| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Adware/Browser Hijacker: m55.dnsqa.meWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
22.03.2016, 10:43
| #1 |
| |  Adware/Browser Hijacker: m55.dnsqa.me Hallo liebes Trojaner-Board, Wie es scheint, habe ich mir vor ein paar Tagen den Browser Hijacker "m55.dnsqa.me" eingefangen  . Das einzige was ich in dieser zeit instaliert habe war "TomTom Home", dabei wurden jedoch keine Zusatzprogramme oder sonstiges mit instaliert.Inzwischen habe ich auch schon einiges Versucht um m55.dnsqa.me loszuwerden: - den Pc mit den Wiederherstellungsoptionen auf ein Datum zurückgegestzt wo noch keine Probleme auftraten - sämtliche unerwünschte/unbekannte Software und Addons und Plugins deinstalliert - verschiedene Antiviren Programme durchlaufen lassen, Allerdings bisher alles ohne Erfolg und Behebung des Problems .Immerhin kann ich inzwischen dank des Echtzeit-Schutzes von Malewarebytes wieder normal surfen,ohne das ständig irgendwelche Popups aufploppen. Jedoch werden bei jedem Seitenaufruf bösartige Websites endeckt, die gebblockt werden (m55.dnsqa.me). Ich hoffe mir kann hier weitergeholfen werden und ich habe alle erforderlichen LOG-Dateien gepostet. LG Caro Malewarebytes Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 22.03.2016 Suchlaufzeit: 10:18 Protokolldatei: Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2016.03.22.03 Rootkit-Datenbank: v2016.03.12.01 Lizenz: Testversion Malware-Schutz: Aktiviert Schutz vor bösartigen Websites: Aktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: norbe Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 346940 Abgelaufene Zeit: 6 Min., 12 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 22.03.2016 Suchlaufzeit: 09:15 Protokolldatei: Malewarebytes D.txt Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2016.03.22.02 Rootkit-Datenbank: v2016.03.12.01 Lizenz: Testversion Malware-Schutz: Aktiviert Schutz vor bösartigen Websites: Aktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: norbe Suchlauftyp: Benutzerdefinierter Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 454316 Abgelaufene Zeit: 40 Min., 37 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01 durchgeführt von norbe (Administrator) auf PC-NORB (22-03-2016 09:57:03) Gestartet von D:\Downloads Geladene Profile: norbe (Verfügbare Profile: norbe) Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Edge) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (QIHU 360 SOFTWARE CO. LIMITED) D:\Programme\360 Total Security\360\Total Security\safemon\QHActiveDefense.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (QIHU 360 SOFTWARE CO. LIMITED) D:\Programme\360 Total Security\360\Total Security\safemon\QHWatchdog.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Creative Technology Ltd.) C:\Windows\V0790Mon.exe (QIHU 360 SOFTWARE CO. LIMITED) D:\Programme\360 Total Security\360\Total Security\safemon\QHSafeTray.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe (Valve Corporation) D:\Steam\Steam.exe (Valve Corporation) D:\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Kaspersky Lab ZAO) D:\Downloads\tdsskiller.exe (Kaspersky Lab ZAO) C:\Users\norbe\AppData\Local\Temp\{3F992D05-22B3-41E0-B85E-3CE1A8691DCB}\{FE544FB7-3351-4942-ADC6-C72FEF7DBD50}.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [StartCN] => "C:\Program Files\AMD\CNext\CNext\cnext.exe" atlogon HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation) HKLM-x32\...\Run: [V0790Mon.exe] => C:\Windows\V0790Mon.exe HKLM-x32\...\Run: [QHSafeTray] => D:\Programme\360 Total Security\360\Total Security\safemon\360Tray.exe [326264 2016-02-01] (QIHU 360 SOFTWARE CO. LIMITED) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKU\S-1-5-21-3455921864-2365325757-1580788810-1001\...\Run: [Spotify Web Helper] => D:\Spotify\SpotifyWebHelper.exe [1959992 2015-03-23] (Spotify Ltd) HKU\S-1-5-21-3455921864-2365325757-1580788810-1001\...\Run: [Steam] => D:\Steam\steam.exe [3074128 2016-03-10] (Valve Corporation) HKU\S-1-5-21-3455921864-2365325757-1580788810-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50605696 2016-02-10] (Skype Technologies S.A.) HKU\S-1-5-21-3455921864-2365325757-1580788810-1001\...\Run: [Spotify] => C:\Users\norbe\AppData\Roaming\Spotify\Spotify.exe [6743664 2016-02-29] (Spotify Ltd) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-03-21] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{8a2e711d-1768-43c9-9fed-276f801e4aa2}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== FireFox: ======== FF ProfilePath: C:\Users\norbe\AppData\Roaming\Mozilla\Firefox\Profiles\1hixs43p.default FF Homepage: about:home FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-11] () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-11] () FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> D:\Programme\Foxit Reader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> D:\Programme\Foxit Reader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> D:\Programme\Foxit Reader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> D:\Programme\Foxit Reader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-08] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-08] (NVIDIA Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> D:\Programme\VLC\npvlc.dll [2016-01-21] (VideoLAN) FF Extension: Rocket Beans Supporter - C:\Users\norbe\AppData\Roaming\Mozilla\Firefox\Profiles\1hixs43p.default\extensions\osrocketbeanssupporter@schloebe.de.xpi [2016-02-13] FF Extension: Rocket Beans TV Sendeplan für Firefox - C:\Users\norbe\AppData\Roaming\Mozilla\Firefox\Profiles\1hixs43p.default\Extensions\javos-firebeans-rbtvfx@jetpack.xpi [2016-02-13] FF Extension: Adblock Plus - C:\Users\norbe\AppData\Roaming\Mozilla\Firefox\Profiles\1hixs43p.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-24] FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-16] [ist nicht signiert] FF HKLM-x32\...\Firefox\Extensions: [WebProtection@360safe.com] - D:\Programme\360 Total Security\360\Total Security\safemon\webprotection_firefox FF Extension: 360 Internet Protection - D:\Programme\360 Total Security\360\Total Security\safemon\webprotection_firefox [2016-02-13] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-02-17] (NVIDIA Corporation) R3 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373160 2015-12-19] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert] R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation) R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6474112 2016-02-17] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2609024 2016-02-17] (NVIDIA Corporation) R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert] R2 QHActiveDefense; D:\Programme\360 Total Security\360\Total Security\safemon\QHActiveDefense.exe [907384 2016-02-01] (QIHU 360 SOFTWARE CO. LIMITED) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [137808 2016-02-01] (360.cn) R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [77904 2016-02-01] (360.cn) R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [77904 2016-02-01] (360.cn) R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [319568 2016-02-01] (360.cn) R1 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [40520 2016-02-01] (360.cn) R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [368720 2016-02-01] (360.cn) S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc.) R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [181328 2016-02-01] (360.cn) R3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider) R3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-03-22] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [202032 2016-01-19] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-02-17] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2016-02-24] (NVIDIA Corporation) R3 V0790Vid; C:\Windows\system32\DRIVERS\V0790Vid.sys [390648 2015-09-17] (Creative Technology Ltd.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-03-22 09:56 - 2016-03-22 09:57 - 00000000 ____D C:\FRST 2016-03-22 09:56 - 2016-03-22 09:56 - 00246848 ____N (Kaspersky Lab, Yury Parshin) C:\Windows\system32\Drivers\70552111.sys 2016-03-22 09:56 - 2016-03-22 09:56 - 00006522 _____ C:\TDSSKiller.3.1.0.9_22.03.2016_09.56.25_log.txt 2016-03-22 09:21 - 2016-03-22 09:21 - 00001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2016-03-22 09:21 - 2016-03-22 09:21 - 00001220 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2016-03-22 09:21 - 2016-03-22 09:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-03-22 09:21 - 2016-03-22 09:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-03-22 09:20 - 2016-03-22 09:20 - 00242376 _____ C:\Users\norbe\Downloads\Firefox Setup Stub 45.0.1.exe 2016-03-21 20:19 - 2016-03-21 20:19 - 00000000 ___HD C:\$SysReset 2016-03-21 19:57 - 2016-03-21 21:34 - 00001908 _____ C:\Windows\diagwrn.xml 2016-03-21 19:57 - 2016-03-21 21:34 - 00001908 _____ C:\Windows\diagerr.xml 2016-03-21 11:29 - 2016-03-21 11:29 - 00000000 ____D C:\Users\norbe\AppData\Roaming\HP 2016-03-21 11:29 - 2016-03-21 11:29 - 00000000 ____D C:\Users\norbe\AppData\Local\HP 2016-03-21 11:29 - 2016-03-21 11:29 - 00000000 ____D C:\ProgramData\WEBREG 2016-03-21 11:28 - 2016-03-21 11:28 - 00001434 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk 2016-03-21 11:28 - 2016-03-21 11:28 - 00001428 _____ C:\Users\Public\Desktop\HP Solution Center.lnk 2016-03-21 11:28 - 2016-03-21 11:28 - 00001262 _____ C:\Users\Public\Desktop\Shop für HP Zubehör.lnk 2016-03-21 11:28 - 2016-03-21 11:28 - 00000000 ____D C:\Windows\LastGood.Tmp 2016-03-21 11:28 - 2016-03-21 11:28 - 00000000 ____D C:\Users\norbe\AppData\Roaming\HpUpdate 2016-03-21 11:28 - 2016-03-21 11:28 - 00000000 ____D C:\ProgramData\HP Product Assistant 2016-03-21 11:27 - 2016-03-21 11:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2016-03-21 11:27 - 2016-03-21 11:28 - 00000000 ____D C:\Program Files (x86)\HP 2016-03-21 11:26 - 2016-03-21 11:29 - 00201689 _____ C:\Windows\hpoins32.dat 2016-03-21 11:26 - 2016-03-21 11:29 - 00000000 ____D C:\ProgramData\HP 2016-03-21 11:26 - 2012-09-28 10:52 - 00000932 ____N C:\Windows\hpomdl32.dat 2016-03-21 11:26 - 2012-09-25 08:52 - 03867040 _____ C:\Windows\system32\PortChanger.exe 2016-03-21 11:26 - 2012-09-25 08:52 - 00151968 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\Dot4.sys 2016-03-21 11:26 - 2012-09-25 08:52 - 00049056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dot4usb.sys 2016-03-21 11:26 - 2012-09-25 08:52 - 00027040 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\Dot4Prt.sys 2016-03-21 11:26 - 2009-07-14 02:41 - 00046080 _____ (Hewlett-Packard Corporation) C:\Windows\system32\hpz3lw72.dll 2016-03-21 11:26 - 2009-07-08 11:51 - 01411584 _____ (Hewlett-Packard Co.) C:\Windows\system32\hpost_p01b.dll 2016-03-21 11:26 - 2009-07-08 11:51 - 00966656 _____ (Hewlett-Packard) C:\Windows\system32\hposwia_p01b.dll 2016-03-21 11:26 - 2009-07-08 11:51 - 00551424 _____ (Hewlett-Packard) C:\Windows\system32\hppldcoi.dll 2016-03-21 11:26 - 2009-07-08 11:51 - 00512512 _____ (Hewlett-Packard Co.) C:\Windows\system32\hposc_p01a.dll 2016-03-21 11:18 - 2016-03-21 11:18 - 00000000 ____D C:\Users\norbe\AppData\Local\ElevatedDiagnostics 2016-03-21 10:52 - 2016-03-21 10:52 - 00000000 _____ C:\Recovery.txt 2016-03-21 10:44 - 2016-03-21 20:01 - 00000000 ____D C:\$Windows.~BT 2016-03-21 10:31 - 2016-03-21 11:11 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2016-03-21 10:26 - 2016-03-22 09:15 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-03-21 10:24 - 2016-03-21 10:24 - 00001175 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2016-03-21 10:24 - 2016-03-21 10:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2016-03-21 10:24 - 2016-03-21 10:24 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-03-21 10:24 - 2016-03-21 10:24 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2016-03-21 10:24 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2016-03-21 10:24 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2016-03-21 10:24 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2016-03-21 10:23 - 2016-03-21 10:40 - 00000000 ____D C:\AdwCleaner 2016-03-20 15:39 - 2016-03-20 15:39 - 00000000 ____D C:\ProgramData\TomTom 2016-03-20 15:37 - 2016-03-20 15:37 - 00000000 ____D C:\Users\norbe\OneDrive\Dokumente\TomTom 2016-03-20 15:36 - 2016-03-20 15:36 - 00000000 ____D C:\Users\norbe\AppData\Roaming\TomTom 2016-03-18 17:10 - 2016-03-18 17:10 - 00000000 ____D C:\Windows\%LOCALAPPDATA% 2016-03-15 17:46 - 2016-03-21 10:38 - 00000000 ____D C:\Users\norbe\AppData\Local\CrashDumps 2016-03-15 17:44 - 2016-03-15 17:44 - 00000813 _____ C:\Users\norbe\Desktop\Launch Pharaoh Gold.lnk 2016-03-15 16:33 - 2016-03-15 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pharaoh Gold [GOG.com] 2016-03-15 11:17 - 2016-03-15 11:17 - 00003882 _____ C:\Windows\System32\Tasks\{414B0950-34C1-4197-32DC-28352DDC627F} 2016-03-11 07:25 - 2016-03-11 07:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0 2016-03-11 07:25 - 2016-03-11 07:25 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2016-03-11 07:25 - 2016-03-08 07:05 - 00110016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2016-03-11 07:25 - 2016-02-14 02:47 - 00125720 _____ C:\Windows\SysWOW64\vulkan-1.dll 2016-03-11 07:25 - 2016-02-14 02:46 - 00126232 _____ C:\Windows\system32\vulkan-1.dll 2016-03-11 07:25 - 2016-02-14 02:45 - 00045848 _____ C:\Windows\system32\vulkaninfo.exe 2016-03-11 07:25 - 2016-02-14 02:45 - 00042264 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2016-03-11 07:23 - 2016-03-08 11:27 - 42968120 _____ C:\Windows\system32\nvcompiler.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 37609528 _____ C:\Windows\SysWOW64\nvcompiler.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 22971960 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 21322480 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 20863920 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 18906048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 17732960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 17368424 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 17325400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 17320280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 10547128 _____ C:\Windows\system32\nvptxJitCompiler.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 08657936 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 02613696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 02257344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 01922496 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436451.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436451.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00955328 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00885184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00786872 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00784640 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00750016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00692160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00678704 _____ C:\Windows\system32\nvfatbinaryLoader.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00632152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00630592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00601752 _____ C:\Windows\system32\nvmcumd.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00571912 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00423360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00385080 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00379296 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00377792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00346560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00317656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00175552 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00151184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2016-03-11 07:23 - 2016-03-08 11:27 - 00000139 _____ C:\Windows\SysWOW64\nv-vk32.json 2016-03-11 07:23 - 2016-03-08 11:27 - 00000139 _____ C:\Windows\system32\nv-vk64.json 2016-03-09 22:33 - 2016-03-09 22:33 - 00001388 _____ C:\Users\norbe\Desktop\CIGLauncher.lnk 2016-03-09 18:07 - 2016-03-09 18:07 - 00000000 ____D C:\Users\norbe\OneDrive\Dokumente\Aspyr 2016-03-09 18:07 - 2016-03-09 18:07 - 00000000 ____D C:\Users\norbe\AppData\Local\Aspyr 2016-03-09 03:47 - 2016-02-24 10:51 - 07474528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-03-09 03:47 - 2016-02-24 10:28 - 03449168 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll 2016-03-09 03:47 - 2016-02-24 07:43 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll 2016-03-09 03:47 - 2016-02-24 07:40 - 01224704 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll 2016-03-09 03:47 - 2016-02-24 07:39 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys 2016-03-09 03:47 - 2016-02-24 07:11 - 03593216 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys 2016-03-09 03:47 - 2016-02-24 07:07 - 00949248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll 2016-03-09 03:47 - 2016-02-24 07:00 - 02273792 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-03-09 03:47 - 2016-02-24 06:55 - 01996288 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll 2016-03-09 03:47 - 2016-02-24 06:34 - 01707520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll 2016-03-09 03:47 - 2016-02-24 06:20 - 22376960 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll 2016-03-09 03:47 - 2016-02-24 06:18 - 18677760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll 2016-03-09 03:47 - 2016-02-24 06:12 - 19339776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-03-09 03:47 - 2016-02-24 06:10 - 24600576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-03-09 03:47 - 2016-02-24 06:09 - 06972416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2016-03-09 03:47 - 2016-02-24 06:05 - 12586496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2016-03-09 03:47 - 2016-02-24 06:03 - 14252544 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2016-03-09 03:46 - 2016-03-01 06:31 - 00848168 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2016-03-09 03:46 - 2016-03-01 06:22 - 00709688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll 2016-03-09 03:46 - 2016-02-24 10:52 - 01997328 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-03-09 03:46 - 2016-02-24 10:48 - 00713568 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-03-09 03:46 - 2016-02-24 10:47 - 01173344 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-03-09 03:46 - 2016-02-24 10:40 - 00513888 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-03-09 03:46 - 2016-02-24 10:34 - 01613664 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2016-03-09 03:46 - 2016-02-24 10:15 - 01557768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2016-03-09 03:46 - 2016-02-24 09:58 - 00794888 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2016-03-09 03:46 - 2016-02-24 09:54 - 00127840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2016-03-09 03:46 - 2016-02-24 09:51 - 01322248 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2016-03-09 03:46 - 2016-02-24 09:50 - 00808800 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe 2016-03-09 03:46 - 2016-02-24 09:46 - 06607080 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll 2016-03-09 03:46 - 2016-02-24 09:43 - 00625000 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll 2016-03-09 03:46 - 2016-02-24 09:39 - 00358752 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-03-09 03:46 - 2016-02-24 09:39 - 00141560 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe 2016-03-09 03:46 - 2016-02-24 09:19 - 00670928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2016-03-09 03:46 - 2016-02-24 09:14 - 00216416 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll 2016-03-09 03:46 - 2016-02-24 09:11 - 01997152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2016-03-09 03:46 - 2016-02-24 09:11 - 00957608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2016-03-09 03:46 - 2016-02-24 09:11 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe 2016-03-09 03:46 - 2016-02-24 09:11 - 00652392 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2016-03-09 03:46 - 2016-02-24 09:11 - 00394080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2016-03-09 03:46 - 2016-02-24 09:11 - 00258280 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll 2016-03-09 03:46 - 2016-02-24 09:10 - 00630632 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe 2016-03-09 03:46 - 2016-02-24 09:10 - 00576864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys 2016-03-09 03:46 - 2016-02-24 09:09 - 00640472 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2016-03-09 03:46 - 2016-02-24 09:09 - 00147808 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe 2016-03-09 03:46 - 2016-02-24 09:06 - 05242496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll 2016-03-09 03:46 - 2016-02-24 08:59 - 00294752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-03-09 03:46 - 2016-02-24 08:39 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTypeHelperUtil.dll 2016-03-09 03:46 - 2016-02-24 08:39 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\ExtrasXmlParser.dll 2016-03-09 03:46 - 2016-02-24 08:38 - 00187744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll 2016-03-09 03:46 - 2016-02-24 08:38 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll 2016-03-09 03:46 - 2016-02-24 08:37 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\UserDataLanguageUtil.dll 2016-03-09 03:46 - 2016-02-24 08:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenanceClient.dll 2016-03-09 03:46 - 2016-02-24 08:35 - 00540752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe 2016-03-09 03:46 - 2016-02-24 08:35 - 00523752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2016-03-09 03:46 - 2016-02-24 08:35 - 00220064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqmapi.dll 2016-03-09 03:46 - 2016-02-24 08:35 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-03-09 03:46 - 2016-02-24 08:33 - 00538736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2016-03-09 03:46 - 2016-02-24 08:33 - 00141664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe 2016-03-09 03:46 - 2016-02-24 08:31 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2016-03-09 03:46 - 2016-02-24 08:30 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll 2016-03-09 03:46 - 2016-02-24 08:28 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\POSyncServices.dll 2016-03-09 03:46 - 2016-02-24 08:23 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2016-03-09 03:46 - 2016-02-24 08:23 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\UserDataPlatformHelperUtil.dll 2016-03-09 03:46 - 2016-02-24 08:22 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\fwpolicyiomgr.dll 2016-03-09 03:46 - 2016-02-24 08:20 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll 2016-03-09 03:46 - 2016-02-24 08:20 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll 2016-03-09 03:46 - 2016-02-24 08:20 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll 2016-03-09 03:46 - 2016-02-24 08:19 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll 2016-03-09 03:46 - 2016-02-24 08:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll 2016-03-09 03:46 - 2016-02-24 08:15 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-03-09 03:46 - 2016-02-24 08:14 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\ExSMime.dll 2016-03-09 03:46 - 2016-02-24 08:13 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll 2016-03-09 03:46 - 2016-02-24 08:12 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\cemapi.dll 2016-03-09 03:46 - 2016-02-24 08:12 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll 2016-03-09 03:46 - 2016-02-24 08:10 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\wpninprc.dll 2016-03-09 03:46 - 2016-02-24 08:09 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll 2016-03-09 03:46 - 2016-02-24 08:09 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\AppxSip.dll 2016-03-09 03:46 - 2016-02-24 08:07 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll 2016-03-09 03:46 - 2016-02-24 08:05 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2016-03-09 03:46 - 2016-02-24 08:03 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll 2016-03-09 03:46 - 2016-02-24 08:02 - 00161280 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll 2016-03-09 03:46 - 2016-02-24 08:01 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll 2016-03-09 03:46 - 2016-02-24 08:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll 2016-03-09 03:46 - 2016-02-24 08:01 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll 2016-03-09 03:46 - 2016-02-24 08:00 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll 2016-03-09 03:46 - 2016-02-24 07:59 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll 2016-03-09 03:46 - 2016-02-24 07:59 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll 2016-03-09 03:46 - 2016-02-24 07:59 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll 2016-03-09 03:46 - 2016-02-24 07:58 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\scapi.dll 2016-03-09 03:46 - 2016-02-24 07:55 - 00790528 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll 2016-03-09 03:46 - 2016-02-24 07:55 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll 2016-03-09 03:46 - 2016-02-24 07:55 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExtrasXmlParser.dll 2016-03-09 03:46 - 2016-02-24 07:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll 2016-03-09 03:46 - 2016-02-24 07:54 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll 2016-03-09 03:46 - 2016-02-24 07:54 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe 2016-03-09 03:46 - 2016-02-24 07:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTypeHelperUtil.dll 2016-03-09 03:46 - 2016-02-24 07:53 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll 2016-03-09 03:46 - 2016-02-24 07:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataLanguageUtil.dll 2016-03-09 03:46 - 2016-02-24 07:52 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll 2016-03-09 03:46 - 2016-02-24 07:52 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PimIndexMaintenanceClient.dll 2016-03-09 03:46 - 2016-02-24 07:51 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-03-09 03:46 - 2016-02-24 07:49 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll 2016-03-09 03:46 - 2016-02-24 07:47 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2016-03-09 03:46 - 2016-02-24 07:46 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll 2016-03-09 03:46 - 2016-02-24 07:44 - 01713664 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll 2016-03-09 03:46 - 2016-02-24 07:44 - 00915456 _____ (Microsoft Corporation) C:\Windows\system32\configurationclient.dll 2016-03-09 03:46 - 2016-02-24 07:44 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll 2016-03-09 03:46 - 2016-02-24 07:44 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\POSyncServices.dll 2016-03-09 03:46 - 2016-02-24 07:43 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll 2016-03-09 03:46 - 2016-02-24 07:41 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll 2016-03-09 03:46 - 2016-02-24 07:41 - 00436736 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll 2016-03-09 03:46 - 2016-02-24 07:40 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2016-03-09 03:46 - 2016-02-24 07:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataPlatformHelperUtil.dll 2016-03-09 03:46 - 2016-02-24 07:39 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll 2016-03-09 03:46 - 2016-02-24 07:38 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll 2016-03-09 03:46 - 2016-02-24 07:36 - 01847808 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe 2016-03-09 03:46 - 2016-02-24 07:34 - 00938496 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll 2016-03-09 03:46 - 2016-02-24 07:34 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-03-09 03:46 - 2016-02-24 07:32 - 00223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll 2016-03-09 03:46 - 2016-02-24 07:32 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentActivation.dll 2016-03-09 03:46 - 2016-02-24 07:31 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cemapi.dll 2016-03-09 03:46 - 2016-02-24 07:31 - 00169984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll 2016-03-09 03:46 - 2016-02-24 07:28 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll 2016-03-09 03:46 - 2016-02-24 07:28 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll 2016-03-09 03:46 - 2016-02-24 07:28 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll 2016-03-09 03:46 - 2016-02-24 07:25 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll 2016-03-09 03:46 - 2016-02-24 07:23 - 00129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll 2016-03-09 03:46 - 2016-02-24 07:22 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll 2016-03-09 03:46 - 2016-02-24 07:21 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Bluetooth.dll 2016-03-09 03:46 - 2016-02-24 07:21 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll 2016-03-09 03:46 - 2016-02-24 07:18 - 01490432 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll 2016-03-09 03:46 - 2016-02-24 07:18 - 00575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll 2016-03-09 03:46 - 2016-02-24 07:18 - 00184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll 2016-03-09 03:46 - 2016-02-24 07:17 - 00369664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll 2016-03-09 03:46 - 2016-02-24 07:16 - 00394752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll 2016-03-09 03:46 - 2016-02-24 07:13 - 00540160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll 2016-03-09 03:46 - 2016-02-24 07:09 - 01443328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll 2016-03-09 03:46 - 2016-02-24 07:09 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll 2016-03-09 03:46 - 2016-02-24 07:09 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll 2016-03-09 03:46 - 2016-02-24 07:09 - 00228352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll 2016-03-09 03:46 - 2016-02-24 07:07 - 00890368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll 2016-03-09 03:46 - 2016-02-24 07:07 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll 2016-03-09 03:46 - 2016-02-24 07:04 - 01497088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe 2016-03-09 03:46 - 2016-02-24 07:03 - 00769536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll 2016-03-09 03:46 - 2016-02-24 07:01 - 01831936 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll 2016-03-09 03:46 - 2016-02-24 07:00 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll 2016-03-09 03:46 - 2016-02-24 06:57 - 02158592 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll 2016-03-09 03:46 - 2016-02-24 06:43 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\fwbase.dll 2016-03-09 03:46 - 2016-02-24 06:22 - 00163328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwbase.dll 2016-03-09 03:46 - 2016-02-24 06:12 - 05321728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2016-03-09 03:46 - 2016-02-24 05:59 - 05661696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll 2016-03-09 03:46 - 2016-02-24 05:55 - 07835648 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll 2016-03-08 18:19 - 2016-03-11 07:18 - 00000000 ____D C:\Users\norbe\AppData\Roaming\vlc 2016-03-08 18:19 - 2016-03-08 18:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2016-03-08 18:01 - 2016-03-08 18:01 - 00000000 ____D C:\Users\norbe\AppData\Local\Nem's Tools 2016-03-08 17:58 - 2016-03-08 17:58 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2016-03-08 17:58 - 2016-03-08 17:58 - 00000000 ____D C:\Program Files\Reference Assemblies 2016-03-08 17:58 - 2016-03-08 17:58 - 00000000 ____D C:\Program Files\MSBuild 2016-03-08 17:58 - 2016-03-08 17:58 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2016-03-08 17:58 - 2016-03-08 17:58 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-03-08 17:57 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll 2016-03-08 17:57 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2016-03-08 17:57 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2016-03-08 17:57 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll 2016-03-08 17:57 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2016-03-08 17:57 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2016-03-07 18:48 - 2016-03-09 19:29 - 00000000 ____D C:\Users\norbe\OneDrive\Dokumente\My Games 2016-03-07 18:48 - 2016-03-07 18:48 - 00000000 ____D C:\Users\norbe\AppData\Roaming\FiraxisLive 2016-03-07 18:48 - 2016-03-07 18:48 - 00000000 ____D C:\Users\norbe\AppData\Local\My Games 2016-03-07 15:42 - 2016-03-07 15:44 - 00000000 ____D C:\Users\norbe\AppData\Local\Ubisoft Game Launcher 2016-03-07 15:42 - 2016-03-07 15:42 - 00000000 ____D C:\Users\norbe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2016-03-06 20:51 - 2016-03-06 20:51 - 00001268 _____ C:\Users\norbe\Desktop\Bethesda.net_Launcher.lnk 2016-03-06 20:40 - 2016-03-18 21:12 - 00000000 ____D C:\Users\norbe\AppData\Roaming\Awesomium 2016-03-06 20:36 - 2016-03-06 20:36 - 00000000 ____D C:\Users\norbe\OneDrive\Dokumente\Elder Scrolls Online 2016-03-06 20:36 - 2016-03-06 20:36 - 00000000 ____D C:\ProgramData\Elder Scrolls Online 2016-03-06 20:26 - 2016-03-07 18:49 - 00000000 ____D C:\Users\norbe\AppData\Local\NVIDIA Corporation 2016-03-06 20:24 - 2016-03-07 18:49 - 00001454 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2016-03-06 20:23 - 2016-03-22 09:06 - 00000000 ____D C:\ProgramData\NVIDIA 2016-03-06 20:23 - 2016-03-11 07:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-03-06 20:23 - 2016-03-07 18:49 - 00000000 ____D C:\Users\norbe\AppData\Local\NVIDIA 2016-03-06 20:23 - 2016-02-17 07:40 - 01903344 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2016-03-06 20:23 - 2016-02-17 07:40 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2016-03-06 20:23 - 2016-02-17 07:40 - 01571624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2016-03-06 20:23 - 2016-02-17 07:40 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2016-03-06 20:23 - 2016-02-17 07:40 - 00112216 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2016-03-06 20:22 - 2016-03-11 07:26 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-03-06 20:22 - 2016-03-08 07:42 - 06371384 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2016-03-06 20:22 - 2016-03-08 07:42 - 02992576 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2016-03-06 20:22 - 2016-03-08 07:42 - 02563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2016-03-06 20:22 - 2016-03-08 07:42 - 01264064 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2016-03-06 20:22 - 2016-03-08 07:42 - 00530880 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2016-03-06 20:22 - 2016-03-08 07:42 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2016-03-06 20:22 - 2016-03-08 07:42 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2016-03-06 20:22 - 2016-03-08 07:42 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2016-03-06 20:22 - 2016-03-07 05:22 - 06203411 _____ C:\Windows\system32\nvcoproc.bin 2016-03-06 20:22 - 2016-03-06 20:23 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2016-03-06 20:22 - 2016-02-24 00:57 - 00215608 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2016-03-06 20:22 - 2016-02-24 00:57 - 00201664 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2016-03-06 20:21 - 2016-03-10 04:19 - 12653504 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2016-03-06 20:21 - 2016-03-08 11:27 - 20061152 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2016-03-06 20:21 - 2016-03-08 11:27 - 14226864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2016-03-06 20:21 - 2016-03-08 11:27 - 03681672 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2016-03-06 20:21 - 2016-03-08 11:27 - 03259176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2016-03-06 20:21 - 2016-03-08 11:27 - 00545632 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2016-03-06 20:21 - 2016-03-08 11:27 - 00448824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2016-03-06 20:21 - 2016-03-08 11:27 - 00153208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2016-03-06 20:21 - 2016-03-08 11:27 - 00037702 _____ C:\Windows\system32\nvinfo.pb 2016-03-06 20:21 - 2016-02-24 00:57 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436200.dll 2016-03-06 20:21 - 2016-02-24 00:57 - 01572496 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2016-03-06 20:21 - 2016-02-24 00:57 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436200.dll 2016-03-06 20:21 - 2016-02-24 00:57 - 00205456 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2016-03-06 20:21 - 2016-02-24 00:57 - 00099472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2016-03-06 20:21 - 2016-02-24 00:57 - 00090768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2016-03-06 20:21 - 2016-02-24 00:57 - 00047760 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2016-03-06 20:21 - 2016-02-24 00:57 - 00039240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2016-03-06 20:20 - 2016-03-21 10:14 - 00000000 ____D C:\NVIDIA 2016-03-06 20:20 - 2016-03-06 20:23 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-03-02 17:13 - 2016-02-23 12:25 - 01818696 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-03-02 17:13 - 2016-02-23 11:34 - 01542816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-03-02 17:13 - 2016-02-23 11:32 - 08705672 _____ (Microsoft Corp.) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll 2016-03-02 17:13 - 2016-02-23 10:38 - 06952088 _____ (Microsoft Corp.) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll 2016-03-02 17:13 - 2016-02-23 09:58 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\wininetlui.dll 2016-03-02 17:13 - 2016-02-23 09:06 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininetlui.dll 2016-03-02 17:13 - 2016-02-23 09:06 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-03-02 17:13 - 2016-02-23 08:30 - 01731584 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-03-02 17:13 - 2016-02-23 08:24 - 02755584 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-03-02 17:13 - 2016-02-23 07:59 - 01500672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-03-02 17:13 - 2016-02-23 07:55 - 02229760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-03-02 17:13 - 2016-02-23 07:36 - 12125696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-03-02 17:13 - 2016-02-23 07:36 - 03666432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-03-02 17:13 - 2016-02-09 04:07 - 01626624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2016-03-02 17:13 - 2016-02-09 04:04 - 01946624 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2016-03-02 17:12 - 2016-02-23 12:29 - 01030416 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2016-03-02 17:12 - 2016-02-23 12:29 - 00874968 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2016-03-02 17:12 - 2016-02-23 12:27 - 02654872 _____ C:\Windows\system32\CoreUIComponents.dll 2016-03-02 17:12 - 2016-02-23 12:27 - 01317640 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2016-03-02 17:12 - 2016-02-23 12:27 - 01141504 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2016-03-02 17:12 - 2016-02-23 12:25 - 02152288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2016-03-02 17:12 - 2016-02-23 12:25 - 00563552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys 2016-03-02 17:12 - 2016-02-23 12:15 - 00779384 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll 2016-03-02 17:12 - 2016-02-23 12:08 - 00989536 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi 2016-03-02 17:12 - 2016-02-23 11:34 - 01859960 _____ C:\Windows\SysWOW64\CoreUIComponents.dll 2016-03-02 17:12 - 2016-02-23 11:33 - 00696160 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll 2016-03-02 17:12 - 2016-02-23 11:33 - 00389992 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll 2016-03-02 17:12 - 2016-02-23 11:32 - 02544264 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2016-03-02 17:12 - 2016-02-23 11:32 - 01152328 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll 2016-03-02 17:12 - 2016-02-23 11:32 - 01062480 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll 2016-03-02 17:12 - 2016-02-23 11:32 - 00498448 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll 2016-03-02 17:12 - 2016-02-23 11:32 - 00369912 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2016-03-02 17:12 - 2016-02-23 11:31 - 01017032 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll 2016-03-02 17:12 - 2016-02-23 11:31 - 00819648 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2016-03-02 17:12 - 2016-02-23 11:31 - 00536256 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2016-03-02 17:12 - 2016-02-23 11:31 - 00476728 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll 2016-03-02 17:12 - 2016-02-23 11:31 - 00408120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2016-03-02 17:12 - 2016-02-23 11:25 - 03671888 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-03-02 17:12 - 2016-02-23 11:22 - 00572272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll 2016-03-02 17:12 - 2016-02-23 11:21 - 22564328 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2016-03-02 17:12 - 2016-02-23 11:17 - 00146272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2016-03-02 17:12 - 2016-02-23 10:45 - 02773096 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll 2016-03-02 17:12 - 2016-02-23 10:40 - 00430944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-03-02 17:12 - 2016-02-23 10:39 - 00502112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll 2016-03-02 17:12 - 2016-02-23 10:38 - 02180136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2016-03-02 17:12 - 2016-02-23 10:38 - 00980352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll 2016-03-02 17:12 - 2016-02-23 10:38 - 00895080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll 2016-03-02 17:12 - 2016-02-23 10:38 - 00882720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll 2016-03-02 17:12 - 2016-02-23 10:38 - 00450912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll 2016-03-02 17:12 - 2016-02-23 10:38 - 00420928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll 2016-03-02 17:12 - 2016-02-23 10:37 - 00713824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2016-03-02 17:12 - 2016-02-23 10:32 - 00791744 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-03-02 17:12 - 2016-02-23 10:30 - 02919320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-03-02 17:12 - 2016-02-23 10:27 - 21124344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2016-03-02 17:12 - 2016-02-23 10:27 - 00376536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll 2016-03-02 17:12 - 2016-02-23 10:25 - 00534368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2016-03-02 17:12 - 2016-02-23 10:20 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSave.dll 2016-03-02 17:12 - 2016-02-23 10:20 - 00238592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xboxgip.sys 2016-03-02 17:12 - 2016-02-23 10:19 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xinputhid.sys 2016-03-02 17:12 - 2016-02-23 10:17 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll 2016-03-02 17:12 - 2016-02-23 10:12 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\provpackageapidll.dll 2016-03-02 17:12 - 2016-02-23 10:10 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\WiFiConfigSP.dll 2016-03-02 17:12 - 2016-02-23 10:07 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe 2016-03-02 17:12 - 2016-02-23 10:07 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll 2016-03-02 17:12 - 2016-02-23 10:06 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\flvprophandler.dll 2016-03-02 17:12 - 2016-02-23 10:01 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys 2016-03-02 17:12 - 2016-02-23 10:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll 2016-03-02 17:12 - 2016-02-23 10:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll 2016-03-02 17:12 - 2016-02-23 09:58 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-03-02 17:12 - 2016-02-23 09:58 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\irmon.dll 2016-03-02 17:12 - 2016-02-23 09:57 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe 2016-03-02 17:12 - 2016-02-23 09:56 - 02186864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2016-03-02 17:12 - 2016-02-23 09:55 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys 2016-03-02 17:12 - 2016-02-23 09:53 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll 2016-03-02 17:12 - 2016-02-23 09:53 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll 2016-03-02 17:12 - 2016-02-23 09:52 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe 2016-03-02 17:12 - 2016-02-23 09:50 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe 2016-03-02 17:12 - 2016-02-23 09:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll 2016-03-02 17:12 - 2016-02-23 09:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerClient.dll 2016-03-02 17:12 - 2016-02-23 09:40 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SMSRouter.dll 2016-03-02 17:12 - 2016-02-23 09:39 - 00178176 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll 2016-03-02 17:12 - 2016-02-23 09:38 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\MSFlacDecoder.dll 2016-03-02 17:12 - 2016-02-23 09:38 - 00287712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll 2016-03-02 17:12 - 2016-02-23 09:37 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll 2016-03-02 17:12 - 2016-02-23 09:37 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll 2016-03-02 17:12 - 2016-02-23 09:37 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll 2016-03-02 17:12 - 2016-02-23 09:36 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\QuickActionsDataModel.dll 2016-03-02 17:12 - 2016-02-23 09:34 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\wifiprofilessettinghandler.dll 2016-03-02 17:12 - 2016-02-23 09:34 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll 2016-03-02 17:12 - 2016-02-23 09:33 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll 2016-03-02 17:12 - 2016-02-23 09:32 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe 2016-03-02 17:12 - 2016-02-23 09:31 - 00463360 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll 2016-03-02 17:12 - 2016-02-23 09:29 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SmsRouterSvc.dll 2016-03-02 17:12 - 2016-02-23 09:28 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2016-03-02 17:12 - 2016-02-23 09:27 - 00307712 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll 2016-03-02 17:12 - 2016-02-23 09:26 - 00372224 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe 2016-03-02 17:12 - 2016-02-23 09:23 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll 2016-03-02 17:12 - 2016-02-23 09:22 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll 2016-03-02 17:12 - 2016-02-23 09:20 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll 2016-03-02 17:12 - 2016-02-23 09:20 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll 2016-03-02 17:12 - 2016-02-23 09:20 - 00493568 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll 2016-03-02 17:12 - 2016-02-23 09:20 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2016-03-02 17:12 - 2016-02-23 09:19 - 00948736 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManager.dll 2016-03-02 17:12 - 2016-02-23 09:19 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2016-03-02 17:12 - 2016-02-23 09:18 - 00557056 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll 2016-03-02 17:12 - 2016-02-23 09:14 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll 2016-03-02 17:12 - 2016-02-23 09:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe 2016-03-02 17:12 - 2016-02-23 09:12 - 00852480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll 2016-03-02 17:12 - 2016-02-23 09:11 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll 2016-03-02 17:12 - 2016-02-23 09:10 - 00997376 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2016-03-02 17:12 - 2016-02-23 09:10 - 00474624 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll 2016-03-02 17:12 - 2016-02-23 09:09 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2016-03-02 17:12 - 2016-02-23 09:09 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll 2016-03-02 17:12 - 2016-02-23 09:09 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll 2016-03-02 17:12 - 2016-02-23 09:06 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2016-03-02 17:12 - 2016-02-23 09:05 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe 2016-03-02 17:12 - 2016-02-23 09:04 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll 2016-03-02 17:12 - 2016-02-23 09:04 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll 2016-03-02 17:12 - 2016-02-23 09:04 - 00382464 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll 2016-03-02 17:12 - 2016-02-23 09:02 - 01318912 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll 2016-03-02 17:12 - 2016-02-23 09:02 - 00755712 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe 2016-03-02 17:12 - 2016-02-23 09:02 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-03-02 17:12 - 2016-02-23 09:00 - 02624512 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll 2016-03-02 17:12 - 2016-02-23 08:58 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll 2016-03-02 17:12 - 2016-02-23 08:58 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll 2016-03-02 17:12 - 2016-02-23 08:58 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerServer.dll 2016-03-02 17:12 - 2016-02-23 08:58 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll 2016-03-02 17:12 - 2016-02-23 08:57 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TimeBrokerClient.dll 2016-03-02 17:12 - 2016-02-23 08:52 - 00456704 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll 2016-03-02 17:12 - 2016-02-23 08:50 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacDecoder.dll 2016-03-02 17:12 - 2016-02-23 08:49 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll 2016-03-02 17:12 - 2016-02-23 08:48 - 00838144 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll 2016-03-02 17:12 - 2016-02-23 08:47 - 00157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WiFiDisplay.dll 2016-03-02 17:12 - 2016-02-23 08:38 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll 2016-03-02 17:12 - 2016-02-23 08:37 - 01118208 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2016-03-02 17:12 - 2016-02-23 08:37 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll 2016-03-02 17:12 - 2016-02-23 08:36 - 00713728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll 2016-03-02 17:12 - 2016-02-23 08:36 - 00379392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll 2016-03-02 17:12 - 2016-02-23 08:36 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2016-03-02 17:12 - 2016-02-23 08:35 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2016-03-02 17:12 - 2016-02-23 08:31 - 00585216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll 2016-03-02 17:12 - 2016-02-23 08:30 - 00646656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll 2016-03-02 17:12 - 2016-02-23 08:29 - 00349696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll 2016-03-02 17:12 - 2016-02-23 08:28 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\SyncController.dll 2016-03-02 17:12 - 2016-02-23 08:28 - 00256512 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll 2016-03-02 17:12 - 2016-02-23 08:24 - 04827136 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2016-03-02 17:12 - 2016-02-23 08:24 - 01105920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll 2016-03-02 17:12 - 2016-02-23 08:24 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll 2016-03-02 17:12 - 2016-02-23 08:22 - 01944576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll 2016-03-02 17:12 - 2016-02-23 08:21 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll 2016-03-02 17:12 - 2016-02-23 08:21 - 00133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll 2016-03-02 17:12 - 2016-02-23 08:20 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputLocaleManager.dll 2016-03-02 17:12 - 2016-02-23 08:17 - 02635264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll 2016-03-02 17:12 - 2016-02-23 08:14 - 00990720 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll 2016-03-02 17:12 - 2016-02-23 08:11 - 01390080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll 2016-03-02 17:12 - 2016-02-23 08:05 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll 2016-03-02 17:12 - 2016-02-23 08:01 - 02295808 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2016-03-02 17:12 - 2016-02-23 07:58 - 00450560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncController.dll 2016-03-02 17:12 - 2016-02-23 07:56 - 04412928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2016-03-02 17:12 - 2016-02-23 07:55 - 04894208 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-03-02 17:12 - 2016-02-23 07:53 - 01799168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll 2016-03-02 17:12 - 2016-02-23 07:52 - 11545600 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2016-03-02 17:12 - 2016-02-23 07:51 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll 2016-03-02 17:12 - 2016-02-23 07:50 - 09919488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2016-03-02 17:12 - 2016-02-23 07:42 - 03425792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2016-03-02 17:12 - 2016-02-23 07:41 - 02912256 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll 2016-03-02 17:12 - 2016-02-23 07:39 - 13382656 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-03-02 17:12 - 2016-02-23 07:39 - 02581504 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2016-03-02 17:12 - 2016-02-23 07:35 - 07533568 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2016-03-02 17:12 - 2016-02-23 07:33 - 02604032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll 2016-03-02 17:12 - 2016-02-23 07:32 - 02793472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll 2016-03-02 17:12 - 2016-02-23 07:30 - 02061312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2016-03-02 17:12 - 2016-02-23 07:28 - 06740992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2016-03-02 17:12 - 2016-02-09 05:28 - 00277856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2016-03-02 17:12 - 2016-02-09 05:13 - 00185184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys 2016-03-02 17:12 - 2016-02-09 04:24 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll 2016-03-02 17:12 - 2016-02-09 04:18 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll 2016-03-02 17:12 - 2016-02-09 04:18 - 00237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll 2016-03-02 17:12 - 2016-02-09 04:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe 2016-02-27 22:07 - 2016-02-27 22:07 - 00281380 _____ C:\Windows\Minidump\022716-9031-01.dmp 2016-02-27 20:58 - 2016-03-21 10:14 - 00000000 ____D C:\Users\norbe\AppData\Roaming\Skype 2016-02-27 20:58 - 2016-03-21 10:14 - 00000000 ____D C:\ProgramData\Skype 2016-02-27 20:58 - 2016-02-27 20:58 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-02-27 20:58 - 2016-02-27 20:58 - 00000000 ____D C:\Users\norbe\Tracing 2016-02-27 20:58 - 2016-02-27 20:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2016-02-27 13:53 - 2016-02-27 13:53 - 00000000 ____D C:\Users\norbe\AppData\Roaming\Artifex Mundi 2016-02-21 15:03 - 2016-02-21 15:03 - 00000000 ____D C:\Users\norbe\AppData\Roaming\Foxit Software 2016-02-21 15:02 - 2016-02-21 15:02 - 00000000 ____D C:\Users\Public\Foxit Software 2016-02-21 15:02 - 2016-02-21 15:02 - 00000000 ____D C:\Users\norbe\AppData\Roaming\Foxit AgentInformation 2016-02-21 14:56 - 2016-02-21 14:56 - 00000000 ____D C:\Users\norbe\AppData\LocalLow\Temp 2016-02-21 14:11 - 2016-02-21 14:52 - 00012783 _____ C:\Users\norbe\OneDrive\Dokumente\Protokoll Boonekamp Gruppe 3.xlsx 2016-02-21 11:52 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2016-02-21 11:52 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2016-02-21 11:52 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2016-02-21 11:52 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2016-02-21 11:52 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2016-02-21 11:52 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2016-02-21 11:52 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2016-02-21 11:52 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2016-02-21 11:52 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2016-02-21 11:52 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2016-02-21 11:52 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2016-02-21 11:52 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2016-02-21 11:52 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2016-02-21 11:52 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2016-02-21 11:52 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2016-02-21 11:52 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2016-02-21 11:52 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2016-02-21 11:52 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2016-02-21 11:52 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2016-02-21 11:52 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2016-02-21 11:52 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2016-02-21 11:52 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2016-02-21 11:52 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2016-02-21 11:52 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2016-02-21 11:52 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2016-02-21 11:52 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2016-02-21 11:52 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2016-02-21 11:52 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2016-02-21 11:52 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2016-02-21 11:52 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2016-02-21 11:52 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2016-02-21 11:52 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2016-02-21 11:52 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2016-02-21 11:52 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2016-02-21 11:52 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2016-02-21 11:52 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2016-02-21 11:52 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2016-02-21 11:52 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2016-02-21 11:52 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2016-02-21 11:52 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2016-02-21 11:52 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2016-02-21 11:52 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2016-02-21 11:52 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2016-02-21 11:52 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2016-02-21 11:52 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2016-02-21 11:52 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2016-02-21 11:52 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2016-02-21 11:52 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2016-02-21 11:52 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2016-02-21 11:52 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2016-02-21 11:52 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2016-02-21 11:52 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2016-02-21 11:52 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2016-02-21 11:52 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2016-02-21 11:52 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2016-02-21 11:52 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2016-02-21 11:52 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2016-02-21 11:52 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2016-02-21 11:52 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2016-02-21 11:52 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2016-02-21 11:52 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2016-02-21 11:52 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2016-02-21 11:52 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2016-02-21 11:52 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2016-02-21 11:52 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2016-02-21 11:52 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2016-02-21 11:52 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2016-02-21 11:52 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2016-02-21 11:52 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2016-02-21 11:52 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2016-02-21 11:52 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2016-02-21 11:52 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2016-02-21 11:52 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2016-02-21 11:52 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2016-02-21 11:52 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2016-02-21 11:52 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2016-02-21 11:52 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2016-02-21 11:52 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2016-02-21 11:52 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2016-02-21 11:52 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2016-02-21 11:52 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2016-02-21 11:52 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2016-02-21 11:52 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2016-02-21 11:52 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2016-02-21 11:52 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2016-02-21 11:52 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2016-02-21 11:52 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2016-02-21 11:52 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2016-02-21 11:52 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2016-02-21 11:52 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2016-02-21 11:52 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2016-02-21 11:52 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2016-02-21 11:52 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2016-02-21 11:52 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2016-02-21 11:52 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2016-02-21 11:52 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2016-02-21 11:52 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2016-02-21 11:52 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2016-02-21 11:52 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2016-02-21 11:52 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2016-02-21 11:52 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2016-02-21 11:52 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2016-02-21 11:52 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2016-02-21 11:52 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2016-02-21 11:52 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2016-02-21 11:52 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2016-02-21 11:52 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2016-02-21 11:52 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2016-02-21 11:52 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2016-02-21 11:52 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2016-02-21 11:52 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2016-02-21 11:52 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2016-02-21 11:52 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2016-02-21 11:52 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2016-02-21 11:51 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2016-02-21 11:51 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2016-02-21 11:51 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2016-02-21 11:51 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2016-02-21 11:51 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2016-02-21 11:51 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2016-02-21 11:51 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2016-02-21 11:51 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2016-02-21 11:51 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2016-02-21 11:51 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2016-02-21 11:51 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2016-02-21 11:51 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2016-02-21 11:51 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2016-02-21 11:51 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2016-02-21 11:51 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2016-02-21 11:51 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2016-02-21 11:51 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2016-02-21 11:51 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2016-02-21 11:51 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2016-02-21 11:51 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2016-02-21 11:51 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2016-02-21 11:51 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2016-02-21 11:51 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2016-02-21 11:51 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2016-02-21 11:51 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2016-02-21 11:51 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2016-02-21 11:51 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2016-02-21 11:51 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2016-02-21 11:51 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2016-02-21 11:51 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2016-02-21 11:51 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2016-02-21 11:51 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2016-02-21 11:51 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2016-02-21 11:51 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2016-02-21 11:51 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2016-02-21 11:51 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2016-02-21 11:51 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2016-02-21 11:51 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2016-02-21 11:51 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2016-02-21 11:51 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2016-02-21 11:51 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2016-02-21 11:51 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2016-02-21 11:51 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2016-02-21 11:51 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2016-02-21 11:51 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2016-02-21 11:51 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2016-02-21 11:51 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2016-02-21 11:51 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2016-02-21 11:51 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2016-02-21 11:51 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2016-02-21 11:51 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2016-02-21 11:51 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2016-02-21 11:51 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2016-02-21 11:51 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2016-02-21 11:51 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2016-02-21 11:51 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2016-02-21 11:51 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2016-02-21 11:51 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2016-02-21 11:51 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2016-02-21 11:51 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2016-02-21 11:51 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2016-02-21 11:51 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2016-02-21 11:51 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2016-02-21 11:51 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2016-02-21 11:51 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2016-02-21 11:51 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2016-02-21 11:51 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2016-02-21 11:51 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-03-22 09:47 - 2016-02-20 15:06 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-03-22 09:30 - 2016-02-13 21:08 - 00000000 ____D C:\ProgramData\360safe 2016-03-22 09:18 - 2016-02-13 21:08 - 00000000 ____D C:\Users\norbe\AppData\LocalLow\360WD 2016-03-22 09:13 - 2016-02-13 20:41 - 01827448 _____ C:\Windows\system32\PerfStringBackup.INI 2016-03-22 09:13 - 2016-02-13 20:39 - 00000000 ____D C:\Users\norbe\AppData\Local\MicrosoftEdge 2016-03-22 09:13 - 2015-10-30 19:35 - 00790808 _____ C:\Windows\system32\perfh007.dat 2016-03-22 09:13 - 2015-10-30 19:35 - 00159688 _____ C:\Windows\system32\perfc007.dat 2016-03-22 09:13 - 2015-10-30 08:21 - 00000000 ____D C:\Windows\INF 2016-03-22 09:06 - 2016-02-13 20:52 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2016-03-22 09:06 - 2016-02-13 20:52 - 00000000 __SHD C:\Users\norbe\IntelGraphicsProfiles 2016-03-22 09:06 - 2016-02-13 20:33 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-03-21 22:15 - 2015-10-30 07:28 - 00262144 ___SH C:\Windows\system32\config\BBI 2016-03-21 21:43 - 2016-02-13 21:09 - 00000000 __SHD C:\$360Section 2016-03-21 21:43 - 2016-02-13 21:09 - 00000000 ____D C:\ProgramData\360Quarant 2016-03-21 20:50 - 2016-02-13 21:08 - 00000000 _RSHD C:\360SANDBOX 2016-03-21 19:56 - 2016-02-13 21:28 - 00194304 _____ C:\Windows\system32\FNTCACHE.DAT 2016-03-21 11:28 - 2015-10-30 08:24 - 00000127 _____ C:\Windows\win.ini 2016-03-21 10:16 - 2016-02-13 20:35 - 00000000 ____D C:\Users\norbe 2016-03-21 10:15 - 2016-02-14 12:14 - 00000000 ____D C:\Windows\Minidump 2016-03-21 10:14 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps 2016-03-21 10:14 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\registration 2016-03-20 20:55 - 2016-02-13 20:31 - 00000000 ____D C:\Windows\Panther 2016-03-20 20:21 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\LiveKernelReports 2016-03-20 15:35 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\AppReadiness 2016-03-13 20:25 - 2016-02-13 20:38 - 00002387 _____ C:\Users\norbe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-03-13 20:25 - 2016-02-13 20:38 - 00000000 ___RD C:\Users\norbe\OneDrive 2016-03-11 07:27 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows Portable Devices 2016-03-11 07:27 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows Multimedia Platform 2016-03-11 07:27 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices 2016-03-11 07:27 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform 2016-03-11 00:47 - 2016-02-20 15:06 - 00003870 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-03-10 22:37 - 2016-02-13 21:19 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-03-10 22:37 - 2016-02-13 21:19 - 00000000 ____D C:\Windows\system32\MRT 2016-03-10 22:37 - 2015-10-30 08:11 - 00000000 ____D C:\Windows\CbsTemp 2016-03-09 23:13 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\rescache 2016-03-08 17:58 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\SysWOW64\MUI 2016-03-08 17:58 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\system32\MUI 2016-03-08 08:12 - 2015-10-30 08:26 - 00829944 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-03-08 08:12 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-03-07 21:00 - 2016-02-15 19:06 - 00000000 ____D C:\Users\norbe\AppData\Roaming\Spotify 2016-03-07 21:00 - 2016-02-15 19:05 - 00000000 ____D C:\Users\norbe\AppData\Local\Spotify 2016-03-06 20:22 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\Help 2016-03-06 19:51 - 2016-02-13 20:36 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-03-06 19:50 - 2015-10-30 07:28 - 00000000 ____D C:\Windows\SysWOW64\Dism 2016-03-06 19:49 - 2015-10-30 19:47 - 00000000 ____D C:\Program Files\Windows Journal 2016-03-06 19:49 - 2015-10-30 08:24 - 00000000 __RSD C:\Windows\Media 2016-03-06 19:49 - 2015-10-30 08:24 - 00000000 ___RD C:\Windows\PurchaseDialog 2016-03-06 19:49 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\system32\WinBioPlugIns 2016-03-06 19:49 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\system32\SystemResetPlatform 2016-03-06 19:49 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\system32\appraiser 2016-03-06 19:49 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\bcastdvr 2016-03-06 19:49 - 2015-10-30 07:28 - 00000000 ____D C:\Windows\system32\Dism 2016-02-29 18:07 - 2016-02-17 18:57 - 00001836 _____ C:\Users\norbe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2016-02-27 22:07 - 2016-02-14 12:14 - 663970275 _____ C:\Windows\MEMORY.DMP 2016-02-21 11:51 - 2016-02-13 20:45 - 00000000 ____D C:\ProgramData\Package Cache ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2016-03-21 11:26 - 2016-03-21 11:29 - 0000835 _____ () C:\ProgramData\hpzinstall.log Einige Dateien in TEMP: ==================== C:\Users\norbe\AppData\Local\Temp\AMDCleanupUtility.exe C:\Users\norbe\AppData\Local\Temp\Cleanup.dll C:\Users\norbe\AppData\Local\Temp\ddu.exe C:\Users\norbe\AppData\Local\Temp\msvcm80.dll C:\Users\norbe\AppData\Local\Temp\msvcp80.dll C:\Users\norbe\AppData\Local\Temp\msvcr80.dll C:\Users\norbe\AppData\Local\Temp\nvSCPAPI.dll C:\Users\norbe\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\norbe\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-03-14 21:28 ==================== Ende von FRST.txt ============================ |
| Themen zu Adware/Browser Hijacker: m55.dnsqa.me |
| antiviren, aufruf, browser, browser hijacker, bösartige, code, datum, dnsapi.dll, eingefangen, erkannt, hijacker, hoffe, home, launch, malwarebytes, plugins, popups, probleme, schei, seite, software, surfen, sämtliche, verschiedene, versucht, websites, windows, windowsapps |
Baum-Darstellung