Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7 64 bit Malware befall

Windows 7 64 bit Malware befall


Log-Analyse und Auswertung: Windows 7 64 bit Malware befall

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 01.11.2016, 04:35   #1
Dshizzle
 
Windows 7 64 bit Malware befall - Standard

Windows 7 64 bit Malware befall


Hallo,

ich habe in letzter Zeit ein paar programme zum editieren von Videos runtergeladen dabei habe ich mir wohl einen trojaner eingefangen. Bei unterschiedlichen dingen die ich auf meinem PC mache taucht auch manchmal ein Fenster auf mit der Fehlermeldung "Es befindet sich kein Datenträger im Laufwerk. Legen Sie einen Datenträger in Laufwerk\Device\Harddisk2\DR2 ein." auf.

Außerdem dachte ich ich hätte wahrscheinlich den selben Fehler wie in diesem Post http://www.trojaner-board.de/161175-...ngefangen.html
und habe alle Schritte bis zum ESET Online Scan ausgeführt was das Problem nicht gelöst hat.
Leider hab ich die erste goldene Regel erst nach den Schritten gelesen....

Ich bitte um Hilfe und hoffe das man mir noch helfen kann.

Frische FRST nach den Schritten vom oben genannten Post:

FRST:
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 30-10-2016
durchgeführt von DrDesperado (Administrator) auf DRDESPERADO-PC (01-11-2016 03:41:31)
Gestartet von C:\Users\DrDesperado\Downloads
Geladene Profile: DrDesperado (Verfügbare Profile: DrDesperado)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
() C:\Windows\System32\PnkBstrA.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Users\DrDesperado\Desktop\Smash Mods\sm4shexplorer 0.07.1\Sm4shFileExplorer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16408320 2016-03-15] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15642744 2016-03-30] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1844280 2016-09-30] (NVIDIA Corporation)
HKLM-x32\...\Run: [X-55 Rhino] => C:\Program Files\Mad Catz\X-55 Rhino\X55_Rhino_Profiler.exe [86528 2015-08-28] (Mad Catz)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291128 2013-03-06] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4072284552-1638597636-3516074253-1000\...\Run: [Advanced SystemCare 9] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2019616 2016-01-11] (IObit)
HKU\S-1-5-21-4072284552-1638597636-3516074253-1000\...\Run: [Steam] => D:\Steam\steam.exe [2860832 2016-10-13] (Valve Corporation)
HKU\S-1-5-21-4072284552-1638597636-3516074253-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> 

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{726BF084-A721-4082-A090-6C3D5362027F}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{F5FCF4EF-20FA-49AA-8F89-B1396A93E477}: [DhcpNameServer] 172.20.10.1
ManualProxies: 

Internet Explorer:
==================
HKU\S-1-5-21-4072284552-1638597636-3516074253-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = 
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-4072284552-1638597636-3516074253-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4072284552-1638597636-3516074253-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=irmsd1103&cd=2XzuyEtN2Y1L1QzuzyyE0D0EzztDyB0A0C0F0CyC0AtAtC0CtN0D0Tzu0CyBtDtAtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1577063863&ir=
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-4072284552-1638597636-3516074253-1000 -> DefaultScope {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd1103&cd=2XzuyEtN2Y1L1QzuzyyE0D0EzztDyB0A0C0F0CyC0AtAtC0CtN0D0Tzu0CyBtDtAtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1577063863&ir=
SearchScopes: HKU\S-1-5-21-4072284552-1638597636-3516074253-1000 -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd1103&cd=2XzuyEtN2Y1L1QzuzyyE0D0EzztDyB0A0C0F0CyC0AtAtC0CtN0D0Tzu0CyBtDtAtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1577063863&ir=
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-03] (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-03] (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF DefaultProfile: ytn699hq.default
FF ProfilePath: C:\Users\DrDesperado\AppData\Roaming\Songbird2\Profiles\e3b2w3lm.default [2016-06-03]
FF NetworkProxy: Songbird2\Profiles\e3b2w3lm.default -> no_proxies_on", "127.0.0.1;localhost"
FF Extension: (Kein Name) - C:\Program Files (x86)\Songbird\extensions\albumart@songbirdnest.com [nicht gefunden]
FF Extension: (Kein Name) - C:\Program Files (x86)\Songbird\extensions\gonzo@songbirdnest.com [nicht gefunden]
FF Extension: (Kein Name) - C:\Program Files (x86)\Songbird\extensions\philips-addon-manager@songbirdnest.com [nicht gefunden]
FF Extension: (Kein Name) - C:\Program Files (x86)\Songbird\extensions\pinkmartini@songbirdnest.com [nicht gefunden]
FF Extension: (Kein Name) - C:\Program Files (x86)\Songbird\extensions\purplerain@songbirdnest.com [nicht gefunden]
FF Extension: (Kein Name) - C:\Program Files (x86)\Songbird\extensions\sharing@songbirdnest.com [nicht gefunden]
FF Extension: (Kein Name) - C:\Program Files (x86)\Songbird\extensions\soundboard@songbirdnest.com [nicht gefunden]
FF ProfilePath: C:\Users\DrDesperado\AppData\Roaming\Mozilla\Firefox\Profiles\ytn699hq.default [2016-11-01]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\ytn699hq.default -> Google
FF Homepage: Mozilla\Firefox\Profiles\ytn699hq.default -> www.google.de
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => nicht gefunden
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => nicht gefunden
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-08-21] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-08-21] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-03] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-03] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-10-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-10-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Profile: C:\Users\DrDesperado\AppData\Local\Google\Chrome\User Data\Default [2016-11-01]
CHR Extension: (Google Drive) - C:\Users\DrDesperado\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-17]
CHR Extension: (YouTube) - C:\Users\DrDesperado\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-17]
CHR Extension: (Adblock Plus) - C:\Users\DrDesperado\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-27]
CHR Extension: (Hokusai's Wave Theme 1920) - C:\Users\DrDesperado\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphdhdhlleolbgddlhbpiiofonbfijph [2016-04-17]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\DrDesperado\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-17]
CHR Extension: (Google Mail) - C:\Users\DrDesperado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-17]
CHR Extension: (Chrome Media Router) - C:\Users\DrDesperado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-27]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdvancedSystemCareService9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [446240 2016-01-05] (IObit)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1362464 2016-07-30] ()
S3 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [3169648 2015-01-07] (Binary Fortress Software)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-07-23] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2779136 2016-10-10] (ESET)
S3 GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [23504 2014-12-25] (Micro-Star Int'l Co., Ltd.)
S3 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
S3 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-04-21] (IObit)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-03-30] (Logitech Inc.)
S3 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1741992 2015-07-30] (Micro-Star INT'L CO., LTD.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-25] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1165368 2016-09-30] (NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2142728 2016-10-13] (Electronic Arts)
S2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [2209296 2016-10-13] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-09-19] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-09-14] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21584 2013-02-19] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [303616 2014-10-15] () [Datei ist nicht signiert]
S3 automap; C:\Windows\System32\DRIVERS\automap.sys [18776 2012-04-19] (Focusrite Audio Engineering Limited)
S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [172760 2014-07-18] (Broadcom Corporation.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [129152 2016-04-24] (Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-05-02] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-05-02] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [511952 2016-10-30] (Intel Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [263296 2016-10-10] (ESET)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [197288 2016-10-10] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [181416 2016-10-10] (ESET)
S4 FileMonitor; kein ImagePath
R3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys [60928 2016-10-30] (GenesysLogic)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-03-15] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31712 2016-06-20] (Intel Corporation)
S4 IMFFilter; kein ImagePath
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\Windows\System32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
S3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2014-10-15] () [Datei ist nicht signiert]
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-11-01] (Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [190032 2016-10-30] (Intel Corporation)
R3 mt7612US; C:\Windows\System32\DRIVERS\mt7612US.sys [376200 2015-12-08] (MediaTek Inc.)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [23040 2013-07-25] (Apple Inc.) [Datei ist nicht signiert]
S3 NvnUsbAudio; C:\Windows\System32\DRIVERS\nvnusbaudio.sys [53552 2014-01-03] (Novation DMS Ltd.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2016-09-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2016-09-30] (NVIDIA Corporation)
S3 RegFilter; kein ImagePath
R3 RzSynapse; C:\Windows\System32\DRIVERS\RzSynapse.sys [166400 2011-10-11] (Razer USA Ltd)
S3 Said2215; C:\Windows\System32\DRIVERS\Said2215.sys [25280 2016-06-20] (Saitek)
S3 SaiG2215; C:\Windows\System32\DRIVERS\SaiG2215.sys [179904 2016-06-20] (Saitek)
S3 SaiK2215; C:\Windows\System32\DRIVERS\SaiK2215.sys [179904 2016-06-20] (Saitek)
S3 SaiKa215; C:\Windows\System32\DRIVERS\SaiKa215.sys [179904 2016-06-20] (Saitek)
S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [32936 2015-12-30] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [221824 2016-04-24] (Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Apple, Inc.) [Datei ist nicht signiert]
R1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [21072 2013-03-27] ()
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-01 03:41 - 2016-11-01 03:42 - 00020226 _____ C:\Users\DrDesperado\Downloads\FRST.txt
2016-11-01 03:41 - 2016-11-01 03:41 - 00000000 ____D C:\FRST
2016-11-01 03:40 - 2016-11-01 03:40 - 02408960 _____ (Farbar) C:\Users\DrDesperado\Downloads\FRST64.exe
2016-11-01 03:35 - 2016-11-01 03:35 - 00002928 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_DrDesperado
2016-11-01 03:35 - 2016-11-01 03:35 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\ProductData
2016-11-01 03:35 - 2016-11-01 03:35 - 00000000 ____D C:\ProgramData\ProductData
2016-11-01 03:32 - 2016-11-01 03:32 - 00852720 _____ C:\Users\DrDesperado\Desktop\SecurityCheck.exe
2016-11-01 00:38 - 2016-11-01 00:38 - 00000000 ____D C:\Program Files (x86)\ESET
2016-11-01 00:36 - 2016-11-01 00:36 - 02870984 _____ (ESET) C:\Users\DrDesperado\Downloads\esetsmartinstaller_deu.exe
2016-11-01 00:31 - 2016-11-01 00:31 - 01631928 _____ (Malwarebytes) C:\Users\DrDesperado\Downloads\JRT.exe
2016-11-01 00:31 - 2016-11-01 00:31 - 01631928 _____ (Malwarebytes) C:\Users\DrDesperado\Desktop\JRT.exe
2016-11-01 00:26 - 2016-11-01 00:29 - 00000000 ____D C:\AdwCleaner
2016-11-01 00:26 - 2016-11-01 00:26 - 03910208 _____ C:\Users\DrDesperado\Desktop\AdwCleaner_6.030.exe
2016-11-01 00:11 - 2016-11-01 00:16 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-11-01 00:11 - 2016-11-01 00:11 - 00001066 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-11-01 00:11 - 2016-11-01 00:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-11-01 00:11 - 2016-11-01 00:11 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-01 00:11 - 2016-11-01 00:11 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-11-01 00:11 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-11-01 00:11 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-11-01 00:11 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-11-01 00:09 - 2016-11-01 00:09 - 22851472 _____ (Malwarebytes ) C:\Users\DrDesperado\Downloads\mbam-setup-2.2.1.1043.exe
2016-11-01 00:07 - 2016-11-01 00:07 - 00032348 _____ C:\ComboFix.txt
2016-11-01 00:02 - 2016-11-01 00:08 - 00000000 ____D C:\ComboFix
2016-11-01 00:02 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2016-11-01 00:02 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2016-11-01 00:02 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2016-11-01 00:02 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2016-11-01 00:02 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2016-11-01 00:02 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2016-11-01 00:02 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2016-11-01 00:02 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2016-11-01 00:01 - 2016-11-01 00:08 - 00000000 ____D C:\Qoobox
2016-11-01 00:01 - 2016-11-01 00:07 - 00000000 ____D C:\Windows\erdnt
2016-10-31 23:59 - 2016-10-31 23:59 - 05658651 ____R (Swearware) C:\Users\DrDesperado\Desktop\ComboFix.exe
2016-10-30 23:47 - 2016-10-30 23:47 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_GeneStor_01009.Wdf
2016-10-30 23:30 - 2016-10-30 23:30 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-10-30 23:30 - 2016-10-25 21:00 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-10-30 23:30 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-10-30 23:30 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-10-30 23:30 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-10-30 23:30 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-10-30 23:28 - 2016-10-26 02:06 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-10-30 23:28 - 2016-10-26 02:06 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 40123840 _____ C:\Windows\system32\nvcompiler.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 35224632 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 34701760 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 17348752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 14397272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 14033976 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-10-30 23:28 - 2016-10-25 22:39 - 10912232 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 10773504 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 10324400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 09113296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 08913512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 08716056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 03628992 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 03193912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437570.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437570.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 01037248 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00974272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00945208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00897080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00492744 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00439864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00436088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00407064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00148200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-10-30 23:28 - 2016-10-25 22:39 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-10-30 23:28 - 2016-10-25 22:39 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-10-30 23:13 - 2016-10-30 23:13 - 00003806 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-30 23:13 - 2016-09-30 05:22 - 01844280 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-10-30 23:13 - 2016-09-30 05:22 - 01756728 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-10-30 23:13 - 2016-09-30 05:22 - 01445944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-10-30 23:13 - 2016-09-30 05:22 - 01318968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-10-30 23:13 - 2016-09-30 05:22 - 00121912 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-10-30 23:12 - 2016-10-30 23:12 - 00003856 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-30 23:12 - 2016-10-30 23:12 - 00003856 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-30 23:12 - 2016-10-30 23:12 - 00003794 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-30 23:12 - 2016-10-30 23:12 - 00003618 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-30 23:12 - 2016-10-30 23:12 - 00003558 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-30 23:12 - 2016-10-25 21:13 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-10-30 23:12 - 2016-09-30 05:22 - 00106040 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-10-30 23:12 - 2016-09-30 05:22 - 00095800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-10-30 23:12 - 2016-09-30 05:22 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-10-30 23:09 - 2016-11-01 00:05 - 56008704 _____ C:\Windows\system32\config\COMPONENTS.bak
2016-10-30 23:09 - 2016-10-30 23:09 - 00000000 ____H C:\asc_rdflag
2016-10-30 23:08 - 2016-10-30 23:08 - 00511952 _____ (Intel Corporation) C:\Windows\system32\Drivers\e1d62x64.sys
2016-10-30 23:08 - 2016-10-30 23:08 - 00080848 _____ (Intel Corporation) C:\Windows\system32\e1dmsg.dll
2016-10-30 23:06 - 2016-10-30 23:06 - 00481768 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2016-10-30 23:05 - 2016-10-30 23:05 - 14057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 13120760 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 12986520 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 10521552 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 07172920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 05782384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 05338936 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 05289944 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 04735744 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-10-30 23:05 - 2016-10-30 23:05 - 03299824 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 03283248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 03282024 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 03195648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 03059608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\SETF0A4.tmp
2016-10-30 23:05 - 2016-10-30 23:05 - 02823280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 02697448 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 02437136 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 02190992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 02110600 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 02050184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 02034296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01943616 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01591064 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01508936 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01435144 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01421104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01356504 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01334384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01330072 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01211832 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01186160 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01164336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01022872 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 01003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00998032 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00965032 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00952984 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00933640 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00923744 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00888472 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00873464 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00716104 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00678184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00677672 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00618184 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00596120 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00589072 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2016-10-30 23:05 - 2016-10-30 23:05 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00471336 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00467160 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00448584 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00447720 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00445400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00415488 _____ (Harman) C:\Windows\system32\HMUI.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00370736 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00369304 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00362400 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00341152 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00341152 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00330560 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00258504 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00253904 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00253864 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00224256 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00221968 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00209536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00203848 _____ (Harman) C:\Windows\system32\HMHVS.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00192984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\SETFAC.tmp
2016-10-30 23:05 - 2016-10-30 23:05 - 00190936 _____ (Harman) C:\Windows\system32\HMEQ.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00190424 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00179600 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00172584 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00134200 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00110984 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00088328 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00065792 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2016-10-30 23:05 - 2016-10-30 23:05 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\SET1DB4.tmp
2016-10-30 23:04 - 2016-10-30 23:05 - 06264632 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 72203792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-10-30 23:04 - 2016-10-30 23:04 - 07096192 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 04877580 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-10-30 23:04 - 2016-10-30 23:04 - 02894968 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-10-30 23:04 - 2016-10-30 23:04 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 01959608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 01601944 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 00362056 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 00327456 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 00310424 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 00272720 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-10-30 23:04 - 2016-10-30 23:04 - 00105312 _____ C:\Windows\system32\audioLibVc.dll
2016-10-30 23:03 - 2016-10-30 23:03 - 00060928 _____ (GenesysLogic) C:\Windows\system32\Drivers\GeneStor.sys
2016-10-30 23:01 - 2016-10-30 23:01 - 01804680 _____ (Microsoft Corporation) C:\Windows\system32\SETDF78.tmp
2016-10-30 23:01 - 2016-10-30 23:01 - 00190032 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2016-10-30 22:58 - 2016-10-30 22:58 - 00000000 ____D C:\Users\DrDesperado\AppData\LocalLow\Smartly Dressed Games
2016-10-29 18:01 - 2016-10-29 21:30 - 00007161 _____ C:\Users\DrDesperado\Documents\smash intro.wlmp
2016-10-29 17:23 - 2016-10-29 17:23 - 00001334 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2016-10-29 17:23 - 2016-10-29 17:23 - 00001265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2016-10-29 17:23 - 2016-10-29 17:23 - 00000000 ____D C:\Windows\PCHEALTH
2016-10-29 17:23 - 2016-10-29 17:23 - 00000000 ____D C:\Windows\de
2016-10-29 17:23 - 2016-10-29 17:23 - 00000000 ____D C:\Program Files (x86)\Windows Live
2016-10-29 17:23 - 2016-10-29 17:23 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-10-29 17:22 - 2016-10-29 17:27 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\Windows Live
2016-10-29 17:05 - 2016-10-29 17:05 - 00000566 _____ C:\Users\DrDesperado\Documents\starburn.txt
2016-10-29 17:05 - 2016-10-29 17:05 - 00000000 ____D C:\ProgramData\Wondershare
2016-10-29 17:04 - 2016-10-29 17:04 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\Wondershare
2016-10-29 17:00 - 2016-10-29 17:00 - 00004096 _____ C:\ProgramData\czchsjpj.srw
2016-10-29 17:00 - 2016-10-29 17:00 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\VideoEditor
2016-10-29 17:00 - 2016-10-29 17:00 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\Movavi
2016-10-29 17:00 - 2016-10-29 17:00 - 00000000 ____D C:\ProgramData\Movavi Video Editor 12
2016-10-29 16:50 - 2016-10-29 16:50 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\XMedia Recode
2016-10-29 13:52 - 2016-10-29 13:52 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\IcySon55
2016-10-27 19:22 - 2016-10-30 02:12 - 00000000 ____D C:\Users\DrDesperado\Desktop\Smash Mods
2016-10-27 17:13 - 2016-10-28 00:32 - 00001496 _____ C:\Users\DrDesperado\Desktop\Sm4shFileExplorer.lnk
2016-10-26 21:44 - 2016-10-26 21:44 - 00234061 _____ C:\Users\DrDesperado\Downloads\Theorieplan Okt. 16.pdf
2016-10-26 16:09 - 2016-10-26 16:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.7
2016-10-19 20:47 - 2016-10-19 20:47 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\mpress
2016-10-19 20:36 - 2016-10-19 20:36 - 00000000 ____D C:\ProgramData\KMSAuto
2016-10-19 20:35 - 2016-10-19 20:35 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\MSfree Inc
2016-10-19 20:06 - 2016-10-19 20:06 - 00000000 ___RD C:\Users\DrDesperado\OneDrive
2016-10-19 20:06 - 2016-10-19 20:06 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-10-19 20:06 - 2016-10-19 20:06 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-10-19 20:01 - 2016-10-19 20:01 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-10-11 22:50 - 2016-09-30 08:55 - 25765376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-10-11 22:50 - 2016-09-30 06:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-10-11 22:50 - 2016-09-30 06:21 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-10-11 22:49 - 2016-09-30 21:13 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-10-11 22:49 - 2016-09-30 20:28 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-10-11 22:49 - 2016-09-30 16:37 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-11 22:49 - 2016-09-30 16:20 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-10-11 22:49 - 2016-09-30 16:20 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-10-11 22:49 - 2016-09-30 07:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-10-11 22:49 - 2016-09-30 07:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-10-11 22:49 - 2016-09-30 07:26 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-10-11 22:49 - 2016-09-30 07:25 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-10-11 22:49 - 2016-09-30 07:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-10-11 22:49 - 2016-09-30 07:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-10-11 22:49 - 2016-09-30 07:25 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-10-11 22:49 - 2016-09-30 07:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-10-11 22:49 - 2016-09-30 07:18 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-10-11 22:49 - 2016-09-30 07:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-10-11 22:49 - 2016-09-30 07:14 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-10-11 22:49 - 2016-09-30 07:13 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-10-11 22:49 - 2016-09-30 07:13 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-10-11 22:49 - 2016-09-30 07:12 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-10-11 22:49 - 2016-09-30 07:12 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-10-11 22:49 - 2016-09-30 07:09 - 06048256 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-10-11 22:49 - 2016-09-30 07:05 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-10-11 22:49 - 2016-09-30 07:02 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-10-11 22:49 - 2016-09-30 06:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-10-11 22:49 - 2016-09-30 06:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-10-11 22:49 - 2016-09-30 06:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-10-11 22:49 - 2016-09-30 06:51 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-10-11 22:49 - 2016-09-30 06:50 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-10-11 22:49 - 2016-09-30 06:47 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-10-11 22:49 - 2016-09-30 06:46 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-10-11 22:49 - 2016-09-30 06:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-10-11 22:49 - 2016-09-30 06:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-10-11 22:49 - 2016-09-30 06:42 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-10-11 22:49 - 2016-09-30 06:42 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-10-11 22:49 - 2016-09-30 06:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-10-11 22:49 - 2016-09-30 06:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-10-11 22:49 - 2016-09-30 06:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-10-11 22:49 - 2016-09-30 06:35 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-10-11 22:49 - 2016-09-30 06:35 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-10-11 22:49 - 2016-09-30 06:33 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-10-11 22:49 - 2016-09-30 06:33 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-10-11 22:49 - 2016-09-30 06:32 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-10-11 22:49 - 2016-09-30 06:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-10-11 22:49 - 2016-09-30 06:32 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-10-11 22:49 - 2016-09-30 06:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-10-11 22:49 - 2016-09-30 06:31 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-10-11 22:49 - 2016-09-30 06:31 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-10-11 22:49 - 2016-09-30 06:24 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-10-11 22:49 - 2016-09-30 06:19 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-10-11 22:49 - 2016-09-30 06:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-10-11 22:49 - 2016-09-30 06:17 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-10-11 22:49 - 2016-09-30 06:17 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-10-11 22:49 - 2016-09-30 06:15 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-10-11 22:49 - 2016-09-30 06:14 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-10-11 22:49 - 2016-09-30 06:13 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-10-11 22:49 - 2016-09-30 06:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-10-11 22:49 - 2016-09-30 06:07 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-10-11 22:49 - 2016-09-30 06:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-10-11 22:49 - 2016-09-30 06:05 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-10-11 22:49 - 2016-09-30 06:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-10-11 22:49 - 2016-09-30 06:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-10-11 22:49 - 2016-09-30 06:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-10-11 22:49 - 2016-09-30 05:54 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-10-11 22:49 - 2016-09-30 05:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-10-11 22:49 - 2016-09-30 05:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-10-11 22:49 - 2016-09-30 05:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-10-11 22:49 - 2016-09-15 16:30 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-11 22:49 - 2016-09-15 16:30 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-10-11 22:49 - 2016-09-15 16:15 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-10-11 22:49 - 2016-09-15 16:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-10-11 22:49 - 2016-09-12 22:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-11 22:49 - 2016-09-12 22:13 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-10-11 22:49 - 2016-09-12 22:13 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-10-11 22:49 - 2016-09-12 22:08 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-10-11 22:49 - 2016-09-12 22:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-10-11 22:49 - 2016-09-12 21:49 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-10-11 22:49 - 2016-09-12 21:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-10-11 22:49 - 2016-09-12 21:37 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-11 22:49 - 2016-09-12 21:32 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-10-11 22:49 - 2016-09-12 21:32 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-10-11 22:49 - 2016-09-12 21:32 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-10-11 22:49 - 2016-09-12 21:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-10-11 22:49 - 2016-09-12 21:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-10-11 22:49 - 2016-09-12 21:25 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-10-11 22:49 - 2016-09-12 20:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-10-11 22:49 - 2016-09-12 19:43 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-11 22:49 - 2016-09-12 19:43 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-11 22:49 - 2016-09-10 17:19 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-11 22:49 - 2016-09-10 16:53 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-10-11 22:49 - 2016-09-09 19:29 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-10-11 22:49 - 2016-09-09 19:26 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-10-11 22:49 - 2016-09-09 19:23 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 19:01 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-10-11 22:49 - 2016-09-09 19:00 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-10-11 22:49 - 2016-09-09 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-10-11 22:49 - 2016-09-09 19:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-10-11 22:49 - 2016-09-09 19:00 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:51 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-10-11 22:49 - 2016-09-09 18:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-10-11 22:49 - 2016-09-09 18:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-10-11 22:49 - 2016-09-09 18:48 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-10-11 22:49 - 2016-09-09 18:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-10-11 22:49 - 2016-09-09 18:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-10-11 22:49 - 2016-09-09 18:38 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-10-11 22:49 - 2016-09-09 18:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-10-11 22:49 - 2016-09-09 18:38 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-10-11 22:49 - 2016-09-09 18:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-10-11 22:49 - 2016-09-09 18:37 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 18:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-10-11 22:49 - 2016-09-09 16:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-11 22:49 - 2016-09-09 16:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-11 22:49 - 2016-09-09 16:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-11 22:49 - 2016-09-09 16:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-11 22:49 - 2016-09-09 16:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-11 22:49 - 2016-09-09 16:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-11 22:49 - 2016-09-09 16:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-11 22:49 - 2016-09-08 21:34 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-10-11 22:49 - 2016-09-08 21:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-10-11 22:49 - 2016-09-08 21:34 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-10-11 22:49 - 2016-09-08 21:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-10-11 22:49 - 2016-09-08 15:55 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-11 22:49 - 2016-09-08 15:55 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-11 22:49 - 2016-08-16 21:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-10-11 22:49 - 2016-08-16 21:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-10-11 22:49 - 2016-08-16 21:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-10-11 22:49 - 2016-08-16 21:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-10-11 22:49 - 2016-08-16 21:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-10-11 22:49 - 2016-08-16 21:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-10-11 22:49 - 2016-08-16 21:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-10-11 22:49 - 2016-07-22 15:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-10-11 22:49 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 12574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-10 21:25 - 2016-10-10 21:25 - 12574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-10-10 21:25 - 2016-10-10 21:25 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 03209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 02023424 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 01178112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-10-10 21:25 - 2016-10-10 21:25 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-10-10 21:25 - 2016-10-10 21:25 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-10-10 21:25 - 2016-10-10 21:25 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-10-10 21:25 - 2016-10-10 21:25 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-10-10 21:25 - 2016-10-10 21:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-10-10 21:25 - 2016-10-10 21:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-10-10 21:24 - 2016-10-10 21:24 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-10 21:24 - 2016-10-10 21:24 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-10-10 21:24 - 2016-10-10 21:24 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-10 21:24 - 2016-10-10 21:24 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-10-10 21:24 - 2016-10-10 21:24 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-10 21:24 - 2016-10-10 21:24 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-10-10 21:24 - 2016-10-10 21:24 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-10-10 21:24 - 2016-10-10 21:24 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-10-05 16:21 - 2016-10-27 19:07 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\Telegram Desktop
2016-10-05 16:21 - 2016-10-05 16:21 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-01 02:43 - 2016-04-17 02:26 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-01 00:38 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-01 00:38 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-01 00:34 - 2009-07-14 18:58 - 00700454 _____ C:\Windows\system32\perfh007.dat
2016-11-01 00:34 - 2009-07-14 18:58 - 00150092 _____ C:\Windows\system32\perfc007.dat
2016-11-01 00:34 - 2009-07-14 06:13 - 00906186 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-01 00:34 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-01 00:33 - 2015-11-05 00:42 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\IObit
2016-11-01 00:33 - 2015-11-05 00:42 - 00000000 ____D C:\ProgramData\IObit
2016-11-01 00:32 - 2015-11-05 00:42 - 00000000 ____D C:\Program Files (x86)\IObit
2016-11-01 00:32 - 2013-11-28 04:49 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-01 00:30 - 2016-04-17 02:26 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-01 00:29 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-01 00:21 - 2014-01-14 18:39 - 00000000 ____D C:\Windows\pss
2016-11-01 00:20 - 2016-08-14 15:52 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.5.1
2016-11-01 00:06 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2016-11-01 00:05 - 2009-07-14 03:34 - 96219136 _____ C:\Windows\system32\config\SOFTWARE.bak
2016-11-01 00:05 - 2009-07-14 03:34 - 28049408 _____ C:\Windows\system32\config\SYSTEM.bak
2016-11-01 00:05 - 2009-07-14 03:34 - 00524288 _____ C:\Windows\system32\config\DEFAULT.bak
2016-11-01 00:05 - 2009-07-14 03:34 - 00061440 _____ C:\Windows\system32\config\SAM.bak
2016-11-01 00:05 - 2009-07-14 03:34 - 00024576 _____ C:\Windows\system32\config\SECURITY.bak
2016-11-01 00:03 - 2016-01-07 18:48 - 00000000 ____D C:\ProgramData\TEMP
2016-10-31 22:27 - 2015-12-30 22:46 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\CrashDumps
2016-10-31 22:27 - 2013-12-08 02:43 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-10-31 16:41 - 2013-12-08 02:49 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\NVIDIA Corporation
2016-10-30 23:31 - 2015-11-03 17:46 - 00000000 ____D C:\Users\DrDesperado\Downloads\Setups
2016-10-30 23:31 - 2014-05-24 18:48 - 00000000 ____D C:\Users\DrDesperado\Desktop\Tools
2016-10-30 23:30 - 2015-04-09 12:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-10-30 23:30 - 2015-01-04 19:31 - 00000000 ____D C:\Temp
2016-10-30 23:29 - 2013-11-28 04:48 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-10-30 23:29 - 2013-11-28 04:48 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-30 23:26 - 2015-04-09 12:36 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\NVIDIA
2016-10-30 23:25 - 2014-02-24 07:37 - 00007950 _____ C:\Users\DrDesperado\Documents\SavePWFJ.kdbx
2016-10-30 23:25 - 2014-02-24 06:27 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\KeePass
2016-10-30 23:09 - 2016-02-13 10:43 - 56008704 _____ C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2016-10-30 23:09 - 2015-12-29 23:53 - 96219136 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2016-10-30 23:09 - 2015-12-29 23:53 - 00327680 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2016-10-30 23:09 - 2015-12-29 23:53 - 00061440 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2016-10-30 23:09 - 2015-12-29 23:53 - 00024576 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2016-10-30 23:05 - 2015-11-05 01:05 - 00000000 ____D C:\Windows\system32\DAX2
2016-10-30 23:05 - 2013-11-28 18:18 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-10-30 21:16 - 2009-07-14 05:45 - 00438848 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-29 19:19 - 2013-12-30 14:36 - 00000000 ____D C:\Users\DrDesperado\Documents\My Games
2016-10-29 17:27 - 2016-01-06 22:39 - 00000000 ____D C:\Users\DrDesperado\Downloads\Star Wars
2016-10-29 17:23 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-10-29 17:04 - 2013-11-28 04:41 - 00115064 _____ C:\Users\DrDesperado\AppData\Local\GDIPFONTCACHEV1.DAT
2016-10-28 23:24 - 2013-12-01 19:57 - 00001948 _____ C:\Users\DrDesperado\Desktop\Anime Serien.txt
2016-10-28 21:39 - 2015-06-15 01:02 - 00000000 ____D C:\Users\DrDesperado\Documents\TowerFall Replays
2016-10-26 21:46 - 2016-04-17 02:26 - 00002187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-26 16:29 - 2013-11-28 05:14 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-10-26 02:06 - 2016-08-24 23:39 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-10-25 22:39 - 2016-08-30 19:43 - 28138552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-10-25 22:39 - 2015-12-01 17:37 - 17429080 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-10-25 22:39 - 2015-11-09 19:58 - 03933968 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-10-25 22:39 - 2015-08-11 00:08 - 19925152 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-10-25 22:39 - 2015-08-11 00:08 - 03473368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-10-25 22:39 - 2015-04-09 12:34 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-10-25 21:17 - 2015-12-30 16:46 - 00548408 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-10-25 21:17 - 2015-12-30 16:46 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-10-25 21:17 - 2015-04-09 12:34 - 06386232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-10-25 21:17 - 2015-04-09 12:34 - 02475968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-10-25 21:17 - 2015-04-09 12:34 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-10-25 21:17 - 2015-04-09 12:34 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-10-25 21:17 - 2015-04-09 12:34 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-10-24 17:51 - 2013-12-08 00:55 - 00000397 _____ C:\Users\DrDesperado\Desktop\Spiele Liste 2016-17.txt
2016-10-24 07:31 - 2015-04-09 12:34 - 07507695 _____ C:\Windows\system32\nvcoproc.bin
2016-10-22 20:50 - 2014-06-01 22:52 - 00000429 _____ C:\Users\DrDesperado\Desktop\Kaufen.txt
2016-10-19 20:06 - 2013-11-28 04:26 - 00000000 ____D C:\Users\DrDesperado
2016-10-18 21:58 - 2015-05-28 00:54 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\Nidhogg
2016-10-18 20:08 - 2015-01-08 16:48 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\Battle.net
2016-10-18 11:42 - 2015-08-07 23:39 - 00000000 ____D C:\Program Files\Cloud Imperium Games
2016-10-15 00:12 - 2016-04-05 23:17 - 00000147 _____ C:\Users\DrDesperado\Desktop\Cartoon Serien.txt
2016-10-14 22:06 - 2015-05-19 00:04 - 00000000 ____D C:\Users\DrDesperado\Documents\The Witcher 3
2016-10-13 19:51 - 2013-11-28 18:58 - 00000000 ____D C:\ProgramData\Origin
2016-10-13 19:46 - 2014-02-14 20:20 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\Origin
2016-10-13 18:14 - 2014-02-14 20:19 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\Origin
2016-10-12 19:41 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-10-12 15:33 - 2015-11-05 02:20 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-12 15:33 - 2014-12-24 15:48 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-10-12 11:51 - 2014-12-10 16:55 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-12 11:51 - 2014-05-07 02:00 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-11 23:12 - 2013-11-28 01:50 - 00000000 ____D C:\Windows\system32\MRT
2016-10-11 23:11 - 2013-11-28 01:50 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-11 23:10 - 2015-10-01 13:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-10-11 23:10 - 2015-10-01 13:06 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-11 23:10 - 2015-10-01 13:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-10-11 01:45 - 2016-07-20 12:51 - 00000000 ___SD C:\Windows\system32\GWX
2016-10-11 01:45 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-10-11 01:45 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2016-10-10 22:34 - 2014-01-14 23:38 - 00000000 ____D C:\Users\DrDesperado\Documents\Nexus Mod Manager
2016-10-10 21:46 - 2015-08-21 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2016-10-10 21:42 - 2016-07-23 21:16 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\mslug2
2016-10-10 21:41 - 2016-09-04 16:56 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\Curse Client
2016-10-10 21:41 - 2016-08-26 18:47 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\WhatsApp
2016-10-10 21:41 - 2016-06-15 03:01 - 00000000 ____D C:\Users\DrDesperado\AppData\Local\Star Citizen
2016-10-10 21:41 - 2016-06-12 02:01 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\uTorrent
2016-10-10 21:41 - 2016-05-24 19:55 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\TeamViewer
2016-10-10 21:41 - 2015-02-20 15:35 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\MedievalEngineers
2016-10-10 21:41 - 2014-02-07 17:44 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\Awesomium
2016-10-10 21:41 - 2013-11-28 02:00 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\SpaceEngineers
2016-10-10 13:37 - 2016-02-23 15:25 - 00263296 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys
2016-10-10 13:37 - 2016-02-23 15:25 - 00197288 _____ (ESET) C:\Windows\system32\Drivers\ehdrv.sys
2016-10-10 13:37 - 2016-02-23 15:25 - 00181416 _____ (ESET) C:\Windows\system32\Drivers\epfwwfpr.sys
2016-10-04 13:08 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-10-03 19:08 - 2016-08-26 18:48 - 00000000 ____D C:\Users\DrDesperado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-01-22 08:00 - 2014-01-22 08:01 - 0008096 _____ () C:\Users\DrDesperado\AppData\Local\CleanupUninstall.txt
2014-04-04 20:20 - 2014-04-04 20:20 - 0007599 _____ () C:\Users\DrDesperado\AppData\Local\Resmon.ResmonCfg
2016-10-29 17:00 - 2016-10-29 17:00 - 0004096 _____ () C:\ProgramData\czchsjpj.srw
2013-11-28 18:18 - 2013-11-28 18:18 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\DrDesperado\AppData\Local\Temp\libeay32.dll
C:\Users\DrDesperado\AppData\Local\Temp\msvcr120.dll
C:\Users\DrDesperado\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-10-25 12:19

==================== Ende von FRST.txt ============================
Addition und Logs von den vorherigen Schritten haben nicht mehr reingepasst, diese füge ich aber gerne nach.
Geändert von Dshizzle (01.11.2016 um 04:39 Uhr) Grund: verbesserung

 

Themen zu Windows 7 64 bit Malware befall
.dll, 64-bit, administrator, antivirus, combofix, defender, desktop, explorer, fehlermeldung, google, helper, home, homepage, launch, malware, mozilla, problem, prozesse, realtek, scan, services.exe, software, svchost.exe, trojaner, usb, windows, windwos 7, winlogon.exe


« tr/agent.gcny ; Avira Meldung; Win7 | versehentlich Link einer Phishing Mail gefolgt »


Ähnliche Themen: Windows 7 64 bit Malware befall


  1. Malware Befall
    Plagegeister aller Art und deren Bekämpfung - 11.07.2016 (9)
  2. Wann war eure erster Malware befall, bzw. welche Malware war es, und was ging karputt ?
    Diskussionsforum - 20.05.2016 (8)
  3. Malware Befall?
    Log-Analyse und Auswertung - 24.09.2015 (18)
  4. Windows 7, Evtl. Malware-Befall, FileOpenerSetup.exe
    Plagegeister aller Art und deren Bekämpfung - 23.01.2015 (23)
  5. Laptop mit Windows 8 nach Malware Befall wirklich sauber? Logfiles anbei
    Log-Analyse und Auswertung - 30.12.2014 (9)
  6. Windows 7: Befall von Malware (PC Speed Maximizer)
    Log-Analyse und Auswertung - 20.12.2014 (11)
  7. Windows 8, "Speed Check" Malware-Befall
    Log-Analyse und Auswertung - 28.10.2014 (7)
  8. Windows 7 Malware oder Trojaner Befall-insbesondere Keyboard betroffen
    Plagegeister aller Art und deren Bekämpfung - 26.10.2014 (37)
  9. Befall von Malware (zym.tollbahsuburban.com) auf Windows 7 Professional PC
    Plagegeister aller Art und deren Bekämpfung - 26.09.2014 (18)
  10. Befall von Malware (zym.tollbahsuburban.com) auf Windows 8 Professional PC
    Plagegeister aller Art und deren Bekämpfung - 25.09.2014 (15)
  11. Windows 7: Spam-Seiten erscheinen nach Malware-Befall
    Log-Analyse und Auswertung - 21.05.2014 (9)
  12. Log-Analyse nach Trojaner/Malware befall (Malware.Trace / Trojan.BHO)
    Log-Analyse und Auswertung - 26.09.2011 (16)
  13. Nach Windows-Recovery (?) Befall und Entfernen via Malware schwarzer Hintergrund und alle Daten weg
    Plagegeister aller Art und deren Bekämpfung - 18.04.2011 (23)
  14. Probleme nach Windows Recovery Malware Befall
    Log-Analyse und Auswertung - 07.04.2011 (37)
  15. Befall mit diverser Malware u.a. : C:\WINDOWS\btrd32.dll (Trojan.Hiloti); -TR/Crypt.XPACK.Gen3'
    Plagegeister aller Art und deren Bekämpfung - 06.10.2010 (14)
  16. Befall mit Malware. Was tuen?
    Plagegeister aller Art und deren Bekämpfung - 26.09.2010 (1)
  17. Trojaner und Malware-Befall
    Log-Analyse und Auswertung - 01.11.2008 (16)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7 64 bit Malware befall - Hallo, ich habe in letzter Zeit ein paar programme zum editieren von Videos runtergeladen dabei habe ich mir wohl einen trojaner eingefangen. Bei unterschiedlichen dingen die ich auf meinem PC - Windows 7 64 bit Malware befall...
Archiv
Du betrachtest: Windows 7 64 bit Malware befall auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131