Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Unidentifizierter Virusbefall

Unidentifizierter Virusbefall


Plagegeister aller Art und deren Bekämpfung: Unidentifizierter Virusbefall

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 30.11.2016, 15:17   #1
HoChiMinh
 
Unidentifizierter Virusbefall - Standard

Unidentifizierter Virusbefall


Servus beisammen,

ich hoffe das ich im richtigen Unterforum bin und zwar geht es um das vermutlich virenbefalle Notebook meiner Mutter. Ehrlich gesagt habe ich solche "Symptome" noch nie bei einem Virus erlebt, jedenfalls kann man auf dem Desktop und in Ordner nichts mehr wirklich einzeln anklicken sondern markiert sofort alle Dateien, sofern man etwas öffnet wird dies immer in einem neuen Tab getan, es ploppen unregelmäßig Firefox-Werbetabs auf, Groß- und Kleinschreibung spinnt teils komplett, Buchstaben sind o. scheinen unregelmäßig vertauscht und zu guter Letzt ist das Notebook unerträglich langsam.

Ich war schonmal so frei und hab Farbar's Recovery Scan Tool durchlaufen lassen, anbei die FRST.txt und Addition.txt:

FRST.txt Teil 1
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 27-11-2016
durchgeführt von Lotte (Administrator) auf VAIO (30-11-2016 14:59:09)
Gestartet von F:\
Geladene Profile: Lotte (Verfügbare Profile: Lotte)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: IE)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\BCMWLTRY.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-11] (Realtek Semiconductor)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [10590208 2013-03-14] (Broadcom Corporation)
HKLM\...\Run: [Bluetooth] => C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe [526704 2012-12-14] (Broadcom Corporation.)
HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe"
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3039984 2013-03-14] (Synaptics Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-02-19] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [916072 2016-10-17] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [60136 2016-11-15] (Avira Operations GmbH & Co. KG)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1A46D567-875B-45A4-98FE-CAF331EF188B}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{A3513364-028E-42DF-837F-A15CF72021FD}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sony13.msn.com/
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\S-1-5-21-927612283-1200829413-3393210303-1001 -> {48235808-A77B-491C-A5F9-4BC1D50B3D36} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-&_nkw={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-19] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-19] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-19] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-19] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Lotte\AppData\Roaming\Mozilla\Firefox\Profiles\olfpfw54.default-1479064688085 [2016-11-30]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
FF Plugin: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\system32\npDeployJava1.dll [2013-12-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin-x32: Adobe Reader -> c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-927612283-1200829413-3393210303-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [2013-02-19] (Intel)
FF Plugin HKU\S-1-5-21-927612283-1200829413-3393210303-1001: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll [2013-02-19] (Intel)

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1089088 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [475232 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [475232 2016-10-17] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1488240 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [349512 2016-11-15] (Avira Operations GmbH & Co. KG)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2227992 2013-01-23] (Broadcom Corporation.)
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-10-27] (Chip Digital GmbH) [Datei ist nicht signiert]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129824 2013-01-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166688 2013-01-23] (Intel Corporation)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [639576 2013-05-10] (Sony Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2013-01-06] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1656600 2016-03-31] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2016-11-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2016-11-12] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [6070272 2013-03-14] (Broadcom Corporation) [Datei ist nicht signiert]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [151352 2016-10-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [153392 2016-10-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [35488 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [78208 2016-10-17] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [23640 2016-10-17] (Avira Operations GmbH & Co. KG)
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [169240 2013-01-23] (Broadcom Corporation.)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [8469680 2016-11-05] (Broadcom Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-03-14] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2016-11-12] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [270168 2016-11-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2016-11-12] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-30 14:52 - 2016-11-30 14:59 - 00000000 ____D C:\FRST
2016-11-30 13:14 - 2016-11-30 13:14 - 00001152 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2016-11-30 13:12 - 2016-11-30 14:47 - 00000000 ____D C:\Users\Lotte\AppData\LocalLow\Mozilla
2016-11-30 13:11 - 2016-11-30 13:11 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-30 13:11 - 2016-11-30 13:11 - 00001159 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-11-30 13:11 - 2016-11-30 13:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-30 13:07 - 2016-11-30 13:07 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-30 13:05 - 2016-10-28 22:04 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-11-30 13:05 - 2016-10-28 22:04 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-13 21:39 - 2015-07-30 15:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 21:39 - 2015-07-30 14:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 21:18 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-11-13 21:18 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-11-13 20:37 - 2016-06-10 19:11 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-11-13 20:37 - 2016-06-10 19:11 - 01487992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-11-13 20:37 - 2016-04-06 19:17 - 18825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-11-13 20:37 - 2016-04-06 17:25 - 15158272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-11-13 20:36 - 2016-06-18 21:06 - 00590688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-11-13 20:36 - 2016-06-18 21:06 - 00072408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2016-11-13 20:36 - 2016-06-11 20:52 - 00379232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-11-13 20:36 - 2016-06-11 20:52 - 00057184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-11-13 20:36 - 2016-06-11 19:05 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2016-11-13 20:36 - 2016-06-11 18:14 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpresult.exe
2016-11-13 20:36 - 2016-06-11 17:50 - 00987136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-11-13 20:36 - 2016-06-11 17:46 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2016-11-13 20:36 - 2016-06-11 17:44 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-11-13 20:36 - 2016-06-11 17:37 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-11-13 20:36 - 2016-06-11 17:24 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-11-13 20:36 - 2016-06-11 17:20 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-11-13 20:36 - 2016-06-11 17:16 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-11-13 20:36 - 2016-06-10 21:07 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-13 20:36 - 2016-06-10 19:11 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-11-13 20:36 - 2016-06-10 19:11 - 00125024 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2016-11-13 20:36 - 2016-06-10 19:10 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2016-11-13 20:36 - 2016-06-10 19:07 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-13 20:36 - 2016-06-09 20:32 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-11-13 20:36 - 2016-06-09 19:18 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-11-13 20:36 - 2016-06-07 19:10 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\hbaapi.dll
2016-11-13 20:36 - 2016-06-07 18:13 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hbaapi.dll
2016-11-13 20:36 - 2016-06-04 01:38 - 01613528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-11-13 20:36 - 2016-06-04 01:37 - 01970968 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-11-13 20:36 - 2016-05-18 22:54 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2016-11-13 20:36 - 2016-05-18 22:15 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2016-11-13 20:36 - 2016-05-18 21:56 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2016-11-13 20:36 - 2016-05-18 21:33 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2016-11-13 20:36 - 2016-05-18 21:28 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-11-13 20:36 - 2016-05-18 21:16 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-11-13 20:36 - 2016-05-14 21:26 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-13 20:36 - 2016-05-14 06:19 - 01134768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-11-13 20:36 - 2016-05-14 00:08 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-11-13 20:36 - 2016-05-14 00:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-11-13 20:36 - 2016-05-14 00:08 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-11-13 20:36 - 2016-05-13 23:24 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-11-13 20:36 - 2016-05-13 22:42 - 03667968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-11-13 20:36 - 2016-05-13 22:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-11-13 20:36 - 2016-05-13 22:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-11-13 20:36 - 2016-05-13 22:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-11-13 20:36 - 2016-05-13 22:27 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-11-13 20:36 - 2016-05-13 22:26 - 02230784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-11-13 20:36 - 2016-05-13 22:26 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-11-13 20:36 - 2016-05-13 22:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-11-13 20:36 - 2016-05-13 22:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-11-13 20:36 - 2016-05-13 22:16 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-11-13 20:36 - 2016-05-13 22:16 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-11-13 20:36 - 2016-05-12 19:36 - 00034600 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2016-11-13 20:36 - 2016-05-12 18:39 - 00030984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2016-11-13 20:36 - 2016-05-06 22:59 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-11-13 20:36 - 2016-05-05 18:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2016-11-13 20:36 - 2016-05-05 18:02 - 03320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-11-13 20:36 - 2016-05-05 17:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2016-11-13 20:36 - 2016-05-05 17:29 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-11-13 20:36 - 2016-04-09 23:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-11-13 20:36 - 2016-04-09 23:14 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2016-11-13 20:36 - 2016-04-09 23:10 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-11-13 20:36 - 2016-04-09 23:09 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-11-13 20:36 - 2016-04-09 23:02 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2016-11-13 20:36 - 2016-04-09 22:59 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Geolocation.dll
2016-11-13 20:36 - 2016-04-09 22:59 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-11-13 20:36 - 2016-04-09 22:56 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-11-13 20:36 - 2016-04-09 22:55 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-11-13 20:36 - 2016-04-09 22:52 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2016-11-13 20:36 - 2016-04-07 17:06 - 00927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-11-13 20:36 - 2016-04-06 22:21 - 00114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-11-13 20:36 - 2016-04-06 19:20 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-11-13 20:36 - 2016-04-05 23:37 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-11-13 20:36 - 2016-04-02 14:58 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-11-13 20:36 - 2016-04-01 18:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-11-13 20:36 - 2016-04-01 17:53 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-11-13 20:36 - 2016-04-01 17:50 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-11-13 20:36 - 2016-02-04 17:57 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-11-13 20:36 - 2016-02-04 17:49 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-11-13 20:36 - 2016-02-04 17:39 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-11-13 20:34 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-11-13 20:34 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-11-13 20:33 - 2016-07-12 15:08 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-13 20:33 - 2016-07-09 17:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-11-13 20:33 - 2016-07-08 23:35 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-11-13 20:33 - 2016-07-08 15:17 - 00377344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-11-13 20:33 - 2016-07-08 15:17 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-11-13 20:33 - 2016-07-07 23:32 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2016-11-13 20:33 - 2016-07-07 23:18 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2016-11-13 20:33 - 2016-07-07 23:10 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-11-13 20:33 - 2016-07-07 23:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2016-11-13 20:33 - 2016-07-07 22:04 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2016-11-13 20:33 - 2016-07-07 21:59 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-11-13 20:33 - 2016-07-07 21:44 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-11-13 20:33 - 2016-07-07 21:41 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-11-13 20:33 - 2016-07-07 21:34 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-11-13 20:33 - 2016-07-07 21:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-11-13 20:33 - 2016-07-07 21:29 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-11-13 20:33 - 2016-07-07 21:23 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2016-11-13 20:33 - 2016-07-07 21:18 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-11-13 20:33 - 2016-07-07 21:11 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2016-11-13 20:33 - 2016-07-07 20:35 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2016-11-13 20:33 - 2016-07-07 20:14 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-11-13 20:33 - 2016-07-04 06:09 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-13 20:33 - 2016-07-04 04:45 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2016-11-13 20:33 - 2016-07-04 04:33 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-11-13 20:33 - 2016-07-04 04:02 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-11-13 20:33 - 2016-07-04 03:19 - 03547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-13 20:33 - 2016-07-01 21:39 - 00197352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssenh.dll
2016-11-13 20:33 - 2016-07-01 21:39 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dssenh.dll
2016-11-13 20:33 - 2016-01-10 18:08 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-11-13 20:33 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2016-11-13 20:33 - 2014-07-24 04:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-11-13 20:33 - 2014-07-24 04:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-11-13 20:32 - 2016-08-27 20:44 - 22360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-13 20:32 - 2016-08-27 20:44 - 02755504 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-13 20:32 - 2016-08-27 20:44 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2016-11-13 20:32 - 2016-08-27 19:26 - 19789232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-13 20:32 - 2016-08-27 19:26 - 02411048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-13 20:32 - 2016-08-27 19:26 - 00113656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2016-11-13 20:32 - 2016-08-27 17:09 - 14466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-13 20:32 - 2016-08-27 16:55 - 12879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-13 20:32 - 2015-05-12 14:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-11-13 20:09 - 2016-11-30 14:46 - 00000000 __SHD C:\Users\Lotte\IntelGraphicsProfiles
2016-11-13 20:09 - 2016-11-13 20:09 - 00001450 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-11-13 20:09 - 2016-11-13 20:09 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-11-13 20:09 - 2016-11-13 20:09 - 00000020 ___SH C:\Users\Lotte\ntuser.ini
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-11-13 00:56 - 2016-11-13 00:56 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-11-13 00:43 - 2016-11-13 00:43 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-13 00:40 - 2016-11-13 00:40 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-11-13 00:38 - 2016-11-13 20:09 - 00000000 ____D C:\Users\Lotte
2016-11-13 00:38 - 2016-11-13 00:56 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2016-11-13 00:38 - 2016-11-13 00:56 - 00020958 _____ C:\WINDOWS\diagerr.xml
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Vorlagen
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Startmenü
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Netzwerkumgebung
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Lokale Einstellungen
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Eigene Dateien
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Druckumgebung
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Videos
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Musik
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Bilder
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Local\Verlauf
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Local\Anwendungsdaten
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Anwendungsdaten
2016-11-13 00:38 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-11-13 00:38 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-11-13 00:29 - 2016-11-13 00:41 - 00000000 ____D C:\Program Files (x86)\Intel
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____D C:\Program Files\Realtek
2016-11-13 00:29 - 2015-08-27 18:20 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-13 00:29 - 2015-08-27 18:20 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-13 00:28 - 2016-11-13 00:28 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____D C:\Program Files\Synaptics
2016-11-13 00:24 - 2016-11-13 20:09 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-13 00:23 - 2016-11-13 00:24 - 00000000 ____D C:\Windows.old
2016-11-13 00:21 - 2016-11-13 00:21 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2016-11-13 00:20 - 2016-11-13 00:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2016-11-13 00:20 - 2016-11-13 00:20 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-11-13 00:19 - 2016-11-13 00:19 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-11-13 00:19 - 2016-11-13 00:19 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpsapi.dll
2016-11-13 00:19 - 2016-11-13 00:19 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpsapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02745184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02528784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02450240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02447136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02334104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02324744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01798480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01484888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01288128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01210200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01115640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01037680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00914672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00850680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00736256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00735496 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00700360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00629600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00557856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00492736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00463776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00299080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-11-13 00:18 - 2016-11-13 00:18 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00274280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00248432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00246856 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-11-13 00:18 - 2016-11-13 00:18 - 00244296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00229272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00203016 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00184912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00183856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00177712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00148752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00110544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00090904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00090392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00081032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00076936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2016-11-13 00:17 - 2016-11-13 00:17 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-11-13 00:17 - 2016-11-13 00:17 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2016-11-13 00:17 - 2016-11-13 00:17 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 25763328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 20304896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 15431168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 15257088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 13654016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 13317120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-11-13 00:16 - 2016-11-13 00:16 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-11-13 00:16 - 2016-11-13 00:16 - 07444312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 06047744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 04608000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 03754496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02920448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02463744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02315496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02287616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-13 00:16 - 2016-11-13 00:16 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-13 00:16 - 2016-11-13 00:16 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01946176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01754112 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01663184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-13 00:16 - 2016-11-13 00:16 - 01660040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01560064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01523208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01490112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-13 00:16 - 2016-11-13 00:16 - 01445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01377792 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01358952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01317888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01124376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00921944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-11-13 00:16 - 2016-11-13 00:16 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00497448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-13 00:16 - 2016-11-13 00:16 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00444248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00420184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2016-11-13 00:16 - 2016-11-13 00:16 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00399776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-11-13 00:16 - 2016-11-13 00:16 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00377176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2016-11-13 00:16 - 2016-11-13 00:16 - 00333656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00275800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00162850 _____ C:\WINDOWS\SysWOW64\C_932.NLS
2016-11-13 00:16 - 2016-11-13 00:16 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-11-13 00:16 - 2016-11-13 00:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiexe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00121176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\parport.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2016-11-13 00:16 - 2016-11-13 00:16 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsidsc.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2016-11-13 00:16 - 2016-11-13 00:16 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsidsc.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifibus.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serenum.sys
2016-11-13 00:13 - 2016-11-13 00:13 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2016-11-13 00:13 - 2016-11-13 00:13 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00099672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 02466136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-11-13 00:12 - 2016-11-13 00:12 - 00160160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2016-11-13 00:12 - 2016-11-13 00:12 - 00121912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2016-11-13 00:12 - 2016-11-13 00:12 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01379040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-11-13 00:10 - 2016-11-13 00:10 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-11-13 00:10 - 2016-11-13 00:10 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2016-11-13 00:09 - 2016-11-13 00:09 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-13 00:09 - 2016-11-13 00:09 - 00513480 _____ C:\WINDOWS\system32\locale.nls
2016-11-13 00:09 - 2016-11-13 00:09 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

 

Themen zu Unidentifizierter Virusbefall
dateien, desktop, einzeln, erlebt, guter, ide, klicke, klicken, komplett, neue, neuen, nichts, notebook, ordner, recovery, scan, schonmal, spinnt, tab, tool, unterforum, vertauscht, virus, windowsapps, wirklich, öffnet


« win32/hadsruda!bit auf meinem PC. Wie kann ich das entfernen? | Server von Virus befallen wer kann helfen »


Ähnliche Themen: Unidentifizierter Virusbefall


  1. Extremer Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 22.11.2015 (1)
  2. sm.de virusbefall
    Plagegeister aller Art und deren Bekämpfung - 17.10.2014 (19)
  3. Erneuter Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 13.12.2013 (18)
  4. virusbefall
    Plagegeister aller Art und deren Bekämpfung - 01.12.2013 (5)
  5. Ihavenet-Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 09.06.2013 (37)
  6. GVU oder BKA Virusbefall
    Log-Analyse und Auswertung - 23.05.2013 (6)
  7. explorer.exe Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 08.02.2012 (1)
  8. Gema Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 14.01.2012 (17)
  9. Virusbefall auf meinem Laptop
    Log-Analyse und Auswertung - 08.11.2011 (47)
  10. BKA Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 28.07.2011 (3)
  11. Wahrscheinich ein Virusbefall
    Plagegeister aller Art und deren Bekämpfung - 06.04.2011 (1)
  12. iexplore.exe virusbefall ?
    Log-Analyse und Auswertung - 09.07.2010 (16)
  13. Akut Virusbefall ! :/
    Plagegeister aller Art und deren Bekämpfung - 02.02.2010 (1)
  14. Plötzlicher Virusbefall
    Log-Analyse und Auswertung - 22.08.2008 (4)
  15. Virusbefall smitfraud
    Log-Analyse und Auswertung - 16.12.2005 (10)
  16. HJT Log 28.11.05 nach Virusbefall
    Log-Analyse und Auswertung - 05.12.2005 (13)
  17. Virusbefall: win32:Trojan-gen. {Other}
    Plagegeister aller Art und deren Bekämpfung - 23.06.2004 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Unidentifizierter Virusbefall - Servus beisammen, ich hoffe das ich im richtigen Unterforum bin und zwar geht es um das vermutlich virenbefalle Notebook meiner Mutter. Ehrlich gesagt habe ich solche "Symptome" noch nie bei - Unidentifizierter Virusbefall...
Archiv
Du betrachtest: Unidentifizierter Virusbefall auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131