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2015-12-15 07:44 - 2014-10-29 04:55 - 00789184 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2015-12-15 07:44 - 2014-10-29 04:52 - 00962216 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2015-12-15 07:44 - 2014-10-29 04:52 - 00850656 _____ (Microsoft Corporation) C:\windows\system32\mfnetcore.dll
2015-12-15 07:44 - 2014-10-29 04:52 - 00821696 _____ (Microsoft Corporation) C:\windows\system32\mfmpeg2srcsnk.dll
2015-12-15 07:44 - 2014-10-29 04:52 - 00734448 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2015-12-15 07:44 - 2014-10-29 04:52 - 00634768 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2015-12-15 07:44 - 2014-10-29 04:52 - 00580024 _____ (Microsoft Corporation) C:\windows\system32\wmdrmdev.dll
2015-12-15 07:44 - 2014-10-29 04:18 - 00016504 _____ (Microsoft Corporation) C:\windows\SysWOW64\psapi.dll
2015-12-15 07:44 - 2014-10-29 04:11 - 01037656 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMADMOD.DLL
2015-12-15 07:44 - 2014-10-29 04:07 - 00857384 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfsrcsnk.dll
2015-12-15 07:44 - 2014-10-29 04:07 - 00801584 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2015-12-15 07:44 - 2014-10-29 04:07 - 00705008 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmpeg2srcsnk.dll
2015-12-15 07:44 - 2014-10-29 04:07 - 00700328 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfnetcore.dll
2015-12-15 07:44 - 2014-10-29 04:07 - 00551064 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2015-12-15 07:44 - 2014-10-29 04:05 - 00890128 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmv2clt.dll
2015-12-15 07:44 - 2014-10-29 03:50 - 01192960 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll
2015-12-15 07:44 - 2014-10-29 03:43 - 00685056 _____ (Microsoft Corporation) C:\windows\system32\riched20.dll
2015-12-15 07:44 - 2014-10-29 03:31 - 00971264 _____ (Microsoft Corporation) C:\windows\system32\sqlceqp40.dll
2015-12-15 07:44 - 2014-10-29 03:29 - 01246720 _____ (Microsoft Corporation) C:\windows\system32\ogldrv.dll
2015-12-15 07:44 - 2014-10-29 03:26 - 00771584 _____ (Microsoft Corporation) C:\windows\system32\odbc32.dll
2015-12-15 07:44 - 2014-10-29 03:17 - 00537088 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-12-15 07:44 - 2014-10-29 03:07 - 06692352 _____ (Microsoft Corporation) C:\windows\system32\mspaint.exe
2015-12-15 07:44 - 2014-10-29 02:56 - 00603648 _____ (Microsoft Corporation) C:\windows\system32\mfds.dll
2015-12-15 07:44 - 2014-10-29 02:53 - 00881152 _____ (Microsoft Corporation) C:\windows\system32\printfilterpipelinesvc.exe
2015-12-15 07:44 - 2014-10-29 02:52 - 00391168 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-12-15 07:44 - 2014-10-29 02:49 - 00742400 _____ (Microsoft Corporation) C:\windows\SysWOW64\sqlceqp40.dll
2015-12-15 07:44 - 2014-10-29 02:43 - 01092608 _____ (Microsoft Corporation) C:\windows\system32\cdosys.dll
2015-12-15 07:44 - 2014-10-29 02:43 - 00933376 _____ (Microsoft Corporation) C:\windows\system32\qmgr.dll
2015-12-15 07:44 - 2014-10-29 02:42 - 03724800 _____ (Microsoft Corporation) C:\windows\system32\WinSAT.exe
2015-12-15 07:44 - 2014-10-29 02:37 - 01563136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mmc.exe
2015-12-15 07:44 - 2014-10-29 02:34 - 01114624 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2015-12-15 07:44 - 2014-10-29 02:34 - 01037824 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2015-12-15 07:44 - 2014-10-29 02:33 - 01056768 _____ (Microsoft Corporation) C:\windows\system32\WebcamUi.dll
2015-12-15 07:44 - 2014-10-29 02:32 - 01843712 _____ (Microsoft Corporation) C:\windows\system32\WMPDMC.exe
2015-12-15 07:44 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\windows\system32\Windows.Globalization.dll
2015-12-15 07:44 - 2014-10-29 02:25 - 01534464 _____ (Microsoft Corporation) C:\windows\SysWOW64\pla.dll
2015-12-15 07:44 - 2014-10-29 02:20 - 01492480 _____ (Microsoft Corporation) C:\windows\system32\dbghelp.dll
2015-12-15 07:44 - 2014-10-29 02:18 - 01050624 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMNetMgr.dll
2015-12-15 07:44 - 2014-10-29 02:17 - 01402368 _____ (Microsoft Corporation) C:\windows\SysWOW64\OpcServices.dll
2015-12-15 07:44 - 2014-10-29 02:17 - 00829952 _____ (Microsoft Corporation) C:\windows\SysWOW64\sbe.dll
2015-12-15 07:44 - 2014-10-29 02:16 - 01696256 _____ (Microsoft Corporation) C:\windows\system32\wevtsvc.dll
2015-12-15 07:44 - 2014-10-29 02:14 - 00802816 _____ (Microsoft Corporation) C:\windows\system32\winhttp.dll
2015-12-15 07:44 - 2014-10-29 02:12 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\msTextPrediction.dll
2015-12-15 07:44 - 2014-10-29 02:09 - 01335296 _____ (Microsoft Corporation) C:\windows\system32\mispace.dll
2015-12-15 07:44 - 2014-10-29 02:08 - 01478144 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPDMC.exe
2015-12-15 07:44 - 2014-10-29 02:08 - 00881664 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebcamUi.dll
2015-12-15 07:44 - 2014-10-29 02:07 - 01396736 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2015-12-15 07:44 - 2014-10-29 02:07 - 01247232 _____ (Microsoft Corporation) C:\windows\system32\Windows.Web.Http.dll
2015-12-15 07:44 - 2014-10-29 02:06 - 00747520 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2015-12-15 07:44 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Globalization.dll
2015-12-15 07:44 - 2014-10-29 02:03 - 02487296 _____ (Microsoft Corporation) C:\windows\system32\storagewmi.dll
2015-12-15 07:44 - 2014-10-29 02:03 - 01547264 _____ (Microsoft Corporation) C:\windows\system32\wlansvc.dll
2015-12-15 07:44 - 2014-10-29 02:01 - 01710592 _____ (Microsoft Corporation) C:\windows\system32\msdtctm.dll
2015-12-15 07:44 - 2014-10-29 01:59 - 01636864 _____ (Microsoft Corporation) C:\windows\system32\RacEngn.dll
2015-12-15 07:44 - 2014-10-29 01:59 - 01454080 _____ (Microsoft Corporation) C:\windows\system32\VSSVC.exe
2015-12-15 07:44 - 2014-10-29 01:59 - 01207296 _____ (Microsoft Corporation) C:\windows\SysWOW64\dbghelp.dll
2015-12-15 07:44 - 2014-10-29 01:59 - 01021440 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAutomationCore.dll
2015-12-15 07:44 - 2014-10-29 01:58 - 03442688 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_47.dll
2015-12-15 07:44 - 2014-10-29 01:56 - 01248256 _____ (Microsoft Corporation) C:\windows\system32\NaturalLanguage6.dll
2015-12-15 07:44 - 2014-10-29 01:56 - 01001984 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.dll
2015-12-15 07:44 - 2014-10-29 01:53 - 01063424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mispace.dll
2015-12-15 07:44 - 2014-10-29 01:52 - 00903168 _____ (Microsoft Corporation) C:\windows\system32\SearchIndexer.exe
2015-12-15 07:44 - 2014-10-29 01:50 - 01482752 _____ (Microsoft Corporation) C:\windows\SysWOW64\storagewmi.dll
2015-12-15 07:44 - 2014-10-29 01:46 - 01265152 _____ (Microsoft Corporation) C:\windows\SysWOW64\RacEngn.dll
2015-12-15 07:44 - 2014-10-29 01:46 - 01015808 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.dll
2015-12-15 07:44 - 2014-10-29 01:45 - 00918016 _____ (Microsoft Corporation) C:\windows\SysWOW64\NaturalLanguage6.dll
2015-12-15 07:44 - 2014-10-29 01:45 - 00887296 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFMediaEngine.dll
2015-12-15 07:44 - 2014-10-29 01:42 - 00841728 _____ (Microsoft Corporation) C:\windows\system32\SettingSyncCore.dll
2015-12-15 07:44 - 2014-10-29 01:37 - 00724480 _____ (Microsoft Corporation) C:\windows\system32\WWAHost.exe
2015-12-15 07:44 - 2014-10-29 01:35 - 00772096 _____ (Microsoft Corporation) C:\windows\system32\MrmIndexer.dll
2015-12-15 07:44 - 2014-10-29 01:35 - 00688128 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2015-12-15 07:44 - 2014-10-29 01:33 - 01102848 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Streaming.dll
2015-12-15 07:44 - 2014-10-29 01:31 - 00626176 _____ (Microsoft Corporation) C:\windows\SysWOW64\WWAHost.exe
2015-12-15 07:44 - 2014-10-08 23:09 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-12-15 07:43 - 2014-10-29 05:09 - 01950280 _____ (Microsoft Corporation) C:\windows\system32\setupapi.dll
2015-12-15 07:43 - 2014-10-29 04:18 - 01782912 _____ (Microsoft Corporation) C:\windows\SysWOW64\setupapi.dll
2015-12-15 07:43 - 2014-10-29 04:18 - 00848568 _____ (Microsoft Corporation) C:\windows\SysWOW64\taskschd.dll
2015-12-15 07:43 - 2014-10-29 04:10 - 01287112 _____ (Microsoft Corporation) C:\windows\SysWOW64\propsys.dll
2015-12-15 07:43 - 2014-10-29 04:10 - 00560392 _____ (Microsoft Corporation) C:\windows\SysWOW64\SHCore.dll
2015-12-15 07:43 - 2014-10-29 04:08 - 00602768 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2015-12-15 07:43 - 2014-10-29 04:07 - 00584120 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll
2015-12-15 07:43 - 2014-10-29 04:07 - 00482360 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmdrmdev.dll
2015-12-15 07:43 - 2014-10-29 03:56 - 01164288 _____ (Microsoft Corporation) C:\windows\system32\MSMPEG2ENC.DLL
2015-12-15 07:43 - 2014-10-29 03:08 - 00670208 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2015-12-15 07:43 - 2014-10-29 03:04 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\WavDest.dll
2015-12-15 07:43 - 2014-10-29 03:03 - 00862720 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2015-12-15 07:43 - 2014-10-29 02:59 - 00564224 _____ (Microsoft Corporation) C:\windows\SysWOW64\riched20.dll
2015-12-15 07:43 - 2014-10-29 02:53 - 01065984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d8.dll
2015-12-15 07:43 - 2014-10-29 02:47 - 01096192 _____ (Microsoft Corporation) C:\windows\SysWOW64\ogldrv.dll
2015-12-15 07:43 - 2014-10-29 02:46 - 01497600 _____ (Microsoft Corporation) C:\windows\system32\RecoveryDrive.exe
2015-12-15 07:43 - 2014-10-29 02:45 - 00717312 _____ (Microsoft Corporation) C:\windows\system32\comdlg32.dll
2015-12-15 07:43 - 2014-10-29 02:42 - 00852480 _____ (Microsoft Corporation) C:\windows\system32\PurchaseWindowsLicense.dll
2015-12-15 07:43 - 2014-10-29 02:40 - 02067968 _____ (Microsoft Corporation) C:\windows\system32\wpdshext.dll
2015-12-15 07:43 - 2014-10-29 02:39 - 00898048 _____ (Microsoft Corporation) C:\windows\system32\CPFilters.dll
2015-12-15 07:43 - 2014-10-29 02:37 - 01436160 _____ (Microsoft Corporation) C:\windows\system32\wdc.dll
2015-12-15 07:43 - 2014-10-29 02:30 - 06465536 _____ (Microsoft Corporation) C:\windows\SysWOW64\mspaint.exe
2015-12-15 07:43 - 2014-10-29 02:30 - 00657920 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2015-12-15 07:43 - 2014-10-29 02:19 - 00713216 _____ (Microsoft Corporation) C:\windows\system32\WinSync.dll
2015-12-15 07:43 - 2014-10-29 02:14 - 00609280 _____ (Microsoft Corporation) C:\windows\SysWOW64\comdlg32.dll
2015-12-15 07:43 - 2014-10-29 02:09 - 00873984 _____ (Microsoft Corporation) C:\windows\system32\provcore.dll
2015-12-15 07:43 - 2014-10-29 02:09 - 00658944 _____ (Microsoft Corporation) C:\windows\system32\duser.dll
2015-12-15 07:43 - 2014-10-29 02:07 - 00657920 _____ (Microsoft Corporation) C:\windows\system32\WSDApi.dll
2015-12-15 07:43 - 2014-10-29 02:03 - 00740352 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.OnlineId.dll
2015-12-15 07:43 - 2014-10-29 01:56 - 00653312 _____ (Microsoft Corporation) C:\windows\system32\SettingSyncHost.exe
2015-12-15 07:43 - 2014-10-29 01:56 - 00631808 _____ (Microsoft Corporation) C:\windows\SysWOW64\winhttp.dll
2015-12-15 07:43 - 2014-10-29 01:55 - 00719360 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceApi.dll
2015-12-15 07:43 - 2014-10-29 01:52 - 00801792 _____ (Microsoft Corporation) C:\windows\system32\twinapi.dll
2015-12-15 07:43 - 2014-10-29 01:51 - 00503296 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll
2015-12-15 07:43 - 2014-10-29 01:48 - 00949760 _____ (Microsoft Corporation) C:\windows\SysWOW64\uxtheme.dll
2015-12-15 07:43 - 2014-10-29 01:38 - 01262080 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsPrint.dll
2015-12-15 07:43 - 2014-10-29 01:36 - 00955392 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentExtensions.dll
2015-12-15 07:43 - 2014-10-29 01:35 - 00667648 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingSyncCore.dll
2015-12-15 07:43 - 2014-07-04 22:29 - 00478528 _____ (Microsoft Corporation) C:\windows\system32\mcupdate_GenuineIntel.dll
2015-12-15 07:42 - 2014-10-29 04:57 - 00643064 _____ (Microsoft Corporation) C:\windows\system32\twinapi.appcore.dll
2015-12-15 07:42 - 2014-10-29 04:55 - 01063432 _____ (Microsoft Corporation) C:\windows\system32\WinTypes.dll
2015-12-15 07:42 - 2014-10-29 04:18 - 01103768 _____ (Microsoft Corporation) C:\windows\SysWOW64\Taskmgr.exe
2015-12-15 07:42 - 2014-10-29 03:08 - 00458752 _____ (Microsoft Corporation) C:\windows\system32\wmdrmnet.dll
2015-12-15 07:42 - 2014-10-29 02:36 - 01008128 _____ (Microsoft Corporation) C:\windows\system32\reseteng.dll
2015-12-15 07:42 - 2014-10-29 02:29 - 00833536 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2015-12-15 07:42 - 2014-10-29 02:14 - 00854528 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdosys.dll
2015-12-15 07:42 - 2014-10-29 02:12 - 00524288 _____ (Microsoft Corporation) C:\windows\system32\defragsvc.dll
2015-12-15 07:42 - 2014-10-29 02:11 - 01323008 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdc.dll
2015-12-15 07:42 - 2014-10-29 02:00 - 01574400 _____ (Microsoft Corporation) C:\windows\system32\vssapi.dll
2015-12-15 07:42 - 2014-10-29 01:52 - 00870912 _____ (Microsoft Corporation) C:\windows\system32\msdtcprx.dll
2015-12-15 07:41 - 2014-10-29 05:09 - 01309744 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2015-12-15 07:41 - 2014-10-29 05:09 - 01239576 _____ (Microsoft Corporation) C:\windows\system32\Taskmgr.exe
2015-12-15 07:41 - 2014-10-29 05:00 - 00740664 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2015-12-15 07:41 - 2014-10-29 05:00 - 00379568 _____ (Microsoft Corporation) C:\windows\system32\dcomp.dll
2015-12-15 07:41 - 2014-10-29 04:57 - 01150208 _____ (Microsoft Corporation) C:\windows\system32\WMADMOE.DLL
2015-12-15 07:41 - 2014-10-29 04:57 - 00557832 _____ (Microsoft Corporation) C:\windows\system32\WMVSDECD.DLL
2015-12-15 07:41 - 2014-10-29 04:57 - 00389952 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2015-12-15 07:41 - 2014-10-29 04:55 - 00730824 _____ (Microsoft Corporation) C:\windows\system32\clbcatq.dll
2015-12-15 07:41 - 2014-10-29 04:55 - 00426120 _____ (Microsoft Corporation) C:\windows\system32\tsmf.dll
2015-12-15 07:41 - 2014-10-29 04:54 - 00685408 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2015-12-15 07:41 - 2014-10-29 04:52 - 00497936 _____ (Microsoft Corporation) C:\windows\system32\mfsvr.dll
2015-12-15 07:41 - 2014-10-29 04:52 - 00444728 _____ (Microsoft Corporation) C:\windows\system32\MMDevAPI.dll
2015-12-15 07:41 - 2014-10-29 04:52 - 00428864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2015-12-15 07:41 - 2014-10-29 04:52 - 00405456 _____ (Microsoft Corporation) C:\windows\system32\mfreadwrite.dll
2015-12-15 07:41 - 2014-10-29 04:52 - 00356936 _____ (Microsoft Corporation) C:\windows\system32\MFCaptureEngine.dll
2015-12-15 07:41 - 2014-10-29 04:12 - 00616704 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2015-12-15 07:41 - 2014-10-29 04:12 - 00403776 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcfgx.dll
2015-12-15 07:41 - 2014-10-29 04:11 - 00914648 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMADMOE.DLL
2015-12-15 07:41 - 2014-10-29 04:11 - 00492704 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVSDECD.DLL
2015-12-15 07:41 - 2014-10-29 04:11 - 00488064 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmpeffects.dll
2015-12-15 07:41 - 2014-10-29 04:10 - 00569128 _____ (Microsoft Corporation) C:\windows\SysWOW64\clbcatq.dll
2015-12-15 07:41 - 2014-10-29 04:10 - 00492232 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinapi.appcore.dll
2015-12-15 07:41 - 2014-10-29 04:07 - 00409040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfreadwrite.dll
2015-12-15 07:41 - 2014-10-29 04:07 - 00399752 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfsvr.dll
2015-12-15 07:41 - 2014-10-29 04:07 - 00331048 _____ (Microsoft Corporation) C:\windows\SysWOW64\MMDevAPI.dll
2015-12-15 07:41 - 2014-10-29 04:06 - 00507152 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2015-12-15 07:41 - 2014-10-29 03:48 - 00925696 _____ (Microsoft Corporation) C:\windows\system32\autoconv.exe
2015-12-15 07:41 - 2014-10-29 03:48 - 00636416 _____ (Microsoft Corporation) C:\windows\system32\WUDFx02000.dll
2015-12-15 07:41 - 2014-10-29 03:42 - 01091584 _____ (Microsoft Corporation) C:\windows\system32\opengl32.dll
2015-12-15 07:41 - 2014-10-29 03:40 - 00610816 _____ (Microsoft Corporation) C:\windows\system32\sxs.dll
2015-12-15 07:41 - 2014-10-29 03:36 - 00546304 _____ (Microsoft Corporation) C:\windows\system32\sqlcese40.dll
2015-12-15 07:41 - 2014-10-29 03:33 - 07558144 _____ (Microsoft Corporation) C:\windows\system32\NL7Data0011.dll
2015-12-15 07:41 - 2014-10-29 03:33 - 00799744 _____ (Microsoft Corporation) C:\windows\system32\sqlsrv32.dll
2015-12-15 07:41 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\windows\system32\MSWB70804.dll
2015-12-15 07:41 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\windows\system32\MSWB70404.dll
2015-12-15 07:41 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\windows\system32\MSWB7001E.dll
2015-12-15 07:41 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\windows\system32\MSWB70011.dll
2015-12-15 07:41 - 2014-10-29 03:29 - 00620544 _____ (Microsoft Corporation) C:\windows\system32\dsound.dll
2015-12-15 07:41 - 2014-10-29 03:27 - 00899584 _____ (Microsoft Corporation) C:\windows\system32\WUDFx.dll
2015-12-15 07:41 - 2014-10-29 03:27 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\XpsRasterService.dll
2015-12-15 07:41 - 2014-10-29 03:26 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\SmartCardSimulator.dll
2015-12-15 07:41 - 2014-10-29 03:18 - 00784384 _____ (Microsoft Corporation) C:\windows\system32\lpksetup.exe
2015-12-15 07:41 - 2014-10-29 03:11 - 01070080 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSMPEG2ENC.DLL
2015-12-15 07:41 - 2014-10-29 03:11 - 00435712 _____ (Microsoft Corporation) C:\windows\system32\mswmdm.dll
2015-12-15 07:41 - 2014-10-29 03:10 - 00933376 _____ (Microsoft Corporation) C:\windows\system32\calc.exe
2015-12-15 07:41 - 2014-10-29 03:09 - 00632320 _____ (Microsoft Corporation) C:\windows\system32\psisdecd.dll
2015-12-15 07:41 - 2014-10-29 03:08 - 00858624 _____ (Microsoft Corporation) C:\windows\system32\comuid.dll
2015-12-15 07:41 - 2014-10-29 03:08 - 00390656 _____ (Microsoft Corporation) C:\windows\system32\difxapi.dll
2015-12-15 07:41 - 2014-10-29 03:07 - 00468992 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2015-12-15 07:41 - 2014-10-29 03:06 - 01313792 _____ (Microsoft Corporation) C:\windows\system32\vds.exe
2015-12-15 07:41 - 2014-10-29 03:06 - 00980480 _____ (Microsoft Corporation) C:\windows\system32\imapi2fs.dll
2015-12-15 07:41 - 2014-10-29 03:06 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\MSAC3ENC.DLL
2015-12-15 07:41 - 2014-10-29 03:05 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\wiaaut.dll
2015-12-15 07:41 - 2014-10-29 03:03 - 02334720 _____ (Microsoft Corporation) C:\windows\system32\SyncCenter.dll
2015-12-15 07:41 - 2014-10-29 03:03 - 00832000 _____ (Microsoft Corporation) C:\windows\SysWOW64\autoconv.exe
2015-12-15 07:41 - 2014-10-29 03:00 - 01861632 _____ (Microsoft Corporation) C:\windows\system32\Display.dll
2015-12-15 07:41 - 2014-10-29 03:00 - 00642560 _____ (Microsoft Corporation) C:\windows\SysWOW64\apphelp.dll
2015-12-15 07:41 - 2014-10-29 02:59 - 00670720 _____ (Microsoft Corporation) C:\windows\system32\wiaservc.dll
2015-12-15 07:41 - 2014-10-29 02:57 - 01038336 _____ (Microsoft Corporation) C:\windows\system32\aclui.dll
2015-12-15 07:41 - 2014-10-29 02:57 - 00777728 _____ (Microsoft Corporation) C:\windows\SysWOW64\opengl32.dll
2015-12-15 07:41 - 2014-10-29 02:56 - 00499200 _____ (Microsoft Corporation) C:\windows\SysWOW64\sxs.dll
2015-12-15 07:41 - 2014-10-29 02:54 - 00432640 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2015-12-15 07:41 - 2014-10-29 02:54 - 00366080 _____ (Microsoft Corporation) C:\windows\system32\MDEServer.exe
2015-12-15 07:41 - 2014-10-29 02:53 - 00468992 _____ (Microsoft Corporation) C:\windows\system32\mssph.dll
2015-12-15 07:41 - 2014-10-29 02:53 - 00433152 _____ (Microsoft Corporation) C:\windows\SysWOW64\sqlcese40.dll
2015-12-15 07:41 - 2014-10-29 02:52 - 02829312 _____ (Microsoft Corporation) C:\windows\system32\netshell.dll
2015-12-15 07:41 - 2014-10-29 02:50 - 00711680 _____ (Microsoft Corporation) C:\windows\SysWOW64\sqlsrv32.dll
2015-12-15 07:41 - 2014-10-29 02:49 - 02236416 _____ (Microsoft Corporation) C:\windows\system32\certmgr.dll
2015-12-15 07:41 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSWB70804.dll
2015-12-15 07:41 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSWB70404.dll
2015-12-15 07:41 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSWB7001E.dll
2015-12-15 07:41 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSWB70011.dll
2015-12-15 07:41 - 2014-10-29 02:47 - 00982016 _____ (Microsoft Corporation) C:\windows\SysWOW64\xpssvcs.dll
2015-12-15 07:41 - 2014-10-29 02:47 - 00616960 _____ (Microsoft Corporation) C:\windows\system32\msra.exe
2015-12-15 07:41 - 2014-10-29 02:47 - 00517120 _____ (Microsoft Corporation) C:\windows\SysWOW64\dsound.dll
2015-12-15 07:41 - 2014-10-29 02:46 - 01001472 _____ (Microsoft Corporation) C:\windows\HelpPane.exe
2015-12-15 07:41 - 2014-10-29 02:45 - 00672768 _____ (Microsoft Corporation) C:\windows\SysWOW64\odbc32.dll
2015-12-15 07:41 - 2014-10-29 02:45 - 00519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2015-12-15 07:41 - 2014-10-29 02:39 - 01571328 _____ (Microsoft Corporation) C:\windows\system32\wbengine.exe
2015-12-15 07:41 - 2014-10-29 02:36 - 02764288 _____ (Microsoft Corporation) C:\windows\system32\gameux.dll
2015-12-15 07:41 - 2014-10-29 02:36 - 01252864 _____ (Microsoft Corporation) C:\windows\system32\werconcpl.dll
2015-12-15 07:41 - 2014-10-29 02:36 - 00787456 _____ (Microsoft Corporation) C:\windows\system32\WorkfoldersControl.dll
2015-12-15 07:41 - 2014-10-29 02:36 - 00609792 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2015-12-15 07:41 - 2014-10-29 02:35 - 00532480 _____ (Microsoft Corporation) C:\windows\system32\EncDec.dll
2015-12-15 07:41 - 2014-10-29 02:33 - 01291776 _____ (Microsoft Corporation) C:\windows\system32\certutil.exe
2015-12-15 07:41 - 2014-10-29 02:32 - 00654848 _____ (Microsoft Corporation) C:\windows\SysWOW64\comuid.dll
2015-12-15 07:41 - 2014-10-29 02:32 - 00512512 _____ (Microsoft Corporation) C:\windows\SysWOW64\psisdecd.dll
2015-12-15 07:41 - 2014-10-29 02:32 - 00391680 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmdrmnet.dll
2015-12-15 07:41 - 2014-10-29 02:31 - 01278464 _____ (Microsoft Corporation) C:\windows\system32\usercpl.dll
2015-12-15 07:41 - 2014-10-29 02:31 - 00761344 _____ (Microsoft Corporation) C:\windows\SysWOW64\imapi2fs.dll
2015-12-15 07:41 - 2014-10-29 02:31 - 00561664 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2015-12-15 07:41 - 2014-10-29 02:30 - 00358400 _____ (Microsoft Corporation) C:\windows\system32\Wldap32.dll
2015-12-15 07:41 - 2014-10-29 02:27 - 00557568 _____ (Microsoft Corporation) C:\windows\system32\untfs.dll
2015-12-15 07:41 - 2014-10-29 02:26 - 00838656 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2015-12-15 07:41 - 2014-10-29 02:24 - 00902144 _____ (Microsoft Corporation) C:\windows\SysWOW64\aclui.dll
2015-12-15 07:41 - 2014-10-29 02:23 - 00484352 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfds.dll
2015-12-15 07:41 - 2014-10-29 02:22 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\wlidprov.dll
2015-12-15 07:41 - 2014-10-29 02:21 - 00482304 _____ (Microsoft Corporation) C:\windows\system32\tpmvsc.dll
2015-12-15 07:41 - 2014-10-29 02:21 - 00391680 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssph.dll
2015-12-15 07:41 - 2014-10-29 02:20 - 00510464 _____ (Microsoft Corporation) C:\windows\system32\webio.dll
2015-12-15 07:41 - 2014-10-29 02:19 - 00754176 _____ (Microsoft Corporation) C:\windows\system32\FirewallAPI.dll
2015-12-15 07:41 - 2014-10-29 02:19 - 00550912 _____ (Microsoft Corporation) C:\windows\system32\netprofmsvc.dll
2015-12-15 07:41 - 2014-10-29 02:18 - 01984000 _____ (Microsoft Corporation) C:\windows\SysWOW64\certmgr.dll
2015-12-15 07:41 - 2014-10-29 02:16 - 00391168 _____ (Microsoft Corporation) C:\windows\system32\secproc.dll
2015-12-15 07:41 - 2014-10-29 02:16 - 00389632 _____ (Microsoft Corporation) C:\windows\system32\secproc_isv.dll
2015-12-15 07:41 - 2014-10-29 02:16 - 00332288 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2015-12-15 07:41 - 2014-10-29 02:12 - 01969664 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpdshext.dll
2015-12-15 07:41 - 2014-10-29 02:12 - 00702976 _____ (Microsoft Corporation) C:\windows\SysWOW64\CPFilters.dll
2015-12-15 07:41 - 2014-10-29 02:12 - 00516608 _____ (Microsoft Corporation) C:\windows\system32\es.dll
2015-12-15 07:41 - 2014-10-29 02:11 - 02597376 _____ (Microsoft Corporation) C:\windows\SysWOW64\gameux.dll
2015-12-15 07:41 - 2014-10-29 02:10 - 00516096 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmdrmsdk.dll
2015-12-15 07:41 - 2014-10-29 02:10 - 00442880 _____ (Microsoft Corporation) C:\windows\SysWOW64\EncDec.dll
2015-12-15 07:41 - 2014-10-29 02:09 - 00809984 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll
2015-12-15 07:41 - 2014-10-29 02:09 - 00688640 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Bluetooth.dll
2015-12-15 07:41 - 2014-10-29 02:09 - 00521728 _____ (Microsoft Corporation) C:\windows\system32\GeofenceMonitorService.dll
2015-12-15 07:41 - 2014-10-29 02:07 - 01197056 _____ (Microsoft Corporation) C:\windows\SysWOW64\usercpl.dll
2015-12-15 07:41 - 2014-10-29 02:07 - 01060352 _____ (Microsoft Corporation) C:\windows\SysWOW64\certutil.exe
2015-12-15 07:41 - 2014-10-29 02:07 - 00594944 _____ (Microsoft Corporation) C:\windows\system32\ddraw.dll
2015-12-15 07:41 - 2014-10-29 02:07 - 00420864 _____ (Microsoft Corporation) C:\windows\system32\vpnike.dll
2015-12-15 07:41 - 2014-10-29 02:06 - 00591872 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.Connectivity.dll
2015-12-15 07:41 - 2014-10-29 02:06 - 00498688 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2015-12-15 07:41 - 2014-10-29 02:06 - 00325632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wldap32.dll
2015-12-15 07:41 - 2014-10-29 02:05 - 00606720 _____ (Microsoft Corporation) C:\windows\system32\wpncore.dll
2015-12-15 07:41 - 2014-10-29 02:05 - 00534016 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.dll
2015-12-15 07:41 - 2014-10-29 02:04 - 00903168 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.SmartCards.dll
2015-12-15 07:41 - 2014-10-29 02:04 - 00506880 _____ (Microsoft Corporation) C:\windows\SysWOW64\untfs.dll
2015-12-15 07:41 - 2014-10-29 02:03 - 00781824 _____ (Microsoft Corporation) C:\windows\system32\wlidcli.dll
2015-12-15 07:41 - 2014-10-29 02:02 - 00880640 _____ (Microsoft Corporation) C:\windows\system32\MPSSVC.dll
2015-12-15 07:41 - 2014-10-29 02:02 - 00695296 _____ (Microsoft Corporation) C:\windows\SysWOW64\netlogon.dll
2015-12-15 07:41 - 2014-10-29 02:01 - 01145856 _____ (Microsoft Corporation) C:\windows\system32\perftrack.dll
2015-12-15 07:41 - 2014-10-29 02:01 - 00706048 _____ (Microsoft Corporation) C:\windows\system32\swprv.dll
2015-12-15 07:41 - 2014-10-29 02:01 - 00573952 _____ (Microsoft Corporation) C:\windows\system32\msdrm.dll
2015-12-15 07:41 - 2014-10-29 02:00 - 00591360 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.dll
2015-12-15 07:41 - 2014-10-29 01:59 - 01010688 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOD.DLL
2015-12-15 07:41 - 2014-10-29 01:59 - 00649216 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.dll
2015-12-15 07:41 - 2014-10-29 01:59 - 00578048 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSync.dll
2015-12-15 07:41 - 2014-10-29 01:56 - 00702464 _____ (Microsoft Corporation) C:\windows\system32\rasapi32.dll
2015-12-15 07:41 - 2014-10-29 01:56 - 00512512 _____ (Microsoft Corporation) C:\windows\system32\winspool.drv
2015-12-15 07:41 - 2014-10-29 01:55 - 00367616 _____ (Microsoft Corporation) C:\windows\SysWOW64\es.dll
2015-12-15 07:41 - 2014-10-29 01:54 - 00827392 _____ (Microsoft Corporation) C:\windows\system32\spoolsv.exe
2015-12-15 07:41 - 2014-10-29 01:54 - 00599552 _____ (Microsoft Corporation) C:\windows\system32\hgcpl.dll
2015-12-15 07:41 - 2014-10-29 01:52 - 01054208 _____ (Microsoft Corporation) C:\windows\SysWOW64\SmartcardCredentialProvider.dll
2015-12-15 07:41 - 2014-10-29 01:52 - 00827392 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Web.Http.dll
2015-12-15 07:41 - 2014-10-29 01:52 - 00555008 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSDApi.dll
2015-12-15 07:41 - 2014-10-29 01:52 - 00544256 _____ (Microsoft Corporation) C:\windows\SysWOW64\ddraw.dll
2015-12-15 07:41 - 2014-10-29 01:51 - 00506880 _____ (Microsoft Corporation) C:\windows\SysWOW64\duser.dll
2015-12-15 07:41 - 2014-10-29 01:51 - 00457728 _____ (Microsoft Corporation) C:\windows\system32\upnphost.dll
2015-12-15 07:41 - 2014-10-29 01:50 - 00589824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-12-15 07:41 - 2014-10-29 01:50 - 00430592 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.Connectivity.dll
2015-12-15 07:41 - 2014-10-29 01:48 - 01142272 _____ (Microsoft Corporation) C:\windows\SysWOW64\vssapi.dll
2015-12-15 07:41 - 2014-10-29 01:48 - 00562688 _____ (Microsoft Corporation) C:\windows\system32\AppReadiness.dll
2015-12-15 07:41 - 2014-10-29 01:48 - 00543232 _____ (Microsoft Corporation) C:\windows\system32\hnetcfg.dll
2015-12-15 07:41 - 2014-10-29 01:47 - 00887296 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMSPDMOD.DLL
2015-12-15 07:41 - 2014-10-29 01:47 - 00783872 _____ (Microsoft Corporation) C:\windows\system32\Windows.Web.dll
2015-12-15 07:41 - 2014-10-29 01:45 - 00664064 _____ (Microsoft Corporation) C:\windows\SysWOW64\MsSpellCheckingFacility.dll
2015-12-15 07:41 - 2014-10-29 01:45 - 00573952 _____ (Microsoft Corporation) C:\windows\SysWOW64\PortableDeviceApi.dll
2015-12-15 07:41 - 2014-10-29 01:45 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingSyncHost.exe
2015-12-15 07:41 - 2014-10-29 01:43 - 00720896 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdtcprx.dll
2015-12-15 07:41 - 2014-10-29 01:43 - 00624640 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasapi32.dll
2015-12-15 07:41 - 2014-10-29 01:42 - 01207808 _____ (Microsoft Corporation) C:\windows\system32\printui.dll
2015-12-15 07:41 - 2014-10-29 01:42 - 00654848 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinapi.dll
2015-12-15 07:41 - 2014-10-29 01:42 - 00608256 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-15 07:41 - 2014-10-29 01:42 - 00539648 _____ (Microsoft Corporation) C:\windows\SysWOW64\hgcpl.dll
2015-12-15 07:41 - 2014-10-29 01:41 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchIndexer.exe
2015-12-15 07:41 - 2014-10-29 01:39 - 00565248 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Web.dll
2015-12-15 07:41 - 2014-10-29 01:35 - 01085952 _____ (Microsoft Corporation) C:\windows\SysWOW64\printui.dll
2015-12-15 07:41 - 2014-10-29 01:35 - 00529920 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2015-12-15 07:41 - 2014-10-29 01:30 - 00602624 _____ (Microsoft Corporation) C:\windows\SysWOW64\MrmIndexer.dll
2015-12-15 07:41 - 2014-10-13 03:41 - 01114432 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2015-12-15 07:41 - 2014-10-07 07:44 - 00533824 _____ (Microsoft Corporation) C:\windows\system32\Drivers\acpi.sys
2015-12-15 07:41 - 2014-09-10 07:25 - 00474432 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2015-12-15 07:41 - 2014-07-24 12:43 - 00412160 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2015-12-15 07:40 - 2014-10-29 05:10 - 00430728 _____ (Microsoft Corporation) C:\windows\system32\wevtapi.dll
2015-12-15 07:40 - 2014-10-29 05:04 - 00324864 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2015-12-15 07:40 - 2014-10-29 04:59 - 00520536 _____ (Microsoft Corporation) C:\windows\system32\WWanAPI.dll
2015-12-15 07:40 - 2014-10-29 04:59 - 00498496 _____ (Microsoft Corporation) C:\windows\system32\netcfgx.dll
2015-12-15 07:40 - 2014-10-29 04:59 - 00415040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys
2015-12-15 07:40 - 2014-10-29 04:57 - 00725672 _____ (Microsoft Corporation) C:\windows\system32\wmpeffects.dll
2015-12-15 07:40 - 2014-10-29 04:57 - 00662120 _____ (Microsoft Corporation) C:\windows\system32\DMRServer.exe
2015-12-15 07:40 - 2014-10-29 04:57 - 00295432 _____ (Microsoft Corporation) C:\windows\system32\WMASF.DLL
2015-12-15 07:40 - 2014-10-29 04:57 - 00256744 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.MediaControl.dll
2015-12-15 07:40 - 2014-10-29 04:55 - 00359496 _____ (Microsoft Corporation) C:\windows\system32\winsta.dll
2015-12-15 07:40 - 2014-10-29 04:55 - 00019264 _____ (Microsoft Corporation) C:\windows\system32\dllhost.exe
2015-12-15 07:40 - 2014-10-29 04:52 - 00311448 _____ (Microsoft Corporation) C:\windows\system32\MFPlay.dll
2015-12-15 07:40 - 2014-10-29 04:52 - 00020160 _____ (Microsoft Corporation) C:\windows\system32\CompPkgSup.dll
2015-12-15 07:40 - 2014-10-29 04:18 - 00320736 _____ (Microsoft Corporation) C:\windows\SysWOW64\wevtapi.dll
2015-12-15 07:40 - 2014-10-29 04:15 - 00245296 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2015-12-15 07:40 - 2014-10-29 04:11 - 00463744 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP4SDECD.DLL
2015-12-15 07:40 - 2014-10-29 04:10 - 00547992 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinTypes.dll
2015-12-15 07:40 - 2014-10-29 04:10 - 00367248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsmf.dll
2015-12-15 07:40 - 2014-10-29 04:07 - 00320256 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFCaptureEngine.dll
2015-12-15 07:40 - 2014-10-29 03:45 - 00548864 _____ (Microsoft Corporation) C:\windows\system32\glmf32.dll
2015-12-15 07:40 - 2014-10-29 03:45 - 00254976 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2015-12-15 07:40 - 2014-10-29 03:44 - 00564224 _____ (Microsoft Corporation) C:\windows\system32\apphelp.dll
2015-12-15 07:40 - 2014-10-29 03:37 - 02329088 _____ (Microsoft Corporation) C:\windows\system32\NL7Data0404.dll
2015-12-15 07:40 - 2014-10-29 03:34 - 03438592 _____ (Microsoft Corporation) C:\windows\system32\NL7Data0804.dll
2015-12-15 07:40 - 2014-10-29 03:31 - 00590848 _____ (Microsoft Corporation) C:\windows\system32\wvc.dll
2015-12-15 07:40 - 2014-10-29 03:31 - 00290816 _____ (Microsoft Corporation) C:\windows\system32\mpg2splt.ax
2015-12-15 07:40 - 2014-10-29 03:28 - 00292864 _____ (Microsoft Corporation) C:\windows\system32\wisp.dll
2015-12-15 07:40 - 2014-10-29 03:25 - 00995328 _____ (Microsoft Corporation) C:\windows\system32\tapi3.dll
2015-12-15 07:40 - 2014-10-29 03:25 - 00563200 _____ (Microsoft Corporation) C:\windows\system32\sdohlp.dll
2015-12-15 07:40 - 2014-10-29 03:25 - 00289792 _____ (Microsoft Corporation) C:\windows\system32\ksproxy.ax
2015-12-15 07:40 - 2014-10-29 03:24 - 00290816 _____ (Microsoft Corporation) C:\windows\system32\MSNP.ax
2015-12-15 07:40 - 2014-10-29 03:23 - 00295424 _____ (Microsoft Corporation) C:\windows\system32\offfilt.dll
2015-12-15 07:40 - 2014-10-29 03:21 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\iassdo.dll
2015-12-15 07:40 - 2014-10-29 03:21 - 00098816 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2015-12-15 07:40 - 2014-10-29 03:20 - 00397312 _____ (Microsoft Corporation) C:\windows\system32\upnp.dll
2015-12-15 07:40 - 2014-10-29 03:19 - 09732096 _____ (Microsoft Corporation) C:\windows\system32\NlsData000a.dll
2015-12-15 07:40 - 2014-10-29 03:18 - 06259712 _____ (Microsoft Corporation) C:\windows\system32\NlsData0009.dll
2015-12-15 07:40 - 2014-10-29 03:18 - 04616704 _____ (Microsoft Corporation) C:\windows\system32\NlsData001d.dll
2015-12-15 07:40 - 2014-10-29 03:18 - 02403328 _____ (Microsoft Corporation) C:\windows\system32\NlsData000c.dll
2015-12-15 07:40 - 2014-10-29 03:18 - 02140672 _____ (Microsoft Corporation) C:\windows\system32\NlsData0007.dll
2015-12-15 07:40 - 2014-10-29 03:17 - 04621312 _____ (Microsoft Corporation) C:\windows\system32\NlsData0414.dll
2015-12-15 07:40 - 2014-10-29 03:17 - 04620288 _____ (Microsoft Corporation) C:\windows\system32\NlsData0816.dll
2015-12-15 07:40 - 2014-10-29 03:17 - 02480128 _____ (Microsoft Corporation) C:\windows\system32\NlsData000d.dll
2015-12-15 07:40 - 2014-10-29 03:16 - 04621312 _____ (Microsoft Corporation) C:\windows\system32\NlsData0010.dll
2015-12-15 07:40 - 2014-10-29 03:16 - 04616704 _____ (Microsoft Corporation) C:\windows\system32\NlsData0416.dll
2015-12-15 07:40 - 2014-10-29 03:16 - 00546816 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.PointOfService.dll
2015-12-15 07:40 - 2014-10-29 03:11 - 00547328 _____ (Microsoft Corporation) C:\windows\system32\imapi2.dll
2015-12-15 07:40 - 2014-10-29 03:11 - 00478720 _____ (Microsoft Corporation) C:\windows\system32\sysmon.ocx
2015-12-15 07:40 - 2014-10-29 03:08 - 00920064 _____ (Microsoft Corporation) C:\windows\system32\azroles.dll
2015-12-15 07:40 - 2014-10-29 03:06 - 02902016 _____ (Microsoft Corporation) C:\windows\system32\themeui.dll
2015-12-15 07:40 - 2014-10-29 03:01 - 00453632 _____ (Microsoft Corporation) C:\windows\system32\azroleui.dll
2015-12-15 07:40 - 2014-10-29 03:01 - 00270336 _____ (Microsoft Corporation) C:\windows\system32\SensorsApi.dll
2015-12-15 07:40 - 2014-10-29 03:00 - 00652800 _____ (Microsoft Corporation) C:\windows\system32\FXSCOMEX.dll
2015-12-15 07:40 - 2014-10-29 02:59 - 01106432 _____ (Microsoft Corporation) C:\windows\system32\gpedit.dll
2015-12-15 07:40 - 2014-10-29 02:59 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\SyncInfrastructure.dll
2015-12-15 07:40 - 2014-10-29 02:59 - 00280576 _____ (Microsoft Corporation) C:\windows\system32\rdpencom.dll
2015-12-15 07:40 - 2014-10-29 02:58 - 01040384 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2015-12-15 07:40 - 2014-10-29 02:57 - 02592256 _____ (Microsoft Corporation) C:\windows\system32\themecpl.dll
2015-12-15 07:40 - 2014-10-29 02:57 - 01479168 _____ (Microsoft Corporation) C:\windows\system32\wsecedit.dll
2015-12-15 07:40 - 2014-10-29 02:56 - 00589312 _____ (Microsoft Corporation) C:\windows\system32\PhotoScreensaver.scr
2015-12-15 07:40 - 2014-10-29 02:56 - 00367616 _____ (Microsoft Corporation) C:\windows\system32\WPDSp.dll
2015-12-15 07:40 - 2014-10-29 02:55 - 00669184 _____ (Microsoft Corporation) C:\windows\system32\hhctrl.ocx
2015-12-15 07:40 - 2014-10-29 02:54 - 00287744 _____ (Microsoft Corporation) C:\windows\system32\qasf.dll
2015-12-15 07:40 - 2014-10-29 02:52 - 00809984 _____ (Microsoft Corporation) C:\windows\system32\fvewiz.dll
2015-12-15 07:40 - 2014-10-29 02:52 - 00680960 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2015-12-15 07:40 - 2014-10-29 02:52 - 00463872 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Usb.dll
2015-12-15 07:40 - 2014-10-29 02:52 - 00082944 _____ (Microsoft Corporation) C:\windows\system32\rdvvmtransport.dll
2015-12-15 07:40 - 2014-10-29 02:51 - 07331840 _____ (Microsoft Corporation) C:\windows\SysWOW64\NL7Data0011.dll
2015-12-15 07:40 - 2014-10-29 02:50 - 00521728 _____ (Microsoft Corporation) C:\windows\system32\msdri.dll
2015-12-15 07:40 - 2014-10-29 02:49 - 00479744 _____ (Microsoft Corporation) C:\windows\system32\StikyNot.exe
2015-12-15 07:40 - 2014-10-29 02:49 - 00478720 _____ (Microsoft Corporation) C:\windows\SysWOW64\wvc.dll
2015-12-15 07:40 - 2014-10-29 02:48 - 00557056 _____ (Microsoft Corporation) C:\windows\system32\ipsmsnap.dll
2015-12-15 07:40 - 2014-10-29 02:46 - 00148480 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsRasterService.dll
2015-12-15 07:40 - 2014-10-29 02:44 - 00872960 _____ (Microsoft Corporation) C:\windows\SysWOW64\tapi3.dll
2015-12-15 07:40 - 2014-10-29 02:43 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\mssvp.dll
2015-12-15 07:40 - 2014-10-29 02:42 - 00376832 _____ (Microsoft Corporation) C:\windows\system32\vmrdvcore.dll
2015-12-15 07:40 - 2014-10-29 02:41 - 01411584 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMSPDMOE.DLL
2015-12-15 07:40 - 2014-10-29 02:41 - 00327680 _____ (Microsoft Corporation) C:\windows\SysWOW64\upnp.dll
2015-12-15 07:40 - 2014-10-29 02:38 - 04945920 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0009.dll
2015-12-15 07:40 - 2014-10-29 02:38 - 00430592 _____ (Microsoft Corporation) C:\windows\system32\FXSCOMPOSE.dll
2015-12-15 07:40 - 2014-10-29 02:36 - 00943616 _____ (Microsoft Corporation) C:\windows\system32\WFS.exe
2015-12-15 07:40 - 2014-10-29 02:36 - 00585728 _____ (Microsoft Corporation) C:\windows\system32\PrintDialogs.dll
2015-12-15 07:40 - 2014-10-29 02:34 - 00442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\imapi2.dll
2015-12-15 07:40 - 2014-10-29 02:34 - 00416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\sysmon.ocx
2015-12-15 07:40 - 2014-10-29 02:34 - 00353792 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswmdm.dll
2015-12-15 07:40 - 2014-10-29 02:33 - 00816128 _____ (Microsoft Corporation) C:\windows\SysWOW64\calc.exe
2015-12-15 07:40 - 2014-10-29 02:32 - 00794624 _____ (Microsoft Corporation) C:\windows\SysWOW64\azroles.dll
2015-12-15 07:40 - 2014-10-29 02:31 - 00342016 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsGdiConverter.dll
2015-12-15 07:40 - 2014-10-29 02:30 - 01171456 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe
2015-12-15 07:40 - 2014-10-29 02:30 - 00642560 _____ (Microsoft Corporation) C:\windows\system32\MDMAgent.exe
2015-12-15 07:40 - 2014-10-29 02:30 - 00579584 _____ (Microsoft Corporation) C:\windows\SysWOW64\wiaaut.dll
2015-12-15 07:40 - 2014-10-29 02:30 - 00297472 _____ (Microsoft Corporation) C:\windows\system32\mdmregistration.dll
2015-12-15 07:40 - 2014-10-29 02:30 - 00210432 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSAC3ENC.DLL
2015-12-15 07:40 - 2014-10-29 02:29 - 02848768 _____ (Microsoft Corporation) C:\windows\SysWOW64\themeui.dll
2015-12-15 07:40 - 2014-10-29 02:29 - 00365056 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore.dll
2015-12-15 07:40 - 2014-10-29 02:29 - 00339456 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2015-12-15 07:40 - 2014-10-29 02:28 - 02213888 _____ (Microsoft Corporation) C:\windows\SysWOW64\SyncCenter.dll
2015-12-15 07:40 - 2014-10-29 02:27 - 00397312 _____ (Microsoft Corporation) C:\windows\system32\BCP47Langs.dll
2015-12-15 07:40 - 2014-10-29 02:26 - 00411648 _____ (Microsoft Corporation) C:\windows\system32\w32time.dll
2015-12-15 07:40 - 2014-10-29 02:26 - 00294912 _____ (Microsoft Corporation) C:\windows\system32\SystemEventsBrokerServer.dll
2015-12-15 07:40 - 2014-10-29 02:25 - 01058816 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpedit.dll
2015-12-15 07:40 - 2014-10-29 02:24 - 01335296 _____ (Microsoft Corporation) C:\windows\SysWOW64\wsecedit.dll
2015-12-15 07:40 - 2014-10-29 02:23 - 01826304 _____ (Microsoft Corporation) C:\windows\SysWOW64\Display.dll
2015-12-15 07:40 - 2014-10-29 02:23 - 00376320 _____ (Microsoft Corporation) C:\windows\system32\livessp.dll
2015-12-15 07:40 - 2014-10-29 02:22 - 02551808 _____ (Microsoft Corporation) C:\windows\SysWOW64\themecpl.dll
2015-12-15 07:40 - 2014-10-29 02:22 - 00536576 _____ (Microsoft Corporation) C:\windows\SysWOW64\hhctrl.ocx
2015-12-15 07:40 - 2014-10-29 02:22 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\wbiosrvc.dll
2015-12-15 07:40 - 2014-10-29 02:22 - 00331776 _____ (Microsoft Corporation) C:\windows\system32\eapp3hst.dll
2015-12-15 07:40 - 2014-10-29 02:21 - 00349696 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscp.dll
2015-12-15 07:40 - 2014-10-29 02:21 - 00320512 _____ (Microsoft Corporation) C:\windows\system32\framedynos.dll
2015-12-15 07:40 - 2014-10-29 02:21 - 00255488 _____ (Microsoft Corporation) C:\windows\system32\netprofm.dll
2015-12-15 07:40 - 2014-10-29 02:20 - 00524800 _____ (Microsoft Corporation) C:\windows\system32\AppxApplicabilityEngine.dll
2015-12-15 07:40 - 2014-10-29 02:20 - 00517120 _____ (Microsoft Corporation) C:\windows\system32\wbemcomn.dll
2015-12-15 07:40 - 2014-10-29 02:19 - 02714624 _____ (Microsoft Corporation) C:\windows\SysWOW64\netshell.dll
2015-12-15 07:40 - 2014-10-29 02:18 - 00286720 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsExt.dll
2015-12-15 07:40 - 2014-10-29 02:17 - 00981504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdt.exe
2015-12-15 07:40 - 2014-10-29 02:17 - 00439296 _____ (Microsoft Corporation) C:\windows\SysWOW64\ipsmsnap.dll
2015-12-15 07:40 - 2014-10-29 02:17 - 00412160 _____ (Microsoft Corporation) C:\windows\system32\oleacc.dll
2015-12-15 07:40 - 2014-10-29 02:16 - 01242112 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll
2015-12-15 07:40 - 2014-10-29 02:16 - 00795136 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasdlg.dll
2015-12-15 07:40 - 2014-10-29 02:16 - 00599552 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_isv.exe
2015-12-15 07:40 - 2014-10-29 02:15 - 00809472 _____ (Microsoft Corporation) C:\windows\SysWOW64\ReAgent.dll
2015-12-15 07:40 - 2014-10-29 02:15 - 00569344 _____ (Microsoft Corporation) C:\windows\system32\RMActivate.exe
2015-12-15 07:40 - 2014-10-29 02:15 - 00360448 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.Proximity.dll
2015-12-15 07:40 - 2014-10-29 02:13 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\wcmsvc.dll
2015-12-15 07:40 - 2014-10-29 02:12 - 00393728 _____ (Microsoft Corporation) C:\windows\system32\ninput.dll
2015-12-15 07:40 - 2014-10-29 02:11 - 00584704 _____ (Microsoft Corporation) C:\windows\system32\mscms.dll
2015-12-15 07:40 - 2014-10-29 02:09 - 00633344 _____ (Microsoft Corporation) C:\windows\system32\UserLanguagesCpl.dll
2015-12-15 07:40 - 2014-10-29 02:09 - 00345088 _____ (Microsoft Corporation) C:\windows\system32\LocationApi.dll
2015-12-15 07:40 - 2014-10-29 02:07 - 00452608 _____ (Microsoft Corporation) C:\windows\system32\ipnathlp.dll
2015-12-15 07:40 - 2014-10-29 02:07 - 00339456 _____ (Microsoft Corporation) C:\windows\system32\eapphost.dll
2015-12-15 07:40 - 2014-10-29 02:06 - 01086976 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstsc.exe
2015-12-15 07:40 - 2014-10-29 02:06 - 00298496 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.dll
2015-12-15 07:40 - 2014-10-29 02:06 - 00286208 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2015-12-15 07:40 - 2014-10-29 02:05 - 00285184 _____ (Microsoft Corporation) C:\windows\system32\WsmWmiPl.dll
2015-12-15 07:40 - 2014-10-29 02:04 - 00640000 _____ (Microsoft Corporation) C:\windows\system32\shsvcs.dll
2015-12-15 07:40 - 2014-10-29 02:04 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\wlangpui.dll
2015-12-15 07:40 - 2014-10-29 02:04 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\wcncsvc.dll
2015-12-15 07:40 - 2014-10-29 02:03 - 00474112 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2015-12-15 07:40 - 2014-10-29 02:03 - 00322048 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Sensors.dll
2015-12-15 07:40 - 2014-10-29 02:03 - 00174592 _____ (Microsoft Corporation) C:\windows\SysWOW64\ReInfo.dll
2015-12-15 07:40 - 2014-10-29 02:01 - 00361472 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlidprov.dll
2015-12-15 07:40 - 2014-10-29 02:01 - 00278528 _____ (Microsoft Corporation) C:\windows\SysWOW64\winsku.dll
2015-12-15 07:40 - 2014-10-29 02:00 - 00401408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wbemcomn.dll
2015-12-15 07:40 - 2014-10-29 02:00 - 00251904 _____ (Microsoft Corporation) C:\windows\SysWOW64\dcomp.dll
2015-12-15 07:40 - 2014-10-29 01:59 - 00603648 _____ (Microsoft Corporation) C:\windows\system32\rastls.dll
2015-12-15 07:40 - 2014-10-29 01:59 - 00542208 _____ (Microsoft Corporation) C:\windows\system32\rasmans.dll
2015-12-15 07:40 - 2014-10-29 01:59 - 00420864 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxApplicabilityEngine.dll
2015-12-15 07:40 - 2014-10-29 01:59 - 00413696 _____ (Microsoft Corporation) C:\windows\SysWOW64\webio.dll
2015-12-15 07:40 - 2014-10-29 01:58 - 00746496 _____ (Microsoft Corporation) C:\windows\system32\ntshrui.dll
2015-12-15 07:40 - 2014-10-29 01:58 - 00543232 _____ (Microsoft Corporation) C:\windows\SysWOW64\FirewallAPI.dll
2015-12-15 07:40 - 2014-10-29 01:58 - 00306688 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleacc.dll
2015-12-15 07:40 - 2014-10-29 01:57 - 01065472 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10.dll
2015-12-15 07:40 - 2014-10-29 01:57 - 00562688 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_isv.exe
2015-12-15 07:40 - 2014-10-29 01:57 - 00543744 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate.exe
2015-12-15 07:40 - 2014-10-29 01:57 - 00348160 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc.dll
2015-12-15 07:40 - 2014-10-29 01:57 - 00346624 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_isv.dll
2015-12-15 07:40 - 2014-10-29 01:57 - 00254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAnimation.dll
2015-12-15 07:40 - 2014-10-29 01:56 - 00232960 _____ (Microsoft Corporation) C:\windows\system32\DscCore.dll
2015-12-15 07:40 - 2014-10-29 01:55 - 00887808 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dim700.dll
2015-12-15 07:40 - 2014-10-29 01:55 - 00503808 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscms.dll
2015-12-15 07:40 - 2014-10-29 01:55 - 00331264 _____ (Microsoft Corporation) C:\windows\system32\DaOtpCredentialProvider.dll
2015-12-15 07:40 - 2014-10-29 01:55 - 00304128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ninput.dll
2015-12-15 07:40 - 2014-10-29 01:53 - 00612352 _____ (Microsoft Corporation) C:\windows\SysWOW64\provcore.dll
2015-12-15 07:40 - 2014-10-29 01:53 - 00464896 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Bluetooth.dll
2015-12-15 07:40 - 2014-10-29 01:53 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\GeofenceMonitorService.dll
2015-12-15 07:40 - 2014-10-29 01:53 - 00345600 _____ (Microsoft Corporation) C:\windows\system32\eappcfg.dll
2015-12-15 07:40 - 2014-10-29 01:51 - 00569856 _____ (Microsoft Corporation) C:\windows\system32\AppxPackaging.dll
2015-12-15 07:40 - 2014-10-29 01:51 - 00445952 _____ (Microsoft Corporation) C:\windows\system32\provsvc.dll
2015-12-15 07:40 - 2014-10-29 01:51 - 00375296 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.dll
2015-12-15 07:40 - 2014-10-29 01:50 - 00624128 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.SmartCards.dll
2015-12-15 07:40 - 2014-10-29 01:50 - 00399360 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlangpui.dll
2015-12-15 07:40 - 2014-10-29 01:48 - 00454144 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdrm.dll
2015-12-15 07:40 - 2014-10-29 01:47 - 00527872 _____ (Microsoft Corporation) C:\windows\SysWOW64\rastls.dll
2015-12-15 07:40 - 2014-10-29 01:47 - 00488448 _____ (Microsoft Corporation) C:\windows\system32\catsrv.dll
2015-12-15 07:40 - 2014-10-29 01:47 - 00470016 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.dll
2015-12-15 07:40 - 2014-10-29 01:47 - 00451584 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.dll
2015-12-15 07:40 - 2014-10-29 01:47 - 00339968 _____ (Microsoft Corporation) C:\windows\system32\SessEnv.dll
2015-12-15 07:40 - 2014-10-29 01:45 - 00397824 _____ (Microsoft Corporation) C:\windows\SysWOW64\winspool.drv
2015-12-15 07:40 - 2014-10-29 01:44 - 00677376 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntshrui.dll
2015-12-15 07:40 - 2014-10-29 01:42 - 00497664 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxPackaging.dll
2015-12-15 07:40 - 2014-10-29 01:42 - 00366080 _____ (Microsoft Corporation) C:\windows\SysWOW64\provsvc.dll
2015-12-15 07:40 - 2014-10-29 01:42 - 00331776 _____ (Microsoft Corporation) C:\windows\SysWOW64\upnphost.dll
2015-12-15 07:40 - 2014-10-29 01:40 - 00296448 _____ (Microsoft Corporation) C:\windows\SysWOW64\SessEnv.dll
2015-12-15 07:40 - 2014-10-29 01:39 - 00454144 _____ (Microsoft Corporation) C:\windows\SysWOW64\hnetcfg.dll
2015-12-15 07:40 - 2014-10-29 01:39 - 00401408 _____ (Microsoft Corporation) C:\windows\SysWOW64\catsrv.dll
2015-12-15 07:40 - 2014-10-29 01:35 - 00442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-15 07:40 - 2014-10-15 09:32 - 00551232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\vhdmp.sys
2015-12-15 07:40 - 2014-10-08 08:33 - 00678400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2015-12-14 21:14 - 2014-10-29 04:06 - 00800008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcrt.dll
2015-12-14 21:14 - 2014-10-29 02:33 - 00505856 _____ (Microsoft Corporation) C:\windows\system32\WLanConn.dll
2015-12-14 21:14 - 2014-10-29 02:24 - 00519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\PhotoScreensaver.scr
2015-12-14 21:13 - 2014-10-29 05:04 - 00217912 _____ (Microsoft Corporation) C:\windows\system32\rsaenh.dll
2015-12-14 21:13 - 2014-10-29 04:59 - 00230816 _____ (Microsoft Corporation) C:\windows\system32\xmllite.dll
2015-12-14 21:13 - 2014-10-29 04:53 - 00687496 _____ (Microsoft Corporation) C:\windows\system32\msvcrt.dll
2015-12-14 21:13 - 2014-10-29 04:52 - 00225696 _____ (Microsoft Corporation) C:\windows\system32\mftranscode.dll
2015-12-14 21:13 - 2014-10-29 04:51 - 00363080 _____ (Microsoft Corporation) C:\windows\system32\ws2_32.dll
2015-12-14 21:13 - 2014-10-29 04:12 - 00416760 _____ (Microsoft Corporation) C:\windows\SysWOW64\WWanAPI.dll
2015-12-14 21:13 - 2014-10-29 04:11 - 00245296 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMASF.DLL
2015-12-14 21:13 - 2014-10-29 04:07 - 00336680 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvproc.dll
2015-12-14 21:13 - 2014-10-29 04:07 - 00202440 _____ (Microsoft Corporation) C:\windows\SysWOW64\mftranscode.dll
2015-12-14 21:13 - 2014-10-29 04:05 - 00321248 _____ (Microsoft Corporation) C:\windows\SysWOW64\ws2_32.dll
2015-12-14 21:13 - 2014-10-29 03:49 - 00604672 _____ (Microsoft Corporation) C:\windows\system32\msvcp60.dll
2015-12-14 21:13 - 2014-10-29 03:27 - 00342528 _____ (Microsoft Corporation) C:\windows\system32\diskraid.exe
2015-12-14 21:13 - 2014-10-29 03:27 - 00249344 _____ (Microsoft Corporation) C:\windows\system32\qdv.dll
2015-12-14 21:13 - 2014-10-29 03:27 - 00124928 _____ (Microsoft Corporation) C:\windows\system32\mfdvdec.dll
2015-12-14 21:13 - 2014-10-29 03:26 - 00431104 _____ (Microsoft Corporation) C:\windows\system32\termmgr.dll
2015-12-14 21:13 - 2014-10-29 03:26 - 00308736 _____ (Microsoft Corporation) C:\windows\system32\usbmon.dll
2015-12-14 21:13 - 2014-10-29 03:24 - 00374272 _____ (Microsoft Corporation) C:\windows\system32\WmpDui.dll
2015-12-14 21:13 - 2014-10-29 03:22 - 00322048 _____ (Microsoft Corporation) C:\windows\system32\sti.dll
2015-12-14 21:13 - 2014-10-29 03:21 - 01664000 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOE.DLL
2015-12-14 21:13 - 2014-10-29 03:19 - 00451072 _____ (Microsoft Corporation) C:\windows\system32\WMVSENCD.DLL
2015-12-14 21:13 - 2014-10-29 03:18 - 00316416 _____ (Microsoft Corporation) C:\windows\system32\mscandui.dll
2015-12-14 21:13 - 2014-10-29 03:18 - 00272896 _____ (Microsoft Corporation) C:\windows\system32\rasppp.dll
2015-12-14 21:13 - 2014-10-29 03:17 - 03231232 _____ (Microsoft Corporation) C:\windows\system32\NlsData004b.dll
2015-12-14 21:13 - 2014-10-29 03:17 - 01926144 _____ (Microsoft Corporation) C:\windows\system32\NlsData0022.dll
2015-12-14 21:13 - 2014-10-29 03:16 - 03235840 _____ (Microsoft Corporation) C:\windows\system32\NlsData0039.dll
2015-12-14 21:13 - 2014-10-29 03:16 - 03209216 _____ (Microsoft Corporation) C:\windows\system32\NlsData004a.dll
2015-12-14 21:13 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\windows\system32\NlsData004e.dll
2015-12-14 21:13 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\windows\system32\NlsData0049.dll
2015-12-14 21:13 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\windows\system32\NlsData0047.dll
2015-12-14 21:13 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\windows\system32\NlsData0046.dll
2015-12-14 21:13 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\windows\system32\NlsData0020.dll
2015-12-14 21:13 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\windows\system32\NlsData0026.dll
2015-12-14 21:13 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\windows\system32\NlsData0024.dll
2015-12-14 21:13 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\windows\system32\NlsData001b.dll
2015-12-14 21:13 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\windows\system32\NlsData0002.dll
2015-12-14 21:13 - 2014-10-29 03:15 - 01904640 _____ (Microsoft Corporation) C:\windows\system32\NlsData002a.dll
2015-12-14 21:13 - 2014-10-29 03:14 - 03209216 _____ (Microsoft Corporation) C:\windows\system32\NlsData004c.dll
2015-12-14 21:13 - 2014-10-29 03:14 - 03209216 _____ (Microsoft Corporation) C:\windows\system32\NlsData0045.dll
2015-12-14 21:13 - 2014-10-29 03:14 - 02075136 _____ (Microsoft Corporation) C:\windows\system32\NlsData0027.dll
2015-12-14 21:13 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\windows\system32\NlsData0c1a.dll
2015-12-14 21:13 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\windows\system32\NlsData081a.dll
         

Alt 06.01.2016, 00:25   #14
pinsel
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Code:
ATTFilter
2015-12-14 21:13 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\windows\system32\NlsData001a.dll
2015-12-14 21:13 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\windows\system32\NlsData0018.dll
2015-12-14 21:13 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\windows\system32\NlsData000f.dll
2015-12-14 21:13 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\windows\system32\NlsData0003.dll
2015-12-14 21:13 - 2014-10-29 03:14 - 01904640 _____ (Microsoft Corporation) C:\windows\system32\NlsData003e.dll
2015-12-14 21:13 - 2014-10-29 03:14 - 01904640 _____ (Microsoft Corporation) C:\windows\system32\NlsData0021.dll
2015-12-14 21:13 - 2014-10-29 03:12 - 00422400 _____ (Microsoft Corporation) C:\windows\system32\efscore.dll
2015-12-14 21:13 - 2014-10-29 03:11 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\sensrsvc.dll
2015-12-14 21:13 - 2014-10-29 03:04 - 00612864 _____ (Microsoft Corporation) C:\windows\system32\IasMigPlugin.dll
2015-12-14 21:13 - 2014-10-29 03:04 - 00587264 _____ (Microsoft Corporation) C:\windows\system32\filemgmt.dll
2015-12-14 21:13 - 2014-10-29 03:04 - 00471040 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-12-14 21:13 - 2014-10-29 03:03 - 00489472 _____ (Microsoft Corporation) C:\windows\system32\dlnashext.dll
2015-12-14 21:13 - 2014-10-29 03:02 - 00476672 _____ (Microsoft Corporation) C:\windows\system32\xwizards.dll
2015-12-14 21:13 - 2014-10-29 03:02 - 00432128 _____ (Microsoft Corporation) C:\windows\system32\clusapi.dll
2015-12-14 21:13 - 2014-10-29 03:00 - 00435200 _____ (Microsoft Corporation) C:\windows\SysWOW64\glmf32.dll
2015-12-14 21:13 - 2014-10-29 03:00 - 00193536 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2015-12-14 21:13 - 2014-10-29 02:57 - 01431552 _____ (Microsoft Corporation) C:\windows\system32\DxpTaskSync.dll
2015-12-14 21:13 - 2014-10-29 02:56 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\SearchProtocolHost.exe
2015-12-14 21:13 - 2014-10-29 02:54 - 00408576 _____ (Microsoft Corporation) C:\windows\system32\DfpCommon.dll
2015-12-14 21:13 - 2014-10-29 02:52 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\netdiagfx.dll
2015-12-14 21:13 - 2014-10-29 02:49 - 00416256 _____ (Microsoft Corporation) C:\windows\system32\sharemediacpl.dll
2015-12-14 21:13 - 2014-10-29 02:49 - 00233984 _____ (Microsoft Corporation) C:\windows\SysWOW64\mpg2splt.ax
2015-12-14 21:13 - 2014-10-29 02:49 - 00207360 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmime.dll
2015-12-14 21:13 - 2014-10-29 02:47 - 01041920 _____ (Microsoft Corporation) C:\windows\system32\msdt.exe
2015-12-14 21:13 - 2014-10-29 02:47 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\wisp.dll
2015-12-14 21:13 - 2014-10-29 02:46 - 00293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdv.dll
2015-12-14 21:13 - 2014-10-29 02:46 - 00150016 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfdvdec.dll
2015-12-14 21:13 - 2014-10-29 02:45 - 00429568 _____ (Microsoft Corporation) C:\windows\SysWOW64\sdohlp.dll
2015-12-14 21:13 - 2014-10-29 02:45 - 00336896 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2015-12-14 21:13 - 2014-10-29 02:44 - 00463872 _____ (Microsoft Corporation) C:\windows\system32\DXP.dll
2015-12-14 21:13 - 2014-10-29 02:44 - 00245760 _____ (Microsoft Corporation) C:\windows\SysWOW64\ksproxy.ax
2015-12-14 21:13 - 2014-10-29 02:43 - 00960000 _____ (Microsoft Corporation) C:\windows\system32\ReAgent.dll
2015-12-14 21:13 - 2014-10-29 02:43 - 00736256 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVXENCD.DLL
2015-12-14 21:13 - 2014-10-29 02:43 - 00524800 _____ (Microsoft Corporation) C:\windows\system32\icsvc.dll
2015-12-14 21:13 - 2014-10-29 02:43 - 00228864 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSNP.ax
2015-12-14 21:13 - 2014-10-29 02:43 - 00225792 _____ (Microsoft Corporation) C:\windows\SysWOW64\offfilt.dll
2015-12-14 21:13 - 2014-10-29 02:42 - 00712192 _____ (Microsoft Corporation) C:\windows\system32\fhcfg.dll
2015-12-14 21:13 - 2014-10-29 02:40 - 02036224 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0007.dll
2015-12-14 21:13 - 2014-10-29 02:39 - 09604608 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData000a.dll
2015-12-14 21:13 - 2014-10-29 02:39 - 04531712 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0416.dll
2015-12-14 21:13 - 2014-10-29 02:39 - 04530688 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData001d.dll
2015-12-14 21:13 - 2014-10-29 02:38 - 04530176 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0414.dll
2015-12-14 21:13 - 2014-10-29 02:38 - 04529664 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0816.dll
2015-12-14 21:13 - 2014-10-29 02:38 - 00363008 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.PointOfService.dll
2015-12-14 21:13 - 2014-10-29 02:34 - 00473600 _____ (Microsoft Corporation) C:\windows\SysWOW64\prnfldr.dll
2015-12-14 21:13 - 2014-10-29 02:33 - 00963072 _____ (Microsoft Corporation) C:\windows\system32\rasgcw.dll
2015-12-14 21:13 - 2014-10-29 02:29 - 00478208 _____ (Microsoft Corporation) C:\windows\SysWOW64\filemgmt.dll
2015-12-14 21:13 - 2014-10-29 02:29 - 00350720 _____ (Microsoft Corporation) C:\windows\system32\ncryptprov.dll
2015-12-14 21:13 - 2014-10-29 02:29 - 00252416 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2015-12-14 21:13 - 2014-10-29 02:27 - 00422912 _____ (Microsoft Corporation) C:\windows\system32\PCPTpm12.dll
2015-12-14 21:13 - 2014-10-29 02:27 - 00200704 _____ (Microsoft Corporation) C:\windows\SysWOW64\SensorsApi.dll
2015-12-14 21:13 - 2014-10-29 02:26 - 00542208 _____ (Microsoft Corporation) C:\windows\SysWOW64\FXSCOMEX.dll
2015-12-14 21:13 - 2014-10-29 02:26 - 00204800 _____ (Microsoft Corporation) C:\windows\system32\ReInfo.dll
2015-12-14 21:13 - 2014-10-29 02:25 - 00336896 _____ (Microsoft Corporation) C:\windows\SysWOW64\azroleui.dll
2015-12-14 21:13 - 2014-10-29 02:25 - 00335872 _____ (Microsoft Corporation) C:\windows\SysWOW64\SyncInfrastructure.dll
2015-12-14 21:13 - 2014-10-29 02:24 - 00391168 _____ (Microsoft Corporation) C:\windows\system32\wincorlib.dll
2015-12-14 21:13 - 2014-10-29 02:23 - 00445952 _____ (Microsoft Corporation) C:\windows\system32\wlansec.dll
2015-12-14 21:13 - 2014-10-29 02:23 - 00332800 _____ (Microsoft Corporation) C:\windows\system32\winsku.dll
2015-12-14 21:13 - 2014-10-29 02:22 - 00572416 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2015-12-14 21:13 - 2014-10-29 02:22 - 00499200 _____ (Microsoft Corporation) C:\windows\system32\msdelta.dll
2015-12-14 21:13 - 2014-10-29 02:21 - 00306176 _____ (Microsoft Corporation) C:\windows\system32\WUDFHost.exe
2015-12-14 21:13 - 2014-10-29 02:20 - 00770048 _____ (Microsoft Corporation) C:\windows\SysWOW64\ipsecsnp.dll
2015-12-14 21:13 - 2014-10-29 02:20 - 00371712 _____ (Microsoft Corporation) C:\windows\system32\wpnapps.dll
2015-12-14 21:13 - 2014-10-29 02:20 - 00310272 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Usb.dll
2015-12-14 21:13 - 2014-10-29 02:20 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\TimeBrokerServer.dll
2015-12-14 21:13 - 2014-10-29 02:20 - 00238592 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssphtb.dll
2015-12-14 21:13 - 2014-10-29 02:19 - 00621568 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsFilt.dll
2015-12-14 21:13 - 2014-10-29 02:19 - 00388608 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1core.dll
2015-12-14 21:13 - 2014-10-29 02:19 - 00349184 _____ (Microsoft Corporation) C:\windows\system32\d3d10core.dll
2015-12-14 21:13 - 2014-10-29 02:18 - 00743936 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFWMAAEC.DLL
2015-12-14 21:13 - 2014-10-29 02:18 - 00329216 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2015-12-14 21:13 - 2014-10-29 02:17 - 00433664 _____ (Microsoft Corporation) C:\windows\system32\P2PGraph.dll
2015-12-14 21:13 - 2014-10-29 02:17 - 00268800 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentClient.dll
2015-12-14 21:13 - 2014-10-29 02:14 - 00699392 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssvp.dll
2015-12-14 21:13 - 2014-10-29 02:14 - 00494592 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp_isv.exe
2015-12-14 21:13 - 2014-10-29 02:14 - 00493568 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp.exe
2015-12-14 21:13 - 2014-10-29 02:13 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\PhotoMetadataHandler.dll
2015-12-14 21:13 - 2014-10-29 02:10 - 00516096 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintDialogs.dll
2015-12-14 21:13 - 2014-10-29 02:10 - 00249344 _____ (Microsoft Corporation) C:\windows\system32\ssdpsrv.dll
2015-12-14 21:13 - 2014-10-29 02:09 - 00508416 _____ (Microsoft Corporation) C:\windows\system32\wmicmiplugin.dll
2015-12-14 21:13 - 2014-10-29 02:08 - 00412672 _____ (Microsoft Corporation) C:\windows\SysWOW64\WLanConn.dll
2015-12-14 21:13 - 2014-10-29 02:07 - 00856064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasgcw.dll
2015-12-14 21:13 - 2014-10-29 02:06 - 00301568 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncryptprov.dll
2015-12-14 21:13 - 2014-10-29 02:05 - 00380416 _____ (Microsoft Corporation) C:\windows\system32\pnrpsvc.dll
2015-12-14 21:13 - 2014-10-29 02:05 - 00292864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore.dll
2015-12-14 21:13 - 2014-10-29 02:03 - 00374272 _____ (Microsoft Corporation) C:\windows\system32\wlanmsm.dll
2015-12-14 21:13 - 2014-10-29 02:03 - 00263168 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.Vpn.dll
2015-12-14 21:13 - 2014-10-29 02:01 - 00250880 _____ (Microsoft Corporation) C:\windows\SysWOW64\eapp3hst.dll
2015-12-14 21:13 - 2014-10-29 02:00 - 00252416 _____ (Microsoft Corporation) C:\windows\SysWOW64\framedynos.dll
2015-12-14 21:13 - 2014-10-29 01:59 - 00302080 _____ (Microsoft Corporation) C:\windows\system32\pcsvDevice.dll
2015-12-14 21:13 - 2014-10-29 01:59 - 00210432 _____ (Microsoft Corporation) C:\windows\SysWOW64\netprofm.dll
2015-12-14 21:13 - 2014-10-29 01:58 - 00370176 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.dll
2015-12-14 21:13 - 2014-10-29 01:58 - 00285184 _____ (Microsoft Corporation) C:\windows\system32\TetheringMgr.dll
2015-12-14 21:13 - 2014-10-29 01:58 - 00246272 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecsExt.dll
2015-12-14 21:13 - 2014-10-29 01:57 - 00325632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.Proximity.dll
2015-12-14 21:13 - 2014-10-29 01:57 - 00274944 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-12-14 21:13 - 2014-10-29 01:56 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\PhotoMetadataHandler.dll
2015-12-14 21:13 - 2014-10-29 01:55 - 00795648 _____ (Microsoft Corporation) C:\windows\system32\wlanpref.dll
2015-12-14 21:13 - 2014-10-29 01:55 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\taskcomp.dll
2015-12-14 21:13 - 2014-10-29 01:54 - 00560640 _____ (Microsoft Corporation) C:\windows\SysWOW64\wimgapi.dll
2015-12-14 21:13 - 2014-10-29 01:54 - 00348672 _____ (Microsoft Corporation) C:\windows\SysWOW64\mprapi.dll
2015-12-14 21:13 - 2014-10-29 01:54 - 00212992 _____ (Microsoft Corporation) C:\windows\system32\Windows.System.Profile.HardwareId.dll
2015-12-14 21:13 - 2014-10-29 01:53 - 00550400 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserLanguagesCpl.dll
2015-12-14 21:13 - 2014-10-29 01:52 - 00336384 _____ (Microsoft Corporation) C:\windows\system32\stobject.dll
2015-12-14 21:13 - 2014-10-29 01:52 - 00266752 _____ (Microsoft Corporation) C:\windows\SysWOW64\eapphost.dll
2015-12-14 21:13 - 2014-10-29 01:49 - 00576512 _____ (Microsoft Corporation) C:\windows\SysWOW64\shsvcs.dll
2015-12-14 21:13 - 2014-10-29 01:49 - 00559104 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlidcli.dll
2015-12-14 21:13 - 2014-10-29 01:49 - 00248832 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Sensors.dll
2015-12-14 21:13 - 2014-10-29 01:47 - 00628224 _____ (Microsoft Corporation) C:\windows\system32\pnidui.dll
2015-12-14 21:13 - 2014-10-29 01:46 - 00455680 _____ (Microsoft Corporation) C:\windows\system32\wwanconn.dll
2015-12-14 21:13 - 2014-10-29 01:44 - 00393728 _____ (Microsoft Corporation) C:\windows\SysWOW64\taskcomp.dll
2015-12-14 21:13 - 2014-10-29 01:43 - 00322048 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSATAPI.dll
2015-12-14 21:13 - 2014-10-29 01:43 - 00278016 _____ (Microsoft Corporation) C:\windows\SysWOW64\eappcfg.dll
2015-12-14 21:13 - 2014-10-29 01:43 - 00181248 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.System.Profile.HardwareId.dll
2015-12-14 21:13 - 2014-10-15 09:32 - 00337728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Classpnp.sys
2015-12-14 21:12 - 2014-10-29 05:09 - 00315576 _____ (Microsoft Corporation) C:\windows\system32\cfgmgr32.dll
2015-12-14 21:12 - 2014-10-29 05:09 - 00294880 _____ (Microsoft Corporation) C:\windows\system32\bdeunlock.exe
2015-12-14 21:12 - 2014-10-29 04:58 - 01797944 _____ (Microsoft Corporation) C:\windows\system32\WMALFXGFXDSP.dll
2015-12-14 21:12 - 2014-10-29 04:57 - 01913128 _____ (Microsoft Corporation) C:\windows\system32\DisplaySwitch.exe
2015-12-14 21:12 - 2014-10-29 04:57 - 00629576 _____ (Microsoft Corporation) C:\windows\system32\MP4SDECD.DLL
2015-12-14 21:12 - 2014-10-29 04:57 - 00339312 _____ (Microsoft Corporation) C:\windows\system32\shlwapi.dll
2015-12-14 21:12 - 2014-10-29 04:57 - 00271152 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsAdminFlows.exe
2015-12-14 21:12 - 2014-10-29 04:57 - 00217432 _____ (Microsoft Corporation) C:\windows\system32\MSVideoDSP.dll
2015-12-14 21:12 - 2014-10-29 04:57 - 00031496 _____ (Microsoft Corporation) C:\windows\system32\CameraSettingsUIHost.exe
2015-12-14 21:12 - 2014-10-29 04:57 - 00027360 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsRemoveDevice.exe
2015-12-14 21:12 - 2014-10-29 04:55 - 00305192 _____ (Microsoft Corporation) C:\windows\system32\rdpendp.dll
2015-12-14 21:12 - 2014-10-29 04:52 - 00387872 _____ (Microsoft Corporation) C:\windows\system32\msvproc.dll
2015-12-14 21:12 - 2014-10-29 04:15 - 00192096 _____ (Microsoft Corporation) C:\windows\SysWOW64\rsaenh.dll
2015-12-14 21:12 - 2014-10-29 04:13 - 00185880 _____ (Microsoft Corporation) C:\windows\SysWOW64\xmllite.dll
2015-12-14 21:12 - 2014-10-29 04:11 - 00191104 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.MediaControl.dll
2015-12-14 21:12 - 2014-10-29 04:10 - 00278352 _____ (Microsoft Corporation) C:\windows\SysWOW64\shlwapi.dll
2015-12-14 21:12 - 2014-10-29 04:10 - 00276816 _____ (Microsoft Corporation) C:\windows\SysWOW64\winsta.dll
2015-12-14 21:12 - 2014-10-29 04:07 - 00260800 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFPlay.dll
2015-12-14 21:12 - 2014-10-29 04:07 - 00019096 _____ (Microsoft Corporation) C:\windows\SysWOW64\ksuser.dll
2015-12-14 21:12 - 2014-10-29 03:56 - 00553984 _____ (Microsoft Corporation) C:\windows\system32\mfh264enc.dll
2015-12-14 21:12 - 2014-10-29 03:42 - 00480256 _____ (Microsoft Corporation) C:\windows\system32\msutb.dll
2015-12-14 21:12 - 2014-10-29 03:41 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2015-12-14 21:12 - 2014-10-29 03:36 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\prncache.dll
2015-12-14 21:12 - 2014-10-29 03:33 - 00860672 _____ (Microsoft Corporation) C:\windows\system32\NL7Data001E.dll
2015-12-14 21:12 - 2014-10-29 03:32 - 00215552 _____ (Microsoft Corporation) C:\windows\system32\sqlceoledb40.dll
2015-12-14 21:12 - 2014-10-29 03:30 - 00164352 _____ (Microsoft Corporation) C:\windows\system32\SensorsClassExtension.dll
2015-12-14 21:12 - 2014-10-29 03:29 - 00248320 _____ (Microsoft Corporation) C:\windows\system32\fhengine.dll
2015-12-14 21:12 - 2014-10-29 03:27 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\wmvdspa.dll
2015-12-14 21:12 - 2014-10-29 03:25 - 00290816 _____ (Microsoft Corporation) C:\windows\system32\resutils.dll
2015-12-14 21:12 - 2014-10-29 03:24 - 00644608 _____ (Microsoft Corporation) C:\windows\system32\WMVXENCD.DLL
2015-12-14 21:12 - 2014-10-29 03:20 - 00446464 _____ (Microsoft Corporation) C:\windows\system32\QAGENTRT.DLL
2015-12-14 21:12 - 2014-10-29 03:16 - 00297472 _____ (Microsoft Corporation) C:\windows\system32\comsnap.dll
2015-12-14 21:12 - 2014-10-29 03:16 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\lltdapi.dll
2015-12-14 21:12 - 2014-10-29 03:11 - 00240128 _____ (Microsoft Corporation) C:\windows\system32\hgprint.dll
2015-12-14 21:12 - 2014-10-29 03:10 - 00515072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfh264enc.dll
2015-12-14 21:12 - 2014-10-29 03:09 - 00279040 _____ (Microsoft Corporation) C:\windows\system32\lltdsvc.dll
2015-12-14 21:12 - 2014-10-29 03:04 - 00517632 _____ (Microsoft Corporation) C:\windows\system32\devmgr.dll
2015-12-14 21:12 - 2014-10-29 03:02 - 00520704 _____ (Microsoft Corporation) C:\windows\system32\localsec.dll
2015-12-14 21:12 - 2014-10-29 03:01 - 00819200 _____ (Microsoft Corporation) C:\windows\system32\mmsys.cpl
2015-12-14 21:12 - 2014-10-29 03:01 - 00475136 _____ (Microsoft Corporation) C:\windows\system32\spwizeng.dll
2015-12-14 21:12 - 2014-10-29 02:58 - 00894976 _____ (Microsoft Corporation) C:\windows\system32\ActionCenter.dll
2015-12-14 21:12 - 2014-10-29 02:58 - 00423424 _____ (Microsoft Corporation) C:\windows\SysWOW64\msutb.dll
2015-12-14 21:12 - 2014-10-29 02:54 - 00833536 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2015-12-14 21:12 - 2014-10-29 02:54 - 00401408 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dim.dll
2015-12-14 21:12 - 2014-10-29 02:53 - 00924672 _____ (Microsoft Corporation) C:\windows\system32\nettrace.dll
2015-12-14 21:12 - 2014-10-29 02:52 - 00846848 _____ (Microsoft Corporation) C:\windows\system32\ipsecsnp.dll
2015-12-14 21:12 - 2014-10-29 02:49 - 00771584 _____ (Microsoft Corporation) C:\windows\system32\appwiz.cpl
2015-12-14 21:12 - 2014-10-29 02:48 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\Dxpserver.exe
2015-12-14 21:12 - 2014-10-29 02:45 - 00378880 _____ (Microsoft Corporation) C:\windows\SysWOW64\termmgr.dll
2015-12-14 21:12 - 2014-10-29 02:44 - 00229376 _____ (Microsoft Corporation) C:\windows\SysWOW64\resutils.dll
2015-12-14 21:12 - 2014-10-29 02:43 - 00235520 _____ (Microsoft Corporation) C:\windows\SysWOW64\sti.dll
2015-12-14 21:12 - 2014-10-29 02:41 - 00381952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iassdo.dll
2015-12-14 21:12 - 2014-10-29 02:39 - 00402432 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVSENCD.DLL
2015-12-14 21:12 - 2014-10-29 02:39 - 00252928 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscandui.dll
2015-12-14 21:12 - 2014-10-29 02:38 - 04530688 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0010.dll
2015-12-14 21:12 - 2014-10-29 02:38 - 02387456 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData000d.dll
2015-12-14 21:12 - 2014-10-29 02:38 - 02307072 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData000c.dll
2015-12-14 21:12 - 2014-10-29 02:31 - 00318464 _____ (Microsoft Corporation) C:\windows\system32\netjoin.dll
2015-12-14 21:12 - 2014-10-29 02:29 - 00465920 _____ (Microsoft Corporation) C:\windows\SysWOW64\devmgr.dll
2015-12-14 21:12 - 2014-10-29 02:29 - 00434176 _____ (Microsoft Corporation) C:\windows\SysWOW64\dlnashext.dll
2015-12-14 21:12 - 2014-10-29 02:28 - 00357376 _____ (Microsoft Corporation) C:\windows\system32\cmd.exe
2015-12-14 21:12 - 2014-10-29 02:28 - 00214528 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2015-12-14 21:12 - 2014-10-29 02:27 - 00763392 _____ (Microsoft Corporation) C:\windows\SysWOW64\mmsys.cpl
2015-12-14 21:12 - 2014-10-29 02:27 - 00397824 _____ (Microsoft Corporation) C:\windows\SysWOW64\xwizards.dll
2015-12-14 21:12 - 2014-10-29 02:27 - 00380416 _____ (Microsoft Corporation) C:\windows\SysWOW64\spwizeng.dll
2015-12-14 21:12 - 2014-10-29 02:25 - 00316416 _____ (Microsoft Corporation) C:\windows\SysWOW64\certreq.exe
2015-12-14 21:12 - 2014-10-29 02:25 - 00236544 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpencom.dll
2015-12-14 21:12 - 2014-10-29 02:24 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Geolocation.dll
2015-12-14 21:12 - 2014-10-29 02:23 - 00312832 _____ (Microsoft Corporation) C:\windows\SysWOW64\WPDSp.dll
2015-12-14 21:12 - 2014-10-29 02:23 - 00274944 _____ (Microsoft Corporation) C:\windows\system32\scecli.dll
2015-12-14 21:12 - 2014-10-29 02:22 - 00229376 _____ (Microsoft Corporation) C:\windows\SysWOW64\qasf.dll
2015-12-14 21:12 - 2014-10-29 02:21 - 00272896 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchProtocolHost.exe
2015-12-14 21:12 - 2014-10-29 02:20 - 00558080 _____ (Microsoft Corporation) C:\windows\SysWOW64\objsel.dll
2015-12-14 21:12 - 2014-10-29 02:20 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\wdscore.dll
2015-12-14 21:12 - 2014-10-29 02:17 - 00471552 _____ (Microsoft Corporation) C:\windows\system32\energy.dll
2015-12-14 21:12 - 2014-10-29 02:17 - 00186368 _____ (Microsoft Corporation) C:\windows\system32\dpapisrv.dll
2015-12-14 21:12 - 2014-10-29 02:17 - 00164352 _____ (Microsoft Corporation) C:\windows\system32\dwmredir.dll
2015-12-14 21:12 - 2014-10-29 02:16 - 00497664 _____ (Microsoft Corporation) C:\windows\system32\authfwcfg.dll
2015-12-14 21:12 - 2014-10-29 02:16 - 00283136 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmmgrtn.dll
2015-12-14 21:12 - 2014-10-29 02:13 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.dll
2015-12-14 21:12 - 2014-10-29 02:12 - 00417280 _____ (Microsoft Corporation) C:\windows\system32\mprapi.dll
2015-12-14 21:12 - 2014-10-29 02:12 - 00273408 _____ (Microsoft Corporation) C:\windows\system32\mbsmsapi.dll
2015-12-14 21:12 - 2014-10-29 02:10 - 00361472 _____ (Microsoft Corporation) C:\windows\system32\MbaeApiPublic.dll
2015-12-14 21:12 - 2014-10-29 02:04 - 00296448 _____ (Microsoft Corporation) C:\windows\SysWOW64\BCP47Langs.dll
2015-12-14 21:12 - 2014-10-29 02:04 - 00279552 _____ (Microsoft Corporation) C:\windows\SysWOW64\netjoin.dll
2015-12-14 21:12 - 2014-10-29 02:04 - 00262144 _____ (Microsoft Corporation) C:\windows\SysWOW64\pdh.dll
2015-12-14 21:12 - 2014-10-29 02:03 - 00608256 _____ (Microsoft Corporation) C:\windows\SysWOW64\drvstore.dll
2015-12-14 21:12 - 2014-10-29 02:01 - 00397824 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdelta.dll
2015-12-14 21:12 - 2014-10-29 02:00 - 00352768 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1core.dll
2015-12-14 21:12 - 2014-10-29 01:58 - 00214016 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppXDeploymentClient.dll
2015-12-14 21:12 - 2014-10-29 01:57 - 00372736 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2PGraph.dll
2015-12-14 21:12 - 2014-10-29 01:56 - 00483328 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp_isv.exe
2015-12-14 21:12 - 2014-10-29 01:56 - 00482304 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp.exe
2015-12-14 21:12 - 2014-10-29 01:56 - 00278528 _____ (Microsoft Corporation) C:\windows\system32\activeds.dll
2015-12-14 21:12 - 2014-10-29 01:55 - 00206336 _____ (Microsoft Corporation) C:\windows\system32\PackageStateRoaming.dll
2015-12-14 21:12 - 2014-10-29 01:53 - 00381952 _____ (Microsoft Corporation) C:\windows\system32\WinSATAPI.dll
2015-12-14 21:12 - 2014-10-29 01:52 - 01024512 _____ (Microsoft Corporation) C:\windows\system32\WlanMM.dll
2015-12-14 21:12 - 2014-10-29 01:52 - 00522240 _____ (Microsoft Corporation) C:\windows\system32\VAN.dll
2015-12-14 21:12 - 2014-10-29 01:52 - 00280576 _____ (Microsoft Corporation) C:\windows\SysWOW64\LocationApi.dll
2015-12-14 21:12 - 2014-10-29 01:51 - 00244224 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.dll
2015-12-14 21:12 - 2014-10-29 01:50 - 00920064 _____ (Microsoft Corporation) C:\windows\system32\FirewallControlPanel.dll
2015-12-14 21:12 - 2014-10-29 01:49 - 00304128 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanmsm.dll
2015-12-14 21:12 - 2014-10-29 01:46 - 00210944 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-12-14 21:12 - 2014-10-29 01:44 - 00274432 _____ (Microsoft Corporation) C:\windows\SysWOW64\DaOtpCredentialProvider.dll
2015-12-14 21:12 - 2014-10-29 01:42 - 00865280 _____ (Microsoft Corporation) C:\windows\SysWOW64\FirewallControlPanel.dll
2015-12-14 21:12 - 2014-10-29 01:35 - 00289792 _____ (Microsoft Corporation) C:\windows\system32\PlayToDevice.dll
2015-12-14 21:12 - 2014-08-26 04:30 - 00354112 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fltMgr.sys
2015-12-14 21:11 - 2014-10-29 05:09 - 00233448 _____ (Microsoft Corporation) C:\windows\system32\ProximityUxHost.exe
2015-12-14 21:11 - 2014-10-29 05:09 - 00214360 _____ (Microsoft Corporation) C:\windows\system32\Windows.Storage.ApplicationData.dll
2015-12-14 21:11 - 2014-10-29 05:04 - 00181816 _____ (Microsoft Corporation) C:\windows\system32\AuthHost.exe
2015-12-14 21:11 - 2014-10-29 04:57 - 00767504 _____ (Microsoft Corporation) C:\windows\system32\iuilp.dll
2015-12-14 21:11 - 2014-10-29 04:57 - 00034568 _____ (Microsoft Corporation) C:\windows\system32\UserAccountBroker.exe
2015-12-14 21:11 - 2014-10-29 04:57 - 00029408 _____ (Microsoft Corporation) C:\windows\system32\PickerHost.exe
2015-12-14 21:11 - 2014-10-29 04:57 - 00018584 _____ (Microsoft Corporation) C:\windows\system32\SlideToShutDown.exe
2015-12-14 21:11 - 2014-10-29 04:52 - 00244272 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2015-12-14 21:11 - 2014-10-29 04:51 - 00206336 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2015-12-14 21:11 - 2014-10-29 04:51 - 00179736 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-12-14 21:11 - 2014-10-29 04:18 - 00241168 _____ (Microsoft Corporation) C:\windows\SysWOW64\cfgmgr32.dll
2015-12-14 21:11 - 2014-10-29 04:11 - 00187488 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSVideoDSP.dll
2015-12-14 21:11 - 2014-10-29 04:10 - 01906872 _____ (Microsoft Corporation) C:\windows\SysWOW64\DisplaySwitch.exe
2015-12-14 21:11 - 2014-10-29 04:10 - 00272648 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpendp.dll
2015-12-14 21:11 - 2014-10-29 03:46 - 00226304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFRd.sys
2015-12-14 21:11 - 2014-10-29 03:45 - 00196608 _____ (Microsoft Corporation) C:\windows\system32\WwaApi.dll
2015-12-14 21:11 - 2014-10-29 03:41 - 00242176 _____ (Microsoft Corporation) C:\windows\system32\WinSCard.dll
2015-12-14 21:11 - 2014-10-29 03:41 - 00154624 _____ (Microsoft Corporation) C:\windows\system32\TabSvc.dll
2015-12-14 21:11 - 2014-10-29 03:40 - 00222208 _____ (Microsoft Corporation) C:\windows\system32\dinput8.dll
2015-12-14 21:11 - 2014-10-29 03:35 - 00274432 _____ (Microsoft Corporation) C:\windows\system32\adsldp.dll
2015-12-14 21:11 - 2014-10-29 03:32 - 00303616 _____ (Microsoft Corporation) C:\windows\system32\migflt.dll
2015-12-14 21:11 - 2014-10-29 03:31 - 00269824 _____ (Microsoft Corporation) C:\windows\system32\cewmdm.dll
2015-12-14 21:11 - 2014-10-29 03:31 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\WinSyncMetastore.dll
2015-12-14 21:11 - 2014-10-29 03:27 - 00289280 _____ (Microsoft Corporation) C:\windows\system32\dmdskmgr.dll
2015-12-14 21:11 - 2014-10-29 03:27 - 00239616 _____ (Microsoft Corporation) C:\windows\system32\mssha.dll
2015-12-14 21:11 - 2014-10-29 03:27 - 00222720 _____ (Microsoft Corporation) C:\windows\system32\iasnap.dll
2015-12-14 21:11 - 2014-10-29 03:26 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2015-12-14 21:11 - 2014-10-29 03:26 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\gpresult.exe
2015-12-14 21:11 - 2014-10-29 03:22 - 00200192 _____ (Microsoft Corporation) C:\windows\system32\iasrecst.dll
2015-12-14 21:11 - 2014-10-29 03:21 - 00275456 _____ (Microsoft Corporation) C:\windows\system32\iassam.dll
2015-12-14 21:11 - 2014-10-29 03:20 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\spp.dll
2015-12-14 21:11 - 2014-10-29 03:18 - 01609216 _____ (Microsoft Corporation) C:\windows\system32\NlsData0000.dll
2015-12-14 21:11 - 2014-10-29 03:13 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\prnfldr.dll
2015-12-14 21:11 - 2014-10-29 03:13 - 00263680 _____ (Microsoft Corporation) C:\windows\system32\wavemsp.dll
2015-12-14 21:11 - 2014-10-29 03:12 - 00282112 _____ (Microsoft Corporation) C:\windows\system32\fhcat.dll
2015-12-14 21:11 - 2014-10-29 03:08 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\fdprint.dll
2015-12-14 21:11 - 2014-10-29 03:05 - 00370176 _____ (Microsoft Corporation) C:\windows\system32\srchadmin.dll
2015-12-14 21:11 - 2014-10-29 03:04 - 00187392 _____ (Microsoft Corporation) C:\windows\system32\dmvdsitf.dll
2015-12-14 21:11 - 2014-10-29 03:03 - 00263168 _____ (Microsoft Corporation) C:\windows\system32\xwtpdui.dll
2015-12-14 21:11 - 2014-10-29 03:02 - 00306176 _____ (Microsoft Corporation) C:\windows\system32\rasmontr.dll
2015-12-14 21:11 - 2014-10-29 03:00 - 03814400 _____ (Microsoft Corporation) C:\windows\system32\accessibilitycpl.dll
2015-12-14 21:11 - 2014-10-29 03:00 - 00371200 _____ (Microsoft Corporation) C:\windows\system32\msinfo32.exe
2015-12-14 21:11 - 2014-10-29 03:00 - 00009216 _____ (Microsoft Corporation) C:\windows\SysWOW64\riched32.dll
2015-12-14 21:11 - 2014-10-29 02:57 - 00515072 _____ (Microsoft Corporation) C:\windows\system32\DeviceCenter.dll
2015-12-14 21:11 - 2014-10-29 02:57 - 00161280 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2015-12-14 21:11 - 2014-10-29 02:56 - 00796160 _____ (Microsoft Corporation) C:\windows\system32\mblctr.exe
2015-12-14 21:11 - 2014-10-29 02:53 - 02238464 _____ (Microsoft Corporation) C:\windows\SysWOW64\NL7Data0404.dll
2015-12-14 21:11 - 2014-10-29 02:52 - 03355136 _____ (Microsoft Corporation) C:\windows\SysWOW64\NL7Data0804.dll
2015-12-14 21:11 - 2014-10-29 02:52 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\mssphtb.dll
2015-12-14 21:11 - 2014-10-29 02:52 - 00224768 _____ (Microsoft Corporation) C:\windows\SysWOW64\adsldp.dll
2015-12-14 21:11 - 2014-10-29 02:50 - 00175616 _____ (Microsoft Corporation) C:\windows\SysWOW64\sqlceoledb40.dll
2015-12-14 21:11 - 2014-10-29 02:49 - 00234496 _____ (Microsoft Corporation) C:\windows\SysWOW64\cewmdm.dll
2015-12-14 21:11 - 2014-10-29 02:48 - 01364992 _____ (Microsoft Corporation) C:\windows\system32\connect.dll
2015-12-14 21:11 - 2014-10-29 02:47 - 00169984 _____ (Microsoft Corporation) C:\windows\system32\apprepsync.dll
2015-12-14 21:11 - 2014-10-29 02:46 - 00433664 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2015-12-14 21:11 - 2014-10-29 02:46 - 00292352 _____ (Microsoft Corporation) C:\windows\SysWOW64\adsnt.dll
2015-12-14 21:11 - 2014-10-29 02:46 - 00284672 _____ (Microsoft Corporation) C:\windows\SysWOW64\diskraid.exe
2015-12-14 21:11 - 2014-10-29 02:46 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\msoeacct.dll
2015-12-14 21:11 - 2014-10-29 02:46 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmvdspa.dll
2015-12-14 21:11 - 2014-10-29 02:44 - 00344064 _____ (Microsoft Corporation) C:\windows\system32\photowiz.dll
2015-12-14 21:11 - 2014-10-29 02:43 - 00289792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WmpDui.dll
2015-12-14 21:11 - 2014-10-29 02:40 - 00380928 _____ (Microsoft Corporation) C:\windows\SysWOW64\nshipsec.dll
2015-12-14 21:11 - 2014-10-29 02:38 - 02012160 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0026.dll
2015-12-14 21:11 - 2014-10-29 02:38 - 02012160 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData000f.dll
2015-12-14 21:11 - 2014-10-29 02:37 - 03149824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0039.dll
2015-12-14 21:11 - 2014-10-29 02:37 - 01829376 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData002a.dll
2015-12-14 21:11 - 2014-10-29 02:37 - 00236032 _____ (Microsoft Corporation) C:\windows\SysWOW64\comsnap.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData004e.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData004c.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData004b.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData004a.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0049.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0047.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0046.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0045.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 03132928 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0020.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01999360 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0027.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0c1a.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData081a.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0024.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData001b.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData001a.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0018.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0003.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0002.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01829376 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData003e.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01829376 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0022.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01829376 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0021.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 00198656 _____ (Microsoft Corporation) C:\windows\system32\sbeio.dll
2015-12-14 21:11 - 2014-10-29 02:35 - 00315904 _____ (Microsoft Corporation) C:\windows\SysWOW64\mprddm.dll
2015-12-14 21:11 - 2014-10-29 02:34 - 00321024 _____ (Microsoft Corporation) C:\windows\SysWOW64\efscore.dll
2015-12-14 21:11 - 2014-10-29 02:34 - 00254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tapisrv.dll
2015-12-14 21:11 - 2014-10-29 02:30 - 00484352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cmdial32.dll
2015-12-14 21:11 - 2014-10-29 02:29 - 00503808 _____ (Microsoft Corporation) C:\windows\SysWOW64\IasMigPlugin.dll
2015-12-14 21:11 - 2014-10-29 02:28 - 00320512 _____ (Microsoft Corporation) C:\windows\SysWOW64\clusapi.dll
2015-12-14 21:11 - 2014-10-29 02:28 - 00269312 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2015-12-14 21:11 - 2014-10-29 02:28 - 00177664 _____ (Microsoft Corporation) C:\windows\system32\ulib.dll
2015-12-14 21:11 - 2014-10-29 02:28 - 00173568 _____ (Microsoft Corporation) C:\windows\system32\rasman.dll
2015-12-14 21:11 - 2014-10-29 02:27 - 00306176 _____ (Microsoft Corporation) C:\windows\system32\pdh.dll
2015-12-14 21:11 - 2014-10-29 02:27 - 00248320 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasmontr.dll
2015-12-14 21:11 - 2014-10-29 02:25 - 00333824 _____ (Microsoft Corporation) C:\windows\SysWOW64\msinfo32.exe
2015-12-14 21:11 - 2014-10-29 02:24 - 01389056 _____ (Microsoft Corporation) C:\windows\SysWOW64\DxpTaskSync.dll
2015-12-14 21:11 - 2014-10-29 02:24 - 00289280 _____ (Microsoft Corporation) C:\windows\system32\wkssvc.dll
2015-12-14 21:11 - 2014-10-29 02:22 - 00839680 _____ (Microsoft Corporation) C:\windows\SysWOW64\ActionCenter.dll
2015-12-14 21:11 - 2014-10-29 02:22 - 00517120 _____ (Microsoft Corporation) C:\windows\system32\wimserv.exe
2015-12-14 21:11 - 2014-10-29 02:21 - 00755712 _____ (Microsoft Corporation) C:\windows\SysWOW64\osk.exe
2015-12-14 21:11 - 2014-10-29 02:21 - 00361472 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2015-12-14 21:11 - 2014-10-29 02:21 - 00246784 _____ (Microsoft Corporation) C:\windows\system32\CryptoWinRT.dll
2015-12-14 21:11 - 2014-10-29 02:21 - 00225792 _____ (Microsoft Corporation) C:\windows\system32\WUDFPlatform.dll
2015-12-14 21:11 - 2014-10-29 02:20 - 00272384 _____ (Microsoft Corporation) C:\windows\system32\framedyn.dll
2015-12-14 21:11 - 2014-10-29 02:20 - 00234496 _____ (Microsoft Corporation) C:\windows\system32\miutils.dll
2015-12-14 21:11 - 2014-10-29 02:19 - 00701440 _____ (Microsoft Corporation) C:\windows\SysWOW64\appwiz.cpl
2015-12-14 21:11 - 2014-10-29 02:18 - 00194560 _____ (Microsoft Corporation) C:\windows\system32\deviceaccess.dll
2015-12-14 21:11 - 2014-10-29 02:17 - 00242176 _____ (Microsoft Corporation) C:\windows\system32\wevtutil.exe
2015-12-14 21:11 - 2014-10-29 02:16 - 00198144 _____ (Microsoft Corporation) C:\windows\SysWOW64\msoeacct.dll
2015-12-14 21:11 - 2014-10-29 02:15 - 00172544 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Input.Inking.dll
2015-12-14 21:11 - 2014-10-29 02:14 - 00288256 _____ (Microsoft Corporation) C:\windows\SysWOW64\photowiz.dll
2015-12-14 21:11 - 2014-10-29 02:13 - 00260608 _____ (Microsoft Corporation) C:\windows\system32\vaultsvc.dll
2015-12-14 21:11 - 2014-10-29 02:12 - 00280576 _____ (Microsoft Corporation) C:\windows\system32\hotspotauth.dll
2015-12-14 21:11 - 2014-10-29 02:12 - 00254464 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2015-12-14 21:11 - 2014-10-29 02:11 - 00672768 _____ (Microsoft Corporation) C:\windows\system32\wimgapi.dll
2015-12-14 21:11 - 2014-10-29 02:11 - 00373248 _____ (Microsoft Corporation) C:\windows\system32\msdtckrm.dll
2015-12-14 21:11 - 2014-10-29 02:10 - 00302080 _____ (Microsoft Corporation) C:\windows\system32\wlanapi.dll
2015-12-14 21:11 - 2014-10-29 02:10 - 00228864 _____ (Microsoft Corporation) C:\windows\system32\wdmaud.drv
2015-12-14 21:11 - 2014-10-29 02:08 - 00209408 _____ (Microsoft Corporation) C:\windows\system32\wecsvc.dll
2015-12-14 21:11 - 2014-10-29 02:05 - 00315392 _____ (Microsoft Corporation) C:\windows\SysWOW64\cmd.exe
2015-12-14 21:11 - 2014-10-29 02:05 - 00309248 _____ (Microsoft Corporation) C:\windows\system32\TtlsCfg.dll
2015-12-14 21:11 - 2014-10-29 02:05 - 00228864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2015-12-14 21:11 - 2014-10-29 02:05 - 00137728 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2015-12-14 21:11 - 2014-10-29 02:04 - 00364032 _____ (Microsoft Corporation) C:\windows\SysWOW64\PCPTpm12.dll
2015-12-14 21:11 - 2014-10-29 02:04 - 00254464 _____ (Microsoft Corporation) C:\windows\system32\rascustom.dll
2015-12-14 21:11 - 2014-10-29 02:04 - 00201216 _____ (Microsoft Corporation) C:\windows\SysWOW64\ifsutil.dll
2015-12-14 21:11 - 2014-10-29 02:03 - 00190976 _____ (Microsoft Corporation) C:\windows\system32\dafWfdProvider.dll
2015-12-14 21:11 - 2014-10-29 02:02 - 00217600 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Geolocation.dll
2015-12-14 21:11 - 2014-10-29 02:01 - 00214016 _____ (Microsoft Corporation) C:\windows\SysWOW64\scecli.dll
2015-12-14 21:11 - 2014-10-29 02:00 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\PlayToManager.dll
2015-12-14 21:11 - 2014-10-29 02:00 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\framedyn.dll
2015-12-14 21:11 - 2014-10-29 02:00 - 00200192 _____ (Windows (R) Win 7 DDK provider) C:\windows\system32\DscCoreConfProv.dll
2015-12-14 21:11 - 2014-10-29 01:59 - 00316928 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10core.dll
2015-12-14 21:11 - 2014-10-29 01:59 - 00286720 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpnapps.dll
2015-12-14 21:11 - 2014-10-29 01:59 - 00188928 _____ (Microsoft Corporation) C:\windows\SysWOW64\miutils.dll
2015-12-14 21:11 - 2014-10-29 01:57 - 00364032 _____ (Microsoft Corporation) C:\windows\SysWOW64\authfwcfg.dll
2015-12-14 21:11 - 2014-10-29 01:57 - 00297472 _____ (Microsoft Corporation) C:\windows\system32\wlidcredprov.dll
2015-12-14 21:11 - 2014-10-29 01:56 - 00624640 _____ (Microsoft Corporation) C:\windows\system32\rdbui.dll
2015-12-14 21:11 - 2014-10-29 01:56 - 00146944 _____ (Microsoft Corporation) C:\windows\system32\wscsvc.dll
2015-12-14 21:11 - 2014-10-29 01:55 - 00223744 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-12-14 21:11 - 2014-10-29 01:55 - 00198656 _____ (Microsoft Corporation) C:\windows\SysWOW64\mbsmsapi.dll
2015-12-14 21:11 - 2014-10-29 01:55 - 00171008 _____ (Microsoft Corporation) C:\windows\system32\thumbcache.dll
2015-12-14 21:11 - 2014-10-29 01:54 - 00306688 _____ (Microsoft Corporation) C:\windows\system32\NAPMONTR.DLL
2015-12-14 21:11 - 2014-10-29 01:54 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\ListSvc.dll
2015-12-14 21:11 - 2014-10-29 01:54 - 00222208 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceTypes.dll
2015-12-14 21:11 - 2014-10-29 01:54 - 00209920 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Scanners.dll
2015-12-14 21:11 - 2014-10-29 01:53 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\msctfuimanager.dll
2015-12-14 21:11 - 2014-10-29 01:53 - 00347648 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_8.dll
2015-12-14 21:11 - 2014-10-29 01:53 - 00306688 _____ (Microsoft Corporation) C:\windows\system32\msdtcuiu.dll
2015-12-14 21:11 - 2014-10-29 01:53 - 00269824 _____ (Microsoft Corporation) C:\windows\SysWOW64\MbaeApiPublic.dll
2015-12-14 21:11 - 2014-10-29 01:53 - 00238080 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanapi.dll
2015-12-14 21:11 - 2014-10-29 01:52 - 00440832 _____ (Microsoft Corporation) C:\windows\system32\p2psvc.dll
2015-12-14 21:11 - 2014-10-29 01:52 - 00225792 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.SpeechSynthesis.dll
2015-12-14 21:11 - 2014-10-29 01:51 - 00236032 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmWmiPl.dll
2015-12-14 21:11 - 2014-10-29 01:50 - 00332800 _____ (Microsoft Corporation) C:\windows\system32\fhcpl.dll
2015-12-14 21:11 - 2014-10-29 01:49 - 00300032 _____ (Microsoft Corporation) C:\windows\system32\umrdp.dll
2015-12-14 21:11 - 2014-10-29 01:48 - 00259072 _____ (Microsoft Corporation) C:\windows\system32\InputSwitch.dll
2015-12-14 21:11 - 2014-10-29 01:46 - 01305088 _____ (Microsoft Corporation) C:\windows\system32\wcnwiz.dll
2015-12-14 21:11 - 2014-10-29 01:46 - 00296448 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.dll
2015-12-14 21:11 - 2014-10-29 01:45 - 00225792 _____ (Microsoft Corporation) C:\windows\SysWOW64\activeds.dll
2015-12-14 21:11 - 2014-10-29 01:44 - 00732672 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanpref.dll
2015-12-14 21:11 - 2014-10-29 01:44 - 00164352 _____ (Microsoft Corporation) C:\windows\SysWOW64\PackageStateRoaming.dll
2015-12-14 21:11 - 2014-10-29 01:43 - 00957952 _____ (Microsoft Corporation) C:\windows\SysWOW64\WlanMM.dll
2015-12-14 21:11 - 2014-10-29 01:43 - 00724480 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctfuimanager.dll
2015-12-14 21:11 - 2014-10-29 01:43 - 00461312 _____ (Microsoft Corporation) C:\windows\SysWOW64\VAN.dll
2015-12-14 21:11 - 2014-10-29 01:43 - 00252928 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdtcuiu.dll
2015-12-14 21:11 - 2014-10-29 01:41 - 00305152 _____ (Microsoft Corporation) C:\windows\SysWOW64\stobject.dll
2015-12-14 21:11 - 2014-10-29 01:38 - 00565760 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptui.dll
2015-12-14 21:11 - 2014-10-29 01:30 - 00215552 _____ (Microsoft Corporation) C:\windows\SysWOW64\PlayToDevice.dll
2015-12-14 21:11 - 2014-07-24 16:28 - 00143680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2015-12-14 21:10 - 2014-10-29 05:00 - 00297512 _____ (Microsoft Corporation) C:\windows\system32\sqmapi.dll
2015-12-14 21:10 - 2014-10-29 05:00 - 00142000 _____ (Microsoft Corporation) C:\windows\system32\dxva2.dll
2015-12-14 21:10 - 2014-10-29 04:57 - 00447256 _____ (Microsoft Corporation) C:\windows\system32\wmpps.dll
2015-12-14 21:10 - 2014-10-29 04:52 - 00161120 _____ (Microsoft Corporation) C:\windows\system32\winmmbase.dll
2015-12-14 21:10 - 2014-10-29 04:52 - 00132232 _____ (Microsoft Corporation) C:\windows\system32\RTWorkQ.dll
2015-12-14 21:10 - 2014-10-29 04:51 - 00159112 _____ (Microsoft Corporation) C:\windows\system32\IPHLPAPI.DLL
2015-12-14 21:10 - 2014-10-29 04:18 - 00348048 _____ (Microsoft Corporation) C:\windows\SysWOW64\verifier.dll
2015-12-14 21:10 - 2014-10-29 04:18 - 00164264 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Storage.ApplicationData.dll
2015-12-14 21:10 - 2014-10-29 04:15 - 00154392 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntmarta.dll
2015-12-14 21:10 - 2014-10-29 04:12 - 00241680 _____ (Microsoft Corporation) C:\windows\SysWOW64\sqmapi.dll
2015-12-14 21:10 - 2014-10-29 03:42 - 00214528 _____ (Microsoft Corporation) C:\windows\system32\aelupsvc.dll
2015-12-14 21:10 - 2014-10-29 03:35 - 00237056 _____ (Microsoft Corporation) C:\windows\system32\MSWB7.dll
2015-12-14 21:10 - 2014-10-29 03:33 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\scrobj.dll
2015-12-14 21:10 - 2014-10-29 03:29 - 00161792 _____ (Microsoft Corporation) C:\windows\system32\diskpart.exe
2015-12-14 21:10 - 2014-10-29 03:28 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\prntvpt.dll
2015-12-14 21:10 - 2014-10-29 03:27 - 00354816 _____ (Microsoft Corporation) C:\windows\system32\adsnt.dll
2015-12-14 21:10 - 2014-10-29 03:27 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\iasrad.dll
2015-12-14 21:10 - 2014-10-29 03:22 - 00585728 _____ (Microsoft Corporation) C:\windows\system32\recimg.exe
2015-12-14 21:10 - 2014-10-29 03:19 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\dskquoui.dll
2015-12-14 21:10 - 2014-10-29 03:17 - 00205312 _____ (Microsoft Corporation) C:\windows\system32\itircl.dll
2015-12-14 21:10 - 2014-10-29 03:13 - 00296448 _____ (Microsoft Corporation) C:\windows\system32\scansetting.dll
2015-12-14 21:10 - 2014-10-29 03:12 - 00372736 _____ (Microsoft Corporation) C:\windows\system32\mprddm.dll
2015-12-14 21:10 - 2014-10-29 03:11 - 00475648 _____ (Microsoft Corporation) C:\windows\system32\SnippingTool.exe
2015-12-14 21:10 - 2014-10-29 03:09 - 00164352 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceSyncProvider.dll
2015-12-14 21:10 - 2014-10-29 03:09 - 00117760 _____ (Microsoft Corporation) C:\windows\system32\psisrndr.ax
2015-12-14 21:10 - 2014-10-29 03:06 - 02134528 _____ (Microsoft Corporation) C:\windows\system32\SensorsCpl.dll
2015-12-14 21:10 - 2014-10-29 03:04 - 00445440 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcp60.dll
2015-12-14 21:10 - 2014-10-29 03:02 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\VBICodec.ax
2015-12-14 21:10 - 2014-10-29 03:01 - 00774656 _____ (Microsoft Corporation) C:\windows\system32\TabletPC.cpl
2015-12-14 21:10 - 2014-10-29 03:00 - 00153088 _____ (Microsoft Corporation) C:\windows\SysWOW64\WwaApi.dll
2015-12-14 21:10 - 2014-10-29 02:59 - 00384000 _____ (Microsoft Corporation) C:\windows\system32\certreq.exe
2015-12-14 21:10 - 2014-10-29 02:58 - 00211968 _____ (Microsoft Corporation) C:\windows\system32\QSHVHOST.DLL
2015-12-14 21:10 - 2014-10-29 02:58 - 00203264 _____ (Microsoft Corporation) C:\windows\system32\msrdc.dll
2015-12-14 21:10 - 2014-10-29 02:57 - 01047040 _____ (Microsoft Corporation) C:\windows\system32\DiagCpl.dll
2015-12-14 21:10 - 2014-10-29 02:57 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\FXSCOVER.exe
2015-12-14 21:10 - 2014-10-29 02:57 - 00224768 _____ (Microsoft Corporation) C:\windows\system32\WpdMtp.dll
2015-12-14 21:10 - 2014-10-29 02:57 - 00169984 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSCard.dll
2015-12-14 21:10 - 2014-10-29 02:56 - 00317440 _____ (Microsoft Corporation) C:\windows\SysWOW64\odbcjt32.dll
2015-12-14 21:10 - 2014-10-29 02:55 - 00171520 _____ (Microsoft Corporation) C:\windows\SysWOW64\dinput8.dll
2015-12-14 21:10 - 2014-10-29 02:54 - 00196096 _____ (Microsoft Corporation) C:\windows\system32\wmidx.dll
2015-12-14 21:10 - 2014-10-29 02:52 - 00322048 _____ (Microsoft Corporation) C:\windows\system32\dxdiagn.dll
2015-12-14 21:10 - 2014-10-29 02:51 - 00782848 _____ (Microsoft Corporation) C:\windows\SysWOW64\NL7Data001E.dll
2015-12-14 21:10 - 2014-10-29 02:51 - 00285184 _____ (Microsoft Corporation) C:\windows\SysWOW64\iprtrmgr.dll
2015-12-14 21:10 - 2014-10-29 02:51 - 00189440 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrobj.dll
2015-12-14 21:10 - 2014-10-29 02:49 - 00468480 _____ (Microsoft Corporation) C:\windows\system32\MFWMAAEC.DLL
2015-12-14 21:10 - 2014-10-29 02:49 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2015-12-14 21:10 - 2014-10-29 02:49 - 00189440 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSyncMetastore.dll
2015-12-14 21:10 - 2014-10-29 02:48 - 00211968 _____ (Microsoft Corporation) C:\windows\system32\deviceregistration.dll
2015-12-14 21:10 - 2014-10-29 02:48 - 00144896 _____ (Microsoft Corporation) C:\windows\SysWOW64\prntvpt.dll
2015-12-14 21:10 - 2014-10-29 02:47 - 00145920 _____ (Microsoft Corporation) C:\windows\SysWOW64\diskpart.exe
2015-12-14 21:10 - 2014-10-29 02:46 - 00339968 _____ (Microsoft Corporation) C:\windows\system32\RADCUI.dll
2015-12-14 21:10 - 2014-10-29 02:46 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\netcorehc.dll
2015-12-14 21:10 - 2014-10-29 02:46 - 00227328 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmdskmgr.dll
2015-12-14 21:10 - 2014-10-29 02:46 - 00135168 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2015-12-14 21:10 - 2014-10-29 02:45 - 00879104 _____ (Microsoft Corporation) C:\windows\system32\rasdlg.dll
2015-12-14 21:10 - 2014-10-29 02:45 - 00738816 _____ (Microsoft Corporation) C:\windows\system32\Vault.dll
2015-12-14 21:10 - 2014-10-29 02:45 - 00658944 _____ (Microsoft Corporation) C:\windows\system32\FXSSVC.exe
2015-12-14 21:10 - 2014-10-29 02:45 - 00192512 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpresult.exe
2015-12-14 21:10 - 2014-10-29 02:42 - 00198656 _____ (Microsoft Corporation) C:\windows\SysWOW64\tapi32.dll
2015-12-14 21:10 - 2014-10-29 02:42 - 00144384 _____ (Microsoft Corporation) C:\windows\SysWOW64\iasrecst.dll
2015-12-14 21:10 - 2014-10-29 02:41 - 00267264 _____ (Microsoft Corporation) C:\windows\system32\apds.dll
2015-12-14 21:10 - 2014-10-29 02:40 - 00224256 _____ (Microsoft Corporation) C:\windows\SysWOW64\spp.dll
2015-12-14 21:10 - 2014-10-29 02:38 - 01548800 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0000.dll
2015-12-14 21:10 - 2014-10-29 02:38 - 00323584 _____ (Microsoft Corporation) C:\windows\system32\CertEnrollUI.dll
2015-12-14 21:10 - 2014-10-29 02:38 - 00165376 _____ (Microsoft Corporation) C:\windows\SysWOW64\itircl.dll
2015-12-14 21:10 - 2014-10-29 02:34 - 00414720 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmdlgs.dll
2015-12-14 21:10 - 2014-10-29 02:31 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\fdprint.dll
2015-12-14 21:10 - 2014-10-29 02:29 - 00324608 _____ (Microsoft Corporation) C:\windows\SysWOW64\srchadmin.dll
2015-12-14 21:10 - 2014-10-29 02:29 - 00154624 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmvdsitf.dll
2015-12-14 21:10 - 2014-10-29 02:28 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\localsec.dll
2015-12-14 21:10 - 2014-10-29 02:28 - 00226816 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-12-14 21:10 - 2014-10-29 02:28 - 00214016 _____ (Microsoft Corporation) C:\windows\SysWOW64\xwtpdui.dll
2015-12-14 21:10 - 2014-10-29 02:26 - 03788288 _____ (Microsoft Corporation) C:\windows\SysWOW64\accessibilitycpl.dll
2015-12-14 21:10 - 2014-10-29 02:26 - 00744448 _____ (Microsoft Corporation) C:\windows\system32\drvstore.dll
2015-12-14 21:10 - 2014-10-29 02:26 - 00309248 _____ (Microsoft Corporation) C:\windows\system32\provthrd.dll
2015-12-14 21:10 - 2014-10-29 02:25 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\mibincodec.dll
2015-12-14 21:10 - 2014-10-29 02:24 - 00487424 _____ (Microsoft Corporation) C:\windows\SysWOW64\DeviceCenter.dll
2015-12-14 21:10 - 2014-10-29 02:22 - 00142848 _____ (Microsoft Corporation) C:\windows\system32\sstpsvc.dll
2015-12-14 21:10 - 2014-10-29 02:21 - 00250368 _____ (Microsoft Corporation) C:\windows\SysWOW64\FXSAPI.dll
2015-12-14 21:10 - 2014-10-29 02:21 - 00150016 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmidx.dll
2015-12-14 21:10 - 2014-10-29 02:21 - 00104960 _____ (Microsoft Corporation) C:\windows\system32\WUDFSvc.dll
2015-12-14 21:10 - 2014-10-29 02:20 - 00229376 _____ (Microsoft Corporation) C:\windows\SysWOW64\netdiagfx.dll
2015-12-14 21:10 - 2014-10-29 02:19 - 00175616 _____ (Microsoft Corporation) C:\windows\system32\srumsvc.dll
2015-12-14 21:10 - 2014-10-29 02:18 - 00281088 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2015-12-14 21:10 - 2014-10-29 02:18 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\IDStore.dll
2015-12-14 21:10 - 2014-10-29 02:17 - 00201728 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Enumeration.dll
2015-12-14 21:10 - 2014-10-29 02:14 - 00301568 _____ (Microsoft Corporation) C:\windows\system32\ProximityService.dll
2015-12-14 21:10 - 2014-10-29 02:12 - 00407040 _____ (Microsoft Corporation) C:\windows\system32\das.dll
2015-12-14 21:10 - 2014-10-29 02:12 - 00284672 _____ (Microsoft Corporation) C:\windows\SysWOW64\CertEnrollUI.dll
2015-12-14 21:10 - 2014-10-29 02:10 - 00293376 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_8.dll
2015-12-14 21:10 - 2014-10-29 02:10 - 00155648 _____ (Microsoft Corporation) C:\windows\SysWOW64\sbeio.dll
2015-12-14 21:10 - 2014-10-29 02:06 - 00245248 _____ (Microsoft Corporation) C:\windows\SysWOW64\mdmregistration.dll
2015-12-14 21:10 - 2014-10-29 02:05 - 00193024 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2015-12-14 21:10 - 2014-10-29 02:05 - 00143360 _____ (Microsoft Corporation) C:\windows\SysWOW64\ulib.dll
2015-12-14 21:10 - 2014-10-29 02:04 - 00272896 _____ (Microsoft Corporation) C:\windows\SysWOW64\esentutl.exe
2015-12-14 21:10 - 2014-10-29 02:02 - 00267776 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincorlib.dll
2015-12-14 21:10 - 2014-10-29 02:01 - 00193024 _____ (Microsoft Corporation) C:\windows\system32\DAFWSD.dll
2015-12-14 21:10 - 2014-10-29 02:00 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdscore.dll
2015-12-14 21:10 - 2014-10-29 02:00 - 00166400 _____ (Microsoft Corporation) C:\windows\SysWOW64\CryptoWinRT.dll
2015-12-14 21:10 - 2014-10-29 01:59 - 00150016 _____ (Microsoft Corporation) C:\windows\SysWOW64\srumsvc.dll
2015-12-14 21:10 - 2014-10-29 01:58 - 00155136 _____ (Microsoft Corporation) C:\windows\SysWOW64\deviceaccess.dll
2015-12-14 21:10 - 2014-10-29 01:58 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsDatabase.dll
2015-12-14 21:10 - 2014-10-29 01:57 - 00261632 _____ (Microsoft Corporation) C:\windows\SysWOW64\qwave.dll
2015-12-14 21:10 - 2014-10-29 01:57 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\tcpmon.dll
2015-12-14 21:10 - 2014-10-29 01:57 - 00177664 _____ (Microsoft Corporation) C:\windows\SysWOW64\wevtutil.exe
2015-12-14 21:10 - 2014-10-29 01:57 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-12-14 21:10 - 2014-10-29 01:54 - 00178688 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSSync.dll
2015-12-14 21:10 - 2014-10-29 01:53 - 01156608 _____ (Microsoft Corporation) C:\windows\system32\wwanmm.dll
2015-12-14 21:10 - 2014-10-29 01:53 - 00463872 _____ (Microsoft Corporation) C:\windows\system32\SystemSettings.Handlers.dll
2015-12-14 21:10 - 2014-10-29 01:53 - 00425472 _____ (Microsoft Corporation) C:\windows\SysWOW64\raschap.dll
2015-12-14 21:10 - 2014-10-29 01:53 - 00197120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdmaud.drv
2015-12-14 21:10 - 2014-10-29 01:51 - 00169472 _____ (Microsoft Corporation) C:\windows\SysWOW64\netiohlp.dll
2015-12-14 21:10 - 2014-10-29 01:49 - 00831488 _____ (Microsoft Corporation) C:\windows\SysWOW64\certca.dll
2015-12-14 21:10 - 2014-10-29 01:47 - 00173056 _____ (Microsoft Corporation) C:\windows\system32\SettingMonitor.dll
2015-12-14 21:10 - 2014-10-29 01:45 - 00196096 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlidcredprov.dll
2015-12-14 21:10 - 2014-10-29 01:44 - 00172544 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSClient.dll
2015-12-14 21:10 - 2014-10-29 01:44 - 00128512 _____ (Microsoft Corporation) C:\windows\SysWOW64\thumbcache.dll
2015-12-14 21:10 - 2014-10-29 01:43 - 00255488 _____ (Microsoft Corporation) C:\windows\SysWOW64\NAPMONTR.DLL
2015-12-14 21:10 - 2014-10-29 01:43 - 00162304 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Scanners.dll
2015-12-14 21:10 - 2014-10-29 01:42 - 00175616 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.SpeechSynthesis.dll
2015-12-14 21:10 - 2014-10-29 01:39 - 00205312 _____ (Microsoft Corporation) C:\windows\SysWOW64\InputSwitch.dll
2015-12-14 21:10 - 2014-10-29 01:38 - 01232896 _____ (Microsoft Corporation) C:\windows\SysWOW64\wcnwiz.dll
2015-12-14 21:10 - 2014-06-19 03:13 - 00310080 _____ (Microsoft Corporation) C:\windows\system32\Drivers\volsnap.sys
2015-12-14 21:09 - 2014-10-29 05:10 - 00177688 _____ (Microsoft Corporation) C:\windows\system32\wscapi.dll
2015-12-14 21:09 - 2014-10-29 05:10 - 00089344 _____ (Microsoft Corporation) C:\windows\system32\taskhost.exe
2015-12-14 21:09 - 2014-10-29 05:09 - 00371304 _____ (Microsoft Corporation) C:\windows\system32\verifier.dll
2015-12-14 21:09 - 2014-10-29 05:09 - 00155456 _____ (Microsoft Corporation) C:\windows\system32\devobj.dll
2015-12-14 21:09 - 2014-10-29 05:09 - 00145144 _____ (Microsoft Corporation) C:\windows\system32\cabinet.dll
2015-12-14 21:09 - 2014-10-29 05:09 - 00017560 _____ (Microsoft Corporation) C:\windows\system32\psapi.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00224600 _____ (Microsoft Corporation) C:\windows\system32\ntasn1.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00196264 _____ (Microsoft Corporation) C:\windows\system32\ntmarta.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00153336 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00135304 _____ (Microsoft Corporation) C:\windows\system32\gpapi.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00120384 _____ (Microsoft Corporation) C:\windows\system32\userenv.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00064512 _____ (Microsoft Corporation) C:\windows\system32\msasn1.dll
2015-12-14 21:09 - 2014-10-29 05:00 - 00210744 _____ (Microsoft Corporation) C:\windows\system32\imm32.dll
2015-12-14 21:09 - 2014-10-29 05:00 - 00125504 _____ (Microsoft Corporation) C:\windows\system32\dwmapi.dll
2015-12-14 21:09 - 2014-10-29 04:59 - 00105944 _____ (Microsoft Corporation) C:\windows\system32\mpr.dll
2015-12-14 21:09 - 2014-10-29 04:57 - 00299048 _____ (Microsoft Corporation) C:\windows\system32\VIDRESZR.DLL
2015-12-14 21:09 - 2014-10-29 04:57 - 00250488 _____ (Microsoft Corporation) C:\windows\system32\MPG4DECD.DLL
2015-12-14 21:09 - 2014-10-29 04:57 - 00248408 _____ (Microsoft Corporation) C:\windows\system32\MP43DECD.DLL
2015-12-14 21:09 - 2014-10-29 04:57 - 00246832 _____ (Microsoft Corporation) C:\windows\system32\RESAMPLEDMO.DLL
2015-12-14 21:09 - 2014-10-29 04:57 - 00216920 _____ (Microsoft Corporation) C:\windows\system32\SndVol.exe
2015-12-14 21:09 - 2014-10-29 04:57 - 00203504 _____ (Microsoft Corporation) C:\windows\system32\COLORCNV.DLL
2015-12-14 21:09 - 2014-10-29 04:57 - 00089816 _____ (Microsoft Corporation) C:\windows\system32\mfvdsp.dll
2015-12-14 21:09 - 2014-10-29 04:57 - 00022208 _____ (Microsoft Corporation) C:\windows\system32\PurchaseWindowsLicense.exe
2015-12-14 21:09 - 2014-10-29 04:55 - 00278392 _____ (Microsoft Corporation) C:\windows\system32\wkspbroker.exe
2015-12-14 21:09 - 2014-10-29 04:52 - 00126056 _____ (Microsoft Corporation) C:\windows\system32\winmm.dll
2015-12-14 21:09 - 2014-10-29 04:52 - 00090880 _____ (Microsoft Corporation) C:\windows\system32\devenum.dll
2015-12-14 21:09 - 2014-10-29 04:18 - 00148728 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscapi.dll
2015-12-14 21:09 - 2014-10-29 04:18 - 00127552 _____ (Microsoft Corporation) C:\windows\SysWOW64\devobj.dll
2015-12-14 21:09 - 2014-10-29 04:18 - 00120352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cabinet.dll
2015-12-14 21:09 - 2014-10-29 04:15 - 00165728 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntasn1.dll
2015-12-14 21:09 - 2014-10-29 04:15 - 00115672 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpapi.dll
2015-12-14 21:09 - 2014-10-29 04:15 - 00098152 _____ (Microsoft Corporation) C:\windows\SysWOW64\userenv.dll
2015-12-14 21:09 - 2014-10-29 04:12 - 00116696 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxva2.dll
2015-12-14 21:09 - 2014-10-29 04:12 - 00102728 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmapi.dll
2015-12-14 21:09 - 2014-10-29 04:12 - 00087224 _____ (Microsoft Corporation) C:\windows\SysWOW64\mpr.dll
2015-12-14 21:09 - 2014-10-29 04:11 - 00275280 _____ (Microsoft Corporation) C:\windows\SysWOW64\MPG4DECD.DLL
2015-12-14 21:09 - 2014-10-29 04:11 - 00274256 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP43DECD.DLL
2015-12-14 21:09 - 2014-10-29 04:11 - 00229248 _____ (Microsoft Corporation) C:\windows\SysWOW64\RESAMPLEDMO.DLL
2015-12-14 21:09 - 2014-10-29 04:11 - 00190048 _____ (Microsoft Corporation) C:\windows\SysWOW64\SndVol.exe
2015-12-14 21:09 - 2014-10-29 04:11 - 00184888 _____ (Microsoft Corporation) C:\windows\SysWOW64\COLORCNV.DLL
2015-12-14 21:09 - 2014-10-29 04:11 - 00183832 _____ (Microsoft Corporation) C:\windows\SysWOW64\VIDRESZR.DLL
2015-12-14 21:09 - 2014-10-29 04:11 - 00099104 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP3DMOD.DLL
2015-12-14 21:09 - 2014-10-29 04:09 - 00017216 _____ (Microsoft Corporation) C:\windows\SysWOW64\dllhost.exe
2015-12-14 21:09 - 2014-10-29 04:07 - 00136840 _____ (Microsoft Corporation) C:\windows\SysWOW64\winmm.dll
2015-12-14 21:09 - 2014-10-29 04:07 - 00134280 _____ (Microsoft Corporation) C:\windows\SysWOW64\winmmbase.dll
2015-12-14 21:09 - 2014-10-29 04:07 - 00089816 _____ (Microsoft Corporation) C:\windows\SysWOW64\msacm32.dll
2015-12-14 21:09 - 2014-10-29 04:07 - 00081008 _____ (Microsoft Corporation) C:\windows\SysWOW64\devenum.dll
2015-12-14 21:09 - 2014-10-29 04:06 - 00111064 _____ (Microsoft Corporation) C:\windows\SysWOW64\RTWorkQ.dll
2015-12-14 21:09 - 2014-10-29 04:06 - 00074824 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2015-12-14 21:09 - 2014-10-29 04:05 - 00120864 _____ (Microsoft Corporation) C:\windows\SysWOW64\IPHLPAPI.DLL
2015-12-14 21:09 - 2014-10-29 03:48 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\SSShim.dll
2015-12-14 21:09 - 2014-10-29 03:46 - 00272384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2015-12-14 21:09 - 2014-10-29 03:46 - 00113664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFPf.sys
2015-12-14 21:09 - 2014-10-29 03:45 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\nwifi.sys
2015-12-14 21:09 - 2014-10-29 03:45 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\umpnpmgr.dll
2015-12-14 21:09 - 2014-10-29 03:44 - 00107008 _____ (Microsoft Corporation) C:\windows\system32\SPInf.dll
2015-12-14 21:09 - 2014-10-29 03:42 - 00168448 _____ (Microsoft Corporation) C:\windows\system32\uudf.dll
2015-12-14 21:09 - 2014-10-29 03:42 - 00130560 _____ (Microsoft Corporation) C:\windows\system32\dbnetlib.dll
2015-12-14 21:09 - 2014-10-29 03:41 - 00281600 _____ (Microsoft Corporation) C:\windows\system32\drt.dll
2015-12-14 21:09 - 2014-10-29 03:41 - 00281088 _____ (Microsoft Corporation) C:\windows\system32\mcbuilder.exe
2015-12-14 21:09 - 2014-10-29 03:41 - 00251392 _____ (Microsoft Corporation) C:\windows\system32\adsldpc.dll
2015-12-14 21:09 - 2014-10-29 03:39 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\wevtfwd.dll
2015-12-14 21:09 - 2014-10-29 03:37 - 00167936 _____ (Microsoft Corporation) C:\windows\system32\dinput.dll
2015-12-14 21:09 - 2014-10-29 03:37 - 00119296 _____ (Microsoft Corporation) C:\windows\system32\msctfui.dll
2015-12-14 21:09 - 2014-10-29 03:36 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\cic.dll
2015-12-14 21:09 - 2014-10-29 03:36 - 00134144 _____ (Microsoft Corporation) C:\windows\system32\chartv.dll
2015-12-14 21:09 - 2014-10-29 03:35 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\ActionQueue.dll
2015-12-14 21:09 - 2014-10-29 03:34 - 00591872 _____ (Microsoft Corporation) C:\windows\system32\vdsdyn.dll
2015-12-14 21:09 - 2014-10-29 03:34 - 00239616 _____ (Microsoft Corporation) C:\windows\system32\vdsbas.dll
2015-12-14 21:09 - 2014-10-29 03:34 - 00189440 _____ (Microsoft Corporation) C:\windows\system32\rgb9rast.dll
2015-12-14 21:09 - 2014-10-29 03:34 - 00124928 _____ (Microsoft Corporation) C:\windows\system32\fms.dll
2015-12-14 21:09 - 2014-10-29 03:33 - 00323072 _____ (Microsoft Corporation) C:\windows\system32\iprtrmgr.dll
2015-12-14 21:09 - 2014-10-29 03:33 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2015-12-14 21:09 - 2014-10-29 03:33 - 00108544 _____ (Microsoft Corporation) C:\windows\system32\atl.dll
2015-12-14 21:09 - 2014-10-29 03:33 - 00091136 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2015-12-14 21:09 - 2014-10-29 03:32 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\SCardSvr.dll
2015-12-14 21:09 - 2014-10-29 03:32 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\sqlcecompact40.dll
2015-12-14 21:09 - 2014-10-29 03:32 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\amstream.dll
2015-12-14 21:09 - 2014-10-29 03:31 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\WSTPager.ax
2015-12-14 21:09 - 2014-10-29 03:31 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\cca.dll
2015-12-14 21:09 - 2014-10-29 03:30 - 00176128 _____ (Microsoft Corporation) C:\windows\system32\msaatext.dll
2015-12-14 21:09 - 2014-10-29 03:29 - 00350208 _____ (Microsoft Corporation) C:\windows\system32\mmcbase.dll
2015-12-14 21:09 - 2014-10-29 03:29 - 00148480 _____ (Microsoft Corporation) C:\windows\system32\iassvcs.dll
2015-12-14 21:09 - 2014-10-29 03:29 - 00134144 _____ (Microsoft Corporation) C:\windows\system32\dmusic.dll
2015-12-14 21:09 - 2014-10-29 03:27 - 00313344 _____ (Microsoft Corporation) C:\windows\system32\NAPSTAT.EXE
2015-12-14 21:09 - 2014-10-29 03:27 - 00279552 _____ (Microsoft Corporation) C:\windows\system32\mycomput.dll
2015-12-14 21:09 - 2014-10-29 03:27 - 00216064 _____ (Microsoft Corporation) C:\windows\system32\sdiageng.dll
2015-12-14 21:09 - 2014-10-29 03:27 - 00153088 _____ (Microsoft Corporation) C:\windows\system32\tpmvscmgr.exe
2015-12-14 21:09 - 2014-10-29 03:27 - 00137216 _____ (Microsoft Corporation) C:\windows\system32\Kswdmcap.ax
2015-12-14 21:09 - 2014-10-29 03:27 - 00023552 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.Workplace.WorkplaceSettings.dll
2015-12-14 21:09 - 2014-10-29 03:26 - 00113152 _____ (Microsoft Corporation) C:\windows\system32\Mpeg2Data.ax
2015-12-14 21:09 - 2014-10-29 03:26 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\MSDvbNP.ax
2015-12-14 21:09 - 2014-10-29 03:25 - 00122368 _____ (Microsoft Corporation) C:\windows\system32\DevPropMgr.dll
2015-12-14 21:09 - 2014-10-29 03:24 - 00113152 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2015-12-14 21:09 - 2014-10-29 03:24 - 00104960 _____ (Microsoft Corporation) C:\windows\system32\bdaplgin.ax
2015-12-14 21:09 - 2014-10-29 03:23 - 00280576 _____ (Microsoft Corporation) C:\windows\system32\dot3gpui.dll
2015-12-14 21:09 - 2014-10-29 03:23 - 00240128 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2015-12-14 21:09 - 2014-10-29 03:23 - 00217088 _____ (Microsoft Corporation) C:\windows\system32\ssText3d.scr
2015-12-14 21:09 - 2014-10-29 03:23 - 00167936 _____ (Microsoft Corporation) C:\windows\system32\Tabbtn.dll
2015-12-14 21:09 - 2014-10-29 03:22 - 00142848 _____ (Microsoft Corporation) C:\windows\system32\advpack.dll
2015-12-14 21:09 - 2014-10-29 03:22 - 00108544 _____ (Microsoft Corporation) C:\windows\system32\fdWCN.dll
2015-12-14 21:09 - 2014-10-29 03:21 - 00109056 _____ (Microsoft Corporation) C:\windows\system32\kstvtune.ax
2015-12-14 21:09 - 2014-10-29 03:20 - 00186880 _____ (Microsoft Corporation) C:\windows\system32\easwrt.dll
2015-12-14 21:09 - 2014-10-29 03:20 - 00169984 _____ (Microsoft Corporation) C:\windows\system32\desk.cpl
2015-12-14 21:09 - 2014-10-29 03:19 - 00333312 _____ (Microsoft Corporation) C:\windows\system32\dxdiag.exe
2015-12-14 21:09 - 2014-10-29 03:19 - 00207872 _____ (Microsoft Corporation) C:\windows\system32\auditcse.dll
2015-12-14 21:09 - 2014-10-29 03:19 - 00166912 _____ (Microsoft Corporation) C:\windows\system32\softkbd.dll
2015-12-14 21:09 - 2014-10-29 03:19 - 00124928 _____ (Microsoft Corporation) C:\windows\system32\Robocopy.exe
2015-12-14 21:09 - 2014-10-29 03:18 - 00440320 _____ (Microsoft Corporation) C:\windows\system32\zipfldr.dll
2015-12-14 21:09 - 2014-10-29 03:18 - 00246272 _____ (Microsoft Corporation) C:\windows\system32\unattend.dll
2015-12-14 21:09 - 2014-10-29 03:18 - 00229376 _____ (Microsoft Corporation) C:\windows\system32\bitsadmin.exe
2015-12-14 21:09 - 2014-10-29 03:17 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2015-12-14 21:09 - 2014-10-29 03:17 - 00163328 _____ (Microsoft Corporation) C:\windows\system32\fde.dll
2015-12-14 21:09 - 2014-10-29 03:17 - 00158720 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2015-12-14 21:09 - 2014-10-29 03:17 - 00142336 _____ (Microsoft Corporation) C:\windows\system32\imapi.dll
2015-12-14 21:09 - 2014-10-29 03:17 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\WinSyncProviders.dll
2015-12-14 21:09 - 2014-10-29 03:14 - 00378880 _____ (Microsoft Corporation) C:\windows\system32\SysFxUI.dll
2015-12-14 21:09 - 2014-10-29 03:13 - 00108032 _____ (Microsoft Corporation) C:\windows\system32\BdeHdCfgLib.dll
2015-12-14 21:09 - 2014-10-29 03:12 - 00313344 _____ (Microsoft Corporation) C:\windows\system32\tapisrv.dll
2015-12-14 21:09 - 2014-10-29 03:12 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\fhshl.dll
2015-12-14 21:09 - 2014-10-29 03:11 - 00469504 _____ (Microsoft Corporation) C:\windows\system32\dmdlgs.dll
2015-12-14 21:09 - 2014-10-29 03:10 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\dsprop.dll
2015-12-14 21:09 - 2014-10-29 03:09 - 00601600 _____ (Microsoft Corporation) C:\windows\system32\psr.exe
2015-12-14 21:09 - 2014-10-29 03:09 - 00153600 _____ (Microsoft Corporation) C:\windows\system32\twext.dll
2015-12-14 21:09 - 2014-10-29 03:09 - 00120832 _____ (Microsoft Corporation) C:\windows\system32\dskquota.dll
2015-12-14 21:09 - 2014-10-29 03:08 - 00209408 _____ (Microsoft Corporation) C:\windows\system32\powercfg.cpl
2015-12-14 21:09 - 2014-10-29 03:08 - 00176128 _____ (Microsoft Corporation) C:\windows\system32\sdiagprv.dll
2015-12-14 21:09 - 2014-10-29 03:08 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\wiadss.dll
2015-12-14 21:09 - 2014-10-29 03:08 - 00132608 _____ (Microsoft Corporation) C:\windows\system32\LockScreenContent.dll
2015-12-14 21:09 - 2014-10-29 03:07 - 00426496 _____ (Microsoft Corporation) C:\windows\system32\intl.cpl
2015-12-14 21:09 - 2014-10-29 03:07 - 00239104 _____ (Microsoft Corporation) C:\windows\system32\els.dll
2015-12-14 21:09 - 2014-10-29 03:07 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\rshx32.dll
2015-12-14 21:09 - 2014-10-29 03:06 - 00617984 _____ (Microsoft Corporation) C:\windows\system32\sud.dll
2015-12-14 21:09 - 2014-10-29 03:06 - 00517120 _____ (Microsoft Corporation) C:\windows\system32\cmdial32.dll
2015-12-14 21:09 - 2014-10-29 03:06 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\vssadmin.exe
2015-12-14 21:09 - 2014-10-29 03:06 - 00113664 _____ (Microsoft) C:\windows\system32\SMBHelperClass.dll
2015-12-14 21:09 - 2014-10-29 03:04 - 00546304 _____ (Microsoft Corporation) C:\windows\system32\ActionCenterCPL.dll
2015-12-14 21:09 - 2014-10-29 03:04 - 00460288 _____ (Microsoft Corporation) C:\windows\system32\wiadefui.dll
2015-12-14 21:09 - 2014-10-29 03:04 - 00322048 _____ (Microsoft Corporation) C:\windows\system32\fvecpl.dll
2015-12-14 21:09 - 2014-10-29 03:03 - 00849408 _____ (Microsoft Corporation) C:\windows\system32\fontext.dll
2015-12-14 21:09 - 2014-10-29 03:03 - 00433152 _____ (Microsoft Corporation) C:\windows\system32\dsquery.dll
2015-12-14 21:09 - 2014-10-29 03:03 - 00208896 _____ (Microsoft Corporation) C:\windows\system32\remotepg.dll
2015-12-14 21:09 - 2014-10-29 03:03 - 00145408 _____ (Microsoft Corporation) C:\windows\system32\xwtpw32.dll
2015-12-14 21:09 - 2014-10-29 03:03 - 00143360 _____ (Microsoft Corporation) C:\windows\system32\SoundRecorder.exe
2015-12-14 21:09 - 2014-10-29 03:02 - 00483328 _____ (Microsoft Corporation) C:\windows\system32\powercpl.dll
2015-12-14 21:09 - 2014-10-29 03:01 - 00207872 _____ (Microsoft Corporation) C:\windows\system32\p2pnetsh.dll
2015-12-14 21:09 - 2014-10-29 03:00 - 00274432 _____ (Microsoft Corporation) C:\windows\system32\fveui.dll
2015-12-14 21:09 - 2014-10-29 03:00 - 00209920 _____ (Microsoft Corporation) C:\windows\system32\nlhtml.dll
2015-12-14 21:09 - 2014-10-29 02:59 - 00286720 _____ (Microsoft Corporation) C:\windows\system32\wbadmin.exe
2015-12-14 21:09 - 2014-10-29 02:59 - 00255488 _____ (Microsoft Corporation) C:\windows\system32\QAGENT.DLL
2015-12-14 21:09 - 2014-10-29 02:59 - 00141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\imm32.dll
2015-12-14 21:09 - 2014-10-29 02:58 - 00846848 _____ (Microsoft Corporation) C:\windows\system32\Magnify.exe
2015-12-14 21:09 - 2014-10-29 02:58 - 00140800 _____ (Microsoft Corporation) C:\windows\SysWOW64\uudf.dll
2015-12-14 21:09 - 2014-10-29 02:58 - 00112640 _____ (Microsoft Corporation) C:\windows\SysWOW64\dbnetlib.dll
2015-12-14 21:09 - 2014-10-29 02:58 - 00093696 _____ (Microsoft Corporation) C:\windows\SysWOW64\radardt.dll
2015-12-14 21:09 - 2014-10-29 02:57 - 00324608 _____ (Microsoft Corporation) C:\windows\system32\BthHFSrv.dll
2015-12-14 21:09 - 2014-10-29 02:57 - 00248320 _____ (Microsoft Corporation) C:\windows\SysWOW64\mcbuilder.exe
2015-12-14 21:09 - 2014-10-29 02:57 - 00228352 _____ (Microsoft Corporation) C:\windows\SysWOW64\drt.dll
2015-12-14 21:09 - 2014-10-29 02:57 - 00200704 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceWMDRM.dll
2015-12-14 21:09 - 2014-10-29 02:57 - 00138240 _____ (Microsoft Corporation) C:\windows\system32\WpdMtpUS.dll
2015-12-14 21:09 - 2014-10-29 02:57 - 00125440 _____ (Microsoft Corporation) C:\windows\SysWOW64\rtm.dll
2015-12-14 21:09 - 2014-10-29 02:56 - 00161280 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceWiaCompat.dll
2015-12-14 21:09 - 2014-10-29 02:56 - 00119296 _____ (Microsoft Corporation) C:\windows\system32\wkspbrokerAx.dll
2015-12-14 21:09 - 2014-10-29 02:55 - 00179712 _____ (Microsoft Corporation) C:\windows\system32\itss.dll
2015-12-14 21:09 - 2014-10-29 02:55 - 00142848 _____ C:\windows\system32\OEMLicense.dll
2015-12-14 21:09 - 2014-10-29 02:55 - 00136192 _____ (Microsoft Corporation) C:\windows\SysWOW64\dinput.dll
2015-12-14 21:09 - 2014-10-29 02:54 - 00208896 _____ (Microsoft Corporation) C:\windows\system32\WLanHC.dll
2015-12-14 21:09 - 2014-10-29 02:54 - 00110080 _____ (Microsoft Corporation) C:\windows\system32\WPDShServiceObj.dll
2015-12-14 21:09 - 2014-10-29 02:54 - 00093184 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctfui.dll
2015-12-14 21:09 - 2014-10-29 02:53 - 00449024 _____ (Microsoft Corporation) C:\windows\system32\shwebsvc.dll
2015-12-14 21:09 - 2014-10-29 02:53 - 00282624 _____ (Microsoft Corporation) C:\windows\system32\FXSAPI.dll
2015-12-14 21:09 - 2014-10-29 02:53 - 00163328 _____ (Microsoft Corporation) C:\windows\SysWOW64\cic.dll
2015-12-14 21:09 - 2014-10-29 02:53 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\chartv.dll
2015-12-14 21:09 - 2014-10-29 02:52 - 00514048 _____ (Microsoft Corporation) C:\windows\system32\DevicePairing.dll
2015-12-14 21:09 - 2014-10-29 02:52 - 00181248 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSWB7.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00512000 _____ (Microsoft Corporation) C:\windows\system32\SpaceControl.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00203264 _____ (Microsoft Corporation) C:\windows\system32\IdListen.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00168448 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00158720 _____ (Microsoft Corporation) C:\windows\SysWOW64\rgb9rast.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00122368 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmstyle.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00105984 _____ (Microsoft Corporation) C:\windows\SysWOW64\oledlg.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00095744 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmscript.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00087552 _____ (Microsoft Corporation) C:\windows\SysWOW64\atl.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00077824 _____ (Microsoft Corporation) C:\windows\SysWOW64\asycfilt.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00075776 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmcompos.dll
2015-12-14 21:09 - 2014-10-29 02:50 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\tcpipcfg.dll
2015-12-14 21:09 - 2014-10-29 02:50 - 00193536 _____ (Microsoft Corporation) C:\windows\system32\WorkFoldersShell.dll
2015-12-14 21:09 - 2014-10-29 02:50 - 00119808 _____ (Microsoft Corporation) C:\windows\SysWOW64\sqlcecompact40.dll
2015-12-14 21:09 - 2014-10-29 02:50 - 00101376 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscript.ocx
2015-12-14 21:09 - 2014-10-29 02:50 - 00096256 _____ (Microsoft Corporation) C:\windows\SysWOW64\avifil32.dll
2015-12-14 21:09 - 2014-10-29 02:49 - 00615936 _____ (Microsoft Corporation) C:\windows\system32\wpd_ci.dll
2015-12-14 21:09 - 2014-10-29 02:49 - 00273920 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-12-14 21:09 - 2014-10-29 02:49 - 00133632 _____ (Microsoft Corporation) C:\windows\system32\immersivetpmvscmgrsvr.exe
2015-12-14 21:09 - 2014-10-29 02:49 - 00126464 _____ (Microsoft Corporation) C:\windows\system32\tpmvscmgrsvr.exe
2015-12-14 21:09 - 2014-10-29 02:49 - 00125952 _____ (Microsoft Corporation) C:\windows\system32\rmttpmvscmgrsvr.exe
2015-12-14 21:09 - 2014-10-29 02:49 - 00082432 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSTPager.ax
2015-12-14 21:09 - 2014-10-29 02:49 - 00080384 _____ (Microsoft Corporation) C:\windows\SysWOW64\cca.dll
2015-12-14 21:09 - 2014-10-29 02:49 - 00080384 _____ (Microsoft Corporation) C:\windows\SysWOW64\amstream.dll
2015-12-14 21:09 - 2014-10-29 02:48 - 00311296 _____ (Microsoft Corporation) C:\windows\SysWOW64\mmcbase.dll
2015-12-14 21:09 - 2014-10-29 02:48 - 00111104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmusic.dll
2015-12-14 21:09 - 2014-10-29 02:47 - 00135680 _____ (Microsoft Corporation) C:\windows\SysWOW64\iassvcs.dll
2015-12-14 21:09 - 2014-10-29 02:47 - 00089600 _____ (Microsoft Corporation) C:\windows\SysWOW64\adsmsext.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00407552 _____ (Microsoft Corporation) C:\windows\system32\wlanui.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00243712 _____ (Microsoft Corporation) C:\windows\SysWOW64\mycomput.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00203264 _____ (Microsoft Corporation) C:\windows\SysWOW64\iasrad.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00188416 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssha.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00185856 _____ (Microsoft Corporation) C:\windows\SysWOW64\sdiageng.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00183296 _____ (Microsoft Corporation) C:\windows\SysWOW64\mprdim.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00171520 _____ (Microsoft Corporation) C:\windows\SysWOW64\iasnap.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00116224 _____ (Microsoft Corporation) C:\windows\SysWOW64\Kswdmcap.ax
2015-12-14 21:09 - 2014-10-29 02:46 - 00019968 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Management.Workplace.WorkplaceSettings.dll
2015-12-14 21:09 - 2014-10-29 02:45 - 00273408 _____ (Microsoft Corporation) C:\windows\SysWOW64\NAPSTAT.EXE
2015-12-14 21:09 - 2014-10-29 02:45 - 00085504 _____ (Microsoft Corporation) C:\windows\SysWOW64\Mpeg2Data.ax
2015-12-14 21:09 - 2014-10-29 02:45 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSDvbNP.ax
2015-12-14 21:09 - 2014-10-29 02:44 - 00400384 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasplap.dll
2015-12-14 21:09 - 2014-10-29 02:43 - 00242176 _____ (Microsoft Corporation) C:\windows\SysWOW64\dot3gpui.dll
2015-12-14 21:09 - 2014-10-29 02:43 - 00196096 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2015-12-14 21:09 - 2014-10-29 02:43 - 00191488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ssText3d.scr
2015-12-14 21:09 - 2014-10-29 02:43 - 00119808 _____ (Microsoft Corporation) C:\windows\system32\msoert2.dll
2015-12-14 21:09 - 2014-10-29 02:43 - 00111104 _____ (Microsoft Corporation) C:\windows\system32\AxInstSv.dll
2015-12-14 21:09 - 2014-10-29 02:42 - 00112640 _____ (Microsoft Corporation) C:\windows\SysWOW64\advpack.dll
2015-12-14 21:09 - 2014-10-29 02:41 - 00222208 _____ (Microsoft Corporation) C:\windows\SysWOW64\iassam.dll
2015-12-14 21:09 - 2014-10-29 02:41 - 00216064 _____ (Microsoft Corporation) C:\windows\SysWOW64\iscsicpl.dll
2015-12-14 21:09 - 2014-10-29 02:41 - 00147968 _____ (Microsoft Corporation) C:\windows\SysWOW64\easwrt.dll
2015-12-14 21:09 - 2014-10-29 02:40 - 00288768 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxdiag.exe
2015-12-14 21:09 - 2014-10-29 02:40 - 00184320 _____ (Microsoft Corporation) C:\windows\SysWOW64\dskquoui.dll
2015-12-14 21:09 - 2014-10-29 02:40 - 00138240 _____ (Microsoft Corporation) C:\windows\SysWOW64\softkbd.dll
2015-12-14 21:09 - 2014-10-29 02:40 - 00106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\Robocopy.exe
2015-12-14 21:09 - 2014-10-29 02:40 - 00092160 _____ (Microsoft Corporation) C:\windows\SysWOW64\olethk32.dll
2015-12-14 21:09 - 2014-10-29 02:39 - 00382976 _____ (Microsoft Corporation) C:\windows\system32\wsqmcons.exe
2015-12-14 21:09 - 2014-10-29 02:39 - 00197120 _____ (Microsoft Corporation) C:\windows\SysWOW64\bitsadmin.exe
2015-12-14 21:09 - 2014-10-29 02:39 - 00185856 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasppp.dll
2015-12-14 21:09 - 2014-10-29 02:38 - 00404480 _____ (Microsoft Corporation) C:\windows\SysWOW64\zipfldr.dll
2015-12-14 21:09 - 2014-10-29 02:38 - 00157184 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlmgp.dll
2015-12-14 21:09 - 2014-10-29 02:38 - 00148992 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2015-12-14 21:09 - 2014-10-29 02:38 - 00131584 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2015-12-14 21:09 - 2014-10-29 02:38 - 00130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\fde.dll
2015-12-14 21:09 - 2014-10-29 02:38 - 00119808 _____ (Microsoft Corporation) C:\windows\SysWOW64\imapi.dll
2015-12-14 21:09 - 2014-10-29 02:38 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSyncProviders.dll
2015-12-14 21:09 - 2014-10-29 02:35 - 00253440 _____ (Microsoft Corporation) C:\windows\SysWOW64\scansetting.dll
2015-12-14 21:09 - 2014-10-29 02:35 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\wavemsp.dll
2015-12-14 21:09 - 2014-10-29 02:34 - 00339968 _____ (Microsoft Corporation) C:\windows\SysWOW64\difxapi.dll
2015-12-14 21:09 - 2014-10-29 02:34 - 00295424 _____ (Microsoft Corporation) C:\windows\SysWOW64\eudcedit.exe
2015-12-14 21:09 - 2014-10-29 02:34 - 00134144 _____ (Microsoft Corporation) C:\windows\SysWOW64\regedit.exe
2015-12-14 21:09 - 2014-10-29 02:32 - 00566784 _____ (Microsoft Corporation) C:\windows\SysWOW64\psr.exe
2015-12-14 21:09 - 2014-10-29 02:32 - 00146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\dsprop.dll
2015-12-14 21:09 - 2014-10-29 02:32 - 00137728 _____ (Microsoft Corporation) C:\windows\SysWOW64\PortableDeviceSyncProvider.dll
2015-12-14 21:09 - 2014-10-29 02:32 - 00129536 _____ (Microsoft Corporation) C:\windows\SysWOW64\twext.dll
2015-12-14 21:09 - 2014-10-29 02:32 - 00095232 _____ (Microsoft Corporation) C:\windows\SysWOW64\dskquota.dll
2015-12-14 21:09 - 2014-10-29 02:32 - 00093696 _____ (Microsoft Corporation) C:\windows\SysWOW64\psisrndr.ax
2015-12-14 21:09 - 2014-10-29 02:31 - 00392704 _____ (Microsoft Corporation) C:\windows\SysWOW64\intl.cpl
2015-12-14 21:09 - 2014-10-29 02:31 - 00226304 _____ (Microsoft Corporation) C:\windows\SysWOW64\input.dll
2015-12-14 21:09 - 2014-10-29 02:31 - 00156672 _____ (Microsoft Corporation) C:\windows\SysWOW64\sdiagprv.dll
2015-12-14 21:09 - 2014-10-29 02:31 - 00117248 _____ (Microsoft Corporation) C:\windows\SysWOW64\wiadss.dll
2015-12-14 21:09 - 2014-10-29 02:31 - 00113152 _____ (Microsoft Corporation) C:\windows\SysWOW64\rshx32.dll
2015-12-14 21:09 - 2014-10-29 02:30 - 02118144 _____ (Microsoft Corporation) C:\windows\SysWOW64\SensorsCpl.dll
2015-12-14 21:09 - 2014-10-29 02:30 - 00597504 _____ (Microsoft Corporation) C:\windows\SysWOW64\sud.dll
2015-12-14 21:09 - 2014-10-29 02:30 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\wmpdxm.dll
2015-12-14 21:09 - 2014-10-29 02:30 - 00184832 _____ (Microsoft Corporation) C:\windows\SysWOW64\els.dll
2015-12-14 21:09 - 2014-10-29 02:29 - 00221696 _____ (Microsoft Corporation) C:\windows\system32\rastapi.dll
2015-12-14 21:09 - 2014-10-29 02:28 - 00812032 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontext.dll
2015-12-14 21:09 - 2014-10-29 02:28 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\wiadefui.dll
2015-12-14 21:09 - 2014-10-29 02:28 - 00402944 _____ (Microsoft Corporation) C:\windows\SysWOW64\dsquery.dll
2015-12-14 21:09 - 2014-10-29 02:28 - 00241664 _____ (Microsoft Corporation) C:\windows\SysWOW64\audiodev.dll
2015-12-14 21:09 - 2014-10-29 02:28 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\xwtpw32.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00458752 _____ (Microsoft Corporation) C:\windows\SysWOW64\powercpl.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00362496 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptuiwizard.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\authz.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00241152 _____ (Microsoft Corporation) C:\windows\system32\logoncli.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00133120 _____ (Microsoft Corporation) C:\windows\system32\BrokerLib.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00131072 _____ (Microsoft Corporation) C:\windows\SysWOW64\VBICodec.ax
2015-12-14 21:09 - 2014-10-29 02:27 - 00097280 _____ (Microsoft Corporation) C:\windows\system32\CallButtons.dll
2015-12-14 21:09 - 2014-10-29 02:26 - 00304128 _____ (Microsoft Corporation) C:\windows\system32\esentutl.exe
2015-12-14 21:09 - 2014-10-29 02:26 - 00224256 _____ (Microsoft Corporation) C:\windows\system32\ifsutil.dll
2015-12-14 21:09 - 2014-10-29 02:26 - 00184832 _____ (Microsoft Corporation) C:\windows\system32\NetSetupApi.dll
2015-12-14 21:09 - 2014-10-29 02:26 - 00182784 _____ (Microsoft Corporation) C:\windows\SysWOW64\p2pnetsh.dll
2015-12-14 21:09 - 2014-10-29 02:26 - 00175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\QAGENT.DLL
2015-12-14 21:09 - 2014-10-29 02:26 - 00159744 _____ (Microsoft Corporation) C:\windows\system32\mimofcodec.dll
2015-12-14 21:09 - 2014-10-29 02:26 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\ufat.dll
2015-12-14 21:09 - 2014-10-29 02:25 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrdc.dll
2015-12-14 21:09 - 2014-10-29 02:25 - 00166912 _____ (Microsoft Corporation) C:\windows\system32\AppxAllUserStore.dll
2015-12-14 21:09 - 2014-10-29 02:25 - 00155648 _____ (Microsoft Corporation) C:\windows\SysWOW64\QSHVHOST.DLL
2015-12-14 21:09 - 2014-10-29 02:25 - 00141312 _____ (Microsoft Corporation) C:\windows\system32\psmsrv.dll
2015-12-14 21:09 - 2014-10-29 02:25 - 00136704 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlhtml.dll
2015-12-14 21:09 - 2014-10-29 02:25 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\negoexts.dll
2015-12-14 21:09 - 2014-10-29 02:24 - 00779776 _____ (Microsoft Corporation) C:\windows\SysWOW64\Magnify.exe
2015-12-14 21:09 - 2014-10-29 02:24 - 00178176 _____ (Microsoft Corporation) C:\windows\SysWOW64\PortableDeviceWMDRM.dll
2015-12-14 21:09 - 2014-10-29 02:24 - 00136192 _____ (Microsoft Corporation) C:\windows\SysWOW64\PortableDeviceWiaCompat.dll
2015-12-14 21:09 - 2014-10-29 02:23 - 00151040 _____ (Microsoft Corporation) C:\windows\SysWOW64\itss.dll
2015-12-14 21:09 - 2014-10-29 02:23 - 00107008 _____ C:\windows\SysWOW64\OEMLicense.dll
2015-12-14 21:09 - 2014-10-29 02:22 - 00119808 _____ (Microsoft Corporation) C:\windows\SysWOW64\rekeywiz.exe
2015-12-14 21:09 - 2014-10-29 02:22 - 00086528 _____ (Microsoft Corporation) C:\windows\SysWOW64\WPDShServiceObj.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\Winlangdb.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00186880 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.HostName.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00174080 _____ (Microsoft Corporation) C:\windows\system32\dps.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\Windows.Storage.Compression.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00130048 _____ (Microsoft Corporation) C:\windows\system32\WiFiDisplay.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00124416 _____ (Microsoft Corporation) C:\windows\system32\trkwks.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00120320 _____ (Microsoft Corporation) C:\windows\system32\WinRtTracing.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00119808 _____ (Microsoft Corporation) C:\windows\system32\AppxSip.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00082944 _____ (Microsoft Corporation) C:\windows\system32\bcdprov.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00425984 _____ (Microsoft Corporation) C:\windows\SysWOW64\shwebsvc.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00264192 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxdiagn.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00166912 _____ (Microsoft Corporation) C:\windows\system32\wmidcom.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00162304 _____ (Microsoft Corporation) C:\windows\system32\globinputhost.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00139776 _____ (Microsoft Corporation) C:\windows\system32\biwinrt.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00125440 _____ (Microsoft Corporation) C:\windows\system32\httpprxm.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00114176 _____ (Microsoft Corporation) C:\windows\system32\comrepl.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\vaultcli.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00092672 _____ (Microsoft Corporation) C:\windows\system32\RMapi.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00465408 _____ (Microsoft Corporation) C:\windows\SysWOW64\DevicePairing.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\wmitomi.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00181760 _____ (Microsoft Corporation) C:\windows\SysWOW64\tcpipcfg.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00166400 _____ (Microsoft Corporation) C:\windows\system32\mtxoci.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00137728 _____ (Microsoft Corporation) C:\windows\system32\msched.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00134656 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00129024 _____ (Microsoft Corporation) C:\windows\system32\msdtclog.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00125440 _____ (Microsoft Corporation) C:\windows\system32\txflog.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00092672 _____ (Microsoft) C:\windows\system32\VaultRoaming.dll
2015-12-14 21:09 - 2014-10-29 02:18 - 00157696 _____ (Microsoft Corporation) C:\windows\system32\fundisc.dll
2015-12-14 21:09 - 2014-10-29 02:17 - 01296896 _____ (Microsoft Corporation) C:\windows\SysWOW64\connect.dll
2015-12-14 21:09 - 2014-10-29 02:17 - 00303104 _____ (Microsoft Corporation) C:\windows\system32\qwave.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00675328 _____ (Microsoft Corporation) C:\windows\SysWOW64\Vault.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00363520 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanui.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00291840 _____ (Microsoft Corporation) C:\windows\SysWOW64\RADCUI.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00238592 _____ (Microsoft Corporation) C:\windows\system32\mlang.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00173568 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcorehc.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00154112 _____ (Microsoft Corporation) C:\windows\system32\ncbservice.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00143360 _____ (Microsoft Corporation) C:\windows\system32\mtstocom.exe
2015-12-14 21:09 - 2014-10-29 02:16 - 00113152 _____ (Microsoft Corporation) C:\windows\SysWOW64\msnetobj.dll
2015-12-14 21:09 - 2014-10-29 02:14 - 00149504 _____ (Microsoft Corporation) C:\windows\system32\BootMenuUX.dll
2015-12-14 21:09 - 2014-10-29 02:14 - 00099328 _____ (Microsoft Corporation) C:\windows\SysWOW64\msoert2.dll
2015-12-14 21:09 - 2014-10-29 02:13 - 00219648 _____ (Microsoft Corporation) C:\windows\SysWOW64\apds.dll
2015-12-14 21:09 - 2014-10-29 02:12 - 00270336 _____ (Microsoft Corporation) C:\windows\system32\bisrv.dll
2015-12-14 21:09 - 2014-10-29 02:12 - 00221696 _____ (Microsoft Corporation) C:\windows\system32\TtlsAuth.dll
2015-12-14 21:09 - 2014-10-29 02:12 - 00115200 _____ (Microsoft Corporation) C:\windows\system32\windows.immersiveshell.serviceprovider.dll
2015-12-14 21:09 - 2014-10-29 02:11 - 00171008 _____ (Microsoft Corporation) C:\windows\system32\wscinterop.dll
2015-12-14 21:09 - 2014-10-29 02:10 - 00396288 _____ (Microsoft Corporation) C:\windows\system32\mtxclu.dll
2015-12-14 21:09 - 2014-10-29 02:10 - 00203264 _____ (Microsoft Corporation) C:\windows\system32\WSSync.dll
2015-12-14 21:09 - 2014-10-29 02:10 - 00095232 _____ (Microsoft Corporation) C:\windows\system32\dafBth.dll
2015-12-14 21:09 - 2014-10-29 02:09 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\dafupnp.dll
2015-12-14 21:09 - 2014-10-29 02:08 - 00397312 _____ (Microsoft Corporation) C:\windows\system32\IPSECSVC.DLL
2015-12-14 21:09 - 2014-10-29 02:08 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\fdWSD.dll
2015-12-14 21:09 - 2014-10-29 02:06 - 00204288 _____ (Microsoft Corporation) C:\windows\system32\netiohlp.dll
2015-12-14 21:09 - 2014-10-29 02:06 - 00174080 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmpdxm.dll
2015-12-14 21:09 - 2014-10-29 02:06 - 00104960 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2015-12-14 21:09 - 2014-10-29 02:05 - 00180224 _____ (Microsoft Corporation) C:\windows\SysWOW64\authz.dll
2015-12-14 21:09 - 2014-10-29 02:05 - 00174080 _____ (Microsoft Corporation) C:\windows\SysWOW64\logoncli.dll
2015-12-14 21:09 - 2014-10-29 02:05 - 00101888 _____ (Microsoft Corporation) C:\windows\SysWOW64\loadperf.dll
2015-12-14 21:09 - 2014-10-29 02:04 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\rastapi.dll
2015-12-14 21:09 - 2014-10-29 02:04 - 00139776 _____ (Microsoft Corporation) C:\windows\SysWOW64\net1.exe
2015-12-14 21:09 - 2014-10-29 02:04 - 00106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\ufat.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00290304 _____ (Microsoft Corporation) C:\windows\SysWOW64\polstore.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00227840 _____ (Microsoft Corporation) C:\windows\SysWOW64\provthrd.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00211456 _____ (Microsoft Corporation) C:\windows\system32\TetheringStation.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00178688 _____ (Microsoft Corporation) C:\windows\system32\SimCfg.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00145920 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasman.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00113152 _____ (Microsoft Corporation) C:\windows\system32\dwm.exe
         

Geändert von pinsel (06.01.2016 um 00:29 Uhr) Grund: zu lang

Alt 06.01.2016, 00:38   #15
pinsel
 
Windows 8.1 - Virus?  Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Standard

Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?



Code:
ATTFilter
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData081a.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0024.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData001b.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData001a.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0018.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0003.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0002.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01829376 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData003e.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01829376 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0022.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 01829376 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0021.dll
2015-12-14 21:11 - 2014-10-29 02:36 - 00198656 _____ (Microsoft Corporation) C:\windows\system32\sbeio.dll
2015-12-14 21:11 - 2014-10-29 02:35 - 00315904 _____ (Microsoft Corporation) C:\windows\SysWOW64\mprddm.dll
2015-12-14 21:11 - 2014-10-29 02:34 - 00321024 _____ (Microsoft Corporation) C:\windows\SysWOW64\efscore.dll
2015-12-14 21:11 - 2014-10-29 02:34 - 00254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tapisrv.dll
2015-12-14 21:11 - 2014-10-29 02:30 - 00484352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cmdial32.dll
2015-12-14 21:11 - 2014-10-29 02:29 - 00503808 _____ (Microsoft Corporation) C:\windows\SysWOW64\IasMigPlugin.dll
2015-12-14 21:11 - 2014-10-29 02:28 - 00320512 _____ (Microsoft Corporation) C:\windows\SysWOW64\clusapi.dll
2015-12-14 21:11 - 2014-10-29 02:28 - 00269312 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2015-12-14 21:11 - 2014-10-29 02:28 - 00177664 _____ (Microsoft Corporation) C:\windows\system32\ulib.dll
2015-12-14 21:11 - 2014-10-29 02:28 - 00173568 _____ (Microsoft Corporation) C:\windows\system32\rasman.dll
2015-12-14 21:11 - 2014-10-29 02:27 - 00306176 _____ (Microsoft Corporation) C:\windows\system32\pdh.dll
2015-12-14 21:11 - 2014-10-29 02:27 - 00248320 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasmontr.dll
2015-12-14 21:11 - 2014-10-29 02:25 - 00333824 _____ (Microsoft Corporation) C:\windows\SysWOW64\msinfo32.exe
2015-12-14 21:11 - 2014-10-29 02:24 - 01389056 _____ (Microsoft Corporation) C:\windows\SysWOW64\DxpTaskSync.dll
2015-12-14 21:11 - 2014-10-29 02:24 - 00289280 _____ (Microsoft Corporation) C:\windows\system32\wkssvc.dll
2015-12-14 21:11 - 2014-10-29 02:22 - 00839680 _____ (Microsoft Corporation) C:\windows\SysWOW64\ActionCenter.dll
2015-12-14 21:11 - 2014-10-29 02:22 - 00517120 _____ (Microsoft Corporation) C:\windows\system32\wimserv.exe
2015-12-14 21:11 - 2014-10-29 02:21 - 00755712 _____ (Microsoft Corporation) C:\windows\SysWOW64\osk.exe
2015-12-14 21:11 - 2014-10-29 02:21 - 00361472 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2015-12-14 21:11 - 2014-10-29 02:21 - 00246784 _____ (Microsoft Corporation) C:\windows\system32\CryptoWinRT.dll
2015-12-14 21:11 - 2014-10-29 02:21 - 00225792 _____ (Microsoft Corporation) C:\windows\system32\WUDFPlatform.dll
2015-12-14 21:11 - 2014-10-29 02:20 - 00272384 _____ (Microsoft Corporation) C:\windows\system32\framedyn.dll
2015-12-14 21:11 - 2014-10-29 02:20 - 00234496 _____ (Microsoft Corporation) C:\windows\system32\miutils.dll
2015-12-14 21:11 - 2014-10-29 02:19 - 00701440 _____ (Microsoft Corporation) C:\windows\SysWOW64\appwiz.cpl
2015-12-14 21:11 - 2014-10-29 02:18 - 00194560 _____ (Microsoft Corporation) C:\windows\system32\deviceaccess.dll
2015-12-14 21:11 - 2014-10-29 02:17 - 00242176 _____ (Microsoft Corporation) C:\windows\system32\wevtutil.exe
2015-12-14 21:11 - 2014-10-29 02:16 - 00198144 _____ (Microsoft Corporation) C:\windows\SysWOW64\msoeacct.dll
2015-12-14 21:11 - 2014-10-29 02:15 - 00172544 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Input.Inking.dll
2015-12-14 21:11 - 2014-10-29 02:14 - 00288256 _____ (Microsoft Corporation) C:\windows\SysWOW64\photowiz.dll
2015-12-14 21:11 - 2014-10-29 02:13 - 00260608 _____ (Microsoft Corporation) C:\windows\system32\vaultsvc.dll
2015-12-14 21:11 - 2014-10-29 02:12 - 00280576 _____ (Microsoft Corporation) C:\windows\system32\hotspotauth.dll
2015-12-14 21:11 - 2014-10-29 02:12 - 00254464 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2015-12-14 21:11 - 2014-10-29 02:11 - 00672768 _____ (Microsoft Corporation) C:\windows\system32\wimgapi.dll
2015-12-14 21:11 - 2014-10-29 02:11 - 00373248 _____ (Microsoft Corporation) C:\windows\system32\msdtckrm.dll
2015-12-14 21:11 - 2014-10-29 02:10 - 00302080 _____ (Microsoft Corporation) C:\windows\system32\wlanapi.dll
2015-12-14 21:11 - 2014-10-29 02:10 - 00228864 _____ (Microsoft Corporation) C:\windows\system32\wdmaud.drv
2015-12-14 21:11 - 2014-10-29 02:08 - 00209408 _____ (Microsoft Corporation) C:\windows\system32\wecsvc.dll
2015-12-14 21:11 - 2014-10-29 02:05 - 00315392 _____ (Microsoft Corporation) C:\windows\SysWOW64\cmd.exe
2015-12-14 21:11 - 2014-10-29 02:05 - 00309248 _____ (Microsoft Corporation) C:\windows\system32\TtlsCfg.dll
2015-12-14 21:11 - 2014-10-29 02:05 - 00228864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2015-12-14 21:11 - 2014-10-29 02:05 - 00137728 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2015-12-14 21:11 - 2014-10-29 02:04 - 00364032 _____ (Microsoft Corporation) C:\windows\SysWOW64\PCPTpm12.dll
2015-12-14 21:11 - 2014-10-29 02:04 - 00254464 _____ (Microsoft Corporation) C:\windows\system32\rascustom.dll
2015-12-14 21:11 - 2014-10-29 02:04 - 00201216 _____ (Microsoft Corporation) C:\windows\SysWOW64\ifsutil.dll
2015-12-14 21:11 - 2014-10-29 02:03 - 00190976 _____ (Microsoft Corporation) C:\windows\system32\dafWfdProvider.dll
2015-12-14 21:11 - 2014-10-29 02:02 - 00217600 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Geolocation.dll
2015-12-14 21:11 - 2014-10-29 02:01 - 00214016 _____ (Microsoft Corporation) C:\windows\SysWOW64\scecli.dll
2015-12-14 21:11 - 2014-10-29 02:00 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\PlayToManager.dll
2015-12-14 21:11 - 2014-10-29 02:00 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\framedyn.dll
2015-12-14 21:11 - 2014-10-29 02:00 - 00200192 _____ (Windows (R) Win 7 DDK provider) C:\windows\system32\DscCoreConfProv.dll
2015-12-14 21:11 - 2014-10-29 01:59 - 00316928 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10core.dll
2015-12-14 21:11 - 2014-10-29 01:59 - 00286720 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpnapps.dll
2015-12-14 21:11 - 2014-10-29 01:59 - 00188928 _____ (Microsoft Corporation) C:\windows\SysWOW64\miutils.dll
2015-12-14 21:11 - 2014-10-29 01:57 - 00364032 _____ (Microsoft Corporation) C:\windows\SysWOW64\authfwcfg.dll
2015-12-14 21:11 - 2014-10-29 01:57 - 00297472 _____ (Microsoft Corporation) C:\windows\system32\wlidcredprov.dll
2015-12-14 21:11 - 2014-10-29 01:56 - 00624640 _____ (Microsoft Corporation) C:\windows\system32\rdbui.dll
2015-12-14 21:11 - 2014-10-29 01:56 - 00146944 _____ (Microsoft Corporation) C:\windows\system32\wscsvc.dll
2015-12-14 21:11 - 2014-10-29 01:55 - 00223744 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-12-14 21:11 - 2014-10-29 01:55 - 00198656 _____ (Microsoft Corporation) C:\windows\SysWOW64\mbsmsapi.dll
2015-12-14 21:11 - 2014-10-29 01:55 - 00171008 _____ (Microsoft Corporation) C:\windows\system32\thumbcache.dll
2015-12-14 21:11 - 2014-10-29 01:54 - 00306688 _____ (Microsoft Corporation) C:\windows\system32\NAPMONTR.DLL
2015-12-14 21:11 - 2014-10-29 01:54 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\ListSvc.dll
2015-12-14 21:11 - 2014-10-29 01:54 - 00222208 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceTypes.dll
2015-12-14 21:11 - 2014-10-29 01:54 - 00209920 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Scanners.dll
2015-12-14 21:11 - 2014-10-29 01:53 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\msctfuimanager.dll
2015-12-14 21:11 - 2014-10-29 01:53 - 00347648 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_8.dll
2015-12-14 21:11 - 2014-10-29 01:53 - 00306688 _____ (Microsoft Corporation) C:\windows\system32\msdtcuiu.dll
2015-12-14 21:11 - 2014-10-29 01:53 - 00269824 _____ (Microsoft Corporation) C:\windows\SysWOW64\MbaeApiPublic.dll
2015-12-14 21:11 - 2014-10-29 01:53 - 00238080 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanapi.dll
2015-12-14 21:11 - 2014-10-29 01:52 - 00440832 _____ (Microsoft Corporation) C:\windows\system32\p2psvc.dll
2015-12-14 21:11 - 2014-10-29 01:52 - 00225792 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.SpeechSynthesis.dll
2015-12-14 21:11 - 2014-10-29 01:51 - 00236032 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmWmiPl.dll
2015-12-14 21:11 - 2014-10-29 01:50 - 00332800 _____ (Microsoft Corporation) C:\windows\system32\fhcpl.dll
2015-12-14 21:11 - 2014-10-29 01:49 - 00300032 _____ (Microsoft Corporation) C:\windows\system32\umrdp.dll
2015-12-14 21:11 - 2014-10-29 01:48 - 00259072 _____ (Microsoft Corporation) C:\windows\system32\InputSwitch.dll
2015-12-14 21:11 - 2014-10-29 01:46 - 01305088 _____ (Microsoft Corporation) C:\windows\system32\wcnwiz.dll
2015-12-14 21:11 - 2014-10-29 01:46 - 00296448 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.dll
2015-12-14 21:11 - 2014-10-29 01:45 - 00225792 _____ (Microsoft Corporation) C:\windows\SysWOW64\activeds.dll
2015-12-14 21:11 - 2014-10-29 01:44 - 00732672 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanpref.dll
2015-12-14 21:11 - 2014-10-29 01:44 - 00164352 _____ (Microsoft Corporation) C:\windows\SysWOW64\PackageStateRoaming.dll
2015-12-14 21:11 - 2014-10-29 01:43 - 00957952 _____ (Microsoft Corporation) C:\windows\SysWOW64\WlanMM.dll
2015-12-14 21:11 - 2014-10-29 01:43 - 00724480 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctfuimanager.dll
2015-12-14 21:11 - 2014-10-29 01:43 - 00461312 _____ (Microsoft Corporation) C:\windows\SysWOW64\VAN.dll
2015-12-14 21:11 - 2014-10-29 01:43 - 00252928 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdtcuiu.dll
2015-12-14 21:11 - 2014-10-29 01:41 - 00305152 _____ (Microsoft Corporation) C:\windows\SysWOW64\stobject.dll
2015-12-14 21:11 - 2014-10-29 01:38 - 00565760 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptui.dll
2015-12-14 21:11 - 2014-10-29 01:30 - 00215552 _____ (Microsoft Corporation) C:\windows\SysWOW64\PlayToDevice.dll
2015-12-14 21:11 - 2014-07-24 16:28 - 00143680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2015-12-14 21:10 - 2014-10-29 05:00 - 00297512 _____ (Microsoft Corporation) C:\windows\system32\sqmapi.dll
2015-12-14 21:10 - 2014-10-29 05:00 - 00142000 _____ (Microsoft Corporation) C:\windows\system32\dxva2.dll
2015-12-14 21:10 - 2014-10-29 04:57 - 00447256 _____ (Microsoft Corporation) C:\windows\system32\wmpps.dll
2015-12-14 21:10 - 2014-10-29 04:52 - 00161120 _____ (Microsoft Corporation) C:\windows\system32\winmmbase.dll
2015-12-14 21:10 - 2014-10-29 04:52 - 00132232 _____ (Microsoft Corporation) C:\windows\system32\RTWorkQ.dll
2015-12-14 21:10 - 2014-10-29 04:51 - 00159112 _____ (Microsoft Corporation) C:\windows\system32\IPHLPAPI.DLL
2015-12-14 21:10 - 2014-10-29 04:18 - 00348048 _____ (Microsoft Corporation) C:\windows\SysWOW64\verifier.dll
2015-12-14 21:10 - 2014-10-29 04:18 - 00164264 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Storage.ApplicationData.dll
2015-12-14 21:10 - 2014-10-29 04:15 - 00154392 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntmarta.dll
2015-12-14 21:10 - 2014-10-29 04:12 - 00241680 _____ (Microsoft Corporation) C:\windows\SysWOW64\sqmapi.dll
2015-12-14 21:10 - 2014-10-29 03:42 - 00214528 _____ (Microsoft Corporation) C:\windows\system32\aelupsvc.dll
2015-12-14 21:10 - 2014-10-29 03:35 - 00237056 _____ (Microsoft Corporation) C:\windows\system32\MSWB7.dll
2015-12-14 21:10 - 2014-10-29 03:33 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\scrobj.dll
2015-12-14 21:10 - 2014-10-29 03:29 - 00161792 _____ (Microsoft Corporation) C:\windows\system32\diskpart.exe
2015-12-14 21:10 - 2014-10-29 03:28 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\prntvpt.dll
2015-12-14 21:10 - 2014-10-29 03:27 - 00354816 _____ (Microsoft Corporation) C:\windows\system32\adsnt.dll
2015-12-14 21:10 - 2014-10-29 03:27 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\iasrad.dll
2015-12-14 21:10 - 2014-10-29 03:22 - 00585728 _____ (Microsoft Corporation) C:\windows\system32\recimg.exe
2015-12-14 21:10 - 2014-10-29 03:19 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\dskquoui.dll
2015-12-14 21:10 - 2014-10-29 03:17 - 00205312 _____ (Microsoft Corporation) C:\windows\system32\itircl.dll
2015-12-14 21:10 - 2014-10-29 03:13 - 00296448 _____ (Microsoft Corporation) C:\windows\system32\scansetting.dll
2015-12-14 21:10 - 2014-10-29 03:12 - 00372736 _____ (Microsoft Corporation) C:\windows\system32\mprddm.dll
2015-12-14 21:10 - 2014-10-29 03:11 - 00475648 _____ (Microsoft Corporation) C:\windows\system32\SnippingTool.exe
2015-12-14 21:10 - 2014-10-29 03:09 - 00164352 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceSyncProvider.dll
2015-12-14 21:10 - 2014-10-29 03:09 - 00117760 _____ (Microsoft Corporation) C:\windows\system32\psisrndr.ax
2015-12-14 21:10 - 2014-10-29 03:06 - 02134528 _____ (Microsoft Corporation) C:\windows\system32\SensorsCpl.dll
2015-12-14 21:10 - 2014-10-29 03:04 - 00445440 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcp60.dll
2015-12-14 21:10 - 2014-10-29 03:02 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\VBICodec.ax
2015-12-14 21:10 - 2014-10-29 03:01 - 00774656 _____ (Microsoft Corporation) C:\windows\system32\TabletPC.cpl
2015-12-14 21:10 - 2014-10-29 03:00 - 00153088 _____ (Microsoft Corporation) C:\windows\SysWOW64\WwaApi.dll
2015-12-14 21:10 - 2014-10-29 02:59 - 00384000 _____ (Microsoft Corporation) C:\windows\system32\certreq.exe
2015-12-14 21:10 - 2014-10-29 02:58 - 00211968 _____ (Microsoft Corporation) C:\windows\system32\QSHVHOST.DLL
2015-12-14 21:10 - 2014-10-29 02:58 - 00203264 _____ (Microsoft Corporation) C:\windows\system32\msrdc.dll
2015-12-14 21:10 - 2014-10-29 02:57 - 01047040 _____ (Microsoft Corporation) C:\windows\system32\DiagCpl.dll
2015-12-14 21:10 - 2014-10-29 02:57 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\FXSCOVER.exe
2015-12-14 21:10 - 2014-10-29 02:57 - 00224768 _____ (Microsoft Corporation) C:\windows\system32\WpdMtp.dll
2015-12-14 21:10 - 2014-10-29 02:57 - 00169984 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSCard.dll
2015-12-14 21:10 - 2014-10-29 02:56 - 00317440 _____ (Microsoft Corporation) C:\windows\SysWOW64\odbcjt32.dll
2015-12-14 21:10 - 2014-10-29 02:55 - 00171520 _____ (Microsoft Corporation) C:\windows\SysWOW64\dinput8.dll
2015-12-14 21:10 - 2014-10-29 02:54 - 00196096 _____ (Microsoft Corporation) C:\windows\system32\wmidx.dll
2015-12-14 21:10 - 2014-10-29 02:52 - 00322048 _____ (Microsoft Corporation) C:\windows\system32\dxdiagn.dll
2015-12-14 21:10 - 2014-10-29 02:51 - 00782848 _____ (Microsoft Corporation) C:\windows\SysWOW64\NL7Data001E.dll
2015-12-14 21:10 - 2014-10-29 02:51 - 00285184 _____ (Microsoft Corporation) C:\windows\SysWOW64\iprtrmgr.dll
2015-12-14 21:10 - 2014-10-29 02:51 - 00189440 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrobj.dll
2015-12-14 21:10 - 2014-10-29 02:49 - 00468480 _____ (Microsoft Corporation) C:\windows\system32\MFWMAAEC.DLL
2015-12-14 21:10 - 2014-10-29 02:49 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2015-12-14 21:10 - 2014-10-29 02:49 - 00189440 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSyncMetastore.dll
2015-12-14 21:10 - 2014-10-29 02:48 - 00211968 _____ (Microsoft Corporation) C:\windows\system32\deviceregistration.dll
2015-12-14 21:10 - 2014-10-29 02:48 - 00144896 _____ (Microsoft Corporation) C:\windows\SysWOW64\prntvpt.dll
2015-12-14 21:10 - 2014-10-29 02:47 - 00145920 _____ (Microsoft Corporation) C:\windows\SysWOW64\diskpart.exe
2015-12-14 21:10 - 2014-10-29 02:46 - 00339968 _____ (Microsoft Corporation) C:\windows\system32\RADCUI.dll
2015-12-14 21:10 - 2014-10-29 02:46 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\netcorehc.dll
2015-12-14 21:10 - 2014-10-29 02:46 - 00227328 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmdskmgr.dll
2015-12-14 21:10 - 2014-10-29 02:46 - 00135168 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2015-12-14 21:10 - 2014-10-29 02:45 - 00879104 _____ (Microsoft Corporation) C:\windows\system32\rasdlg.dll
2015-12-14 21:10 - 2014-10-29 02:45 - 00738816 _____ (Microsoft Corporation) C:\windows\system32\Vault.dll
2015-12-14 21:10 - 2014-10-29 02:45 - 00658944 _____ (Microsoft Corporation) C:\windows\system32\FXSSVC.exe
2015-12-14 21:10 - 2014-10-29 02:45 - 00192512 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpresult.exe
2015-12-14 21:10 - 2014-10-29 02:42 - 00198656 _____ (Microsoft Corporation) C:\windows\SysWOW64\tapi32.dll
2015-12-14 21:10 - 2014-10-29 02:42 - 00144384 _____ (Microsoft Corporation) C:\windows\SysWOW64\iasrecst.dll
2015-12-14 21:10 - 2014-10-29 02:41 - 00267264 _____ (Microsoft Corporation) C:\windows\system32\apds.dll
2015-12-14 21:10 - 2014-10-29 02:40 - 00224256 _____ (Microsoft Corporation) C:\windows\SysWOW64\spp.dll
2015-12-14 21:10 - 2014-10-29 02:38 - 01548800 _____ (Microsoft Corporation) C:\windows\SysWOW64\NlsData0000.dll
2015-12-14 21:10 - 2014-10-29 02:38 - 00323584 _____ (Microsoft Corporation) C:\windows\system32\CertEnrollUI.dll
2015-12-14 21:10 - 2014-10-29 02:38 - 00165376 _____ (Microsoft Corporation) C:\windows\SysWOW64\itircl.dll
2015-12-14 21:10 - 2014-10-29 02:34 - 00414720 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmdlgs.dll
2015-12-14 21:10 - 2014-10-29 02:31 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\fdprint.dll
2015-12-14 21:10 - 2014-10-29 02:29 - 00324608 _____ (Microsoft Corporation) C:\windows\SysWOW64\srchadmin.dll
2015-12-14 21:10 - 2014-10-29 02:29 - 00154624 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmvdsitf.dll
2015-12-14 21:10 - 2014-10-29 02:28 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\localsec.dll
2015-12-14 21:10 - 2014-10-29 02:28 - 00226816 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-12-14 21:10 - 2014-10-29 02:28 - 00214016 _____ (Microsoft Corporation) C:\windows\SysWOW64\xwtpdui.dll
2015-12-14 21:10 - 2014-10-29 02:26 - 03788288 _____ (Microsoft Corporation) C:\windows\SysWOW64\accessibilitycpl.dll
2015-12-14 21:10 - 2014-10-29 02:26 - 00744448 _____ (Microsoft Corporation) C:\windows\system32\drvstore.dll
2015-12-14 21:10 - 2014-10-29 02:26 - 00309248 _____ (Microsoft Corporation) C:\windows\system32\provthrd.dll
2015-12-14 21:10 - 2014-10-29 02:25 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\mibincodec.dll
2015-12-14 21:10 - 2014-10-29 02:24 - 00487424 _____ (Microsoft Corporation) C:\windows\SysWOW64\DeviceCenter.dll
2015-12-14 21:10 - 2014-10-29 02:22 - 00142848 _____ (Microsoft Corporation) C:\windows\system32\sstpsvc.dll
2015-12-14 21:10 - 2014-10-29 02:21 - 00250368 _____ (Microsoft Corporation) C:\windows\SysWOW64\FXSAPI.dll
2015-12-14 21:10 - 2014-10-29 02:21 - 00150016 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmidx.dll
2015-12-14 21:10 - 2014-10-29 02:21 - 00104960 _____ (Microsoft Corporation) C:\windows\system32\WUDFSvc.dll
2015-12-14 21:10 - 2014-10-29 02:20 - 00229376 _____ (Microsoft Corporation) C:\windows\SysWOW64\netdiagfx.dll
2015-12-14 21:10 - 2014-10-29 02:19 - 00175616 _____ (Microsoft Corporation) C:\windows\system32\srumsvc.dll
2015-12-14 21:10 - 2014-10-29 02:18 - 00281088 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2015-12-14 21:10 - 2014-10-29 02:18 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\IDStore.dll
2015-12-14 21:10 - 2014-10-29 02:17 - 00201728 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Enumeration.dll
2015-12-14 21:10 - 2014-10-29 02:14 - 00301568 _____ (Microsoft Corporation) C:\windows\system32\ProximityService.dll
2015-12-14 21:10 - 2014-10-29 02:12 - 00407040 _____ (Microsoft Corporation) C:\windows\system32\das.dll
2015-12-14 21:10 - 2014-10-29 02:12 - 00284672 _____ (Microsoft Corporation) C:\windows\SysWOW64\CertEnrollUI.dll
2015-12-14 21:10 - 2014-10-29 02:10 - 00293376 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_8.dll
2015-12-14 21:10 - 2014-10-29 02:10 - 00155648 _____ (Microsoft Corporation) C:\windows\SysWOW64\sbeio.dll
2015-12-14 21:10 - 2014-10-29 02:06 - 00245248 _____ (Microsoft Corporation) C:\windows\SysWOW64\mdmregistration.dll
2015-12-14 21:10 - 2014-10-29 02:05 - 00193024 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2015-12-14 21:10 - 2014-10-29 02:05 - 00143360 _____ (Microsoft Corporation) C:\windows\SysWOW64\ulib.dll
2015-12-14 21:10 - 2014-10-29 02:04 - 00272896 _____ (Microsoft Corporation) C:\windows\SysWOW64\esentutl.exe
2015-12-14 21:10 - 2014-10-29 02:02 - 00267776 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincorlib.dll
2015-12-14 21:10 - 2014-10-29 02:01 - 00193024 _____ (Microsoft Corporation) C:\windows\system32\DAFWSD.dll
2015-12-14 21:10 - 2014-10-29 02:00 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdscore.dll
2015-12-14 21:10 - 2014-10-29 02:00 - 00166400 _____ (Microsoft Corporation) C:\windows\SysWOW64\CryptoWinRT.dll
2015-12-14 21:10 - 2014-10-29 01:59 - 00150016 _____ (Microsoft Corporation) C:\windows\SysWOW64\srumsvc.dll
2015-12-14 21:10 - 2014-10-29 01:58 - 00155136 _____ (Microsoft Corporation) C:\windows\SysWOW64\deviceaccess.dll
2015-12-14 21:10 - 2014-10-29 01:58 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsDatabase.dll
2015-12-14 21:10 - 2014-10-29 01:57 - 00261632 _____ (Microsoft Corporation) C:\windows\SysWOW64\qwave.dll
2015-12-14 21:10 - 2014-10-29 01:57 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\tcpmon.dll
2015-12-14 21:10 - 2014-10-29 01:57 - 00177664 _____ (Microsoft Corporation) C:\windows\SysWOW64\wevtutil.exe
2015-12-14 21:10 - 2014-10-29 01:57 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-12-14 21:10 - 2014-10-29 01:54 - 00178688 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSSync.dll
2015-12-14 21:10 - 2014-10-29 01:53 - 01156608 _____ (Microsoft Corporation) C:\windows\system32\wwanmm.dll
2015-12-14 21:10 - 2014-10-29 01:53 - 00463872 _____ (Microsoft Corporation) C:\windows\system32\SystemSettings.Handlers.dll
2015-12-14 21:10 - 2014-10-29 01:53 - 00425472 _____ (Microsoft Corporation) C:\windows\SysWOW64\raschap.dll
2015-12-14 21:10 - 2014-10-29 01:53 - 00197120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdmaud.drv
2015-12-14 21:10 - 2014-10-29 01:51 - 00169472 _____ (Microsoft Corporation) C:\windows\SysWOW64\netiohlp.dll
2015-12-14 21:10 - 2014-10-29 01:49 - 00831488 _____ (Microsoft Corporation) C:\windows\SysWOW64\certca.dll
2015-12-14 21:10 - 2014-10-29 01:47 - 00173056 _____ (Microsoft Corporation) C:\windows\system32\SettingMonitor.dll
2015-12-14 21:10 - 2014-10-29 01:45 - 00196096 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlidcredprov.dll
2015-12-14 21:10 - 2014-10-29 01:44 - 00172544 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSClient.dll
2015-12-14 21:10 - 2014-10-29 01:44 - 00128512 _____ (Microsoft Corporation) C:\windows\SysWOW64\thumbcache.dll
2015-12-14 21:10 - 2014-10-29 01:43 - 00255488 _____ (Microsoft Corporation) C:\windows\SysWOW64\NAPMONTR.DLL
2015-12-14 21:10 - 2014-10-29 01:43 - 00162304 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Scanners.dll
2015-12-14 21:10 - 2014-10-29 01:42 - 00175616 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.SpeechSynthesis.dll
2015-12-14 21:10 - 2014-10-29 01:39 - 00205312 _____ (Microsoft Corporation) C:\windows\SysWOW64\InputSwitch.dll
2015-12-14 21:10 - 2014-10-29 01:38 - 01232896 _____ (Microsoft Corporation) C:\windows\SysWOW64\wcnwiz.dll
2015-12-14 21:10 - 2014-06-19 03:13 - 00310080 _____ (Microsoft Corporation) C:\windows\system32\Drivers\volsnap.sys
2015-12-14 21:09 - 2014-10-29 05:10 - 00177688 _____ (Microsoft Corporation) C:\windows\system32\wscapi.dll
2015-12-14 21:09 - 2014-10-29 05:10 - 00089344 _____ (Microsoft Corporation) C:\windows\system32\taskhost.exe
2015-12-14 21:09 - 2014-10-29 05:09 - 00371304 _____ (Microsoft Corporation) C:\windows\system32\verifier.dll
2015-12-14 21:09 - 2014-10-29 05:09 - 00155456 _____ (Microsoft Corporation) C:\windows\system32\devobj.dll
2015-12-14 21:09 - 2014-10-29 05:09 - 00145144 _____ (Microsoft Corporation) C:\windows\system32\cabinet.dll
2015-12-14 21:09 - 2014-10-29 05:09 - 00017560 _____ (Microsoft Corporation) C:\windows\system32\psapi.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00224600 _____ (Microsoft Corporation) C:\windows\system32\ntasn1.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00196264 _____ (Microsoft Corporation) C:\windows\system32\ntmarta.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00153336 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00135304 _____ (Microsoft Corporation) C:\windows\system32\gpapi.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00120384 _____ (Microsoft Corporation) C:\windows\system32\userenv.dll
2015-12-14 21:09 - 2014-10-29 05:04 - 00064512 _____ (Microsoft Corporation) C:\windows\system32\msasn1.dll
2015-12-14 21:09 - 2014-10-29 05:00 - 00210744 _____ (Microsoft Corporation) C:\windows\system32\imm32.dll
2015-12-14 21:09 - 2014-10-29 05:00 - 00125504 _____ (Microsoft Corporation) C:\windows\system32\dwmapi.dll
2015-12-14 21:09 - 2014-10-29 04:59 - 00105944 _____ (Microsoft Corporation) C:\windows\system32\mpr.dll
2015-12-14 21:09 - 2014-10-29 04:57 - 00299048 _____ (Microsoft Corporation) C:\windows\system32\VIDRESZR.DLL
2015-12-14 21:09 - 2014-10-29 04:57 - 00250488 _____ (Microsoft Corporation) C:\windows\system32\MPG4DECD.DLL
2015-12-14 21:09 - 2014-10-29 04:57 - 00248408 _____ (Microsoft Corporation) C:\windows\system32\MP43DECD.DLL
2015-12-14 21:09 - 2014-10-29 04:57 - 00246832 _____ (Microsoft Corporation) C:\windows\system32\RESAMPLEDMO.DLL
2015-12-14 21:09 - 2014-10-29 04:57 - 00216920 _____ (Microsoft Corporation) C:\windows\system32\SndVol.exe
2015-12-14 21:09 - 2014-10-29 04:57 - 00203504 _____ (Microsoft Corporation) C:\windows\system32\COLORCNV.DLL
2015-12-14 21:09 - 2014-10-29 04:57 - 00089816 _____ (Microsoft Corporation) C:\windows\system32\mfvdsp.dll
2015-12-14 21:09 - 2014-10-29 04:57 - 00022208 _____ (Microsoft Corporation) C:\windows\system32\PurchaseWindowsLicense.exe
2015-12-14 21:09 - 2014-10-29 04:55 - 00278392 _____ (Microsoft Corporation) C:\windows\system32\wkspbroker.exe
2015-12-14 21:09 - 2014-10-29 04:52 - 00126056 _____ (Microsoft Corporation) C:\windows\system32\winmm.dll
2015-12-14 21:09 - 2014-10-29 04:52 - 00090880 _____ (Microsoft Corporation) C:\windows\system32\devenum.dll
2015-12-14 21:09 - 2014-10-29 04:18 - 00148728 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscapi.dll
2015-12-14 21:09 - 2014-10-29 04:18 - 00127552 _____ (Microsoft Corporation) C:\windows\SysWOW64\devobj.dll
2015-12-14 21:09 - 2014-10-29 04:18 - 00120352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cabinet.dll
2015-12-14 21:09 - 2014-10-29 04:15 - 00165728 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntasn1.dll
2015-12-14 21:09 - 2014-10-29 04:15 - 00115672 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpapi.dll
2015-12-14 21:09 - 2014-10-29 04:15 - 00098152 _____ (Microsoft Corporation) C:\windows\SysWOW64\userenv.dll
2015-12-14 21:09 - 2014-10-29 04:12 - 00116696 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxva2.dll
2015-12-14 21:09 - 2014-10-29 04:12 - 00102728 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmapi.dll
2015-12-14 21:09 - 2014-10-29 04:12 - 00087224 _____ (Microsoft Corporation) C:\windows\SysWOW64\mpr.dll
2015-12-14 21:09 - 2014-10-29 04:11 - 00275280 _____ (Microsoft Corporation) C:\windows\SysWOW64\MPG4DECD.DLL
2015-12-14 21:09 - 2014-10-29 04:11 - 00274256 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP43DECD.DLL
2015-12-14 21:09 - 2014-10-29 04:11 - 00229248 _____ (Microsoft Corporation) C:\windows\SysWOW64\RESAMPLEDMO.DLL
2015-12-14 21:09 - 2014-10-29 04:11 - 00190048 _____ (Microsoft Corporation) C:\windows\SysWOW64\SndVol.exe
2015-12-14 21:09 - 2014-10-29 04:11 - 00184888 _____ (Microsoft Corporation) C:\windows\SysWOW64\COLORCNV.DLL
2015-12-14 21:09 - 2014-10-29 04:11 - 00183832 _____ (Microsoft Corporation) C:\windows\SysWOW64\VIDRESZR.DLL
2015-12-14 21:09 - 2014-10-29 04:11 - 00099104 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP3DMOD.DLL
2015-12-14 21:09 - 2014-10-29 04:09 - 00017216 _____ (Microsoft Corporation) C:\windows\SysWOW64\dllhost.exe
2015-12-14 21:09 - 2014-10-29 04:07 - 00136840 _____ (Microsoft Corporation) C:\windows\SysWOW64\winmm.dll
2015-12-14 21:09 - 2014-10-29 04:07 - 00134280 _____ (Microsoft Corporation) C:\windows\SysWOW64\winmmbase.dll
2015-12-14 21:09 - 2014-10-29 04:07 - 00089816 _____ (Microsoft Corporation) C:\windows\SysWOW64\msacm32.dll
2015-12-14 21:09 - 2014-10-29 04:07 - 00081008 _____ (Microsoft Corporation) C:\windows\SysWOW64\devenum.dll
2015-12-14 21:09 - 2014-10-29 04:06 - 00111064 _____ (Microsoft Corporation) C:\windows\SysWOW64\RTWorkQ.dll
         
Code:
ATTFilter
2015-12-14 21:09 - 2014-10-29 04:06 - 00074824 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2015-12-14 21:09 - 2014-10-29 04:05 - 00120864 _____ (Microsoft Corporation) C:\windows\SysWOW64\IPHLPAPI.DLL
2015-12-14 21:09 - 2014-10-29 03:48 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\SSShim.dll
2015-12-14 21:09 - 2014-10-29 03:46 - 00272384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2015-12-14 21:09 - 2014-10-29 03:46 - 00113664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFPf.sys
2015-12-14 21:09 - 2014-10-29 03:45 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\nwifi.sys
2015-12-14 21:09 - 2014-10-29 03:45 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\umpnpmgr.dll
2015-12-14 21:09 - 2014-10-29 03:44 - 00107008 _____ (Microsoft Corporation) C:\windows\system32\SPInf.dll
2015-12-14 21:09 - 2014-10-29 03:42 - 00168448 _____ (Microsoft Corporation) C:\windows\system32\uudf.dll
2015-12-14 21:09 - 2014-10-29 03:42 - 00130560 _____ (Microsoft Corporation) C:\windows\system32\dbnetlib.dll
2015-12-14 21:09 - 2014-10-29 03:41 - 00281600 _____ (Microsoft Corporation) C:\windows\system32\drt.dll
2015-12-14 21:09 - 2014-10-29 03:41 - 00281088 _____ (Microsoft Corporation) C:\windows\system32\mcbuilder.exe
2015-12-14 21:09 - 2014-10-29 03:41 - 00251392 _____ (Microsoft Corporation) C:\windows\system32\adsldpc.dll
2015-12-14 21:09 - 2014-10-29 03:39 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\wevtfwd.dll
2015-12-14 21:09 - 2014-10-29 03:37 - 00167936 _____ (Microsoft Corporation) C:\windows\system32\dinput.dll
2015-12-14 21:09 - 2014-10-29 03:37 - 00119296 _____ (Microsoft Corporation) C:\windows\system32\msctfui.dll
2015-12-14 21:09 - 2014-10-29 03:36 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\cic.dll
2015-12-14 21:09 - 2014-10-29 03:36 - 00134144 _____ (Microsoft Corporation) C:\windows\system32\chartv.dll
2015-12-14 21:09 - 2014-10-29 03:35 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\ActionQueue.dll
2015-12-14 21:09 - 2014-10-29 03:34 - 00591872 _____ (Microsoft Corporation) C:\windows\system32\vdsdyn.dll
2015-12-14 21:09 - 2014-10-29 03:34 - 00239616 _____ (Microsoft Corporation) C:\windows\system32\vdsbas.dll
2015-12-14 21:09 - 2014-10-29 03:34 - 00189440 _____ (Microsoft Corporation) C:\windows\system32\rgb9rast.dll
2015-12-14 21:09 - 2014-10-29 03:34 - 00124928 _____ (Microsoft Corporation) C:\windows\system32\fms.dll
2015-12-14 21:09 - 2014-10-29 03:33 - 00323072 _____ (Microsoft Corporation) C:\windows\system32\iprtrmgr.dll
2015-12-14 21:09 - 2014-10-29 03:33 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2015-12-14 21:09 - 2014-10-29 03:33 - 00108544 _____ (Microsoft Corporation) C:\windows\system32\atl.dll
2015-12-14 21:09 - 2014-10-29 03:33 - 00091136 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2015-12-14 21:09 - 2014-10-29 03:32 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\SCardSvr.dll
2015-12-14 21:09 - 2014-10-29 03:32 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\sqlcecompact40.dll
2015-12-14 21:09 - 2014-10-29 03:32 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\amstream.dll
2015-12-14 21:09 - 2014-10-29 03:31 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\WSTPager.ax
2015-12-14 21:09 - 2014-10-29 03:31 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\cca.dll
2015-12-14 21:09 - 2014-10-29 03:30 - 00176128 _____ (Microsoft Corporation) C:\windows\system32\msaatext.dll
2015-12-14 21:09 - 2014-10-29 03:29 - 00350208 _____ (Microsoft Corporation) C:\windows\system32\mmcbase.dll
2015-12-14 21:09 - 2014-10-29 03:29 - 00148480 _____ (Microsoft Corporation) C:\windows\system32\iassvcs.dll
2015-12-14 21:09 - 2014-10-29 03:29 - 00134144 _____ (Microsoft Corporation) C:\windows\system32\dmusic.dll
2015-12-14 21:09 - 2014-10-29 03:27 - 00313344 _____ (Microsoft Corporation) C:\windows\system32\NAPSTAT.EXE
2015-12-14 21:09 - 2014-10-29 03:27 - 00279552 _____ (Microsoft Corporation) C:\windows\system32\mycomput.dll
2015-12-14 21:09 - 2014-10-29 03:27 - 00216064 _____ (Microsoft Corporation) C:\windows\system32\sdiageng.dll
2015-12-14 21:09 - 2014-10-29 03:27 - 00153088 _____ (Microsoft Corporation) C:\windows\system32\tpmvscmgr.exe
2015-12-14 21:09 - 2014-10-29 03:27 - 00137216 _____ (Microsoft Corporation) C:\windows\system32\Kswdmcap.ax
2015-12-14 21:09 - 2014-10-29 03:27 - 00023552 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.Workplace.WorkplaceSettings.dll
2015-12-14 21:09 - 2014-10-29 03:26 - 00113152 _____ (Microsoft Corporation) C:\windows\system32\Mpeg2Data.ax
2015-12-14 21:09 - 2014-10-29 03:26 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\MSDvbNP.ax
2015-12-14 21:09 - 2014-10-29 03:25 - 00122368 _____ (Microsoft Corporation) C:\windows\system32\DevPropMgr.dll
2015-12-14 21:09 - 2014-10-29 03:24 - 00113152 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2015-12-14 21:09 - 2014-10-29 03:24 - 00104960 _____ (Microsoft Corporation) C:\windows\system32\bdaplgin.ax
2015-12-14 21:09 - 2014-10-29 03:23 - 00280576 _____ (Microsoft Corporation) C:\windows\system32\dot3gpui.dll
2015-12-14 21:09 - 2014-10-29 03:23 - 00240128 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2015-12-14 21:09 - 2014-10-29 03:23 - 00217088 _____ (Microsoft Corporation) C:\windows\system32\ssText3d.scr
2015-12-14 21:09 - 2014-10-29 03:23 - 00167936 _____ (Microsoft Corporation) C:\windows\system32\Tabbtn.dll
2015-12-14 21:09 - 2014-10-29 03:22 - 00142848 _____ (Microsoft Corporation) C:\windows\system32\advpack.dll
2015-12-14 21:09 - 2014-10-29 03:22 - 00108544 _____ (Microsoft Corporation) C:\windows\system32\fdWCN.dll
2015-12-14 21:09 - 2014-10-29 03:21 - 00109056 _____ (Microsoft Corporation) C:\windows\system32\kstvtune.ax
2015-12-14 21:09 - 2014-10-29 03:20 - 00186880 _____ (Microsoft Corporation) C:\windows\system32\easwrt.dll
2015-12-14 21:09 - 2014-10-29 03:20 - 00169984 _____ (Microsoft Corporation) C:\windows\system32\desk.cpl
2015-12-14 21:09 - 2014-10-29 03:19 - 00333312 _____ (Microsoft Corporation) C:\windows\system32\dxdiag.exe
2015-12-14 21:09 - 2014-10-29 03:19 - 00207872 _____ (Microsoft Corporation) C:\windows\system32\auditcse.dll
2015-12-14 21:09 - 2014-10-29 03:19 - 00166912 _____ (Microsoft Corporation) C:\windows\system32\softkbd.dll
2015-12-14 21:09 - 2014-10-29 03:19 - 00124928 _____ (Microsoft Corporation) C:\windows\system32\Robocopy.exe
2015-12-14 21:09 - 2014-10-29 03:18 - 00440320 _____ (Microsoft Corporation) C:\windows\system32\zipfldr.dll
2015-12-14 21:09 - 2014-10-29 03:18 - 00246272 _____ (Microsoft Corporation) C:\windows\system32\unattend.dll
2015-12-14 21:09 - 2014-10-29 03:18 - 00229376 _____ (Microsoft Corporation) C:\windows\system32\bitsadmin.exe
2015-12-14 21:09 - 2014-10-29 03:17 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2015-12-14 21:09 - 2014-10-29 03:17 - 00163328 _____ (Microsoft Corporation) C:\windows\system32\fde.dll
2015-12-14 21:09 - 2014-10-29 03:17 - 00158720 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2015-12-14 21:09 - 2014-10-29 03:17 - 00142336 _____ (Microsoft Corporation) C:\windows\system32\imapi.dll
2015-12-14 21:09 - 2014-10-29 03:17 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\WinSyncProviders.dll
2015-12-14 21:09 - 2014-10-29 03:14 - 00378880 _____ (Microsoft Corporation) C:\windows\system32\SysFxUI.dll
2015-12-14 21:09 - 2014-10-29 03:13 - 00108032 _____ (Microsoft Corporation) C:\windows\system32\BdeHdCfgLib.dll
2015-12-14 21:09 - 2014-10-29 03:12 - 00313344 _____ (Microsoft Corporation) C:\windows\system32\tapisrv.dll
2015-12-14 21:09 - 2014-10-29 03:12 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\fhshl.dll
2015-12-14 21:09 - 2014-10-29 03:11 - 00469504 _____ (Microsoft Corporation) C:\windows\system32\dmdlgs.dll
2015-12-14 21:09 - 2014-10-29 03:10 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\dsprop.dll
2015-12-14 21:09 - 2014-10-29 03:09 - 00601600 _____ (Microsoft Corporation) C:\windows\system32\psr.exe
2015-12-14 21:09 - 2014-10-29 03:09 - 00153600 _____ (Microsoft Corporation) C:\windows\system32\twext.dll
2015-12-14 21:09 - 2014-10-29 03:09 - 00120832 _____ (Microsoft Corporation) C:\windows\system32\dskquota.dll
2015-12-14 21:09 - 2014-10-29 03:08 - 00209408 _____ (Microsoft Corporation) C:\windows\system32\powercfg.cpl
2015-12-14 21:09 - 2014-10-29 03:08 - 00176128 _____ (Microsoft Corporation) C:\windows\system32\sdiagprv.dll
2015-12-14 21:09 - 2014-10-29 03:08 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\wiadss.dll
2015-12-14 21:09 - 2014-10-29 03:08 - 00132608 _____ (Microsoft Corporation) C:\windows\system32\LockScreenContent.dll
2015-12-14 21:09 - 2014-10-29 03:07 - 00426496 _____ (Microsoft Corporation) C:\windows\system32\intl.cpl
2015-12-14 21:09 - 2014-10-29 03:07 - 00239104 _____ (Microsoft Corporation) C:\windows\system32\els.dll
2015-12-14 21:09 - 2014-10-29 03:07 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\rshx32.dll
2015-12-14 21:09 - 2014-10-29 03:06 - 00617984 _____ (Microsoft Corporation) C:\windows\system32\sud.dll
2015-12-14 21:09 - 2014-10-29 03:06 - 00517120 _____ (Microsoft Corporation) C:\windows\system32\cmdial32.dll
2015-12-14 21:09 - 2014-10-29 03:06 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\vssadmin.exe
2015-12-14 21:09 - 2014-10-29 03:06 - 00113664 _____ (Microsoft) C:\windows\system32\SMBHelperClass.dll
2015-12-14 21:09 - 2014-10-29 03:04 - 00546304 _____ (Microsoft Corporation) C:\windows\system32\ActionCenterCPL.dll
2015-12-14 21:09 - 2014-10-29 03:04 - 00460288 _____ (Microsoft Corporation) C:\windows\system32\wiadefui.dll
2015-12-14 21:09 - 2014-10-29 03:04 - 00322048 _____ (Microsoft Corporation) C:\windows\system32\fvecpl.dll
2015-12-14 21:09 - 2014-10-29 03:03 - 00849408 _____ (Microsoft Corporation) C:\windows\system32\fontext.dll
2015-12-14 21:09 - 2014-10-29 03:03 - 00433152 _____ (Microsoft Corporation) C:\windows\system32\dsquery.dll
2015-12-14 21:09 - 2014-10-29 03:03 - 00208896 _____ (Microsoft Corporation) C:\windows\system32\remotepg.dll
2015-12-14 21:09 - 2014-10-29 03:03 - 00145408 _____ (Microsoft Corporation) C:\windows\system32\xwtpw32.dll
2015-12-14 21:09 - 2014-10-29 03:03 - 00143360 _____ (Microsoft Corporation) C:\windows\system32\SoundRecorder.exe
2015-12-14 21:09 - 2014-10-29 03:02 - 00483328 _____ (Microsoft Corporation) C:\windows\system32\powercpl.dll
2015-12-14 21:09 - 2014-10-29 03:01 - 00207872 _____ (Microsoft Corporation) C:\windows\system32\p2pnetsh.dll
2015-12-14 21:09 - 2014-10-29 03:00 - 00274432 _____ (Microsoft Corporation) C:\windows\system32\fveui.dll
2015-12-14 21:09 - 2014-10-29 03:00 - 00209920 _____ (Microsoft Corporation) C:\windows\system32\nlhtml.dll
2015-12-14 21:09 - 2014-10-29 02:59 - 00286720 _____ (Microsoft Corporation) C:\windows\system32\wbadmin.exe
2015-12-14 21:09 - 2014-10-29 02:59 - 00255488 _____ (Microsoft Corporation) C:\windows\system32\QAGENT.DLL
2015-12-14 21:09 - 2014-10-29 02:59 - 00141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\imm32.dll
2015-12-14 21:09 - 2014-10-29 02:58 - 00846848 _____ (Microsoft Corporation) C:\windows\system32\Magnify.exe
2015-12-14 21:09 - 2014-10-29 02:58 - 00140800 _____ (Microsoft Corporation) C:\windows\SysWOW64\uudf.dll
2015-12-14 21:09 - 2014-10-29 02:58 - 00112640 _____ (Microsoft Corporation) C:\windows\SysWOW64\dbnetlib.dll
2015-12-14 21:09 - 2014-10-29 02:58 - 00093696 _____ (Microsoft Corporation) C:\windows\SysWOW64\radardt.dll
2015-12-14 21:09 - 2014-10-29 02:57 - 00324608 _____ (Microsoft Corporation) C:\windows\system32\BthHFSrv.dll
2015-12-14 21:09 - 2014-10-29 02:57 - 00248320 _____ (Microsoft Corporation) C:\windows\SysWOW64\mcbuilder.exe
2015-12-14 21:09 - 2014-10-29 02:57 - 00228352 _____ (Microsoft Corporation) C:\windows\SysWOW64\drt.dll
2015-12-14 21:09 - 2014-10-29 02:57 - 00200704 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceWMDRM.dll
2015-12-14 21:09 - 2014-10-29 02:57 - 00138240 _____ (Microsoft Corporation) C:\windows\system32\WpdMtpUS.dll
2015-12-14 21:09 - 2014-10-29 02:57 - 00125440 _____ (Microsoft Corporation) C:\windows\SysWOW64\rtm.dll
2015-12-14 21:09 - 2014-10-29 02:56 - 00161280 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceWiaCompat.dll
2015-12-14 21:09 - 2014-10-29 02:56 - 00119296 _____ (Microsoft Corporation) C:\windows\system32\wkspbrokerAx.dll
2015-12-14 21:09 - 2014-10-29 02:55 - 00179712 _____ (Microsoft Corporation) C:\windows\system32\itss.dll
2015-12-14 21:09 - 2014-10-29 02:55 - 00142848 _____ C:\windows\system32\OEMLicense.dll
2015-12-14 21:09 - 2014-10-29 02:55 - 00136192 _____ (Microsoft Corporation) C:\windows\SysWOW64\dinput.dll
2015-12-14 21:09 - 2014-10-29 02:54 - 00208896 _____ (Microsoft Corporation) C:\windows\system32\WLanHC.dll
2015-12-14 21:09 - 2014-10-29 02:54 - 00110080 _____ (Microsoft Corporation) C:\windows\system32\WPDShServiceObj.dll
2015-12-14 21:09 - 2014-10-29 02:54 - 00093184 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctfui.dll
2015-12-14 21:09 - 2014-10-29 02:53 - 00449024 _____ (Microsoft Corporation) C:\windows\system32\shwebsvc.dll
2015-12-14 21:09 - 2014-10-29 02:53 - 00282624 _____ (Microsoft Corporation) C:\windows\system32\FXSAPI.dll
2015-12-14 21:09 - 2014-10-29 02:53 - 00163328 _____ (Microsoft Corporation) C:\windows\SysWOW64\cic.dll
2015-12-14 21:09 - 2014-10-29 02:53 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\chartv.dll
2015-12-14 21:09 - 2014-10-29 02:52 - 00514048 _____ (Microsoft Corporation) C:\windows\system32\DevicePairing.dll
2015-12-14 21:09 - 2014-10-29 02:52 - 00181248 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSWB7.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00512000 _____ (Microsoft Corporation) C:\windows\system32\SpaceControl.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00203264 _____ (Microsoft Corporation) C:\windows\system32\IdListen.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00168448 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00158720 _____ (Microsoft Corporation) C:\windows\SysWOW64\rgb9rast.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00122368 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmstyle.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00105984 _____ (Microsoft Corporation) C:\windows\SysWOW64\oledlg.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00095744 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmscript.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00087552 _____ (Microsoft Corporation) C:\windows\SysWOW64\atl.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00077824 _____ (Microsoft Corporation) C:\windows\SysWOW64\asycfilt.dll
2015-12-14 21:09 - 2014-10-29 02:51 - 00075776 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmcompos.dll
2015-12-14 21:09 - 2014-10-29 02:50 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\tcpipcfg.dll
2015-12-14 21:09 - 2014-10-29 02:50 - 00193536 _____ (Microsoft Corporation) C:\windows\system32\WorkFoldersShell.dll
2015-12-14 21:09 - 2014-10-29 02:50 - 00119808 _____ (Microsoft Corporation) C:\windows\SysWOW64\sqlcecompact40.dll
2015-12-14 21:09 - 2014-10-29 02:50 - 00101376 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscript.ocx
2015-12-14 21:09 - 2014-10-29 02:50 - 00096256 _____ (Microsoft Corporation) C:\windows\SysWOW64\avifil32.dll
2015-12-14 21:09 - 2014-10-29 02:49 - 00615936 _____ (Microsoft Corporation) C:\windows\system32\wpd_ci.dll
2015-12-14 21:09 - 2014-10-29 02:49 - 00273920 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-12-14 21:09 - 2014-10-29 02:49 - 00133632 _____ (Microsoft Corporation) C:\windows\system32\immersivetpmvscmgrsvr.exe
2015-12-14 21:09 - 2014-10-29 02:49 - 00126464 _____ (Microsoft Corporation) C:\windows\system32\tpmvscmgrsvr.exe
2015-12-14 21:09 - 2014-10-29 02:49 - 00125952 _____ (Microsoft Corporation) C:\windows\system32\rmttpmvscmgrsvr.exe
2015-12-14 21:09 - 2014-10-29 02:49 - 00082432 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSTPager.ax
2015-12-14 21:09 - 2014-10-29 02:49 - 00080384 _____ (Microsoft Corporation) C:\windows\SysWOW64\cca.dll
2015-12-14 21:09 - 2014-10-29 02:49 - 00080384 _____ (Microsoft Corporation) C:\windows\SysWOW64\amstream.dll
2015-12-14 21:09 - 2014-10-29 02:48 - 00311296 _____ (Microsoft Corporation) C:\windows\SysWOW64\mmcbase.dll
2015-12-14 21:09 - 2014-10-29 02:48 - 00111104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dmusic.dll
2015-12-14 21:09 - 2014-10-29 02:47 - 00135680 _____ (Microsoft Corporation) C:\windows\SysWOW64\iassvcs.dll
2015-12-14 21:09 - 2014-10-29 02:47 - 00089600 _____ (Microsoft Corporation) C:\windows\SysWOW64\adsmsext.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00407552 _____ (Microsoft Corporation) C:\windows\system32\wlanui.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00243712 _____ (Microsoft Corporation) C:\windows\SysWOW64\mycomput.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00203264 _____ (Microsoft Corporation) C:\windows\SysWOW64\iasrad.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00188416 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssha.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00185856 _____ (Microsoft Corporation) C:\windows\SysWOW64\sdiageng.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00183296 _____ (Microsoft Corporation) C:\windows\SysWOW64\mprdim.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00171520 _____ (Microsoft Corporation) C:\windows\SysWOW64\iasnap.dll
2015-12-14 21:09 - 2014-10-29 02:46 - 00116224 _____ (Microsoft Corporation) C:\windows\SysWOW64\Kswdmcap.ax
2015-12-14 21:09 - 2014-10-29 02:46 - 00019968 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Management.Workplace.WorkplaceSettings.dll
2015-12-14 21:09 - 2014-10-29 02:45 - 00273408 _____ (Microsoft Corporation) C:\windows\SysWOW64\NAPSTAT.EXE
2015-12-14 21:09 - 2014-10-29 02:45 - 00085504 _____ (Microsoft Corporation) C:\windows\SysWOW64\Mpeg2Data.ax
2015-12-14 21:09 - 2014-10-29 02:45 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSDvbNP.ax
2015-12-14 21:09 - 2014-10-29 02:44 - 00400384 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasplap.dll
2015-12-14 21:09 - 2014-10-29 02:43 - 00242176 _____ (Microsoft Corporation) C:\windows\SysWOW64\dot3gpui.dll
2015-12-14 21:09 - 2014-10-29 02:43 - 00196096 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2015-12-14 21:09 - 2014-10-29 02:43 - 00191488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ssText3d.scr
2015-12-14 21:09 - 2014-10-29 02:43 - 00119808 _____ (Microsoft Corporation) C:\windows\system32\msoert2.dll
2015-12-14 21:09 - 2014-10-29 02:43 - 00111104 _____ (Microsoft Corporation) C:\windows\system32\AxInstSv.dll
2015-12-14 21:09 - 2014-10-29 02:42 - 00112640 _____ (Microsoft Corporation) C:\windows\SysWOW64\advpack.dll
2015-12-14 21:09 - 2014-10-29 02:41 - 00222208 _____ (Microsoft Corporation) C:\windows\SysWOW64\iassam.dll
2015-12-14 21:09 - 2014-10-29 02:41 - 00216064 _____ (Microsoft Corporation) C:\windows\SysWOW64\iscsicpl.dll
2015-12-14 21:09 - 2014-10-29 02:41 - 00147968 _____ (Microsoft Corporation) C:\windows\SysWOW64\easwrt.dll
2015-12-14 21:09 - 2014-10-29 02:40 - 00288768 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxdiag.exe
2015-12-14 21:09 - 2014-10-29 02:40 - 00184320 _____ (Microsoft Corporation) C:\windows\SysWOW64\dskquoui.dll
2015-12-14 21:09 - 2014-10-29 02:40 - 00138240 _____ (Microsoft Corporation) C:\windows\SysWOW64\softkbd.dll
2015-12-14 21:09 - 2014-10-29 02:40 - 00106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\Robocopy.exe
2015-12-14 21:09 - 2014-10-29 02:40 - 00092160 _____ (Microsoft Corporation) C:\windows\SysWOW64\olethk32.dll
2015-12-14 21:09 - 2014-10-29 02:39 - 00382976 _____ (Microsoft Corporation) C:\windows\system32\wsqmcons.exe
2015-12-14 21:09 - 2014-10-29 02:39 - 00197120 _____ (Microsoft Corporation) C:\windows\SysWOW64\bitsadmin.exe
2015-12-14 21:09 - 2014-10-29 02:39 - 00185856 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasppp.dll
2015-12-14 21:09 - 2014-10-29 02:38 - 00404480 _____ (Microsoft Corporation) C:\windows\SysWOW64\zipfldr.dll
2015-12-14 21:09 - 2014-10-29 02:38 - 00157184 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlmgp.dll
2015-12-14 21:09 - 2014-10-29 02:38 - 00148992 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2015-12-14 21:09 - 2014-10-29 02:38 - 00131584 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2015-12-14 21:09 - 2014-10-29 02:38 - 00130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\fde.dll
2015-12-14 21:09 - 2014-10-29 02:38 - 00119808 _____ (Microsoft Corporation) C:\windows\SysWOW64\imapi.dll
2015-12-14 21:09 - 2014-10-29 02:38 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSyncProviders.dll
2015-12-14 21:09 - 2014-10-29 02:35 - 00253440 _____ (Microsoft Corporation) C:\windows\SysWOW64\scansetting.dll
2015-12-14 21:09 - 2014-10-29 02:35 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\wavemsp.dll
2015-12-14 21:09 - 2014-10-29 02:34 - 00339968 _____ (Microsoft Corporation) C:\windows\SysWOW64\difxapi.dll
2015-12-14 21:09 - 2014-10-29 02:34 - 00295424 _____ (Microsoft Corporation) C:\windows\SysWOW64\eudcedit.exe
2015-12-14 21:09 - 2014-10-29 02:34 - 00134144 _____ (Microsoft Corporation) C:\windows\SysWOW64\regedit.exe
2015-12-14 21:09 - 2014-10-29 02:32 - 00566784 _____ (Microsoft Corporation) C:\windows\SysWOW64\psr.exe
2015-12-14 21:09 - 2014-10-29 02:32 - 00146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\dsprop.dll
2015-12-14 21:09 - 2014-10-29 02:32 - 00137728 _____ (Microsoft Corporation) C:\windows\SysWOW64\PortableDeviceSyncProvider.dll
2015-12-14 21:09 - 2014-10-29 02:32 - 00129536 _____ (Microsoft Corporation) C:\windows\SysWOW64\twext.dll
2015-12-14 21:09 - 2014-10-29 02:32 - 00095232 _____ (Microsoft Corporation) C:\windows\SysWOW64\dskquota.dll
2015-12-14 21:09 - 2014-10-29 02:32 - 00093696 _____ (Microsoft Corporation) C:\windows\SysWOW64\psisrndr.ax
2015-12-14 21:09 - 2014-10-29 02:31 - 00392704 _____ (Microsoft Corporation) C:\windows\SysWOW64\intl.cpl
2015-12-14 21:09 - 2014-10-29 02:31 - 00226304 _____ (Microsoft Corporation) C:\windows\SysWOW64\input.dll
2015-12-14 21:09 - 2014-10-29 02:31 - 00156672 _____ (Microsoft Corporation) C:\windows\SysWOW64\sdiagprv.dll
2015-12-14 21:09 - 2014-10-29 02:31 - 00117248 _____ (Microsoft Corporation) C:\windows\SysWOW64\wiadss.dll
2015-12-14 21:09 - 2014-10-29 02:31 - 00113152 _____ (Microsoft Corporation) C:\windows\SysWOW64\rshx32.dll
2015-12-14 21:09 - 2014-10-29 02:30 - 02118144 _____ (Microsoft Corporation) C:\windows\SysWOW64\SensorsCpl.dll
2015-12-14 21:09 - 2014-10-29 02:30 - 00597504 _____ (Microsoft Corporation) C:\windows\SysWOW64\sud.dll
2015-12-14 21:09 - 2014-10-29 02:30 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\wmpdxm.dll
2015-12-14 21:09 - 2014-10-29 02:30 - 00184832 _____ (Microsoft Corporation) C:\windows\SysWOW64\els.dll
2015-12-14 21:09 - 2014-10-29 02:29 - 00221696 _____ (Microsoft Corporation) C:\windows\system32\rastapi.dll
2015-12-14 21:09 - 2014-10-29 02:28 - 00812032 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontext.dll
2015-12-14 21:09 - 2014-10-29 02:28 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\wiadefui.dll
2015-12-14 21:09 - 2014-10-29 02:28 - 00402944 _____ (Microsoft Corporation) C:\windows\SysWOW64\dsquery.dll
2015-12-14 21:09 - 2014-10-29 02:28 - 00241664 _____ (Microsoft Corporation) C:\windows\SysWOW64\audiodev.dll
2015-12-14 21:09 - 2014-10-29 02:28 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\xwtpw32.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00458752 _____ (Microsoft Corporation) C:\windows\SysWOW64\powercpl.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00362496 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptuiwizard.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\authz.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00241152 _____ (Microsoft Corporation) C:\windows\system32\logoncli.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00133120 _____ (Microsoft Corporation) C:\windows\system32\BrokerLib.dll
2015-12-14 21:09 - 2014-10-29 02:27 - 00131072 _____ (Microsoft Corporation) C:\windows\SysWOW64\VBICodec.ax
2015-12-14 21:09 - 2014-10-29 02:27 - 00097280 _____ (Microsoft Corporation) C:\windows\system32\CallButtons.dll
2015-12-14 21:09 - 2014-10-29 02:26 - 00304128 _____ (Microsoft Corporation) C:\windows\system32\esentutl.exe
2015-12-14 21:09 - 2014-10-29 02:26 - 00224256 _____ (Microsoft Corporation) C:\windows\system32\ifsutil.dll
2015-12-14 21:09 - 2014-10-29 02:26 - 00184832 _____ (Microsoft Corporation) C:\windows\system32\NetSetupApi.dll
2015-12-14 21:09 - 2014-10-29 02:26 - 00182784 _____ (Microsoft Corporation) C:\windows\SysWOW64\p2pnetsh.dll
2015-12-14 21:09 - 2014-10-29 02:26 - 00175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\QAGENT.DLL
2015-12-14 21:09 - 2014-10-29 02:26 - 00159744 _____ (Microsoft Corporation) C:\windows\system32\mimofcodec.dll
2015-12-14 21:09 - 2014-10-29 02:26 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\ufat.dll
2015-12-14 21:09 - 2014-10-29 02:25 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrdc.dll
2015-12-14 21:09 - 2014-10-29 02:25 - 00166912 _____ (Microsoft Corporation) C:\windows\system32\AppxAllUserStore.dll
2015-12-14 21:09 - 2014-10-29 02:25 - 00155648 _____ (Microsoft Corporation) C:\windows\SysWOW64\QSHVHOST.DLL
2015-12-14 21:09 - 2014-10-29 02:25 - 00141312 _____ (Microsoft Corporation) C:\windows\system32\psmsrv.dll
2015-12-14 21:09 - 2014-10-29 02:25 - 00136704 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlhtml.dll
2015-12-14 21:09 - 2014-10-29 02:25 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\negoexts.dll
2015-12-14 21:09 - 2014-10-29 02:24 - 00779776 _____ (Microsoft Corporation) C:\windows\SysWOW64\Magnify.exe
2015-12-14 21:09 - 2014-10-29 02:24 - 00178176 _____ (Microsoft Corporation) C:\windows\SysWOW64\PortableDeviceWMDRM.dll
2015-12-14 21:09 - 2014-10-29 02:24 - 00136192 _____ (Microsoft Corporation) C:\windows\SysWOW64\PortableDeviceWiaCompat.dll
2015-12-14 21:09 - 2014-10-29 02:23 - 00151040 _____ (Microsoft Corporation) C:\windows\SysWOW64\itss.dll
2015-12-14 21:09 - 2014-10-29 02:23 - 00107008 _____ C:\windows\SysWOW64\OEMLicense.dll
2015-12-14 21:09 - 2014-10-29 02:22 - 00119808 _____ (Microsoft Corporation) C:\windows\SysWOW64\rekeywiz.exe
2015-12-14 21:09 - 2014-10-29 02:22 - 00086528 _____ (Microsoft Corporation) C:\windows\SysWOW64\WPDShServiceObj.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\Winlangdb.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00186880 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.HostName.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00174080 _____ (Microsoft Corporation) C:\windows\system32\dps.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\Windows.Storage.Compression.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00130048 _____ (Microsoft Corporation) C:\windows\system32\WiFiDisplay.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00124416 _____ (Microsoft Corporation) C:\windows\system32\trkwks.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00120320 _____ (Microsoft Corporation) C:\windows\system32\WinRtTracing.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00119808 _____ (Microsoft Corporation) C:\windows\system32\AppxSip.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00082944 _____ (Microsoft Corporation) C:\windows\system32\bcdprov.dll
2015-12-14 21:09 - 2014-10-29 02:21 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00425984 _____ (Microsoft Corporation) C:\windows\SysWOW64\shwebsvc.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00264192 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxdiagn.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00166912 _____ (Microsoft Corporation) C:\windows\system32\wmidcom.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00162304 _____ (Microsoft Corporation) C:\windows\system32\globinputhost.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00139776 _____ (Microsoft Corporation) C:\windows\system32\biwinrt.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00125440 _____ (Microsoft Corporation) C:\windows\system32\httpprxm.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00114176 _____ (Microsoft Corporation) C:\windows\system32\comrepl.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\vaultcli.dll
2015-12-14 21:09 - 2014-10-29 02:20 - 00092672 _____ (Microsoft Corporation) C:\windows\system32\RMapi.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00465408 _____ (Microsoft Corporation) C:\windows\SysWOW64\DevicePairing.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\wmitomi.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00181760 _____ (Microsoft Corporation) C:\windows\SysWOW64\tcpipcfg.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00166400 _____ (Microsoft Corporation) C:\windows\system32\mtxoci.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00137728 _____ (Microsoft Corporation) C:\windows\system32\msched.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00134656 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00129024 _____ (Microsoft Corporation) C:\windows\system32\msdtclog.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00125440 _____ (Microsoft Corporation) C:\windows\system32\txflog.dll
2015-12-14 21:09 - 2014-10-29 02:19 - 00092672 _____ (Microsoft) C:\windows\system32\VaultRoaming.dll
2015-12-14 21:09 - 2014-10-29 02:18 - 00157696 _____ (Microsoft Corporation) C:\windows\system32\fundisc.dll
2015-12-14 21:09 - 2014-10-29 02:17 - 01296896 _____ (Microsoft Corporation) C:\windows\SysWOW64\connect.dll
2015-12-14 21:09 - 2014-10-29 02:17 - 00303104 _____ (Microsoft Corporation) C:\windows\system32\qwave.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00675328 _____ (Microsoft Corporation) C:\windows\SysWOW64\Vault.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00363520 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanui.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00291840 _____ (Microsoft Corporation) C:\windows\SysWOW64\RADCUI.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00238592 _____ (Microsoft Corporation) C:\windows\system32\mlang.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00173568 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcorehc.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00154112 _____ (Microsoft Corporation) C:\windows\system32\ncbservice.dll
2015-12-14 21:09 - 2014-10-29 02:16 - 00143360 _____ (Microsoft Corporation) C:\windows\system32\mtstocom.exe
2015-12-14 21:09 - 2014-10-29 02:16 - 00113152 _____ (Microsoft Corporation) C:\windows\SysWOW64\msnetobj.dll
2015-12-14 21:09 - 2014-10-29 02:14 - 00149504 _____ (Microsoft Corporation) C:\windows\system32\BootMenuUX.dll
2015-12-14 21:09 - 2014-10-29 02:14 - 00099328 _____ (Microsoft Corporation) C:\windows\SysWOW64\msoert2.dll
2015-12-14 21:09 - 2014-10-29 02:13 - 00219648 _____ (Microsoft Corporation) C:\windows\SysWOW64\apds.dll
2015-12-14 21:09 - 2014-10-29 02:12 - 00270336 _____ (Microsoft Corporation) C:\windows\system32\bisrv.dll
2015-12-14 21:09 - 2014-10-29 02:12 - 00221696 _____ (Microsoft Corporation) C:\windows\system32\TtlsAuth.dll
2015-12-14 21:09 - 2014-10-29 02:12 - 00115200 _____ (Microsoft Corporation) C:\windows\system32\windows.immersiveshell.serviceprovider.dll
2015-12-14 21:09 - 2014-10-29 02:11 - 00171008 _____ (Microsoft Corporation) C:\windows\system32\wscinterop.dll
2015-12-14 21:09 - 2014-10-29 02:10 - 00396288 _____ (Microsoft Corporation) C:\windows\system32\mtxclu.dll
2015-12-14 21:09 - 2014-10-29 02:10 - 00203264 _____ (Microsoft Corporation) C:\windows\system32\WSSync.dll
2015-12-14 21:09 - 2014-10-29 02:10 - 00095232 _____ (Microsoft Corporation) C:\windows\system32\dafBth.dll
2015-12-14 21:09 - 2014-10-29 02:09 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\dafupnp.dll
2015-12-14 21:09 - 2014-10-29 02:08 - 00397312 _____ (Microsoft Corporation) C:\windows\system32\IPSECSVC.DLL
2015-12-14 21:09 - 2014-10-29 02:08 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\fdWSD.dll
2015-12-14 21:09 - 2014-10-29 02:06 - 00204288 _____ (Microsoft Corporation) C:\windows\system32\netiohlp.dll
2015-12-14 21:09 - 2014-10-29 02:06 - 00174080 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmpdxm.dll
2015-12-14 21:09 - 2014-10-29 02:06 - 00104960 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2015-12-14 21:09 - 2014-10-29 02:05 - 00180224 _____ (Microsoft Corporation) C:\windows\SysWOW64\authz.dll
2015-12-14 21:09 - 2014-10-29 02:05 - 00174080 _____ (Microsoft Corporation) C:\windows\SysWOW64\logoncli.dll
2015-12-14 21:09 - 2014-10-29 02:05 - 00101888 _____ (Microsoft Corporation) C:\windows\SysWOW64\loadperf.dll
2015-12-14 21:09 - 2014-10-29 02:04 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\rastapi.dll
2015-12-14 21:09 - 2014-10-29 02:04 - 00139776 _____ (Microsoft Corporation) C:\windows\SysWOW64\net1.exe
2015-12-14 21:09 - 2014-10-29 02:04 - 00106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\ufat.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00290304 _____ (Microsoft Corporation) C:\windows\SysWOW64\polstore.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00227840 _____ (Microsoft Corporation) C:\windows\SysWOW64\provthrd.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00211456 _____ (Microsoft Corporation) C:\windows\system32\TetheringStation.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00178688 _____ (Microsoft Corporation) C:\windows\system32\SimCfg.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00145920 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasman.dll
2015-12-14 21:09 - 2014-10-29 02:03 - 00113152 _____ (Microsoft Corporation) C:\windows\system32\dwm.exe
2015-12-14 21:09 - 2014-10-29 02:03 - 00108544 _____ (Microsoft Corporation) C:\windows\SysWOW64\negoexts.dll
2015-12-14 21:09 - 2014-10-29 02:02 - 00143360 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxAllUserStore.dll
2015-12-14 21:09 - 2014-10-29 02:02 - 00123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\mibincodec.dll
2015-12-14 21:09 - 2014-10-29 02:01 - 00239104 _____ (Microsoft Corporation) C:\windows\system32\windowslivelogin.dll
2015-12-14 21:09 - 2014-10-29 02:00 - 01207296 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2015-12-14 21:09 - 2014-10-29 02:00 - 00126464 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Storage.Compression.dll
2015-12-14 21:09 - 2014-10-29 02:00 - 00108544 _____ (Microsoft Corporation) C:\windows\SysWOW64\biwinrt.dll
2015-12-14 21:09 - 2014-10-29 02:00 - 00098304 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxSip.dll
2015-12-14 21:09 - 2014-10-29 02:00 - 00008704 _____ (Microsoft Corporation) C:\windows\SysWOW64\dllhst3g.exe
2015-12-14 21:09 - 2014-10-29 01:59 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmitomi.dll
2015-12-14 21:09 - 2014-10-29 01:59 - 00132608 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmidcom.dll
2015-12-14 21:09 - 2014-10-29 01:59 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\mtxoci.dll
2015-12-14 21:09 - 2014-10-29 01:59 - 00102400 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2015-12-14 21:09 - 2014-10-29 01:59 - 00098304 _____ (Microsoft Corporation) C:\windows\SysWOW64\comrepl.dll
2015-12-14 21:09 - 2014-10-29 01:58 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Enumeration.dll
2015-12-14 21:09 - 2014-10-29 01:58 - 00161792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1.dll
2015-12-14 21:09 - 2014-10-29 01:58 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\fundisc.dll
2015-12-14 21:09 - 2014-10-29 01:58 - 00115200 _____ (Microsoft Corporation) C:\windows\SysWOW64\IDStore.dll
2015-12-14 21:09 - 2014-10-29 01:58 - 00106496 _____ (Microsoft Corporation) C:\windows\system32\NetworkStatus.dll
2015-12-14 21:09 - 2014-10-29 01:58 - 00102400 _____ (Microsoft Corporation) C:\windows\SysWOW64\txflog.dll
2015-12-14 21:09 - 2014-10-29 01:58 - 00095232 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.WiFiDirect.dll
2015-12-14 21:09 - 2014-10-29 01:57 - 00273920 _____ (Microsoft Corporation) C:\windows\system32\ndfapi.dll
2015-12-14 21:09 - 2014-10-29 01:57 - 00192512 _____ (Microsoft Corporation) C:\windows\SysWOW64\mlang.dll
2015-12-14 21:09 - 2014-10-29 01:57 - 00165376 _____ (Microsoft Corporation) C:\windows\system32\SystemSettings.DeviceEncryptionHandlers.dll
2015-12-14 21:09 - 2014-10-29 01:57 - 00124416 _____ (Microsoft Corporation) C:\windows\SysWOW64\mtstocom.exe
2015-12-14 21:09 - 2014-10-29 01:57 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\ConfigureExpandedStorage.dll
2015-12-14 21:09 - 2014-10-29 01:56 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\mstask.dll
2015-12-14 21:09 - 2014-10-29 01:55 - 00206336 _____ (Microsoft Corporation) C:\windows\system32\WSClient.dll
2015-12-14 21:09 - 2014-10-29 01:55 - 00173056 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2015-12-14 21:09 - 2014-10-29 01:55 - 00165376 _____ (Microsoft Corporation) C:\windows\system32\fdeploy.dll
2015-12-14 21:09 - 2014-10-29 01:55 - 00162816 _____ (Microsoft Corporation) C:\windows\SysWOW64\TtlsAuth.dll
2015-12-14 21:09 - 2014-10-29 01:55 - 00130048 _____ (Microsoft Corporation) C:\windows\system32\profsvcext.dll
2015-12-14 21:09 - 2014-10-29 01:54 - 00347648 _____ (Microsoft Corporation) C:\windows\SysWOW64\mtxclu.dll
2015-12-14 21:09 - 2014-10-29 01:54 - 00325120 _____ (Microsoft Corporation) C:\windows\system32\BioCredProv.dll
2015-12-14 21:09 - 2014-10-29 01:54 - 00111104 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscinterop.dll
2015-12-14 21:09 - 2014-10-29 01:53 - 00118272 _____ (Microsoft Corporation) C:\windows\system32\AltTab.dll
2015-12-14 21:09 - 2014-10-29 01:52 - 00145920 _____ (Microsoft Corporation) C:\windows\SysWOW64\fdWSD.dll
2015-12-14 21:09 - 2014-10-29 01:51 - 03317248 _____ (Microsoft Corporation) C:\windows\system32\bootux.dll
2015-12-14 21:09 - 2014-10-29 01:51 - 00266752 _____ (Microsoft Corporation) C:\windows\system32\netman.dll
2015-12-14 21:09 - 2014-10-29 01:51 - 00236032 _____ (Microsoft Corporation) C:\windows\SysWOW64\TtlsCfg.dll
2015-12-14 21:09 - 2014-10-29 01:51 - 00189952 _____ (Microsoft Corporation) C:\windows\system32\wlancfg.dll
2015-12-14 21:09 - 2014-10-29 01:49 - 00146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\SimCfg.dll
2015-12-14 21:09 - 2014-10-29 01:47 - 00177664 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2P.dll
2015-12-14 21:09 - 2014-10-29 01:47 - 00155648 _____ (Microsoft Corporation) C:\windows\SysWOW64\PlayToManager.dll
2015-12-14 21:09 - 2014-10-29 01:46 - 00605184 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2015-12-14 21:09 - 2014-10-29 01:46 - 00306176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntprint.dll
2015-12-14 21:09 - 2014-10-29 01:45 - 01197568 _____ (Microsoft Corporation) C:\windows\system32\netcenter.dll
2015-12-14 21:09 - 2014-10-29 01:45 - 00223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ndfapi.dll
2015-12-14 21:09 - 2014-10-29 01:45 - 00219648 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstask.dll
2015-12-14 21:09 - 2014-10-29 01:45 - 00162304 _____ (Microsoft Corporation) C:\windows\SysWOW64\rascfg.dll
2015-12-14 21:09 - 2014-10-29 01:44 - 00141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\fdeploy.dll
2015-12-14 21:09 - 2014-10-29 01:43 - 00264192 _____ (Microsoft Corporation) C:\windows\SysWOW64\BioCredProv.dll
2015-12-14 21:09 - 2014-10-29 01:43 - 00165376 _____ (Microsoft Corporation) C:\windows\SysWOW64\PortableDeviceTypes.dll
2015-12-14 21:09 - 2014-10-29 01:42 - 00196608 _____ (Microsoft Corporation) C:\windows\SysWOW64\bthprops.cpl
2015-12-14 21:09 - 2014-10-29 01:42 - 00160256 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlancfg.dll
2015-12-14 21:09 - 2014-10-29 01:42 - 00140288 _____ (Microsoft Corporation) C:\windows\system32\efswrt.dll
2015-12-14 21:09 - 2014-10-29 01:41 - 00472064 _____ (Microsoft Corporation) C:\windows\SysWOW64\timedate.cpl
2015-12-14 21:09 - 2014-10-29 01:39 - 00140800 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingMonitor.dll
2015-12-14 21:09 - 2014-10-29 01:37 - 01157632 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcenter.dll
2015-12-14 21:09 - 2014-10-29 01:37 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\CloudStorageWizard.exe
2015-12-14 21:09 - 2014-10-29 01:35 - 00234496 _____ (Microsoft Corporation) C:\windows\system32\SndVolSSO.dll
2015-12-14 21:09 - 2014-10-29 01:35 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\wpnprv.dll
2015-12-14 21:09 - 2014-10-29 01:35 - 00103936 _____ (Microsoft Corporation) C:\windows\SysWOW64\efswrt.dll
2015-12-14 21:09 - 2014-10-29 01:31 - 00116224 _____ (Microsoft Corporation) C:\windows\SysWOW64\CloudStorageWizard.exe
2015-12-14 21:09 - 2014-10-29 01:30 - 00221696 _____ (Microsoft Corporation) C:\windows\SysWOW64\SndVolSSO.dll
2015-12-14 21:09 - 2014-07-24 05:11 - 00513544 _____ C:\windows\SysWOW64\locale.nls
2015-12-14 21:09 - 2014-07-24 05:11 - 00513544 _____ C:\windows\system32\locale.nls
2015-12-14 21:09 - 2014-06-27 07:22 - 00246272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2015-12-14 21:08 - 2014-10-29 05:11 - 00038792 _____ (Microsoft Corporation) C:\windows\system32\svchost.exe
2015-12-14 21:08 - 2014-10-29 05:10 - 00084184 _____ (Microsoft Corporation) C:\windows\system32\taskhostex.exe
2015-12-14 21:08 - 2014-10-29 05:09 - 00277368 _____ (Microsoft Corporation) C:\windows\system32\powrprof.dll
2015-12-14 21:08 - 2014-10-29 05:09 - 00191032 _____ (Microsoft Corporation) C:\windows\system32\systemreset.exe
2015-12-14 21:08 - 2014-10-29 05:09 - 00044912 _____ (Microsoft Corporation) C:\windows\system32\wldp.dll
2015-12-14 21:08 - 2014-10-29 05:04 - 00197832 _____ (Microsoft Corporation) C:\windows\system32\dssenh.dll
2015-12-14 21:08 - 2014-10-29 05:04 - 00149240 _____ (Microsoft Corporation) C:\windows\system32\srvcli.dll
2015-12-14 21:08 - 2014-10-29 05:04 - 00131648 _____ (Microsoft Corporation) C:\windows\system32\easinvoker.exe
2015-12-14 21:08 - 2014-10-29 05:04 - 00124992 _____ (Microsoft Corporation) C:\windows\system32\cryptxml.dll
2015-12-14 21:08 - 2014-10-29 05:04 - 00122912 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2015-12-14 21:08 - 2014-10-29 05:04 - 00097608 _____ (Microsoft Corporation) C:\windows\system32\cryptdll.dll
2015-12-14 21:08 - 2014-10-29 05:04 - 00093000 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2015-12-14 21:08 - 2014-10-29 05:04 - 00086744 _____ (Microsoft Corporation) C:\windows\system32\wkscli.dll
2015-12-14 21:08 - 2014-10-29 05:04 - 00080056 _____ (Microsoft Corporation) C:\windows\system32\netapi32.dll
2015-12-14 21:08 - 2014-10-29 05:04 - 00044368 _____ (Microsoft Corporation) C:\windows\system32\netutils.dll
2015-12-14 21:08 - 2014-10-29 05:03 - 00196928 _____ (Microsoft Corporation) C:\windows\system32\basecsp.dll
2015-12-14 21:08 - 2014-10-29 05:00 - 00030472 _____ (Microsoft Corporation) C:\windows\system32\PrintDialogHost.exe
2015-12-14 21:08 - 2014-10-29 04:57 - 00116696 _____ (Microsoft Corporation) C:\windows\system32\MP3DMOD.DLL
2015-12-14 21:08 - 2014-10-29 04:57 - 00098664 _____ (Microsoft Corporation) C:\windows\system32\OpenWith.exe
2015-12-14 21:08 - 2014-10-29 04:57 - 00045464 _____ (Microsoft Corporation) C:\windows\system32\CloudNotifications.exe
2015-12-14 21:08 - 2014-10-29 04:57 - 00038736 _____ (Microsoft Corporation) C:\windows\system32\CredentialUIBroker.exe
2015-12-14 21:08 - 2014-10-29 04:56 - 00089368 _____ (Microsoft Corporation) C:\windows\system32\Drivers\vmbkmcl.sys
2015-12-14 21:08 - 2014-10-29 04:55 - 00076432 _____ (Microsoft Corporation) C:\windows\system32\sessionmsg.exe
2015-12-14 21:08 - 2014-10-29 04:55 - 00067656 _____ (Microsoft Corporation) C:\windows\system32\RpcRtRemote.dll
2015-12-14 21:08 - 2014-10-29 04:55 - 00064040 _____ (Microsoft Corporation) C:\windows\system32\wtsapi32.dll
2015-12-14 21:08 - 2014-10-29 04:53 - 00080528 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2015-12-14 21:08 - 2014-10-29 04:52 - 00106384 _____ (Microsoft Corporation) C:\windows\system32\msacm32.dll
2015-12-14 21:08 - 2014-10-29 04:52 - 00101736 _____ (Microsoft Corporation) C:\windows\system32\mfAACEnc.dll
2015-12-14 21:08 - 2014-10-29 04:52 - 00100672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-12-14 21:08 - 2014-10-29 04:52 - 00029408 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2015-12-14 21:08 - 2014-10-29 04:52 - 00022208 _____ (Microsoft Corporation) C:\windows\system32\ksuser.dll
2015-12-14 21:08 - 2014-10-29 04:51 - 00070288 _____ (Microsoft Corporation) C:\windows\system32\profapi.dll
2015-12-14 21:08 - 2014-10-29 04:18 - 00255136 _____ (Microsoft Corporation) C:\windows\SysWOW64\powrprof.dll
2015-12-14 21:08 - 2014-10-29 04:17 - 00033088 _____ (Microsoft Corporation) C:\windows\SysWOW64\svchost.exe
2015-12-14 21:08 - 2014-10-29 04:15 - 00168256 _____ (Microsoft Corporation) C:\windows\SysWOW64\basecsp.dll
2015-12-14 21:08 - 2014-10-29 04:15 - 00156992 _____ (Microsoft Corporation) C:\windows\SysWOW64\dssenh.dll
2015-12-14 21:08 - 2014-10-29 04:15 - 00110512 _____ (Microsoft Corporation) C:\windows\SysWOW64\srvcli.dll
2015-12-14 21:08 - 2014-10-29 04:15 - 00099104 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptxml.dll
2015-12-14 21:08 - 2014-10-29 04:15 - 00096032 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsp.dll
2015-12-14 21:08 - 2014-10-29 04:15 - 00074352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptdll.dll
2015-12-14 21:08 - 2014-10-29 04:15 - 00073840 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2015-12-14 21:08 - 2014-10-29 04:15 - 00068168 _____ (Microsoft Corporation) C:\windows\SysWOW64\netapi32.dll
2015-12-14 21:08 - 2014-10-29 04:15 - 00059904 _____ (Microsoft Corporation) C:\windows\SysWOW64\wkscli.dll
2015-12-14 21:08 - 2014-10-29 04:15 - 00051608 _____ (Microsoft Corporation) C:\windows\SysWOW64\msasn1.dll
2015-12-14 21:08 - 2014-10-29 04:15 - 00035592 _____ (Microsoft Corporation) C:\windows\SysWOW64\netutils.dll
2015-12-14 21:08 - 2014-10-29 04:15 - 00021696 _____ (Microsoft Corporation) C:\windows\SysWOW64\dsrole.dll
2015-12-14 21:08 - 2014-10-29 04:11 - 00150776 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmpps.dll
2015-12-14 21:08 - 2014-10-29 04:11 - 00076912 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfvdsp.dll
2015-12-14 21:08 - 2014-10-29 04:11 - 00028352 _____ (Microsoft Corporation) C:\windows\SysWOW64\CameraSettingsUIHost.exe
2015-12-14 21:08 - 2014-10-29 04:10 - 00091936 _____ (Microsoft Corporation) C:\windows\SysWOW64\OpenWith.exe
2015-12-14 21:08 - 2014-10-29 04:10 - 00052664 _____ (Microsoft Corporation) C:\windows\SysWOW64\wtsapi32.dll
2015-12-14 21:08 - 2014-10-29 04:10 - 00052664 _____ (Microsoft Corporation) C:\windows\SysWOW64\RpcRtRemote.dll
2015-12-14 21:08 - 2014-10-29 04:10 - 00040816 _____ (Microsoft Corporation) C:\windows\SysWOW64\CloudNotifications.exe
2015-12-14 21:08 - 2014-10-29 04:10 - 00038184 _____ (Microsoft Corporation) C:\windows\SysWOW64\utildll.dll
2015-12-14 21:08 - 2014-10-29 04:10 - 00034016 _____ (Microsoft Corporation) C:\windows\SysWOW64\CredentialUIBroker.exe
2015-12-14 21:08 - 2014-10-29 04:10 - 00030944 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserAccountBroker.exe
2015-12-14 21:08 - 2014-10-29 04:10 - 00026304 _____ (Microsoft Corporation) C:\windows\SysWOW64\PickerHost.exe
2015-12-14 21:08 - 2014-10-29 04:07 - 00110512 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll
2015-12-14 21:08 - 2014-10-29 04:07 - 00039720 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdmo.dll
2015-12-14 21:08 - 2014-10-29 04:07 - 00018040 _____ (Microsoft Corporation) C:\windows\SysWOW64\CompPkgSup.dll
2015-12-14 21:08 - 2014-10-29 04:06 - 00090368 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfAACEnc.dll
2015-12-14 21:08 - 2014-10-29 04:06 - 00080016 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcd.dll
2015-12-14 21:08 - 2014-10-29 04:05 - 00052152 _____ (Microsoft Corporation) C:\windows\SysWOW64\profapi.dll
2015-12-14 21:08 - 2014-10-29 03:49 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\msvcirt.dll
2015-12-14 21:08 - 2014-10-29 03:47 - 00089088 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2015-12-14 21:08 - 2014-10-29 03:46 - 00037376 _____ (Microsoft Corporation) C:\windows\system32\sxssrv.dll
2015-12-14 21:08 - 2014-10-29 03:45 - 00237056 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2015-12-14 21:08 - 2014-10-29 03:45 - 00174592 _____ (Microsoft Corporation) C:\windows\system32\syncui.dll
2015-12-14 21:08 - 2014-10-29 03:45 - 00151040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pacer.sys
2015-12-14 21:08 - 2014-10-29 03:45 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bridge.sys
2015-12-14 21:08 - 2014-10-29 03:45 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\agilevpn.sys
2015-12-14 21:08 - 2014-10-29 03:45 - 00093696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rassstp.sys
2015-12-14 21:08 - 2014-10-29 03:45 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\packager.dll
2015-12-14 21:08 - 2014-10-29 03:45 - 00080896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\wanarp.sys
2015-12-14 21:08 - 2014-10-29 03:45 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\sfc_os.dll
2015-12-14 21:08 - 2014-10-29 03:45 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\Windows.Shell.Search.UriHandler.dll
2015-12-14 21:08 - 2014-10-29 03:45 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\msisip.dll
2015-12-14 21:08 - 2014-10-29 03:44 - 00165888 _____ (Microsoft Corporation) C:\windows\system32\glu32.dll
2015-12-14 21:08 - 2014-10-29 03:44 - 00158720 _____ (Microsoft Corporation) C:\windows\system32\msdadiag.dll
2015-12-14 21:08 - 2014-10-29 03:44 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\spfileq.dll
2015-12-14 21:08 - 2014-10-29 03:44 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\spoolss.dll
2015-12-14 21:08 - 2014-10-29 03:44 - 00046080 _____ (Microsoft Corporation) C:\windows\system32\bderepair.dll
2015-12-14 21:08 - 2014-10-29 03:44 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\cnvfat.dll
2015-12-14 21:08 - 2014-10-29 03:43 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\radardt.dll
2015-12-14 21:08 - 2014-10-29 03:43 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\fmapi.dll
2015-12-14 21:08 - 2014-10-29 03:43 - 00061440 _____ (Microsoft Corporation) C:\windows\system32\offreg.dll
2015-12-14 21:08 - 2014-10-29 03:42 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\rtm.dll
2015-12-14 21:08 - 2014-10-29 03:42 - 00130560 _____ (Microsoft Corporation) C:\windows\system32\iscsiwmiv2.dll
2015-12-14 21:08 - 2014-10-29 03:42 - 00084480 _____ (Microsoft Corporation) C:\windows\system32\makecab.exe
2015-12-14 21:08 - 2014-10-29 03:42 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\NapiNSP.dll
2015-12-14 21:08 - 2014-10-29 03:41 - 00088576 _____ (Microsoft Corporation) C:\windows\system32\dispdiag.exe
2015-12-14 21:08 - 2014-10-29 03:41 - 00064512 _____ (Microsoft Corporation) C:\windows\system32\ssdpapi.dll
2015-12-14 21:08 - 2014-10-29 03:40 - 00274944 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Streaming.ps.dll
2015-12-14 21:08 - 2014-10-29 03:40 - 00072192 _____ (Microsoft Corporation) C:\windows\system32\l2gpstore.dll
2015-12-14 21:08 - 2014-10-29 03:39 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\drvinst.exe
2015-12-14 21:08 - 2014-10-29 03:39 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\UXInit.dll
2015-12-14 21:08 - 2014-10-29 03:37 - 00269824 _____ (Microsoft Corporation) C:\windows\system32\scksp.dll
2015-12-14 21:08 - 2014-10-29 03:37 - 00046080 _____ (Microsoft Corporation) C:\windows\system32\printfilterpipelineprxy.dll
2015-12-14 21:08 - 2014-10-29 03:36 - 00321536 _____ (Microsoft Corporation) C:\windows\system32\unimdm.tsp
2015-12-14 21:08 - 2014-10-29 03:36 - 00128000 _____ (Microsoft Corporation) C:\windows\system32\mmcshext.dll
2015-12-14 21:08 - 2014-10-29 03:36 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\mapistub.dll
2015-12-14 21:08 - 2014-10-29 03:36 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\mapi32.dll
2015-12-14 21:08 - 2014-10-29 03:36 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\PlaySndSrv.dll
2015-12-14 21:08 - 2014-10-29 03:35 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\CertPolEng.dll
2015-12-14 21:08 - 2014-10-29 03:35 - 00059392 _____ (Microsoft Corporation) C:\windows\system32\dot3dlg.dll
2015-12-14 21:08 - 2014-10-29 03:35 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\PlayToStatusProvider.dll
2015-12-14 21:08 - 2014-10-29 03:34 - 00162816 _____ (Microsoft Corporation) C:\windows\system32\ocsetapi.dll
2015-12-14 21:08 - 2014-10-29 03:34 - 00110592 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp_isv.dll
2015-12-14 21:08 - 2014-10-29 03:34 - 00110592 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp.dll
2015-12-14 21:08 - 2014-10-29 03:34 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\rasauto.dll
2015-12-14 21:08 - 2014-10-29 03:34 - 00093184 _____ (Microsoft Corporation) C:\windows\system32\dot3api.dll
2015-12-14 21:08 - 2014-10-29 03:34 - 00084480 _____ (Microsoft Corporation) C:\windows\system32\sxproxy.dll
2015-12-14 21:08 - 2014-10-29 03:34 - 00079360 _____ (Microsoft Corporation) C:\windows\system32\iasdatastore.dll
2015-12-14 21:08 - 2014-10-29 03:34 - 00072192 _____ (Microsoft Corporation) C:\windows\system32\netprovisionsp.dll
2015-12-14 21:08 - 2014-10-29 03:34 - 00054272 _____ (Microsoft Corporation) C:\windows\system32\bitsigd.dll
2015-12-14 21:08 - 2014-10-29 03:34 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\dmloader.dll
2015-12-14 21:08 - 2014-10-29 03:33 - 00196608 _____ (Microsoft Corporation) C:\windows\system32\dsdmo.dll
2015-12-14 21:08 - 2014-10-29 03:33 - 00154624 _____ (Microsoft Corporation) C:\windows\system32\usbceip.dll
2015-12-14 21:08 - 2014-10-29 03:33 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\msvfw32.dll
2015-12-14 21:08 - 2014-10-29 03:33 - 00126464 _____ (Microsoft Corporation) C:\windows\system32\oledlg.dll
2015-12-14 21:08 - 2014-10-29 03:33 - 00118784 _____ (Microsoft Corporation) C:\windows\system32\dmsynth.dll
2015-12-14 21:08 - 2014-10-29 03:33 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\KMSVC.DLL
2015-12-14 21:08 - 2014-10-29 03:33 - 00073216 _____ (Microsoft Corporation) C:\windows\system32\fhevents.dll
2015-12-14 21:08 - 2014-10-29 03:33 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\mssign32.dll
2015-12-14 21:08 - 2014-10-29 03:33 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MsRdpWebAccess.dll
2015-12-14 21:08 - 2014-10-29 03:32 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\avifil32.dll
2015-12-14 21:08 - 2014-10-29 03:32 - 00063488 _____ (Microsoft Corporation) C:\windows\system32\g711codc.ax
2015-12-14 21:08 - 2014-10-29 03:32 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\sdiagschd.dll
2015-12-14 21:08 - 2014-10-29 03:32 - 00041832 _____ (Microsoft Corporation) C:\windows\system32\LockScreenContentServer.exe
2015-12-14 21:08 - 2014-10-29 03:32 - 00035328 _____ (Microsoft Corporation) C:\windows\system32\DeviceDisplayStatusManager.dll
2015-12-14 21:08 - 2014-10-29 03:31 - 00197632 _____ (Microsoft Corporation) C:\windows\system32\PkgMgr.exe
2015-12-14 21:08 - 2014-10-29 03:31 - 00139776 _____ (Microsoft Corporation) C:\windows\system32\dmview.ocx
2015-12-14 21:08 - 2014-10-29 03:31 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\fhsrchph.dll
2015-12-14 21:08 - 2014-10-29 03:31 - 00059904 _____ (Microsoft Corporation) C:\windows\system32\gacinstall.dll
2015-12-14 21:08 - 2014-10-29 03:31 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\fhcleanup.dll
2015-12-14 21:08 - 2014-10-29 03:30 - 00202240 _____ (Microsoft Corporation) C:\windows\system32\iisRtl.dll
2015-12-14 21:08 - 2014-10-29 03:30 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Syncreg.dll
2015-12-14 21:08 - 2014-10-29 03:30 - 00062976 _____ (Microsoft Corporation) C:\windows\system32\WwanRadioManager.dll
2015-12-14 21:08 - 2014-10-29 03:30 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\mciqtz32.dll
2015-12-14 21:08 - 2014-10-29 03:29 - 00166400 _____ (Microsoft Corporation) C:\windows\system32\verifier.exe
2015-12-14 21:08 - 2014-10-29 03:29 - 00121856 _____ (Microsoft Corporation) C:\windows\system32\fhsvc.dll
2015-12-14 21:08 - 2014-10-29 03:29 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\fhsrchapi.dll
2015-12-14 21:08 - 2014-10-29 03:29 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\WWanHC.dll
2015-12-14 21:08 - 2014-10-29 03:29 - 00049664 _____ (Microsoft Corporation) C:\windows\system32\sdchange.exe
2015-12-14 21:08 - 2014-10-29 03:28 - 00177152 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\windows\system32\l3codecp.acm
2015-12-14 21:08 - 2014-10-29 03:28 - 00131584 _____ (Microsoft Corporation) C:\windows\system32\gcdef.dll
2015-12-14 21:08 - 2014-10-29 03:28 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\adsmsext.dll
2015-12-14 21:08 - 2014-10-29 03:27 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\discan.dll
2015-12-14 21:08 - 2014-10-29 03:27 - 00138752 _____ (Microsoft Corporation) C:\windows\system32\mfmjpegdec.dll
2015-12-14 21:08 - 2014-10-29 03:27 - 00121856 _____ (Microsoft Corporation) C:\windows\system32\setupugc.exe
2015-12-14 21:08 - 2014-10-29 03:27 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\iasacct.dll
2015-12-14 21:08 - 2014-10-29 03:27 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\loghours.dll
2015-12-14 21:08 - 2014-10-29 03:27 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\TabbtnEx.dll
2015-12-14 21:08 - 2014-10-29 03:27 - 00079360 _____ (Microsoft Corporation) C:\windows\system32\iasads.dll
2015-12-14 21:08 - 2014-10-29 03:27 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\vfwwdm32.dll
2015-12-14 21:08 - 2014-10-29 03:27 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\vdsvd.dll
2015-12-14 21:08 - 2014-10-29 03:27 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\dssec.dll
2015-12-14 21:08 - 2014-10-29 03:26 - 00226816 _____ (Microsoft Corporation) C:\windows\system32\mprdim.dll
2015-12-14 21:08 - 2014-10-29 03:26 - 00134656 _____ (Microsoft Corporation) C:\windows\system32\vdsutil.dll
2015-12-14 21:08 - 2014-10-29 03:26 - 00119808 _____ (Microsoft Corporation) C:\windows\system32\NdisImPlatform.dll
2015-12-14 21:08 - 2014-10-29 03:26 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\QUTIL.DLL
2015-12-14 21:08 - 2014-10-29 03:26 - 00098304 _____ (Microsoft Corporation) C:\windows\system32\synceng.dll
2015-12-14 21:08 - 2014-10-29 03:26 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\nlahc.dll
2015-12-14 21:08 - 2014-10-29 03:26 - 00071168 _____ (Microsoft Corporation) C:\windows\system32\ksxbar.ax
2015-12-14 21:08 - 2014-10-29 03:26 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\BthRadioMedia.dll
2015-12-14 21:08 - 2014-10-29 03:26 - 00049152 _____ (Microsoft Corporation) C:\windows\system32\vbisurf.ax
2015-12-14 21:08 - 2014-10-29 03:25 - 00427520 _____ (Microsoft Corporation) C:\windows\system32\rasplap.dll
2015-12-14 21:08 - 2014-10-29 03:25 - 00176640 _____ (Microsoft Corporation) C:\windows\system32\fvenotify.exe
2015-12-14 21:08 - 2014-10-29 03:25 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\inetpp.dll
2015-12-14 21:08 - 2014-10-29 03:25 - 00132608 _____ (Microsoft Corporation) C:\windows\system32\Ribbons.scr
2015-12-14 21:08 - 2014-10-29 03:25 - 00112128 _____ (Microsoft Corporation) C:\windows\system32\iashlpr.dll
2015-12-14 21:08 - 2014-10-29 03:25 - 00079872 _____ (Microsoft Corporation) C:\windows\system32\QCLIPROV.DLL
2015-12-14 21:08 - 2014-10-29 03:25 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\bidispl.dll
2015-12-14 21:08 - 2014-10-29 03:24 - 00788480 _____ (Microsoft Corporation) C:\windows\system32\Bubbles.scr
2015-12-14 21:08 - 2014-10-29 03:24 - 00133632 _____ (Microsoft Corporation) C:\windows\system32\Mystify.scr
2015-12-14 21:08 - 2014-10-29 03:24 - 00115200 _____ (Microsoft Corporation) C:\windows\system32\fphc.dll
2015-12-14 21:08 - 2014-10-29 03:23 - 00237056 _____ (Microsoft Corporation) C:\windows\system32\tapi32.dll
2015-12-14 21:08 - 2014-10-29 03:23 - 00148480 _____ (Microsoft Corporation) C:\windows\system32\dot3mm.dll
2015-12-14 21:08 - 2014-10-29 03:23 - 00074752 _____ (Microsoft Corporation) C:\windows\system32\scripto.dll
2015-12-14 21:08 - 2014-10-29 03:23 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\AtBroker.exe
2015-12-14 21:08 - 2014-10-29 03:22 - 00309760 _____ (Microsoft Corporation) C:\windows\system32\wusa.exe
2015-12-14 21:08 - 2014-10-29 03:22 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\igdDiag.dll
2015-12-14 21:08 - 2014-10-29 03:21 - 01086464 _____ (Microsoft Corporation) C:\windows\system32\onexui.dll
2015-12-14 21:08 - 2014-10-29 03:20 - 00420864 _____ (Microsoft Corporation) C:\windows\system32\nshipsec.dll
2015-12-14 21:08 - 2014-10-29 03:20 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\certprop.dll
2015-12-14 21:08 - 2014-10-29 03:19 - 00320000 _____ (Microsoft Corporation) C:\windows\system32\dot3ui.dll
2015-12-14 21:08 - 2014-10-29 03:19 - 00203264 _____ (Microsoft Corporation) C:\windows\system32\icsigd.dll
2015-12-14 21:08 - 2014-10-29 03:19 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\uxlib.dll
2015-12-14 21:08 - 2014-10-29 03:19 - 00155648 _____ (Microsoft Corporation) C:\windows\system32\mydocs.dll
2015-12-14 21:08 - 2014-10-29 03:19 - 00128512 _____ (Microsoft Corporation) C:\windows\splwow64.exe
2015-12-14 21:08 - 2014-10-29 03:19 - 00119808 _____ (Microsoft Corporation) C:\windows\system32\WinMsoIrmProtector.dll
2015-12-14 21:08 - 2014-10-29 03:19 - 00113152 _____ (Microsoft Corporation) C:\windows\system32\WinOpcIrmProtector.dll
2015-12-14 21:08 - 2014-10-29 03:19 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\ustprov.dll
2015-12-14 21:08 - 2014-10-29 03:18 - 00162304 _____ (Microsoft Corporation) C:\windows\system32\WsmAuto.dll
2015-12-14 21:08 - 2014-10-29 03:18 - 00118784 _____ (Microsoft Corporation) C:\windows\system32\DAMM.dll
2015-12-14 21:08 - 2014-10-29 03:18 - 00097280 _____ (Microsoft Corporation) C:\windows\system32\isoburn.exe
2015-12-14 21:08 - 2014-10-29 03:18 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\udhisapi.dll
2015-12-14 21:08 - 2014-10-29 03:18 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\TapiMigPlugin.dll
2015-12-14 21:08 - 2014-10-29 03:18 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\RegCtrl.dll
2015-12-14 21:08 - 2014-10-29 03:18 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\SyncHost.exe
2015-12-14 21:08 - 2014-10-29 03:18 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\ThumbnailExtractionHost.exe
2015-12-14 21:08 - 2014-10-29 03:17 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\SNTSearch.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00179712 _____ (Microsoft Corporation) C:\windows\system32\nlmgp.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2015-12-14 21:08 - 2014-10-29 03:17 - 00134656 _____ (Microsoft Corporation) C:\windows\system32\msdart.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00119296 _____ (Microsoft Corporation) C:\windows\system32\ndfhcdiscovery.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00101888 _____ (Microsoft Corporation) C:\windows\system32\XPSSHHDR.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00093696 _____ (Microsoft Corporation) C:\windows\system32\cmstp.exe
2015-12-14 21:08 - 2014-10-29 03:17 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\odbccu32.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00089088 _____ (Microsoft Corporation) C:\windows\system32\odbccr32.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\correngine.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\dot3hc.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\DfsShlEx.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\playlistfolder.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\WorkFoldersGPExt.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\l2nacp.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00060928 _____ (Microsoft Corporation) C:\windows\system32\fhtask.dll
2015-12-14 21:08 - 2014-10-29 03:17 - 00058880 _____ (Microsoft Corporation) C:\windows\system32\ucmhc.dll
2015-12-14 21:08 - 2014-10-29 03:16 - 00342528 _____ (Microsoft Corporation) C:\windows\system32\eudcedit.exe
2015-12-14 21:08 - 2014-10-29 03:16 - 00186880 _____ (Microsoft Corporation) C:\windows\system32\msconfig.exe
2015-12-14 21:08 - 2014-10-29 03:16 - 00141312 _____ (Microsoft Corporation) C:\windows\system32\cabview.dll
2015-12-14 21:08 - 2014-10-29 03:16 - 00035328 _____ (Microsoft Corporation) C:\windows\system32\ndfetw.dll
2015-12-14 21:08 - 2014-10-29 03:13 - 00093184 _____ (Microsoft Corporation) C:\windows\system32\PNPXAssoc.dll
2015-12-14 21:08 - 2014-10-29 03:13 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\Query.dll
2015-12-14 21:08 - 2014-10-29 03:13 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\ConnectedAccountState.dll
2015-12-14 21:08 - 2014-10-29 03:13 - 00045056 _____ (Microsoft Corporation) C:\windows\system32\SetNetworkLocation.dll
2015-12-14 21:08 - 2014-10-29 03:12 - 00660480 _____ (Microsoft Corporation) C:\windows\system32\dccw.exe
2015-12-14 21:08 - 2014-10-29 03:12 - 00441344 _____ (Microsoft Corporation) C:\windows\system32\PortableDeviceStatus.dll
2015-12-14 21:08 - 2014-10-29 03:12 - 00154624 _____ (Microsoft Corporation) C:\windows\regedit.exe
2015-12-14 21:08 - 2014-10-29 03:12 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\EhStorAPI.dll
2015-12-14 21:08 - 2014-10-29 03:12 - 00118784 _____ (Microsoft Corporation) C:\windows\system32\xwreg.dll
2015-12-14 21:08 - 2014-10-29 03:12 - 00096256 _____ C:\windows\system32\BthpanContextHandler.dll
2015-12-14 21:08 - 2014-10-29 03:12 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\iscsiwmi.dll
2015-12-14 21:08 - 2014-10-29 03:12 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\WABSyncProvider.dll
2015-12-14 21:08 - 2014-10-29 03:11 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\McxDriv.dll
2015-12-14 21:08 - 2014-10-29 03:11 - 00117248 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2015-12-14 21:08 - 2014-10-29 03:11 - 00114176 _____ (Microsoft Corporation) C:\windows\system32\profprov.dll
2015-12-14 21:08 - 2014-10-29 03:11 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\wercplsupport.dll
2015-12-14 21:08 - 2014-10-29 03:11 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\rasdiag.dll
2015-12-14 21:08 - 2014-10-29 03:11 - 00075264 _____ (Microsoft Corporation) C:\windows\system32\StorageContextHandler.dll
2015-12-14 21:08 - 2014-10-29 03:11 - 00053248 _____ C:\windows\system32\BWContextHandler.dll
2015-12-14 21:08 - 2014-10-29 03:11 - 00035328 _____ (Microsoft Corporation) C:\windows\system32\FdDevQuery.dll
2015-12-14 21:08 - 2014-10-29 03:10 - 00468480 _____ (Microsoft Corporation) C:\windows\system32\RASMM.dll
2015-12-14 21:08 - 2014-10-29 03:10 - 00118784 _____ (Microsoft Corporation) C:\windows\system32\pnpclean.dll
2015-12-14 21:08 - 2014-10-29 03:10 - 00106496 _____ (Microsoft Corporation) C:\windows\system32\wshext.dll
2015-12-14 21:08 - 2014-10-29 03:10 - 00088576 _____ (Microsoft Corporation) C:\windows\system32\winsockhc.dll
2015-12-14 21:08 - 2014-10-29 03:10 - 00079360 _____ (Microsoft Corporation) C:\windows\system32\frprov.dll
2015-12-14 21:08 - 2014-10-29 03:10 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\UserAccountControlSettings.dll
2015-12-14 21:08 - 2014-10-29 03:09 - 00578048 _____ (Microsoft Corporation) C:\windows\system32\dfrgui.exe
2015-12-14 21:08 - 2014-10-29 03:09 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\cttune.exe
2015-12-14 21:08 - 2014-10-29 03:09 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\input.dll
2015-12-14 21:08 - 2014-10-29 03:09 - 00242176 _____ (Microsoft Corporation) C:\windows\system32\taskbarcpl.dll
2015-12-14 21:08 - 2014-10-29 03:09 - 00179200 _____ (Microsoft Corporation) C:\windows\system32\RstrtMgr.dll
2015-12-14 21:08 - 2014-10-29 03:09 - 00104448 _____ (Microsoft Corporation) C:\windows\system32\remotesp.tsp
2015-12-14 21:08 - 2014-10-29 03:09 - 00071168 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-12-14 21:08 - 2014-10-29 03:09 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\MbaeXmlParser.dll
2015-12-14 21:08 - 2014-10-29 03:08 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\acppage.dll
2015-12-14 21:08 - 2014-10-29 03:07 - 00207872 _____ (Microsoft Corporation) C:\windows\system32\EhStorShell.dll
2015-12-14 21:08 - 2014-10-29 03:07 - 00113152 _____ (Microsoft Corporation) C:\windows\system32\EhStorPwdMgr.dll
2015-12-14 21:08 - 2014-10-29 03:07 - 00068608 _____ (Microsoft Corporation) C:\windows\system32\MaintenanceUI.dll
2015-12-14 21:08 - 2014-10-29 03:07 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\mimefilt.dll
2015-12-14 21:08 - 2014-10-29 03:06 - 00624640 _____ (Microsoft Corporation) C:\windows\system32\colorui.dll
2015-12-14 21:08 - 2014-10-29 03:06 - 00205312 _____ (Microsoft Corporation) C:\windows\system32\manage-bde.exe
2015-12-14 21:08 - 2014-10-29 03:06 - 00176640 _____ (Microsoft Corporation) C:\windows\system32\werui.dll
2015-12-14 21:08 - 2014-10-29 03:06 - 00152064 _____ (Microsoft Corporation) C:\windows\system32\autoplay.dll
2015-12-14 21:08 - 2014-10-29 03:06 - 00094208 _____ (Microsoft Corporation) C:\windows\system32\ndishc.dll
2015-12-14 21:08 - 2014-10-29 03:06 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\fhlisten.dll
2015-12-14 21:08 - 2014-10-29 03:06 - 00054784 _____ (Microsoft Corporation) C:\windows\system32\DAConn.dll
2015-12-14 21:08 - 2014-10-29 03:05 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2015-12-14 21:08 - 2014-10-29 03:05 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\Dsui.dll
2015-12-14 21:08 - 2014-10-29 03:05 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\systeminfo.exe
2015-12-14 21:08 - 2014-10-29 03:05 - 00102400 _____ (Microsoft Corporation) C:\windows\system32\wiascanprofiles.dll
2015-12-14 21:08 - 2014-10-29 03:05 - 00084480 _____ (Microsoft Corporation) C:\windows\system32\getmac.exe
2015-12-14 21:08 - 2014-10-29 03:04 - 00270336 _____ (Microsoft Corporation) C:\windows\system32\sethc.exe
2015-12-14 21:08 - 2014-10-29 03:04 - 00209408 _____ (Microsoft Corporation) C:\windows\system32\DevicePairingFolder.dll
2015-12-14 21:08 - 2014-10-29 03:04 - 00104448 _____ (Microsoft Corporation) C:\windows\system32\taskkill.exe
2015-12-14 21:08 - 2014-10-29 03:04 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\wiaacmgr.exe
2015-12-14 21:08 - 2014-10-29 03:04 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\Utilman.exe
2015-12-14 21:08 - 2014-10-29 03:04 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\driverquery.exe
2015-12-14 21:08 - 2014-10-29 03:04 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\SMSRouter.dll
2015-12-14 21:08 - 2014-10-29 03:04 - 00066048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcirt.dll
2015-12-14 21:08 - 2014-10-29 03:03 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\SSShim.dll
2015-12-14 21:08 - 2014-10-29 03:03 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\tasklist.exe
2015-12-14 21:08 - 2014-10-29 03:03 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\sendmail.dll
2015-12-14 21:08 - 2014-10-29 03:02 - 00293888 _____ (Microsoft Corporation) C:\windows\system32\EaseOfAccessDialog.exe
2015-12-14 21:08 - 2014-10-29 03:02 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\signdrv.dll
2015-12-14 21:08 - 2014-10-29 03:01 - 00188928 _____ (Microsoft Corporation) C:\windows\system32\irftp.exe
2015-12-14 21:08 - 2014-10-29 03:01 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\dnshc.dll
2015-12-14 21:08 - 2014-10-29 03:01 - 00089600 _____ (Microsoft Corporation) C:\windows\system32\FXSCOM.dll
2015-12-14 21:08 - 2014-10-29 03:01 - 00058368 _____ (Microsoft Corporation) C:\windows\system32\HelpPaneProxy.dll
2015-12-14 21:08 - 2014-10-29 03:00 - 00214528 _____ (Microsoft Corporation) C:\windows\SysWOW64\shdocvw.dll
2015-12-14 21:08 - 2014-10-29 03:00 - 00153600 _____ (Microsoft Corporation) C:\windows\SysWOW64\syncui.dll
2015-12-14 21:08 - 2014-10-29 03:00 - 00121856 _____ (Microsoft Corporation) C:\windows\system32\racpldlg.dll
2015-12-14 21:08 - 2014-10-29 03:00 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\spfileq.dll
2015-12-14 21:08 - 2014-10-29 03:00 - 00081408 _____ (Microsoft Corporation) C:\windows\SysWOW64\SPInf.dll
2015-12-14 21:08 - 2014-10-29 03:00 - 00072192 _____ (Microsoft Corporation) C:\windows\SysWOW64\packager.dll
         

Antwort

Themen zu Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?
ahnung, antwort, anzeige, bastele, c:\windows, dateien, entfernt, heute, laufen, liebe, löschen, meldung, neuling, problem, schicke, schicken, sofort, start, virus, virus ??, virus?, wahrscheinlich, win32, win32:rootkit-gen[rtk], windows, woche, wochen




Ähnliche Themen: Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?


  1. W 8.1,Trojaner kann von mir nicht entfernt werden.Virus: Trojan.GenericKD.1673711 (Engine A),Virus: Win32.Trojan.Pirpi.A (Engine B)
    Plagegeister aller Art und deren Bekämpfung - 21.08.2014 (3)
  2. Möglicherweise Win32:Evo-gen & HTML:Iframe-inf
    Plagegeister aller Art und deren Bekämpfung - 19.08.2014 (14)
  3. Win 7: TrojanDownloader:Win32/Adload.DA-Virus kann mit MS-Tool nicht entfernt werden
    Log-Analyse und Auswertung - 06.01.2014 (13)
  4. Windows 7 (64 Bit) - möglicherweise Virus
    Log-Analyse und Auswertung - 29.11.2013 (5)
  5. Rootkit, Bootkit, Rootkit.win32.tdss.ld4 - ich weiss nicht weiter..
    Log-Analyse und Auswertung - 18.03.2013 (1)
  6. Nach GVU Trojaner (bereits entfernt durch euch), möglicherweise noch Rootkit auf meinem Rechner?
    Log-Analyse und Auswertung - 10.01.2013 (11)
  7. Möglicherweise Rootkit - GMER Logfile Analyse
    Log-Analyse und Auswertung - 18.12.2012 (6)
  8. Virus Win32/CoinMiner entfernt oder nicht?
    Plagegeister aller Art und deren Bekämpfung - 25.03.2012 (25)
  9. C:\WINDOWS\system32\IE.exe möglicherweise unbekannter Virus NewHeur_PE Virus
    Plagegeister aller Art und deren Bekämpfung - 10.12.2010 (19)
  10. Virus: Win32:Rootkit-gen [Rtk] (Engine B) bekomme es nicht weg
    Plagegeister aller Art und deren Bekämpfung - 14.05.2010 (3)
  11. Rootkit auf VMWare kann nicht entfernt werden
    Plagegeister aller Art und deren Bekämpfung - 02.05.2010 (1)
  12. möglicherweise rootkit virus befall
    Plagegeister aller Art und deren Bekämpfung - 22.12.2009 (11)
  13. Win32:Rootkit-gen Virus was soll ich tun??!!??
    Plagegeister aller Art und deren Bekämpfung - 18.12.2009 (3)
  14. Virus Rootkit.Win32.TDSS.a
    Plagegeister aller Art und deren Bekämpfung - 08.07.2009 (10)
  15. Win32/Rootkit.Agent.Odg entfernt - Überprüfung des HJT-Logs
    Log-Analyse und Auswertung - 05.07.2009 (1)
  16. Win32:Rootkit-gen [Rtk] entfernt. System wieder Ok?
    Plagegeister aller Art und deren Bekämpfung - 15.02.2009 (2)
  17. Virus: Win32:Rootkit-gen [Rtk]
    Plagegeister aller Art und deren Bekämpfung - 25.05.2008 (19)

Zum Thema Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? - Hallo liebe PC-Fans und Fachmenschen, ich habe wahrscheinlich ein Virus auf meinem PC, dieser ist 3 Wochen alt und dies Virus auch. Windows 8.1. Avastbeschreibung. Win32:Rootkit-gen(rtk), Objekt C:\Windows\SysWOW64\Windowsd.web.dll Habe seitdem - Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt?...
Archiv
Du betrachtest: Windows 8.1 - Virus? Win32:Rootkit-gen(rtk) möglicherweise nicht entfernt? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.