Frühjahrsputz ? !

M-K-D-B · 10.07.2016, 10:48

Servus,

wir entfernen die letzten Reste und kontrollieren nochmal alles.

Schritt 1
Downloade dir die passende Version von HitmanPro auf deinen Desktop: HitmanPro - 32 Bit | HitmanPro - 64 Bit.

Starte die HitmanPro.exe
Klicke auf
Entferne den Haken bei
Klicke auf
und
Akzeptiere die Lizenzbedingungen und klicke auf
Klicke auf

und auf
Wenn der Scan beendet wurde, nichts löschen lassen etc. sondern wähle unten links auf der Button-Leiste
und speichere die Logdatei auf Deinem Desktop.
Schließe HitmanPro und poste mir das Log.

Gibt es jetzt noch Probleme mit dem PC? Wenn ja, welche?

Bitte poste mit deiner nächsten Antwort

die Logdatei von HitmanPro,
die Beantwortung der gestellten Fragen.

taduli · 10.07.2016, 10:46

Und hier die beiden FRST-Dateien:
frst.txt

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 09-07-2016
durchgeführt von Mas (Administrator) auf MAS-HP (10-07-2016 11:34:47)
Gestartet von C:\Users\Mas\Desktop
Geladene Profile: Mas (Verfügbare Profile: Mas)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 9 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\BCMWLTRY.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM2320 MFP Series\hppfaxprintersrv.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Dropbox, Inc.) C:\Users\Mas\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSDKHelperx64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-03-05] (IDT, Inc.)
HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [3488640 2012-03-14] (Hewlett-Packard Company)
HKLM\...\Run: [HP Color LaserJet CM2320 MFP Series Fax] => C:\Program Files (x86)\HP\HP Color LaserJet CM2320 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPConnectionManager] => c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [185144 2013-06-01] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [334240 2012-09-13] (Hewlett-Packard Company)
HKLM-x32\...\Run: [File Sanitizer] => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [12310616 2012-03-22] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1085656 2015-12-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Java\jre1.8.0_91\bin\jusched.exe"
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: E - E:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: I - I:\setup.exe
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: {05f6733d-44a6-11e3-a35e-0c84dce3889c} - E:\setup.exe
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: {05f67348-44a6-11e3-a35e-0c84dce3889c} - E:\setup.exe
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: {05f673d0-44a6-11e3-a35e-0c84dce3889c} - E:\setup.exe
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: {44c7bea2-6562-11e3-b574-0c84dce3889c} - E:\setup.exe
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: {44c7bea4-6562-11e3-b574-0c84dce3889c} - E:\setup.exe
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: {450e1c20-c110-11e5-8c8e-2c44fd692798} - E:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: {6937a26d-45bd-11e3-88f5-70188b893308} - E:\setup.exe
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: {88f79f1d-5b1c-11e3-b5c8-0c84dce3889c} - E:\setup.exe
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: {88f79f1f-5b1c-11e3-b5c8-0c84dce3889c} - E:\setup.exe
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: {88f79f77-5b1c-11e3-b5c8-0c84dce3889c} - E:\setup.exe
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\MountPoints2: {bd336851-00a4-11e4-9f7f-2c44fd692798} - H:\setup.exe
Lsa: [Notification Packages] DPPassFilter scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mas\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mas\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mas\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mas\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mas\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mas\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-06-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mas\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-06-13] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-11-24]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\Mas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-06-25]
ShortcutTarget: Dropbox.lnk -> C:\Users\Mas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9EB9DEE5-35FA-454D-AF55-7F07AF53ECF4}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2856982752-327615534-2607958787-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2856982752-327615534-2607958787-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-03-22] (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-26] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-26] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Mas\AppData\Roaming\Mozilla\Firefox\Profiles\cvlvrze3.default
FF DefaultSearchEngine: Google Images
FF SelectedSearchEngine: Google Images
FF Homepage: hxxps://de.nachrichten.yahoo.com/
FF Keyword.URL: hxxp://feed.snapdo.com/?publisher=Tuguu&dpid=TuguuCR&co=DE&userid=0835c2e9-9075-6cb0-a41d-a136f1e4a0ce&searchtype=ds&installDate=02/11/2013&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2016-01-06] ()
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2016-01-06] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-26] (Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-02-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2856982752-327615534-2607958787-1001: @www.flatcast.com/FlatViewer 5.2 -> C:\Users\Mas\AppData\Roaming\Mozilla\Plugins\NpFv530.dll [2011-09-23] (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NpFv530.dll [2011-09-23] (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-02-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Mas\AppData\Roaming\mozilla\plugins\NpFv530.dll [2011-09-23] (1 mal 1 Software GmbH)
FF Extension: Download Tab - C:\Users\Mas\AppData\Roaming\Mozilla\Firefox\Profiles\cvlvrze3.default\extensions\{a949831f-d9c0-45ae-8c60-91c2a86fbfb6}.xpi [2016-06-19]
FF Extension: Avira Browser Safety - C:\Users\Mas\AppData\Roaming\Mozilla\Firefox\Profiles\cvlvrze3.default\Extensions\abs@avira.com [2014-11-06] [ist nicht signiert]
FF Extension: Adblock Plus - C:\Users\Mas\AppData\Roaming\Mozilla\Firefox\Profiles\cvlvrze3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-06-16]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: DigitalPersona Extension - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-10-07] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files (x86)\T-Mobile\InternetManager_Z\Bin\addon => nicht gefunden
FF HKU\S-1-5-21-2856982752-327615534-2607958787-1001\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Mas\AppData\Roaming\Mozilla\Firefox\Profiles\cvlvrze3.default\extensions\cliqz@cliqz.com => nicht gefunden

Chrome: 
=======
CHR Profile: C:\Users\Mas\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S4 AAV UpdateService; C:\Program Files (x86)\Lexware\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
S4 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [493904 2012-03-15] (DigitalPersona, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2519904 2016-04-13] (ESET)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [477056 2012-11-19] (Hewlett-Packard Company)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [523680 2012-09-13] (Hewlett-Packard Company)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-11-06] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [139264 2007-11-06] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
S4 IFXSpMgtSrv; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1127800 2012-01-27] (Infineon Technologies AG)
S4 IFXTCS; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [984440 2012-01-27] (Infineon Technologies AG)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-28] ()
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165144 2012-03-28] (Intel Corporation)
S4 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1327104 2012-03-22] () [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [50688 2014-11-17] (Hewlett-Packard) [Datei ist nicht signiert]
S4 PersonalSecureDriveService; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [212344 2012-01-27] (Infineon Technologies AG)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [66048 2014-11-17] (Hewlett-Packard) [Datei ist nicht signiert]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe [5858304 2013-10-07] (Broadcom Corporation) [Datei ist nicht signiert]
S2 VMCService; "C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe" [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [134696 2012-02-02] (Broadcom Corporation.)
R3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2012-02-02] (Broadcom Corporation.)
R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [64832 2012-11-09] (Hewlett-Packard Company)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264552 2016-05-12] (ESET)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [186784 2016-05-12] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [142976 2016-05-12] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [198096 2016-05-12] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [53384 2016-05-12] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [84800 2016-05-12] (ESET)
R3 HPEWSFXBULK; C:\Windows\System32\drivers\hpfx64bulk.sys [29240 2015-10-28] (Hewlett Packard)
R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2012-07-16] (JMicron Technology Corp.)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [93640 2012-03-22] (McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158792 2012-03-22] (McAfee, Inc.)
R1 PersonalSecureDrive; C:\Windows\System32\drivers\psd.sys [44576 2010-01-26] (Infineon Technologies AG)
S3 pwdrvio; C:\windows\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S3 Spfd; C:\Windows\System32\DRIVERS\Spfd.sys [11336 2014-11-21] (Safend Ltd.)
S0 SpfdBus; C:\Windows\System32\DRIVERS\SpfdBus.sys [11336 2014-11-21] (Safend Ltd.)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1064184 2012-09-23] (Sunplus)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-07-10 11:33 - 2016-07-10 11:33 - 00002768 _____ C:\Users\Mas\Desktop\Search.txt
2016-07-10 11:23 - 2016-07-10 11:24 - 00002555 _____ C:\Users\Mas\Desktop\Fixlog.txt
2016-07-10 09:36 - 2016-07-10 09:36 - 00000000 ____D C:\Users\Mas\Desktop\FRST-OlderVersion
2016-07-10 09:31 - 2016-07-10 09:31 - 00004422 _____ C:\Users\Mas\Desktop\JRT.txt
2016-07-10 09:28 - 2016-07-10 09:28 - 01610560 _____ (Malwarebytes) C:\Users\Mas\Desktop\JRT.exe
2016-07-10 09:26 - 2016-07-10 09:26 - 00030157 _____ C:\Users\Mas\Desktop\mbam.txt
2016-07-10 08:14 - 2016-07-10 09:24 - 00192216 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2016-07-10 08:13 - 2016-07-10 08:13 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-07-10 08:13 - 2016-07-10 08:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-07-10 08:13 - 2016-07-10 08:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-07-10 08:13 - 2016-07-10 08:13 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-07-10 08:13 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2016-07-10 08:13 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamchameleon.sys
2016-07-10 08:13 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2016-07-10 08:12 - 2016-07-10 08:12 - 22851472 _____ (Malwarebytes ) C:\Users\Mas\Desktop\mbam-setup-2.2.1.1043.exe
2016-07-10 08:01 - 2016-07-10 08:06 - 00000000 ___DC C:\AdwCleaner
2016-07-10 08:00 - 2016-07-10 08:00 - 03712064 _____ C:\Users\Mas\Desktop\AdwCleaner_5.201.exe
2016-07-09 14:43 - 2016-07-09 14:43 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2016-07-09 13:37 - 2015-07-30 15:13 - 00124624 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-07-09 13:37 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-07-09 12:25 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\windows\system32\icardres.dll
2016-07-09 12:25 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardres.dll
2016-07-09 12:25 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\windows\SysWOW64\TsWpfWrp.exe
2016-07-09 12:25 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2016-07-09 12:25 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\windows\system32\icardagt.exe
2016-07-09 12:25 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\windows\system32\infocardapi.dll
2016-07-09 12:25 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardagt.exe
2016-07-09 12:25 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\windows\SysWOW64\infocardapi.dll
2016-07-09 12:22 - 2016-05-12 16:58 - 00464896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2016-07-09 12:22 - 2016-05-12 16:58 - 00405504 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2016-07-09 12:22 - 2016-05-12 16:58 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2016-07-09 12:22 - 2016-01-22 08:18 - 00961024 _____ (Microsoft Corporation) C:\windows\system32\CPFilters.dll
2016-07-09 12:22 - 2016-01-22 08:18 - 00723968 _____ (Microsoft Corporation) C:\windows\system32\EncDec.dll
2016-07-09 12:22 - 2016-01-22 08:04 - 00642048 _____ (Microsoft Corporation) C:\windows\SysWOW64\CPFilters.dll
2016-07-09 12:22 - 2016-01-22 08:04 - 00535040 _____ (Microsoft Corporation) C:\windows\SysWOW64\EncDec.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00994760 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00063840 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00020832 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00019808 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00016224 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00015712 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00013664 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\windows\SysWOW64\ucrtbase.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-07-09 12:22 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-07-09 12:21 - 2016-03-18 00:56 - 02084864 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2016-07-09 12:21 - 2016-03-18 00:28 - 01414144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2016-07-09 12:21 - 2016-03-16 20:50 - 00156672 _____ (Microsoft Corporation) C:\windows\system32\mtxoci.dll
2016-07-09 12:21 - 2016-03-16 20:28 - 00176128 _____ (Microsoft Corporation) C:\windows\SysWOW64\msorcl32.dll
2016-07-09 12:21 - 2016-03-16 20:28 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\mtxoci.dll
2016-07-09 12:20 - 2016-05-17 01:22 - 00631176 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2016-07-09 12:20 - 2016-05-17 01:19 - 05546216 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2016-07-09 12:20 - 2016-05-17 01:19 - 00706280 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2016-07-09 12:20 - 2016-05-17 01:19 - 00154856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2016-07-09 12:20 - 2016-05-17 01:19 - 00095464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2016-07-09 12:20 - 2016-05-17 01:18 - 03998952 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2016-07-09 12:20 - 2016-05-17 01:18 - 03943144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2016-07-09 12:20 - 2016-05-17 01:17 - 01732888 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2016-07-09 12:20 - 2016-05-17 01:16 - 01314136 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 01464320 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 01212928 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00730624 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00419840 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00344064 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00316416 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00275456 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00260608 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00251392 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-07-09 12:20 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-07-09 12:20 - 2016-05-16 23:23 - 00148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2016-07-09 12:20 - 2016-05-16 23:23 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2016-07-09 12:20 - 2016-05-16 23:23 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2016-07-09 12:20 - 2016-05-16 23:23 - 00017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2016-07-09 12:20 - 2016-05-16 23:19 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2016-07-09 12:20 - 2016-05-16 23:19 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2016-07-09 12:20 - 2016-05-16 23:16 - 00159744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2016-07-09 12:20 - 2016-05-16 23:15 - 00291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2016-07-09 12:20 - 2016-05-16 23:15 - 00129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2016-07-09 12:20 - 2016-05-16 23:14 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2016-07-09 12:20 - 2016-05-16 23:14 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2016-07-09 12:20 - 2016-05-16 23:14 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2016-07-09 12:20 - 2016-05-16 23:10 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2016-07-09 12:20 - 2016-05-16 23:10 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2016-07-09 12:20 - 2016-05-16 23:10 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2016-07-09 12:20 - 2016-05-16 23:10 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2016-07-09 12:20 - 2016-05-16 23:09 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2016-07-09 12:20 - 2016-05-16 23:09 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-07-09 12:20 - 2016-05-16 23:09 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-07-09 12:20 - 2016-05-16 23:09 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-07-09 12:20 - 2016-05-16 23:09 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-07-09 12:20 - 2016-05-14 00:09 - 03156480 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2016-07-09 12:20 - 2016-05-14 00:09 - 00192512 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2016-07-09 12:20 - 2016-05-14 00:09 - 00098816 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2016-07-09 12:20 - 2016-05-14 00:07 - 00091136 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2016-07-09 12:20 - 2016-05-13 23:55 - 02607104 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2016-07-09 12:20 - 2016-05-13 23:53 - 00709120 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2016-07-09 12:20 - 2016-05-13 23:53 - 00037888 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2016-07-09 12:20 - 2016-05-13 23:52 - 00140288 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2016-07-09 12:20 - 2016-05-13 23:52 - 00037888 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2016-07-09 12:20 - 2016-05-13 23:52 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2016-07-09 12:20 - 2016-05-13 23:52 - 00012288 _____ (Microsoft Corporation) C:\windows\system32\wu.upgrade.ps.dll
2016-07-09 12:20 - 2016-05-13 23:50 - 00174080 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2016-07-09 12:20 - 2016-05-13 23:38 - 00573440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2016-07-09 12:20 - 2016-05-13 23:38 - 00093696 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2016-07-09 12:20 - 2016-05-13 23:38 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2016-07-09 12:20 - 2016-05-13 23:38 - 00030208 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2016-07-09 12:20 - 2016-05-12 19:14 - 00862208 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2016-07-09 12:20 - 2016-05-12 19:14 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2016-07-09 12:20 - 2016-05-12 17:18 - 00572416 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2016-07-09 12:20 - 2016-05-12 17:18 - 00090624 _____ (Microsoft Corporation) C:\windows\SysWOW64\olepro32.dll
2016-07-09 12:20 - 2016-05-12 17:18 - 00067584 _____ (Microsoft Corporation) C:\windows\SysWOW64\asycfilt.dll
2016-07-09 12:20 - 2016-05-12 15:05 - 00459640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2016-07-09 12:20 - 2016-05-12 15:05 - 00297984 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll
2016-07-09 12:20 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcryptprimitives.dll
2016-07-09 12:20 - 2016-05-04 19:21 - 00114408 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2016-07-09 12:20 - 2016-05-04 19:17 - 03244032 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2016-07-09 12:20 - 2016-05-04 19:17 - 02365440 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2016-07-09 12:20 - 2016-05-04 19:17 - 01806848 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2016-07-09 12:20 - 2016-05-04 19:17 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2016-07-09 12:20 - 2016-05-04 19:17 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2016-07-09 12:20 - 2016-05-04 19:17 - 00025088 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimsg.dll
2016-07-09 12:20 - 2016-05-04 19:17 - 00025088 _____ (Microsoft Corporation) C:\windows\system32\msimsg.dll
2016-07-09 12:20 - 2016-05-04 19:16 - 01941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2016-07-09 12:20 - 2016-05-04 19:16 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2016-07-09 12:20 - 2016-05-04 17:04 - 00128512 _____ (Microsoft Corporation) C:\windows\system32\msiexec.exe
2016-07-09 12:20 - 2016-05-04 16:55 - 00073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\msiexec.exe
2016-07-09 12:20 - 2015-07-15 20:15 - 00094656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2016-07-09 12:20 - 2015-07-15 20:10 - 01743360 _____ (Microsoft Corporation) C:\windows\system32\sysmain.dll
2016-07-09 12:20 - 2015-07-15 20:10 - 00011264 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2016-07-09 12:19 - 2015-08-05 19:56 - 00022528 _____ (Microsoft Corporation) C:\windows\system32\icaapi.dll
2016-07-09 12:19 - 2015-08-05 19:06 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tssecsrv.sys
2016-07-09 12:19 - 2015-05-25 20:19 - 00113664 _____ (Microsoft Corporation) C:\windows\system32\sechost.dll
2016-07-09 12:19 - 2015-05-25 20:18 - 00404992 _____ (Microsoft Corporation) C:\windows\system32\tracerpt.exe
2016-07-09 12:19 - 2015-05-25 20:18 - 00104448 _____ (Microsoft Corporation) C:\windows\system32\logman.exe
2016-07-09 12:19 - 2015-05-25 20:18 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\typeperf.exe
2016-07-09 12:19 - 2015-05-25 20:18 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\relog.exe
2016-07-09 12:19 - 2015-05-25 20:18 - 00019456 _____ (Microsoft Corporation) C:\windows\system32\diskperf.exe
2016-07-09 12:19 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\windows\SysWOW64\sechost.dll
2016-07-09 12:19 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\tracerpt.exe
2016-07-09 12:19 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\logman.exe
2016-07-09 12:19 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\windows\SysWOW64\typeperf.exe
2016-07-09 12:19 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\windows\SysWOW64\relog.exe
2016-07-09 12:19 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\diskperf.exe
2016-07-09 12:18 - 2016-03-16 02:16 - 00760320 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2016-07-09 12:18 - 2016-03-16 02:16 - 00106496 _____ (Microsoft Corporation) C:\windows\system32\samlib.dll
2016-07-09 12:18 - 2016-03-16 01:53 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\samlib.dll
2016-07-09 12:18 - 2015-07-15 05:19 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\basesrv.dll
2016-07-09 12:17 - 2016-02-05 21:03 - 00147904 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tpm.sys
2016-07-09 12:17 - 2016-02-05 20:56 - 00020480 _____ (Microsoft Corporation) C:\windows\system32\tbs.dll
2016-07-09 12:17 - 2016-02-05 20:54 - 00109568 _____ (Microsoft Corporation) C:\windows\system32\fveapibase.dll
2016-07-09 12:17 - 2016-02-05 19:33 - 00015360 _____ (Microsoft Corporation) C:\windows\SysWOW64\tbs.dll
2016-07-09 12:17 - 2015-12-16 20:55 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\nlsbres.dll
2016-07-09 12:17 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\kbdgeoqw.dll
2016-07-09 12:17 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZEL.DLL
2016-07-09 12:17 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZE.DLL
2016-07-09 12:17 - 2015-12-16 20:48 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZE.DLL
2016-07-09 12:17 - 2015-12-16 20:48 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\kbdgeoqw.dll
2016-07-09 12:17 - 2015-12-16 20:48 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZEL.DLL
2016-07-09 12:17 - 2015-12-16 20:47 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlsbres.dll
2016-07-09 12:17 - 2015-12-16 16:38 - 00419928 _____ C:\windows\SysWOW64\locale.nls
2016-07-09 12:17 - 2015-12-16 16:37 - 00419928 _____ C:\windows\system32\locale.nls
2016-07-09 12:17 - 2015-11-10 20:55 - 01648128 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2016-07-09 12:17 - 2015-11-10 20:55 - 01180160 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2016-07-09 12:17 - 2015-11-10 20:55 - 01008640 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2016-07-09 12:17 - 2015-11-10 20:39 - 01251328 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2016-07-09 12:17 - 2015-11-10 20:37 - 00833024 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2016-07-09 12:17 - 2015-06-03 22:21 - 00451080 _____ (Microsoft Corporation) C:\windows\system32\fveapi.dll
2016-07-09 12:16 - 2016-06-26 02:35 - 00041704 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2016-07-09 12:16 - 2016-06-26 02:27 - 01208320 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2016-07-09 12:16 - 2016-06-22 15:06 - 00268800 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2016-07-09 12:16 - 2016-06-17 20:24 - 01490432 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2016-07-09 12:16 - 2016-06-17 20:24 - 00571904 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2016-07-09 12:16 - 2016-06-17 20:24 - 00544256 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2016-07-09 12:16 - 2016-06-17 20:24 - 00294912 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2016-07-09 12:16 - 2016-06-17 20:24 - 00219136 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2016-07-09 12:16 - 2016-06-17 20:24 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2016-07-09 12:16 - 2016-05-12 19:15 - 00105472 _____ (Microsoft Corporation) C:\windows\system32\winipsec.dll
2016-07-09 12:16 - 2016-05-12 19:14 - 00794624 _____ (Microsoft Corporation) C:\windows\system32\gpsvc.dll
2016-07-09 12:16 - 2016-05-12 19:14 - 00793088 _____ (Microsoft Corporation) C:\windows\system32\gpprefcl.dll
2016-07-09 12:16 - 2016-05-12 19:14 - 00502272 _____ (Microsoft Corporation) C:\windows\system32\IPSECSVC.DLL
2016-07-09 12:16 - 2016-05-12 19:14 - 00373760 _____ (Microsoft Corporation) C:\windows\system32\polstore.dll
2016-07-09 12:16 - 2016-05-12 19:14 - 00096256 _____ (Microsoft Corporation) C:\windows\system32\gpapi.dll
2016-07-09 12:16 - 2016-05-12 19:14 - 00075776 _____ (Microsoft Corporation) C:\windows\system32\FwRemoteSvr.dll
2016-07-09 12:16 - 2016-05-12 19:14 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\gpscript.dll
2016-07-09 12:16 - 2016-05-12 17:18 - 00591872 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpprefcl.dll
2016-07-09 12:16 - 2016-05-12 17:18 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\polstore.dll
2016-07-09 12:16 - 2016-05-12 17:18 - 00079360 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpapi.dll
2016-07-09 12:16 - 2016-05-12 17:18 - 00070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\winipsec.dll
2016-07-09 12:16 - 2016-05-12 17:18 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\FwRemoteSvr.dll
2016-07-09 12:16 - 2016-05-12 17:06 - 00025600 _____ (Microsoft Corporation) C:\windows\system32\gpscript.exe
2016-07-09 12:16 - 2016-05-12 17:03 - 03217408 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-07-09 12:16 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpscript.dll
2016-07-09 12:16 - 2016-05-12 16:57 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpscript.exe
2016-07-09 12:16 - 2016-04-09 08:58 - 14186496 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2016-07-09 12:16 - 2016-04-09 08:57 - 01867776 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2016-07-09 12:16 - 2016-04-09 08:54 - 12881408 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2016-07-09 12:16 - 2016-04-09 08:54 - 01499648 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2016-07-09 12:16 - 2016-04-09 07:53 - 03231232 _____ (Microsoft Corporation) C:\windows\explorer.exe
2016-07-09 12:16 - 2016-04-09 07:44 - 02973184 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe
2016-07-09 12:16 - 2015-12-08 23:54 - 02285056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2016-07-09 12:16 - 2015-12-08 23:54 - 01620992 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL
2016-07-09 12:16 - 2015-12-08 23:54 - 01568768 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVENCOD.DLL
2016-07-09 12:16 - 2015-12-08 23:54 - 01325056 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMSPDMOE.DLL
2016-07-09 12:16 - 2015-12-08 23:54 - 00902144 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMADMOD.DLL
2016-07-09 12:16 - 2015-12-08 23:54 - 00815616 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMADMOE.DLL
2016-07-09 12:16 - 2015-12-08 23:54 - 00740352 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmpmde.dll
2016-07-09 12:16 - 2015-12-08 23:54 - 00739328 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMSPDMOD.DLL
2016-07-09 12:16 - 2015-12-08 23:54 - 00665088 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVXENCD.DLL
2016-07-09 12:16 - 2015-12-08 23:54 - 00541184 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVSDECD.DLL
2016-07-09 12:16 - 2015-12-08 23:54 - 00358400 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVSENCD.DLL
2016-07-09 12:16 - 2015-12-08 23:54 - 00154112 _____ (Microsoft Corporation) C:\windows\SysWOW64\VIDRESZR.DLL
2016-07-09 12:16 - 2015-12-08 23:53 - 03209728 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2016-07-09 12:16 - 2015-12-08 23:53 - 01329664 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2016-07-09 12:16 - 2015-12-08 23:53 - 00970240 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2adec.dll
2016-07-09 12:16 - 2015-12-08 23:53 - 00829952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSMPEG2ENC.DLL
2016-07-09 12:16 - 2015-12-08 23:53 - 00609280 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFWMAAEC.DLL
2016-07-09 12:16 - 2015-12-08 23:53 - 00519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2016-07-09 12:16 - 2015-12-08 23:53 - 00489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll
2016-07-09 12:16 - 2015-12-08 23:53 - 00415744 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP4SDECD.DLL
2016-07-09 12:16 - 2015-12-08 23:53 - 00354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2016-07-09 12:16 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\windows\SysWOW64\MPG4DECD.DLL
2016-07-09 12:16 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP43DECD.DLL
2016-07-09 12:16 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\windows\SysWOW64\RESAMPLEDMO.DLL
2016-07-09 12:16 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\windows\SysWOW64\qasf.dll
2016-07-09 12:16 - 2015-12-08 23:53 - 00193536 _____ (Microsoft Corporation) C:\windows\SysWOW64\ksproxy.ax
2016-07-09 12:16 - 2015-12-08 23:53 - 00153600 _____ (Microsoft Corporation) C:\windows\SysWOW64\COLORCNV.DLL
2016-07-09 12:16 - 2015-12-08 23:53 - 00103424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll
2016-07-09 12:16 - 2015-12-08 23:53 - 00079872 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP3DMOD.DLL
2016-07-09 12:16 - 2015-12-08 23:53 - 00067584 _____ (Microsoft Corporation) C:\windows\SysWOW64\devenum.dll
2016-07-09 12:16 - 2015-12-08 23:53 - 00053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfvdsp.dll
2016-07-09 12:16 - 2015-12-08 23:53 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\rrinstaller.exe
2016-07-09 12:16 - 2015-12-08 23:53 - 00023040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfpmp.exe
2016-07-09 12:16 - 2015-12-08 23:53 - 00004608 _____ (Microsoft Corporation) C:\windows\SysWOW64\ksuser.dll
2016-07-09 12:16 - 2015-12-08 23:50 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mferror.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 04121600 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 02777088 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 01955328 _____ (Microsoft Corporation) C:\windows\system32\WMVENCOD.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 01888768 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 01575424 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOE.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 01573888 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 01393152 _____ (Microsoft Corporation) C:\windows\system32\WMALFXGFXDSP.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 01307136 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2adec.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 01232896 _____ (Microsoft Corporation) C:\windows\system32\WMADMOD.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 01160192 _____ (Microsoft Corporation) C:\windows\system32\MSMPEG2ENC.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 01153024 _____ (Microsoft Corporation) C:\windows\system32\WMADMOE.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 01026048 _____ (Microsoft Corporation) C:\windows\system32\wmpmde.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 01010688 _____ (Microsoft Corporation) C:\windows\system32\mcmde.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 00978944 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOD.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00666112 _____ (Microsoft Corporation) C:\windows\system32\WMVSDECD.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00653824 _____ (Microsoft Corporation) C:\windows\system32\MP4SDECD.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00642048 _____ (Microsoft Corporation) C:\windows\system32\WMVXENCD.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00632320 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 00484864 _____ (Microsoft Corporation) C:\windows\system32\MFWMAAEC.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00447488 _____ (Microsoft Corporation) C:\windows\system32\WMVSENCD.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00432128 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 00378880 _____ (Microsoft Corporation) C:\windows\system32\SysFxUI.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 00371712 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 00292352 _____ (Microsoft Corporation) C:\windows\system32\VIDRESZR.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00254464 _____ (Microsoft Corporation) C:\windows\system32\qasf.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 00225792 _____ (Microsoft Corporation) C:\windows\system32\RESAMPLEDMO.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00224768 _____ (Microsoft Corporation) C:\windows\system32\MPG4DECD.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00223744 _____ (Microsoft Corporation) C:\windows\system32\MP43DECD.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 00189952 _____ (Microsoft Corporation) C:\windows\system32\COLORCNV.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\MP3DMOD.DLL
2016-07-09 12:16 - 2015-12-08 21:07 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\devenum.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\mfvdsp.dll
2016-07-09 12:16 - 2015-12-08 21:07 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2016-07-09 12:16 - 2015-12-08 21:07 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\ksuser.dll
2016-07-09 12:16 - 2015-12-08 21:06 - 00250880 _____ (Microsoft Corporation) C:\windows\system32\ksproxy.ax
2016-07-09 12:16 - 2015-12-08 21:06 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2016-07-09 12:16 - 2015-12-08 21:04 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2016-07-09 12:16 - 2015-12-08 20:54 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2016-07-09 12:16 - 2015-12-08 20:12 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2016-07-09 12:16 - 2015-12-08 20:11 - 00005632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmkaud.sys
2016-07-09 12:16 - 2015-10-29 19:50 - 00342016 _____ (Microsoft Corporation) C:\windows\system32\apphelp.dll
2016-07-09 12:16 - 2015-10-29 19:50 - 00072192 _____ (Microsoft Corporation) C:\windows\system32\aelupsvc.dll
2016-07-09 12:16 - 2015-10-29 19:50 - 00023552 _____ (Microsoft Corporation) C:\windows\system32\sdbinst.exe
2016-07-09 12:16 - 2015-10-29 19:50 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\shimeng.dll
2016-07-09 12:16 - 2015-10-29 19:50 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\shimeng.dll
2016-07-09 12:16 - 2015-10-29 19:49 - 00295936 _____ (Microsoft Corporation) C:\windows\SysWOW64\apphelp.dll
2016-07-09 12:16 - 2015-10-29 19:49 - 00020992 _____ (Microsoft Corporation) C:\windows\SysWOW64\sdbinst.exe
2016-07-09 12:16 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2016-07-09 12:16 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2016-07-09 12:16 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2016-07-09 12:16 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2016-07-09 12:16 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2016-07-09 12:16 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2016-07-09 12:16 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2016-07-09 12:16 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2016-07-09 12:16 - 2015-04-24 20:17 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2016-07-09 12:16 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
2016-07-09 12:15 - 2016-05-18 18:10 - 00312832 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2016-07-09 12:15 - 2016-05-18 18:09 - 00405504 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2016-07-09 12:15 - 2016-05-14 00:15 - 00382184 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2016-07-09 12:15 - 2016-05-14 00:09 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2016-07-09 12:15 - 2016-05-14 00:09 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2016-07-09 12:15 - 2016-05-14 00:09 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2016-07-09 12:15 - 2016-05-14 00:09 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2016-07-09 12:15 - 2016-05-13 23:54 - 00308456 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2016-07-09 12:15 - 2016-05-13 23:50 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2016-07-09 12:15 - 2016-05-13 23:49 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2016-07-09 12:15 - 2016-05-13 23:49 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2016-07-09 12:15 - 2016-05-13 23:27 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2016-07-09 12:15 - 2016-05-11 19:02 - 00483840 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2016-07-09 12:15 - 2016-05-11 19:02 - 00444928 _____ (Microsoft Corporation) C:\windows\system32\winhttp.dll
2016-07-09 12:15 - 2016-05-11 19:02 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2016-07-09 12:15 - 2016-05-11 19:02 - 00296448 _____ (Microsoft Corporation) C:\windows\system32\ws2_32.dll
2016-07-09 12:15 - 2016-05-11 17:19 - 00363520 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll
2016-07-09 12:15 - 2016-05-11 17:19 - 00351744 _____ (Microsoft Corporation) C:\windows\SysWOW64\winhttp.dll
2016-07-09 12:15 - 2016-05-11 17:19 - 00231424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2016-07-09 12:15 - 2016-05-11 17:19 - 00206336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ws2_32.dll
2016-07-09 12:15 - 2016-05-11 17:11 - 00025088 _____ (Microsoft Corporation) C:\windows\system32\netbtugc.exe
2016-07-09 12:15 - 2016-05-11 17:01 - 00026624 _____ (Microsoft Corporation) C:\windows\SysWOW64\netbtugc.exe
2016-07-09 12:15 - 2016-05-11 16:58 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netbt.sys
2016-07-09 12:15 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2016-07-09 12:15 - 2016-04-14 15:21 - 00647680 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2016-07-09 12:15 - 2016-04-09 09:01 - 00986344 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2016-07-09 12:15 - 2016-04-09 09:01 - 00264936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2016-07-09 12:15 - 2016-04-09 08:57 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2016-07-09 12:15 - 2016-04-06 17:27 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\jnwmon.dll
2016-07-09 12:15 - 2016-03-09 20:54 - 00275456 _____ (Microsoft Corporation) C:\windows\system32\InkEd.dll
2016-07-09 12:15 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\windows\SysWOW64\InkEd.dll
2016-07-09 12:15 - 2016-03-06 20:53 - 01885696 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2016-07-09 12:15 - 2016-03-06 20:53 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2016-07-09 12:15 - 2016-03-06 20:38 - 01240576 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2016-07-09 12:15 - 2016-03-06 20:38 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3r.dll
2016-07-09 12:15 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2016-07-09 12:15 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2016-07-09 12:15 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2016-07-09 12:15 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2016-07-09 12:15 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2016-07-09 12:15 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2016-07-09 12:15 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2016-07-09 12:15 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\windows\SysWOW64\spwmp.dll
2016-07-09 12:15 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdxm.ocx
2016-07-09 12:15 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxmasf.dll
2016-07-09 12:15 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\windows\system32\mfds.dll
2016-07-09 12:15 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfds.dll
2016-07-09 12:15 - 2016-02-03 20:07 - 00091648 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBSTOR.SYS
2016-07-09 12:15 - 2016-02-02 20:57 - 00511488 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2016-07-09 12:15 - 2016-01-21 02:51 - 00073664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\disk.sys
2016-07-09 12:15 - 2016-01-11 21:11 - 01684416 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2016-07-09 12:15 - 2016-01-07 19:42 - 00141312 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2016-07-09 12:15 - 2015-12-20 20:50 - 03180544 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2016-07-09 12:15 - 2015-12-20 20:50 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll
2016-07-09 12:15 - 2015-12-20 16:08 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2016-07-09 12:15 - 2015-12-08 23:53 - 00509952 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2016-07-09 12:15 - 2015-12-08 21:07 - 00624640 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2016-07-09 12:15 - 2015-11-14 01:09 - 00091648 _____ (Microsoft Corporation) C:\windows\system32\mapistub.dll
2016-07-09 12:15 - 2015-11-14 01:09 - 00091648 _____ (Microsoft Corporation) C:\windows\system32\mapi32.dll
2016-07-09 12:15 - 2015-11-14 01:08 - 00017920 _____ (Microsoft Corporation) C:\windows\system32\fixmapi.exe
2016-07-09 12:15 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\windows\SysWOW64\mapistub.dll
2016-07-09 12:15 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\windows\SysWOW64\mapi32.dll
2016-07-09 12:15 - 2015-11-14 00:49 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\fixmapi.exe
2016-07-09 12:15 - 2015-11-11 20:53 - 01735680 _____ (Microsoft Corporation) C:\windows\system32\comsvcs.dll
2016-07-09 12:15 - 2015-11-11 20:53 - 00525312 _____ (Microsoft Corporation) C:\windows\system32\catsrvut.dll
2016-07-09 12:15 - 2015-11-11 20:39 - 01242624 _____ (Microsoft Corporation) C:\windows\SysWOW64\comsvcs.dll
2016-07-09 12:15 - 2015-11-11 20:39 - 00487936 _____ (Microsoft Corporation) C:\windows\SysWOW64\catsrvut.dll
2016-07-09 12:15 - 2015-11-05 21:05 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\wshrm.dll
2016-07-09 12:15 - 2015-11-05 21:02 - 00014848 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshrm.dll
2016-07-09 12:15 - 2015-11-05 11:53 - 00146944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rmcast.sys
2016-07-09 12:15 - 2015-11-03 21:04 - 00802304 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2016-07-09 12:15 - 2015-11-03 20:56 - 00627712 _____ (Microsoft Corporation) C:\windows\SysWOW64\usp10.dll
2016-07-09 12:15 - 2015-10-13 18:41 - 00497664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2016-07-09 12:15 - 2015-10-13 18:40 - 00118272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdx.sys
2016-07-09 12:15 - 2015-10-13 06:57 - 00950720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2016-07-09 12:15 - 2015-08-27 20:18 - 02004480 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2016-07-09 12:15 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2016-07-09 12:15 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2016-07-09 12:15 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2016-07-09 12:15 - 2015-08-05 19:56 - 01110016 _____ (Microsoft Corporation) C:\windows\system32\schedsvc.dll
2016-07-09 12:15 - 2015-07-09 19:58 - 01632256 _____ (Microsoft Corporation) C:\windows\system32\dwmcore.dll
2016-07-09 12:15 - 2015-07-09 19:58 - 00082944 _____ (Microsoft Corporation) C:\windows\system32\dwmapi.dll
2016-07-09 12:15 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\windows\system32\notepad.exe
2016-07-09 12:15 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\windows\notepad.exe
2016-07-09 12:15 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmcore.dll
2016-07-09 12:15 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\notepad.exe
2016-07-09 12:15 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmapi.dll
2016-07-09 12:15 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2016-07-09 12:15 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2016-07-09 12:15 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2016-07-09 12:15 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll
2016-07-09 12:15 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\windows\system32\cewmdm.dll
2016-07-09 12:15 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\windows\SysWOW64\cewmdm.dll
2016-07-09 12:15 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDYAK.DLL
2016-07-09 12:15 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDTAT.DLL
2016-07-09 12:15 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDRU1.DLL
2016-07-09 12:15 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDBASH.DLL
2016-07-09 12:15 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\KBDRU.DLL
2016-07-09 12:15 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDYAK.DLL
2016-07-09 12:15 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDTAT.DLL
2016-07-09 12:15 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU1.DLL
2016-07-09 12:15 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU.DLL
2016-07-09 12:15 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDBASH.DLL
2016-07-09 12:14 - 2016-03-09 21:00 - 00396800 _____ (Microsoft Corporation) C:\windows\system32\webio.dll
2016-07-09 12:14 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\windows\SysWOW64\webio.dll
2016-07-09 12:14 - 2016-02-09 11:55 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\seclogon.dll
2016-07-09 12:14 - 2015-12-16 00:28 - 17892352 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-07-09 12:14 - 2015-12-16 00:25 - 02350080 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-07-09 12:14 - 2015-12-16 00:21 - 10938368 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-07-09 12:14 - 2015-12-16 00:20 - 01388032 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-07-09 12:14 - 2015-12-16 00:20 - 00448512 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2016-07-09 12:14 - 2015-12-16 00:19 - 02158080 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-07-09 12:14 - 2015-12-16 00:19 - 01392128 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-07-09 12:14 - 2015-12-16 00:18 - 02382848 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2016-07-09 12:14 - 2015-12-16 00:18 - 01494016 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2016-07-09 12:14 - 2015-12-16 00:18 - 00816128 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-07-09 12:14 - 2015-12-16 00:18 - 00729088 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-07-09 12:14 - 2015-12-16 00:18 - 00579584 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-07-09 12:14 - 2015-12-16 00:18 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2016-07-09 12:14 - 2015-12-16 00:18 - 00282112 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2016-07-09 12:14 - 2015-12-16 00:18 - 00248320 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2016-07-09 12:14 - 2015-12-16 00:18 - 00237056 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2016-07-09 12:14 - 2015-12-16 00:18 - 00173568 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2016-07-09 12:14 - 2015-12-16 00:18 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2016-07-09 12:14 - 2015-12-16 00:18 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2016-07-09 12:14 - 2015-12-16 00:18 - 00055296 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2016-07-09 12:14 - 2015-12-16 00:18 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2016-07-09 12:14 - 2015-12-16 00:18 - 00011264 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2016-07-09 12:14 - 2015-12-15 23:50 - 01814528 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2016-07-09 12:14 - 2015-12-15 23:49 - 12388864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2016-07-09 12:14 - 2015-12-15 23:47 - 00367616 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2016-07-09 12:14 - 2015-12-15 23:46 - 09753088 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2016-07-09 12:14 - 2015-12-15 23:45 - 01140224 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2016-07-09 12:14 - 2015-12-15 23:45 - 01129472 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2016-07-09 12:14 - 2015-12-15 23:44 - 01804800 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2016-07-09 12:14 - 2015-12-15 23:44 - 01427968 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2016-07-09 12:14 - 2015-12-15 23:44 - 00718848 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2016-07-09 12:14 - 2015-12-15 23:44 - 00424960 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2016-07-09 12:14 - 2015-12-15 23:44 - 00231936 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2016-07-09 12:14 - 2015-12-15 23:44 - 00142848 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2016-07-09 12:14 - 2015-12-15 23:44 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2016-07-09 12:14 - 2015-12-15 23:43 - 02382848 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2016-07-09 12:14 - 2015-12-15 23:43 - 00607744 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2016-07-09 12:14 - 2015-12-15 23:43 - 00353792 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2016-07-09 12:14 - 2015-12-15 23:43 - 00223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2016-07-09 12:14 - 2015-12-15 23:43 - 00176640 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2016-07-09 12:14 - 2015-12-15 23:43 - 00073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2016-07-09 12:14 - 2015-12-15 23:43 - 00041472 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2016-07-09 12:14 - 2015-12-15 23:43 - 00011776 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2016-07-09 12:14 - 2015-12-15 23:43 - 00010752 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2016-07-09 12:14 - 2015-07-23 02:02 - 01390592 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2016-07-09 12:14 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2016-07-09 12:14 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2016-07-09 12:14 - 2015-07-22 18:48 - 00041984 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll
2016-07-09 12:14 - 2015-04-11 05:19 - 00069888 _____ (Microsoft Corporation) C:\windows\system32\Drivers\stream.sys
2016-07-09 12:13 - 2016-05-12 19:15 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2016-07-09 12:13 - 2016-05-12 17:18 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2016-07-09 12:13 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2016-07-09 12:13 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2016-07-09 12:13 - 2015-07-16 21:12 - 06131200 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2016-07-09 12:13 - 2015-07-16 21:12 - 00856064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdvidcrl.dll
2016-07-09 12:13 - 2015-07-16 21:12 - 00053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2016-07-09 12:13 - 2015-07-16 21:11 - 07077376 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2016-07-09 12:13 - 2015-07-16 21:11 - 01057792 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2016-07-09 12:13 - 2015-07-16 21:11 - 00062976 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2016-07-09 12:13 - 2015-07-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2016-07-09 12:13 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\windows\system32\dfshim.dll
2016-07-09 12:13 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\windows\SysWOW64\dfshim.dll
2016-07-09 12:13 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscorier.dll
2016-07-09 12:13 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\windows\system32\mscorier.dll
2016-07-09 12:13 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscories.dll
2016-07-09 12:13 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\windows\system32\mscories.dll
2016-07-09 12:12 - 2015-11-03 21:04 - 00241664 _____ (Microsoft Corporation) C:\windows\system32\els.dll
2016-07-09 12:12 - 2015-11-03 20:55 - 00179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\els.dll
2016-07-09 11:58 - 2016-03-24 00:40 - 00634432 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2016-07-09 11:53 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2016-07-09 11:53 - 2016-04-09 05:52 - 01424896 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2016-07-08 23:18 - 2016-07-08 23:26 - 00232652 ____C C:\TDSSKiller.3.1.0.9_08.07.2016_23.18.30_log.txt
2016-07-08 23:18 - 2016-07-08 23:18 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Mas\Desktop\tdsskiller.exe
2016-07-08 23:16 - 2016-07-10 09:37 - 00040172 _____ C:\Users\Mas\Desktop\Addition.txt
2016-07-08 23:15 - 2016-07-10 11:35 - 00019522 _____ C:\Users\Mas\Desktop\FRST.txt
2016-07-08 23:14 - 2016-07-10 11:34 - 00000000 ___DC C:\FRST
2016-07-08 23:14 - 2016-07-10 09:36 - 02390016 ____C (Farbar) C:\Users\Mas\Desktop\FRST64.exe
2016-07-08 16:06 - 2016-07-08 16:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-08 13:37 - 2016-07-08 13:37 - 00000000 ____D C:\Users\Mas\AppData\Local\ESET
2016-07-08 13:35 - 2016-07-08 13:35 - 00002027 _____ C:\Users\Public\Desktop\ESET Sicheres Online-Banking und Bezahlen.lnk
2016-07-08 13:35 - 2016-07-08 13:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-07-08 13:35 - 2016-07-08 13:35 - 00000000 ____D C:\ProgramData\ESET
2016-07-08 13:35 - 2016-07-08 13:35 - 00000000 ____D C:\Program Files\ESET
2016-07-08 13:31 - 2016-07-08 13:31 - 03033760 _____ (ESET) C:\Users\Mas\Downloads\eset_smart_security_live_installer_.exe
2016-07-08 13:25 - 2016-07-08 13:28 - 90601672 _____ (ESET) C:\Users\Mas\Downloads\eav_nt32_enu.exe
2016-07-08 13:24 - 2016-07-08 13:24 - 00000000 ____D C:\Program Files (x86)\ESET
2016-07-08 13:13 - 2016-07-08 13:13 - 02870984 _____ (ESET) C:\Users\Mas\Downloads\esetsmartinstaller_deu.exe
2016-07-07 07:58 - 2016-07-07 07:58 - 00000000 ____D C:\ProgramData\firebird
2016-07-07 07:53 - 2016-07-07 07:53 - 00002086 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-07-07 07:53 - 2016-07-07 07:53 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-07-07 07:48 - 2016-07-07 07:48 - 00001468 _____ C:\Users\Public\Desktop\LibreOffice 5.1.lnk
2016-07-07 07:48 - 2016-07-07 07:48 - 00000000 ____D C:\Users\Mas\AppData\Roaming\LibreOffice
2016-07-07 07:48 - 2016-07-07 07:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.1
2016-07-07 07:47 - 2016-07-07 07:48 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
2016-07-07 07:09 - 2016-07-07 07:10 - 221675520 _____ C:\Users\Mas\Downloads\LibreOffice_5.1.4_Win_x86.msi
2016-06-29 13:56 - 2016-07-07 09:15 - 00111837 _____ C:\Users\Mas\Desktop\Rabattübertragungsformular.pdf
2016-06-25 08:28 - 2016-06-25 08:28 - 00000000 ____D C:\Users\Mas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-07-10 11:30 - 2013-04-13 22:35 - 00699666 _____ C:\windows\system32\perfh007.dat
2016-07-10 11:30 - 2013-04-13 22:35 - 00149774 _____ C:\windows\system32\perfc007.dat
2016-07-10 11:30 - 2009-07-14 07:13 - 01620612 _____ C:\windows\system32\PerfStringBackup.INI
2016-07-10 11:30 - 2009-07-14 05:20 - 00000000 ____D C:\windows\inf
2016-07-10 11:28 - 2015-06-23 09:17 - 00001216 _____ C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2856982752-327615534-2607958787-1001UA.job
2016-07-10 11:25 - 2009-07-14 07:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-07-10 09:20 - 2009-07-14 06:45 - 00031312 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-10 09:20 - 2009-07-14 06:45 - 00031312 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-10 08:08 - 2016-01-28 01:57 - 00000324 _____ C:\windows\Tasks\HPCeeScheduleForMas.job
2016-07-10 07:50 - 2013-10-25 22:57 - 00003914 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{13949E6C-47E7-40B7-A8DC-8736CCF27255}
2016-07-10 04:28 - 2015-06-23 09:17 - 00001164 _____ C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2856982752-327615534-2607958787-1001Core.job
2016-07-10 00:27 - 2016-04-01 01:19 - 00003174 _____ C:\windows\System32\Tasks\HPCeeScheduleForMas
2016-07-09 15:45 - 2009-07-14 05:20 - 00000000 ____D C:\windows\rescache
2016-07-09 14:02 - 2013-12-04 22:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-07-09 14:02 - 2013-11-03 09:46 - 00000000 ____D C:\Program Files (x86)\Avira
2016-07-09 14:02 - 2009-07-14 06:45 - 00414944 _____ C:\windows\system32\FNTCACHE.DAT
2016-07-09 13:57 - 2015-05-18 11:52 - 00000000 ___SD C:\windows\SysWOW64\GWX
2016-07-09 13:57 - 2015-05-18 11:52 - 00000000 ___SD C:\windows\system32\GWX
2016-07-09 13:57 - 2015-05-18 11:52 - 00000000 ___SD C:\windows\system32\CompatTel
2016-07-09 13:57 - 2015-05-18 11:52 - 00000000 ____D C:\windows\system32\appraiser
2016-07-09 13:57 - 2013-04-13 22:24 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-09 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\windows\PolicyDefinitions
2016-07-09 13:22 - 2014-06-15 21:33 - 00000000 ____D C:\windows\system32\MRT
2016-07-09 13:16 - 2014-06-15 21:33 - 142482544 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-07-09 12:37 - 2013-04-14 01:02 - 01594892 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2016-07-09 07:34 - 2014-04-10 12:21 - 00000000 ____D C:\Program Files (x86)\CdFd32
2016-07-08 15:21 - 2014-06-06 11:48 - 00000000 ___DC C:\temp
2016-07-08 12:19 - 2013-11-03 09:50 - 00000000 ____D C:\Users\Mas\AppData\Roaming\Avira
2016-07-08 12:19 - 2013-11-03 09:46 - 00000000 ____D C:\ProgramData\Avira
2016-07-08 12:19 - 2013-10-25 22:58 - 00098488 _____ C:\Users\Mas\AppData\Local\GDIPFONTCACHEV1.DAT
2016-07-08 12:18 - 2014-11-06 14:29 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-07 15:08 - 2014-10-31 18:28 - 00000000 ____D C:\Users\Mas\AppData\Local\CutePDF Writer
2016-07-04 00:11 - 2009-07-14 05:20 - 00000000 ____D C:\windows\system32\NDF
2016-07-01 18:15 - 2014-11-19 19:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-07-01 18:14 - 2013-10-26 19:27 - 00000000 ____D C:\Users\Mas\AppData\Local\Thunderbird
2016-06-25 08:28 - 2014-02-13 16:34 - 00000000 ____D C:\Users\Mas\AppData\Roaming\Dropbox
2016-06-21 12:13 - 2010-11-21 05:27 - 00485032 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-04-10 12:20 - 2006-09-27 11:35 - 0839745 ____N (LUTUM + TAPPERT DV-BERATUNG GMBH, Bonn) C:\Program Files\ActiveMap35.ocx
2014-04-10 12:20 - 2010-03-06 17:43 - 0610304 ____N (Hoppenstedt Firmeninformationen GmbH) C:\Program Files\AxRegister.exe
2014-04-10 12:20 - 1996-06-10 16:24 - 0307200 ____N (Software FX, Inc.) C:\Program Files\Cfx32.ocx
2014-04-10 12:20 - 2004-05-04 10:53 - 1645320 ____N (Microsoft Corporation) C:\Program Files\gdiplus.dll
2014-04-10 12:20 - 2010-02-08 14:35 - 0600576 ____N (Bisnode Informatics GmbH & Gunnar Leitz 1999-2010) C:\Program Files\GHLck32.dll
2014-04-10 12:20 - 2010-03-15 17:17 - 0564736 ____N (Hoppenstedt Firmeninformationen) C:\Program Files\Ghret32.dll
2014-04-10 12:20 - 2012-02-10 19:27 - 5708948 _____ (Hoppenstedt Firmeninformationen GmbH) C:\Program Files\Hfdb32.exe
2014-04-10 12:20 - 2010-03-01 20:26 - 0000347 ____N () C:\Program Files\Hfdb32.exe.manifest
2014-04-10 12:20 - 2014-04-10 12:20 - 0002617 _____ () C:\Program Files\Hfdb32.ini
2014-04-10 12:20 - 2011-05-17 18:22 - 0233984 ____N (Bisnode Informatics & Gunnar Leitz) C:\Program Files\Hfdb_eng.dll
2014-04-10 12:20 - 2011-05-17 18:21 - 0255488 ____N (Bisnode Informatics & Gunnar Leitz) C:\Program Files\Hfdb_ger.dll
2014-04-10 12:20 - 2014-04-10 12:20 - 0001284 _____ () C:\Program Files\Hfinst.log
2014-04-10 12:20 - 2010-03-17 16:59 - 0004762 ____N () C:\Program Files\Liesmich.txt
2014-04-10 12:20 - 2005-11-28 16:02 - 0172099 ____N (LUTUM + TAPPERT DV-BERATUNG GMBH, BONN) C:\Program Files\LtGeometry10.dll
2014-04-10 12:20 - 1998-01-14 13:34 - 0126976 ____N (LUTUM + TAPPERT DV-BERATUNG GMBH, Bonn) C:\Program Files\Ltmapx32.ocx
2014-04-10 12:20 - 2002-07-02 14:00 - 0036864 ____N (Lutum+Tappert) C:\Program Files\LtPictureHolder.ocx
2014-04-10 12:20 - 2003-11-04 11:52 - 0086071 ____N (LUTUM + TAPPERT DV-BERATUNG GMBH, Bonn) C:\Program Files\Lttool32.dll
2014-04-10 12:20 - 2006-02-28 13:00 - 1028096 ____N (Microsoft Corporation) C:\Program Files\mfc42.dll
2014-04-10 12:20 - 2006-02-28 13:00 - 0343040 ____N (Microsoft Corporation) C:\Program Files\Msvcrt.dll
2014-04-10 12:20 - 2000-08-24 15:13 - 0334336 ____N () C:\Program Files\UiHlp32.exe
2014-04-10 12:19 - 2006-09-27 11:35 - 0839745 ____N (LUTUM + TAPPERT DV-BERATUNG GMBH, Bonn) C:\Program Files (x86)\ActiveMap35.ocx
2014-04-10 12:18 - 2010-03-06 17:43 - 0610304 ____N (Hoppenstedt Firmeninformationen GmbH) C:\Program Files (x86)\AxRegister.exe
2014-04-10 12:19 - 1996-06-10 16:24 - 0307200 ____N (Software FX, Inc.) C:\Program Files (x86)\Cfx32.ocx
2014-04-10 12:18 - 2004-05-04 10:53 - 1645320 ____N (Microsoft Corporation) C:\Program Files (x86)\gdiplus.dll
2014-04-10 12:18 - 2010-02-08 14:35 - 0600576 ____N (Bisnode Informatics GmbH & Gunnar Leitz 1999-2010) C:\Program Files (x86)\GHLck32.dll
2014-04-10 12:18 - 2010-03-15 17:17 - 0564736 ____N (Hoppenstedt Firmeninformationen) C:\Program Files (x86)\Ghret32.dll
2014-04-10 12:18 - 2012-02-10 19:27 - 5708948 _____ (Hoppenstedt Firmeninformationen GmbH) C:\Program Files (x86)\Hfdb32.exe
2014-04-10 12:18 - 2010-03-01 20:26 - 0000347 ____N () C:\Program Files (x86)\Hfdb32.exe.manifest
2014-04-10 12:18 - 2014-04-10 12:19 - 0002677 _____ () C:\Program Files (x86)\Hfdb32.ini
2014-04-10 12:18 - 2011-05-17 18:22 - 0233984 ____N (Bisnode Informatics & Gunnar Leitz) C:\Program Files (x86)\Hfdb_eng.dll
2014-04-10 12:18 - 2011-05-17 18:21 - 0255488 ____N (Bisnode Informatics & Gunnar Leitz) C:\Program Files (x86)\Hfdb_ger.dll
2014-04-10 12:18 - 2014-04-10 12:19 - 0002509 _____ () C:\Program Files (x86)\Hfinst.log
2014-04-10 12:18 - 2010-03-17 16:59 - 0004762 ____N () C:\Program Files (x86)\Liesmich.txt
2014-04-10 12:18 - 2005-11-28 16:02 - 0172099 ____N (LUTUM + TAPPERT DV-BERATUNG GMBH, BONN) C:\Program Files (x86)\LtGeometry10.dll
2014-04-10 12:19 - 1998-01-14 13:34 - 0126976 ____N (LUTUM + TAPPERT DV-BERATUNG GMBH, Bonn) C:\Program Files (x86)\Ltmapx32.ocx
2014-04-10 12:19 - 2002-07-02 14:00 - 0036864 ____N (Lutum+Tappert) C:\Program Files (x86)\LtPictureHolder.ocx
2014-04-10 12:18 - 2003-11-04 11:52 - 0086071 ____N (LUTUM + TAPPERT DV-BERATUNG GMBH, Bonn) C:\Program Files (x86)\Lttool32.dll
2014-04-10 12:18 - 2006-02-28 13:00 - 1028096 ____N (Microsoft Corporation) C:\Program Files (x86)\mfc42.dll
2014-04-10 12:18 - 2006-02-28 13:00 - 0343040 ____N (Microsoft Corporation) C:\Program Files (x86)\Msvcrt.dll
2014-04-10 12:18 - 2000-08-24 15:13 - 0334336 ____N () C:\Program Files (x86)\UiHlp32.exe
2013-12-01 11:49 - 2015-11-24 13:47 - 0006349 _____ () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\windows\system32\winlogon.exe => Datei ist digital signiert
C:\windows\system32\wininit.exe => Datei ist digital signiert
C:\windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\windows\explorer.exe => Datei ist digital signiert
C:\windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\windows\system32\svchost.exe => Datei ist digital signiert
C:\windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\windows\system32\services.exe => Datei ist digital signiert
C:\windows\system32\User32.dll => Datei ist digital signiert
C:\windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\windows\system32\userinit.exe => Datei ist digital signiert
C:\windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\windows\system32\rpcss.dll => Datei ist digital signiert
C:\windows\system32\dnsapi.dll => Datei ist digital signiert
C:\windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-07-09 00:41

==================== Ende von FRST.txt ============================

Frühjahrsputz ? !

Plagegeister aller Art und deren Bekämpfung: Frühjahrsputz ? !

Frühjahrsputz ? !

Frühjahrsputz ? !

Ähnliche Themen: Frühjahrsputz ? !