| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Unidentifizierter VirusbefallWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
30.11.2016, 15:17
| #1 |
 |  Unidentifizierter Virusbefall Servus beisammen, ich hoffe das ich im richtigen Unterforum bin und zwar geht es um das vermutlich virenbefalle Notebook meiner Mutter. Ehrlich gesagt habe ich solche "Symptome" noch nie bei einem Virus erlebt, jedenfalls kann man auf dem Desktop und in Ordner nichts mehr wirklich einzeln anklicken sondern markiert sofort alle Dateien, sofern man etwas öffnet wird dies immer in einem neuen Tab getan, es ploppen unregelmäßig Firefox-Werbetabs auf, Groß- und Kleinschreibung spinnt teils komplett, Buchstaben sind o. scheinen unregelmäßig vertauscht und zu guter Letzt ist das Notebook unerträglich langsam. Ich war schonmal so frei und hab Farbar's Recovery Scan Tool durchlaufen lassen, anbei die FRST.txt und Addition.txt: FRST.txt Teil 1 Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 27-11-2016
durchgeführt von Lotte (Administrator) auf VAIO (30-11-2016 14:59:09)
Gestartet von F:\
Geladene Profile: Lotte (Verfügbare Profile: Lotte)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: IE)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\BCMWLTRY.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-11] (Realtek Semiconductor)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [10590208 2013-03-14] (Broadcom Corporation)
HKLM\...\Run: [Bluetooth] => C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe [526704 2012-12-14] (Broadcom Corporation.)
HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe"
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3039984 2013-03-14] (Synaptics Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-02-19] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [916072 2016-10-17] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [60136 2016-11-15] (Avira Operations GmbH & Co. KG)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1A46D567-875B-45A4-98FE-CAF331EF188B}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{A3513364-028E-42DF-837F-A15CF72021FD}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sony13.msn.com/
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\S-1-5-21-927612283-1200829413-3393210303-1001 -> {48235808-A77B-491C-A5F9-4BC1D50B3D36} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-&_nkw={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-19] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-19] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-19] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-19] (Oracle Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Lotte\AppData\Roaming\Mozilla\Firefox\Profiles\olfpfw54.default-1479064688085 [2016-11-30]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
FF Plugin: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\system32\npDeployJava1.dll [2013-12-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin-x32: Adobe Reader -> c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-927612283-1200829413-3393210303-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [2013-02-19] (Intel)
FF Plugin HKU\S-1-5-21-927612283-1200829413-3393210303-1001: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll [2013-02-19] (Intel)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1089088 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [475232 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [475232 2016-10-17] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1488240 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [349512 2016-11-15] (Avira Operations GmbH & Co. KG)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2227992 2013-01-23] (Broadcom Corporation.)
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-10-27] (Chip Digital GmbH) [Datei ist nicht signiert]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129824 2013-01-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166688 2013-01-23] (Intel Corporation)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [639576 2013-05-10] (Sony Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2013-01-06] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1656600 2016-03-31] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2016-11-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2016-11-12] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [6070272 2013-03-14] (Broadcom Corporation) [Datei ist nicht signiert]
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [151352 2016-10-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [153392 2016-10-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [35488 2016-10-17] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [78208 2016-10-17] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [23640 2016-10-17] (Avira Operations GmbH & Co. KG)
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [169240 2013-01-23] (Broadcom Corporation.)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [8469680 2016-11-05] (Broadcom Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-03-14] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2016-11-12] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [270168 2016-11-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2016-11-12] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-11-30 14:52 - 2016-11-30 14:59 - 00000000 ____D C:\FRST
2016-11-30 13:14 - 2016-11-30 13:14 - 00001152 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2016-11-30 13:12 - 2016-11-30 14:47 - 00000000 ____D C:\Users\Lotte\AppData\LocalLow\Mozilla
2016-11-30 13:11 - 2016-11-30 13:11 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-30 13:11 - 2016-11-30 13:11 - 00001159 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-11-30 13:11 - 2016-11-30 13:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-30 13:07 - 2016-11-30 13:07 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-30 13:05 - 2016-10-28 22:04 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-11-30 13:05 - 2016-10-28 22:04 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-13 21:39 - 2015-07-30 15:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 21:39 - 2015-07-30 14:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 21:18 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-11-13 21:18 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-11-13 20:37 - 2016-06-10 19:11 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-11-13 20:37 - 2016-06-10 19:11 - 01487992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-11-13 20:37 - 2016-04-06 19:17 - 18825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-11-13 20:37 - 2016-04-06 17:25 - 15158272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-11-13 20:36 - 2016-06-18 21:06 - 00590688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-11-13 20:36 - 2016-06-18 21:06 - 00072408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2016-11-13 20:36 - 2016-06-11 20:52 - 00379232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-11-13 20:36 - 2016-06-11 20:52 - 00057184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-11-13 20:36 - 2016-06-11 19:05 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2016-11-13 20:36 - 2016-06-11 18:14 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpresult.exe
2016-11-13 20:36 - 2016-06-11 17:50 - 00987136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-11-13 20:36 - 2016-06-11 17:46 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2016-11-13 20:36 - 2016-06-11 17:44 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-11-13 20:36 - 2016-06-11 17:37 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-11-13 20:36 - 2016-06-11 17:24 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-11-13 20:36 - 2016-06-11 17:20 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-11-13 20:36 - 2016-06-11 17:16 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-11-13 20:36 - 2016-06-10 21:07 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-13 20:36 - 2016-06-10 19:11 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-11-13 20:36 - 2016-06-10 19:11 - 00125024 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2016-11-13 20:36 - 2016-06-10 19:10 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2016-11-13 20:36 - 2016-06-10 19:07 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-13 20:36 - 2016-06-09 20:32 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-11-13 20:36 - 2016-06-09 19:18 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-11-13 20:36 - 2016-06-07 19:10 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\hbaapi.dll
2016-11-13 20:36 - 2016-06-07 18:13 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hbaapi.dll
2016-11-13 20:36 - 2016-06-04 01:38 - 01613528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-11-13 20:36 - 2016-06-04 01:37 - 01970968 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-11-13 20:36 - 2016-05-18 22:54 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2016-11-13 20:36 - 2016-05-18 22:15 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2016-11-13 20:36 - 2016-05-18 21:56 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2016-11-13 20:36 - 2016-05-18 21:33 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2016-11-13 20:36 - 2016-05-18 21:28 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-11-13 20:36 - 2016-05-18 21:16 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-11-13 20:36 - 2016-05-14 21:26 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-13 20:36 - 2016-05-14 06:19 - 01134768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-11-13 20:36 - 2016-05-14 00:08 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-11-13 20:36 - 2016-05-14 00:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-11-13 20:36 - 2016-05-14 00:08 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-11-13 20:36 - 2016-05-13 23:24 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-11-13 20:36 - 2016-05-13 22:42 - 03667968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-11-13 20:36 - 2016-05-13 22:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-11-13 20:36 - 2016-05-13 22:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-11-13 20:36 - 2016-05-13 22:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-11-13 20:36 - 2016-05-13 22:27 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-11-13 20:36 - 2016-05-13 22:26 - 02230784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-11-13 20:36 - 2016-05-13 22:26 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-11-13 20:36 - 2016-05-13 22:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-11-13 20:36 - 2016-05-13 22:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-11-13 20:36 - 2016-05-13 22:16 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-11-13 20:36 - 2016-05-13 22:16 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-11-13 20:36 - 2016-05-12 19:36 - 00034600 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2016-11-13 20:36 - 2016-05-12 18:39 - 00030984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2016-11-13 20:36 - 2016-05-06 22:59 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-11-13 20:36 - 2016-05-05 18:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2016-11-13 20:36 - 2016-05-05 18:02 - 03320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-11-13 20:36 - 2016-05-05 17:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2016-11-13 20:36 - 2016-05-05 17:29 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-11-13 20:36 - 2016-04-09 23:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-11-13 20:36 - 2016-04-09 23:14 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2016-11-13 20:36 - 2016-04-09 23:10 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-11-13 20:36 - 2016-04-09 23:09 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-11-13 20:36 - 2016-04-09 23:02 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2016-11-13 20:36 - 2016-04-09 22:59 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Geolocation.dll
2016-11-13 20:36 - 2016-04-09 22:59 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-11-13 20:36 - 2016-04-09 22:56 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-11-13 20:36 - 2016-04-09 22:55 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-11-13 20:36 - 2016-04-09 22:52 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2016-11-13 20:36 - 2016-04-07 17:06 - 00927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-11-13 20:36 - 2016-04-06 22:21 - 00114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-11-13 20:36 - 2016-04-06 19:20 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-11-13 20:36 - 2016-04-05 23:37 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-11-13 20:36 - 2016-04-02 14:58 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-11-13 20:36 - 2016-04-01 18:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-11-13 20:36 - 2016-04-01 17:53 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-11-13 20:36 - 2016-04-01 17:50 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-11-13 20:36 - 2016-02-04 17:57 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-11-13 20:36 - 2016-02-04 17:49 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-11-13 20:36 - 2016-02-04 17:39 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-11-13 20:34 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-11-13 20:34 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-11-13 20:33 - 2016-07-12 15:08 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-13 20:33 - 2016-07-09 17:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-11-13 20:33 - 2016-07-08 23:35 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-11-13 20:33 - 2016-07-08 15:17 - 00377344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-11-13 20:33 - 2016-07-08 15:17 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-11-13 20:33 - 2016-07-07 23:32 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2016-11-13 20:33 - 2016-07-07 23:18 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2016-11-13 20:33 - 2016-07-07 23:10 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-11-13 20:33 - 2016-07-07 23:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2016-11-13 20:33 - 2016-07-07 22:04 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2016-11-13 20:33 - 2016-07-07 21:59 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-11-13 20:33 - 2016-07-07 21:44 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-11-13 20:33 - 2016-07-07 21:41 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-11-13 20:33 - 2016-07-07 21:34 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-11-13 20:33 - 2016-07-07 21:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-11-13 20:33 - 2016-07-07 21:29 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-11-13 20:33 - 2016-07-07 21:23 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2016-11-13 20:33 - 2016-07-07 21:18 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-11-13 20:33 - 2016-07-07 21:11 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2016-11-13 20:33 - 2016-07-07 20:35 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2016-11-13 20:33 - 2016-07-07 20:14 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-11-13 20:33 - 2016-07-04 06:09 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-13 20:33 - 2016-07-04 04:45 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2016-11-13 20:33 - 2016-07-04 04:33 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-11-13 20:33 - 2016-07-04 04:02 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-11-13 20:33 - 2016-07-04 03:19 - 03547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-13 20:33 - 2016-07-01 21:39 - 00197352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssenh.dll
2016-11-13 20:33 - 2016-07-01 21:39 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dssenh.dll
2016-11-13 20:33 - 2016-01-10 18:08 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-11-13 20:33 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2016-11-13 20:33 - 2014-07-24 04:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-11-13 20:33 - 2014-07-24 04:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-11-13 20:32 - 2016-08-27 20:44 - 22360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-13 20:32 - 2016-08-27 20:44 - 02755504 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-13 20:32 - 2016-08-27 20:44 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2016-11-13 20:32 - 2016-08-27 19:26 - 19789232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-13 20:32 - 2016-08-27 19:26 - 02411048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-13 20:32 - 2016-08-27 19:26 - 00113656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2016-11-13 20:32 - 2016-08-27 17:09 - 14466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-13 20:32 - 2016-08-27 16:55 - 12879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-13 20:32 - 2015-05-12 14:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-11-13 20:09 - 2016-11-30 14:46 - 00000000 __SHD C:\Users\Lotte\IntelGraphicsProfiles
2016-11-13 20:09 - 2016-11-13 20:09 - 00001450 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-11-13 20:09 - 2016-11-13 20:09 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-11-13 20:09 - 2016-11-13 20:09 - 00000020 ___SH C:\Users\Lotte\ntuser.ini
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-11-13 00:56 - 2016-11-13 00:56 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-11-13 00:43 - 2016-11-13 00:43 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-13 00:40 - 2016-11-13 00:40 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-11-13 00:38 - 2016-11-13 20:09 - 00000000 ____D C:\Users\Lotte
2016-11-13 00:38 - 2016-11-13 00:56 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2016-11-13 00:38 - 2016-11-13 00:56 - 00020958 _____ C:\WINDOWS\diagerr.xml
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Vorlagen
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Startmenü
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Netzwerkumgebung
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Lokale Einstellungen
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Eigene Dateien
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Druckumgebung
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Videos
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Musik
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Bilder
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Local\Verlauf
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Local\Anwendungsdaten
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Anwendungsdaten
2016-11-13 00:38 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-11-13 00:38 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-11-13 00:29 - 2016-11-13 00:41 - 00000000 ____D C:\Program Files (x86)\Intel
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____D C:\Program Files\Realtek
2016-11-13 00:29 - 2015-08-27 18:20 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-13 00:29 - 2015-08-27 18:20 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-13 00:28 - 2016-11-13 00:28 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____D C:\Program Files\Synaptics
2016-11-13 00:24 - 2016-11-13 20:09 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-13 00:23 - 2016-11-13 00:24 - 00000000 ____D C:\Windows.old
2016-11-13 00:21 - 2016-11-13 00:21 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2016-11-13 00:20 - 2016-11-13 00:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2016-11-13 00:20 - 2016-11-13 00:20 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-11-13 00:19 - 2016-11-13 00:19 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-11-13 00:19 - 2016-11-13 00:19 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpsapi.dll
2016-11-13 00:19 - 2016-11-13 00:19 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpsapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02745184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02528784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02450240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02447136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02334104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02324744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01798480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01484888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01288128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01210200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01115640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01037680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00914672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00850680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00736256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00735496 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00700360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00629600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00557856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00492736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00463776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00299080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-11-13 00:18 - 2016-11-13 00:18 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00274280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00248432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00246856 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-11-13 00:18 - 2016-11-13 00:18 - 00244296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00229272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00203016 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00184912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00183856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00177712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00148752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00110544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00090904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00090392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00081032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00076936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2016-11-13 00:17 - 2016-11-13 00:17 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-11-13 00:17 - 2016-11-13 00:17 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2016-11-13 00:17 - 2016-11-13 00:17 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 25763328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 20304896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 15431168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 15257088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 13654016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 13317120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-11-13 00:16 - 2016-11-13 00:16 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-11-13 00:16 - 2016-11-13 00:16 - 07444312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 06047744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 04608000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 03754496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02920448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02463744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02315496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02287616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-13 00:16 - 2016-11-13 00:16 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-13 00:16 - 2016-11-13 00:16 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01946176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01754112 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01663184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-13 00:16 - 2016-11-13 00:16 - 01660040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01560064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01523208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01490112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-13 00:16 - 2016-11-13 00:16 - 01445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01377792 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01358952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01317888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01124376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00921944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-11-13 00:16 - 2016-11-13 00:16 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00497448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-13 00:16 - 2016-11-13 00:16 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00444248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00420184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2016-11-13 00:16 - 2016-11-13 00:16 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00399776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-11-13 00:16 - 2016-11-13 00:16 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00377176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2016-11-13 00:16 - 2016-11-13 00:16 - 00333656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00275800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00162850 _____ C:\WINDOWS\SysWOW64\C_932.NLS
2016-11-13 00:16 - 2016-11-13 00:16 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-11-13 00:16 - 2016-11-13 00:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiexe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00121176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\parport.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2016-11-13 00:16 - 2016-11-13 00:16 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsidsc.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2016-11-13 00:16 - 2016-11-13 00:16 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsidsc.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifibus.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serenum.sys
2016-11-13 00:13 - 2016-11-13 00:13 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2016-11-13 00:13 - 2016-11-13 00:13 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00099672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 02466136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-11-13 00:12 - 2016-11-13 00:12 - 00160160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2016-11-13 00:12 - 2016-11-13 00:12 - 00121912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2016-11-13 00:12 - 2016-11-13 00:12 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01379040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-11-13 00:10 - 2016-11-13 00:10 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-11-13 00:10 - 2016-11-13 00:10 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2016-11-13 00:09 - 2016-11-13 00:09 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-13 00:09 - 2016-11-13 00:09 - 00513480 _____ C:\WINDOWS\system32\locale.nls
2016-11-13 00:09 - 2016-11-13 00:09 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
|
|
30.11.2016, 15:18
| #2 |
| | Unidentifizierter Virusbefall FRST.txt Teil 2
__________________Code:
ATTFilter 2016-11-13 00:09 - 2016-11-13 00:09 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2016-11-13 00:08 - 2016-11-13 00:08 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2016-11-13 00:08 - 2016-11-13 00:08 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2016-11-13 00:08 - 2016-11-13 00:08 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-11-13 00:08 - 2016-11-13 00:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-11-13 00:08 - 2016-11-13 00:08 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2016-11-13 00:07 - 2016-11-13 00:07 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsparse.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsparse.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2016-11-13 00:06 - 2016-11-13 00:06 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2016-11-13 00:06 - 2016-11-13 00:06 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 01763376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 01489088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00179248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 01549144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2016-11-13 00:04 - 2016-11-13 00:04 - 00690016 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-11-13 00:04 - 2016-11-13 00:04 - 00484552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00952928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00786152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00470360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2016-11-13 00:03 - 2016-11-13 00:03 - 00218448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00192120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2016-11-13 00:02 - 2016-11-13 00:02 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-11-13 00:02 - 2016-11-13 00:02 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-11-13 00:02 - 2016-11-13 00:02 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-11-13 00:02 - 2016-11-13 00:02 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2016-11-13 00:01 - 2016-11-13 00:01 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 02609152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 02170880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-11-13 00:00 - 2016-11-13 00:00 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 07795712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 07076864 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 05273600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 05268480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 03120640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02712576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02592256 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01348096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01197056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-11-12 23:59 - 2016-11-12 23:59 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00273264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01673728 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01541248 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01376768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00685432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00563024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00397232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00340880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00292696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-11-12 23:58 - 2016-11-12 23:58 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00243032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-11-12 23:58 - 2016-11-12 23:58 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00137976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00120384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00107984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-11-12 23:57 - 2016-11-12 23:57 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2016-11-12 23:57 - 2016-11-12 23:57 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01501488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01360896 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01307328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00738096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00613624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2016-11-12 23:56 - 2016-11-12 23:56 - 00135336 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 02175008 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-11-12 23:55 - 2016-11-12 23:55 - 01063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00548024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00468824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-11-12 23:55 - 2016-11-12 23:55 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-11-12 23:55 - 2016-11-12 23:55 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00270168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00803176 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00611576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00462168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00443224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00183368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-11-12 23:53 - 2016-11-12 23:53 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00091992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00072024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00027992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 02017624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-12 23:52 - 2016-11-12 23:52 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2016-11-12 23:52 - 2016-11-12 23:52 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-11-12 23:52 - 2016-11-12 23:52 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-11-12 23:50 - 2016-11-12 23:50 - 00074584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2016-11-12 23:50 - 2016-11-12 23:50 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 01455104 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-11-12 23:49 - 2016-11-12 23:49 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2016-11-12 23:47 - 2016-11-12 23:47 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2016-11-12 23:47 - 2016-11-12 23:47 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2016-11-12 23:47 - 2016-11-12 23:47 - 00316760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01482240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2016-11-12 23:44 - 2016-11-12 23:44 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2016-11-12 23:44 - 2016-11-12 23:44 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files\MSBuild
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-12 23:41 - 2016-11-12 23:41 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2016-11-12 23:41 - 2016-11-12 23:41 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2016-11-12 23:41 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-11-12 23:41 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-11-06 22:18 - 2016-11-06 22:18 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\OpenOffice
2016-11-06 22:17 - 2016-11-13 20:18 - 00000000 ____D C:\Users\Lotte\Desktop\Alte Firefox-Daten
2016-11-06 21:22 - 2016-11-30 13:03 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2016-11-06 07:52 - 2015-03-04 08:26 - 00011105 _____ C:\WINDOWS\system32\AutoconfigV2.cab
2016-11-05 23:59 - 2016-11-13 21:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-05 23:59 - 2016-11-13 21:23 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-05 22:30 - 2016-11-13 00:41 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Main
2016-11-05 22:30 - 2016-11-05 22:30 - 00000000 ____D C:\Program Files (x86)\Sony Corporation
2016-11-05 22:26 - 2016-11-05 22:26 - 00000000 ____D C:\Users\Gast\AppData\Local\Packages
2016-11-05 22:26 - 2016-11-05 22:26 - 00000000 ____D C:\Users\Gast
2016-11-05 22:26 - 2016-11-05 22:26 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2016-11-05 22:26 - 2016-11-05 22:26 - 00000000 ____D C:\Users\Administrator
2016-11-05 22:25 - 2016-11-13 00:45 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2016-11-05 22:25 - 2016-11-05 22:25 - 00074703 _____ C:\WINDOWS\SysWOW64\mfc45.dat
2016-11-05 22:25 - 2016-11-05 22:25 - 00002044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care (Desktop).lnk
2016-11-05 22:25 - 2016-11-05 22:25 - 00001976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Manual.lnk
2016-11-05 22:19 - 2016-11-30 14:49 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-927612283-1200829413-3393210303-1001
2016-11-05 22:19 - 2013-05-04 05:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2016-11-05 22:17 - 2013-05-04 05:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2016-11-05 10:58 - 2016-06-25 19:28 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-11-05 10:58 - 2016-06-25 16:55 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-11-05 10:04 - 2016-11-13 00:45 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.3
2016-11-05 10:04 - 2016-11-05 10:04 - 00001116 _____ C:\Users\Public\Desktop\OpenOffice 4.1.3.lnk
2016-11-05 10:04 - 2016-11-05 10:04 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2016-11-05 10:00 - 2016-11-05 10:00 - 00000000 ____D C:\Users\Lotte\Desktop\OpenOffice 4.1.3 (de) Installation Files
2016-11-05 10:00 - 2016-11-05 10:00 - 00000000 ____D C:\Program Files\Sony Corporation
2016-11-05 09:56 - 2016-11-05 09:56 - 00000000 ____D C:\Users\Lotte\AppData\Local\Downloaded Installations
2016-11-05 09:56 - 2016-11-05 09:56 - 00000000 ____D C:\Program Files (x86)\Chip Digital GmbH
2016-11-05 09:56 - 2014-02-14 13:02 - 03867224 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-11-05 09:56 - 2014-02-14 09:48 - 00945880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-11-05 09:56 - 2014-02-14 09:36 - 54936576 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2016-11-05 09:56 - 2014-02-13 08:48 - 00747989 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-11-05 09:56 - 2014-02-06 07:19 - 02787544 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2016-11-05 09:56 - 2014-02-06 04:28 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2016-11-05 09:56 - 2014-02-03 17:45 - 14737496 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-11-05 09:56 - 2014-02-03 17:45 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2016-11-05 09:56 - 2014-02-03 17:45 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-11-05 09:56 - 2014-02-03 17:45 - 01932888 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2016-11-05 09:56 - 2014-02-03 17:45 - 01033304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-11-05 09:56 - 2014-01-31 10:23 - 01419376 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-11-05 09:56 - 2014-01-31 10:22 - 01419376 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-11-05 09:56 - 2014-01-28 04:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-11-05 09:56 - 2014-01-09 23:52 - 00899320 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2016-11-05 09:56 - 2014-01-09 23:52 - 00724728 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2016-11-05 09:56 - 2014-01-09 23:51 - 01045752 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2016-11-05 09:56 - 2014-01-09 23:51 - 00245496 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2016-11-05 09:56 - 2014-01-03 09:02 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-11-05 09:56 - 2013-12-31 04:16 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-11-05 09:56 - 2013-12-27 07:58 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-11-05 09:56 - 2013-12-04 09:27 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-11-05 09:56 - 2013-10-15 20:43 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2016-11-05 09:56 - 2013-10-11 05:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-11-05 09:56 - 2013-10-06 17:26 - 00501184 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-11-05 09:56 - 2013-10-06 17:26 - 00487360 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-11-05 09:56 - 2013-10-06 17:26 - 00415680 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2016-11-05 09:56 - 2013-10-01 10:11 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2016-11-05 09:56 - 2013-09-09 21:02 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-11-05 09:56 - 2013-09-09 21:02 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-11-05 09:56 - 2013-09-09 21:01 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-11-05 09:56 - 2013-09-09 21:01 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-11-05 09:56 - 2013-08-14 08:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-11-05 09:56 - 2013-08-14 08:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-11-05 09:56 - 2013-06-25 05:47 - 00871856 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2016-11-05 09:56 - 2013-06-25 05:47 - 00162224 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2016-11-05 09:56 - 2013-06-25 05:46 - 00582056 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2016-11-05 09:56 - 2013-04-30 07:28 - 00916016 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2016-11-05 09:56 - 2013-04-23 07:54 - 00154184 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkXInterface64.dll
2016-11-05 09:56 - 2013-04-03 07:13 - 00906800 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2016-11-05 09:56 - 2012-08-31 12:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-11-05 09:56 - 2012-08-31 12:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-11-05 09:56 - 2012-08-31 12:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-11-05 09:56 - 2012-08-31 12:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-11-05 09:56 - 2012-08-31 12:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-11-05 09:56 - 2012-03-08 04:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2016-11-05 09:56 - 2012-01-30 04:43 - 00836544 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2016-11-05 09:56 - 2012-01-10 03:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2016-11-05 09:56 - 2011-12-20 08:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-11-05 09:56 - 2011-11-22 09:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-11-05 09:56 - 2011-09-02 07:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2016-11-05 09:56 - 2011-09-02 07:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2016-11-05 09:56 - 2011-09-02 07:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2016-11-05 09:56 - 2011-08-23 10:00 - 00603984 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-11-05 09:56 - 2011-05-31 02:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-11-05 09:56 - 2011-03-17 05:17 - 01361336 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2016-11-05 09:56 - 2011-03-07 10:11 - 00148416 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2016-11-05 09:56 - 2010-11-08 00:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2016-11-05 09:56 - 2010-11-03 11:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-11-05 09:56 - 2010-09-27 02:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-11-05 09:56 - 2010-07-22 09:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2016-11-05 09:56 - 2009-11-24 02:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2016-11-05 09:56 - 2009-11-24 02:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2016-11-05 09:56 - 2009-11-24 02:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2016-11-05 09:56 - 2009-11-24 02:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2016-11-05 09:55 - 2016-11-05 09:55 - 01474568 _____ C:\Users\Lotte\Downloads\OpenOffice - CHIP-Installer.exe
2016-11-05 09:53 - 2016-11-05 09:53 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\iolo
2016-11-05 09:51 - 2016-11-30 14:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-05 09:51 - 2016-11-05 09:51 - 00001209 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-11-05 09:51 - 2016-11-05 09:51 - 00001197 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-11-05 09:51 - 2016-11-05 09:51 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Thunderbird
2016-11-05 09:51 - 2016-11-05 09:51 - 00000000 ____D C:\Users\Lotte\AppData\Local\Thunderbird
2016-11-05 09:51 - 2016-11-05 09:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-11-05 09:50 - 2016-11-05 09:50 - 34869536 _____ (Mozilla) C:\Users\Lotte\Downloads\Thunderbird Setup 45.4.0.exe
2016-11-05 09:39 - 2016-11-05 09:53 - 00000000 ____D C:\Users\Lotte\AppData\Local\Mozilla
2016-11-05 09:39 - 2016-11-05 09:39 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Mozilla
2016-11-05 09:37 - 2016-11-05 09:37 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Avira
2016-11-05 09:36 - 2016-11-30 13:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-11-05 09:36 - 2016-11-05 09:36 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2016-11-05 09:36 - 2016-10-17 11:18 - 00023640 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2016-11-05 09:35 - 2016-11-05 09:37 - 00000000 ____D C:\ProgramData\Avira
2016-11-05 09:35 - 2016-11-05 09:37 - 00000000 ____D C:\Program Files (x86)\Avira
2016-11-05 09:35 - 2016-10-17 11:18 - 00153392 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2016-11-05 09:35 - 2016-10-17 11:18 - 00151352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2016-11-05 09:35 - 2016-10-17 11:18 - 00078208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2016-11-05 09:35 - 2016-10-17 11:18 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2016-11-05 09:27 - 2016-11-05 09:27 - 00000982 _____ C:\Users\Public\Desktop\VAIO Update.lnk
2016-11-05 09:27 - 2016-11-05 09:27 - 00000982 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2016-11-05 09:25 - 2016-11-30 13:16 - 00000000 ____D C:\Update
2016-11-05 09:23 - 2016-11-06 22:15 - 00000000 ____D C:\Users\Lotte\AppData\Local\Sony Corporation
2016-11-05 09:21 - 2016-11-05 09:21 - 00000000 ____D C:\Users\Lotte\Documents\Bluetooth-Exchange-Ordner
2016-11-05 09:21 - 2016-11-05 09:21 - 00000000 ____D C:\Users\Lotte\AppData\Local\Broadcom
2016-11-05 09:20 - 2016-11-05 09:20 - 00002067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music Unlimited.lnk
2016-11-05 09:20 - 2016-11-05 09:20 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Adobe
2016-11-05 09:19 - 2016-11-13 21:11 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Sony Corporation
2016-11-05 09:19 - 2016-11-13 00:45 - 00000000 ____D C:\WINDOWS\SysWOW64\VAIO Startup Setting Tool
2016-11-05 09:19 - 2016-11-05 09:19 - 00000000 ____D C:\WINDOWS\pss
2016-11-05 09:19 - 2016-11-05 09:19 - 00000000 ____D C:\Users\Lotte\AppData\Local\VirtualStore
2016-11-05 09:18 - 2016-11-13 20:11 - 00000000 ____D C:\Users\Lotte\AppData\Local\Packages
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Videos
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Programme
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\ProgramData\Vorlagen
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\ProgramData\Startmenü
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\ProgramData\Dokumente
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 _SHDL C:\Dokumente und Einstellungen
2016-11-05 04:34 - 2016-11-05 04:34 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-05 04:33 - 2016-11-05 04:33 - 00000000 _____ C:\Recovery.txt
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-11-30 14:59 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-30 14:52 - 2014-11-21 04:35 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-30 14:52 - 2014-11-21 03:45 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-30 14:52 - 2014-11-21 03:45 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-30 14:52 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-11-30 14:44 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-30 13:17 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-11-30 13:14 - 2013-12-19 11:09 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\setup
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-11-13 22:06 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-11-13 21:12 - 2013-12-19 11:23 - 00000000 ____D C:\ProgramData\Sony Corporation
2016-11-13 21:10 - 2013-08-22 16:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-13 20:16 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-13 20:11 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-13 00:58 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-11-13 00:57 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2016-11-13 00:57 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2016-11-13 00:54 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2016-11-13 00:53 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-13 00:46 - 2013-08-22 15:44 - 00382744 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-13 00:45 - 2013-12-19 11:50 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-13 00:45 - 2013-12-19 11:45 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2016-11-13 00:45 - 2013-12-19 11:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel AppUp(R) center
2016-11-13 00:45 - 2013-12-19 11:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD
2016-11-13 00:45 - 2013-12-19 11:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayMemories Home
2016-11-13 00:45 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-11-13 00:45 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-11-13 00:43 - 2013-12-19 11:19 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2016-11-13 00:43 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2016-11-13 00:43 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-13 00:43 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2016-11-13 00:42 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Resources
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-13 00:41 - 2012-08-03 03:25 - 00000000 ____D C:\ProgramData\PRICache
2016-11-13 00:41 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal
2016-11-13 00:24 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2016-11-13 00:21 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-13 00:17 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-11-13 00:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2016-11-12 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2016-11-12 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-12 23:44 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-11-12 23:24 - 2014-11-21 22:57 - 00000000 ___HD C:\$Windows.~BT
2016-11-12 22:44 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2016-11-05 22:57 - 2013-12-19 11:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-05 22:55 - 2013-12-19 11:21 - 00015814 _____ C:\WINDOWS\system32\results.xml
2016-11-05 22:30 - 2013-12-19 11:27 - 00000000 ____D C:\Program Files (x86)\Sony
2016-11-05 22:30 - 2013-12-19 10:29 - 00000000 ____D C:\Program Files\Sony
2016-11-05 22:28 - 2013-12-19 11:09 - 08469680 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\BCMWL63a.SYS
2016-11-05 22:28 - 2013-12-19 11:09 - 04557824 _____ (Broadcom Corporation) C:\WINDOWS\system32\bcmihvsrv64.dll
2016-11-05 22:28 - 2013-12-19 11:09 - 03759104 _____ (Broadcom Corporation) C:\WINDOWS\system32\bcmihvui64.dll
2016-11-05 22:26 - 2013-12-19 11:27 - 00000000 ____D C:\WINDOWS\System32\Tasks\Sony Corporation
2016-11-05 22:25 - 2013-12-19 12:01 - 00000000 ____D C:\ProgramData\iolo
2016-11-05 10:01 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-11-05 09:59 - 2013-12-19 11:41 - 00000000 ____D C:\Program Files\McAfeeEx
2016-11-05 09:59 - 2013-12-19 11:14 - 00000000 ___HD C:\Program Files (x86)\Temp
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-11-13 00:29 - 2016-11-13 00:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-11-13 00:26
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 27-11-2016
durchgeführt von Lotte (30-11-2016 15:00:57)
Gestartet von F:\
Windows 8.1 (Update) (X64) (2016-11-13 19:09:12)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-927612283-1200829413-3393210303-500 - Administrator - Disabled)
Gast (S-1-5-21-927612283-1200829413-3393210303-501 - Limited - Disabled)
Lotte (S-1-5-21-927612283-1200829413-3393210303-1001 - Administrator - Enabled) => C:\Users\Lotte
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Reader XI MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.23.58 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{e7f56494-d786-472e-aba2-1b93089e06cd}) (Version: 1.2.76.20506 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.76.20506 - Avira Operations GmbH & Co. KG) Hidden
Azteca (x32 Version: 2.2.0.97 - WildTangent) Hidden
Behind The Reflection 2: Witch's Revenge (x32 Version: 3.0.2.32 - WildTangent) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.223.181 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\{4CDA59B9-7AD3-4283-9F5C-BC469FF975B6}) (Version: 6.30.59.125 - Broadcom Corporation)
Build-a-lot: On Vacation (x32 Version: 2.2.0.110 - WildTangent) Hidden
chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cut the Rope (x32 Version: 3.0.2.38 - WildTangent) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.2529 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.6201.52 - CyberLink Corp.)
Einstellungen für VAIO Media Server (HKLM\...\{62A172B2-550E-499D-9A82-5190D18390AA}) (Version: 1.1.0.02220 - Sony Corporation)
Enchanted Cavern 2 (x32 Version: 2.2.0.110 - WildTangent) Hidden
ESDL (x32 Version: 1.0.0 - Sony Corporation) Hidden
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Heroes of Hellas 3: Athens (x32 Version: 3.0.2.32 - WildTangent) Hidden
Intel AppUp(R) center (HKLM-x32\...\Intel AppUp(R) center 41800) (Version: 3.8.0.41800.66 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) PROSet/Wireless NFC-Software (HKLM\...\Intel(R) PROSet/Wireless NFC-Software) (Version: 1.0.1.003 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 7 Update 13 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417013FF}) (Version: 7.0.130 - Oracle)
Java 7 Update 13 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217013FF}) (Version: 7.0.130 - Oracle)
Luxor HD (x32 Version: 2.2.0.110 - WildTangent) Hidden
Mahjongg Artifacts (x32 Version: 2.2.0.110 - WildTangent) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mozilla Firefox 50.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.0.1 (x86 de)) (Version: 50.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.1 - Mozilla)
Mozilla Thunderbird 45.4.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.4.0 (x86 de)) (Version: 45.4.0 - Mozilla)
My Kingdom for the Princess 3 (x32 Version: 2.2.0.110 - WildTangent) Hidden
Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden
Networkx64 (Version: 1.0.0 - Sony Corporation) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{8D5FCC56-BB9F-4122-923C-71753F50F6F5}) (Version: 4.13.9783 - Apache Software Foundation)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayMemories Home (HKLM-x32\...\{1E5C7043-09C5-4974-A69F-A5271FD82BBC}) (Version: 7.0.02.14060 - Sony Corporation)
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7177 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.28135 - Realtek Semiconductor Corp.)
Remote Keyboard (x32 Version: 1.2.0.09270 - Sony Corporation) Hidden
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.4.0.1 - Synaptics Incorporated)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
VAIO - Remote-Tastatur (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.2.0.09270 - Sony Corporation)
VAIO - Remote-Tastatur mit PlayStation®3 (HKLM-x32\...\{E682702C-609C-4017-99E7-3129C163955F}) (Version: 1.2.1.05220 - Sony Corporation)
VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.4.0.15030 - Sony Corporation)
VAIO BIOS Data Transfer Utility (x32 Version: 1.0.0.02050 - Sony Corporation) Hidden
VAIO Care (HKLM\...\{404D6E7E-948E-4D2E-9540-59550AB59D4F}) (Version: 8.4.5.06026 - Sony Corporation)
VAIO Care Recovery (HKLM\...\{15B9204E-BA09-485E-8F2C-094AC0077664}) (Version: 1.1.2.13230 - Sony Corporation)
VAIO Care-Hardwarediagnose-Plugin (HKLM-x32\...\{EC153498-00E1-4C9C-89BE-81527C6750BE}) (Version: 4.11.1.11210 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 6.2.0.03070 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.11.0.13250 - Sony Corporation)
VAIO Easy Connect (x32 Version: 8.4.4.07220 - Sony Corporation) Hidden
VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 2.2.0.01230 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.2.0.01230 - Sony Corporation) Hidden
VAIO Image Optimizer (HKLM-x32\...\InstallShield_{5597C927-029A-46A7-A0C0-8DABD9891A50}) (Version: 3.3.00.10220 - Sony Corporation)
VAIO Image Optimizer (x32 Version: 3.1.00.14260 - Sony Corporation) Hidden
VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 2.2.0.01240 - Sony Corporation)
VAIO Movie Creator (HKLM-x32\...\InstallShield_{C2CC5822-32E6-4D21-88EA-DE8CED09EE2F}) (Version: 4.3.01.11140 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.1.01.15140 - Sony Corporation) Hidden
VAIO Sample Music (HKLM-x32\...\{FBEE3D44-0933-4B84-BB6A-49957F89187F}) (Version: 1.0.0.03051 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.2.0.16270 - Sony Corporation)
VAIO*CPU-Lüfterdiagnose (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.2.0.03050 - Sony Corporation)
VAIO-Support für Übertragungen (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.9.0.11060 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
Virtual Villagers 5 - New Believers (x32 Version: 3.0.2.32 - WildTangent) Hidden
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VUx64 (Version: 1.2.0 - Sony Corporation) Hidden
VUx86 (x32 Version: 1.2.0 - Sony Corporation) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.4900 - Broadcom Corporation)
WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden
WildTangent-Spiele (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AC}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)
CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AD}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0E2BAD16-BD41-46EB-BCBB-49740EF28E60} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2013-01-24] (Sony Corporation)
Task: {1D311D4E-A1F5-46D0-BF78-CB678DAB0EB2} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2016-04-25] (Sony Corporation)
Task: {204CDCD8-7647-445B-8A37-A8DF44F45634} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2016-03-31] (Sony Corporation)
Task: {21A3858C-C8D4-4C25-911E-F63059C3087D} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {287B6E5F-2984-4E88-A980-5C96440A07BE} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2016-03-24] (Sony Corporation)
Task: {2A8A0E52-34CB-4F1C-B80F-4EE9D343A2E7} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {2EE8EAF3-FDE2-4A0B-8FD4-7363EE7B3F71} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2016-03-04] (Sony Corporation)
Task: {43814966-938F-4B44-9735-2176EEE8841C} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2013-01-23] (Sony Corporation)
Task: {54020D2B-8EE9-48B1-B77A-67EA816E00E8} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-03-08] (Sony Corporation)
Task: {5EC3FEAC-4E02-4C57-A39D-CA02A87B5346} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-03-08] (Sony Corporation)
Task: {62031FDF-8742-4ADA-AEF6-0EFDB420FC80} - System32\Tasks\Sony Corporation\VAIO Care\VTUsr => C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe [2016-05-30] (Sony Corporation)
Task: {6F21F9AB-11CC-433C-AF54-29D2E1E8A691} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {83B969F2-B842-4260-974F-BC363283F8E4} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {8C940F42-BD0E-44B6-8744-035734B7EF13} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {93A8D53D-9570-4411-A06A-E8334A815974} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcWeekly => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation)
Task: {9D666896-0388-42D2-8DEB-A39DB42A7B9B} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {AB91E0E8-6780-4FB2-90B7-8A3176FEFE13} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {AE6A609D-A5C9-4273-991B-3F9D4491761F} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2016-03-18] (Sony Corporation)
Task: {B109E244-289C-4E42-AEC9-04ED2B811498} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {B4740220-0EE3-4327-BEF6-86A3FE4C3D72} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {BE1E2485-37EA-44D9-A3D4-6AEB16917BC4} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {C1B32111-3E2F-4810-BE54-ACFFFE3A90DF} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
Task: {C589A061-6AA6-47F8-AC31-ECE6892967EB} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {D21378E3-8ACE-4CD8-B270-B31EAA4BC837} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {E542BE74-768B-44B9-BE1E-495C77582DAB} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {E5E9F06D-74C2-4AF4-83C7-52B9FBED48C2} - System32\Tasks\Sony Corporation\VAIO Care\VTSvc => C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe [2016-05-30] (Sony Corporation)
Task: {FD4D7BFD-4329-4E74-B551-CC6CE469FCBD} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcDaily => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2012-12-14 14:27 - 2012-12-14 14:27 - 00049520 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btwleapi.dll
2014-11-21 04:19 - 2014-11-21 04:19 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\ErrorReporting.dll
2013-12-19 11:11 - 2013-01-23 10:26 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\Sony\VAIO 13 img1 Wallpaper 1366x768.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{95225308-8D1C-494B-8325-45CE3A3B17EA}] => (Allow) C:\Program Files\Sony\VAIO Care\VAIOShell.exe
FirewallRules: [{E005A6CF-CF6B-4554-BC6D-BF84294536B1}] => (Allow) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
FirewallRules: [{5927AAE6-DC1E-49E7-8C10-BE80C9E482E3}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
FirewallRules: [{62DB37CB-BF6A-4051-BBB3-E059B5A24141}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAgent.exe
FirewallRules: [{9930954B-B1E1-4874-B41A-75168E5B2C71}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3361260A-6546-48DE-92D9-C33998A45C4A}] => (Allow) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
FirewallRules: [{55F335C9-5BAB-41DF-A857-D3B20604F70B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
==================== Wiederherstellungspunkte =========================
13-11-2016 21:09:22 Removed Microsoft Office
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/30/2016 02:57:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DllHost.exe, Version: 6.3.9600.17415, Zeitstempel: 0x54504134
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18438, Zeitstempel: 0x57ae642e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003dd8e
ID des fehlerhaften Prozesses: 0x3b0
Startzeit der fehlerhaften Anwendung: 0x01d24b11ad392224
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\DllHost.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: eb3b83e0-b704-11e6-be7a-3423877ff934
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (11/30/2016 01:12:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm IEXPLORE.EXE, Version 11.0.9600.18124 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: a50
Startzeit: 01d24b030331c43b
Endzeit: 656
Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Berichts-ID: 458b5b8a-b6f6-11e6-be79-3423877ff934
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (11/30/2016 01:07:07 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (11/13/2016 10:05:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (11/13/2016 09:08:55 PM) (Source: chip 1-click download service) (EventID: 0) (User: )
Description: |ERORRS=;(380) error at getOrdersForVersion:Der Remotename konnte nicht aufgelöst werden: 'service.chip-secured-download.de'
;(180) error at GetHttpWebRequest: 1Der Remotename konnte nicht aufgelöst werden: 'api.chip-secured-download.de'
;(480) Could not load new Downlaoder
Error: (11/13/2016 08:54:51 PM) (Source: Intel(R) PROSet/Wireless NFC Software) (EventID: 260) (User: )
Description: HECI-MEI communication failure.
Error: (11/13/2016 12:56:52 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "AVWMIEVTProv" wurde versucht, die Abfrage "select * from Event_Notification" zu registrieren, deren Zielklasse "Event_Notification" im Namespace "//./ROOT/CIMV2/Applications/Avira_AntiVir" nicht vorhanden ist. Die Abfrage wird ignoriert.
Error: (11/13/2016 12:56:52 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "" wurde versucht, die Abfrage "select * from Event_Notification" zu registrieren, deren Zielklasse "Event_Notification" im Namespace "//./ROOT/CIMV2/Applications/Avira_AntiVir" nicht vorhanden ist. Die Abfrage wird ignoriert.
Error: (11/12/2016 10:44:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm SystemSettings.exe, Version 6.2.9200.16420 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1208
Startzeit: 01d23d2dd3c48c65
Endzeit: 0
Anwendungspfad: C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
Berichts-ID: 39fc05ed-a921-11e6-be78-3423877ff934
Vollständiger Name des fehlerhaften Pakets: windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: microsoft.windows.immersivecontrolpanel
Error: (11/07/2016 07:12:45 AM) (Source: chip 1-click download service) (EventID: 0) (User: )
Description: |ERORRS=;(380) error at getOrdersForVersion:Der Remotename konnte nicht aufgelöst werden: 'service.chip-secured-download.de'
;(180) error at GetHttpWebRequest: 1Der Remotename konnte nicht aufgelöst werden: 'api.chip-secured-download.de'
;(480) Could not load new Downlaoder
Systemfehler:
=============
Error: (11/30/2016 02:49:21 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet:
Unzulässige Funktion.
Error: (11/30/2016 02:49:15 PM) (Source: Virtual Disk Service) (EventID: 9) (User: )
Description: Unerwarteter Anbieterfehler. Möglicherweise kann das Problem durch erneutes Starten des Dienstes behoben werden. Fehlercode: 8007001F@02000014
Error: (11/30/2016 02:44:58 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (11/30/2016 02:44:57 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (11/30/2016 01:17:33 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll
Error: (11/30/2016 01:04:20 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (11/30/2016 01:04:20 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (11/13/2016 10:05:44 PM) (Source: DCOM) (EventID: 10010) (User: VAIO)
Description: Der Server "Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (11/13/2016 10:05:43 PM) (Source: DCOM) (EventID: 10010) (User: VAIO)
Description: Der Server "{4545DEA0-2DFC-4906-A728-6D986BA399A9}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (11/13/2016 10:05:43 PM) (Source: DCOM) (EventID: 10010) (User: VAIO)
Description: Der Server "{4545DEA0-2DFC-4906-A728-6D986BA399A9}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Pentium(R) CPU 2117U @ 1.80GHz
Prozentuale Nutzung des RAM: 24%
Installierter physikalischer RAM: 8070.8 MB
Verfügbarer physikalischer RAM: 6125.55 MB
Summe virtueller Speicher: 9350.8 MB
Verfügbarer virtueller Speicher: 7153.77 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:903.8 GB) (Free:856.1 GB) NTFS
Drive e: () (Removable) (Total:3.68 GB) (Free:3.68 GB) FAT32
Drive f: (USB) (Removable) (Total:3.76 GB) (Free:3.58 GB) FAT32
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A42C908E)
Partition: GPT.
========================================================
Disk: 1 (Size: 3.7 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 2 (Size: 3.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
05.12.2016, 13:21
| #3 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Unidentifizierter Virusbefall Bitte Avira deinstallieren. Das Teil empfehlen wir schon seit Jahren aus mehreren Gründen nicht mehr. Ein Grund ist ne rel. hohe Fehlalarmquote, der zweite Hauptgrund ist, dass die immer noch mit ASK zusammenarbeiten (Avira Suchfunktion geht über ASK). Auch andere Freewareanbieter wie AVG, Avast oder Panda sprangen auf diesen Zug auf; so was ist bei Sicherheitssoftware einfach inakzeptabel. Vgl. Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog
__________________Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________ |
|
05.12.2016, 18:20
| #4 |
| | Unidentifizierter Virusbefall Vielen Dank für die Antwort. Avira habe ich umgehend entfernt, wie sieht denn der weitere Fahrplan aus? Gruß |
|
05.12.2016, 22:58
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Unidentifizierter Virusbefall 1. Schritt: Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers 2. Schritt: Kaspersky TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
06.12.2016, 16:57
| #6 |
| | Unidentifizierter Virusbefall Es scheitert leider schon am ersten Schritt, Malwarebytes Anti-Rootkit lässt sich nicht installieren, es erscheint die Fehlermeldung Code:
ATTFilter Could not find command for "AutoInstall"
|
|
06.12.2016, 23:53
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Unidentifizierter Virusbefall Dann mach mit tdsskiller weiter
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.12.2016, 10:20
| #8 |
| | Unidentifizierter VirusbefallCode:
ATTFilter 10:14:33.0366 0x157c TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
10:14:33.0366 0x157c UEFI system
10:14:38.0785 0x157c ============================================================
10:14:38.0785 0x157c Current date / time: 2016/12/07 10:14:38.0785
10:14:38.0785 0x157c SystemInfo:
10:14:38.0785 0x157c
10:14:38.0785 0x157c OS Version: 6.3.9600 ServicePack: 0.0
10:14:38.0785 0x157c Product type: Workstation
10:14:38.0785 0x157c ComputerName: VAIO
10:14:38.0785 0x157c UserName: Lotte
10:14:38.0785 0x157c Windows directory: C:\WINDOWS
10:14:38.0785 0x157c System windows directory: C:\WINDOWS
10:14:38.0785 0x157c Running under WOW64
10:14:38.0785 0x157c Processor architecture: Intel x64
10:14:38.0785 0x157c Number of processors: 2
10:14:38.0785 0x157c Page size: 0x1000
10:14:38.0785 0x157c Boot type: Normal boot
10:14:38.0785 0x157c CodeIntegrityOptions = 0x00000001
10:14:38.0785 0x157c ============================================================
10:14:39.0285 0x157c KLMD registered as C:\WINDOWS\system32\drivers\20676765.sys
10:14:39.0285 0x157c KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 9600.18505, osProperties = 0x19
10:14:40.0926 0x157c System UUID: {A9FE5BFF-B898-0FD3-C9E8-D6E0B3CA9B3C}
10:14:41.0832 0x157c Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:14:41.0848 0x157c Drive \Device\Harddisk1\DR1 - Size: 0xEC400000 ( 3.69 Gb ), SectorSize: 0x200, Cylinders: 0x1E1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:14:41.0848 0x157c Drive \Device\Harddisk2\DR2 - Size: 0x7D580000 ( 1.96 Gb ), SectorSize: 0x200, Cylinders: 0xFF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:14:41.0848 0x157c ============================================================
10:14:41.0848 0x157c \Device\Harddisk0\DR0:
10:14:41.0848 0x157c GPT partitions:
10:14:41.0848 0x157c \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {F4019732-066E-4E12-8273-346C5641494F}, UniqueGUID: {DD59023B-6CB0-477D-826D-F5EBDF76D0C5}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x82000
10:14:41.0848 0x157c \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {CAD7CAF3-CFB6-4B43-A5EF-36290622E661}, Name: Basic data partition, StartLBA 0x82800, BlocksNum 0x2E1000
10:14:41.0848 0x157c \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {6A904E9A-C2EC-4F57-B395-1CCD8E47B3DE}, Name: EFI system partition, StartLBA 0x363800, BlocksNum 0x82000
10:14:41.0848 0x157c \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {D30CFCE4-62B3-4AF8-879F-367D85F57DB1}, Name: Microsoft reserved partition, StartLBA 0x3E5800, BlocksNum 0x40000
10:14:41.0848 0x157c \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {86DFE397-AA97-452F-91CF-455610EAA271}, Name: Basic data partition, StartLBA 0x425800, BlocksNum 0x70F9A000
10:14:41.0848 0x157c \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {BF7F5D99-E400-4DB8-98FA-C8A5D0DD0E8B}, Name: , StartLBA 0x713C0000, BlocksNum 0xE1000
10:14:41.0848 0x157c \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {B3F946CB-5CAD-4634-B4DE-0C278020163E}, Name: , StartLBA 0x714A1000, BlocksNum 0xAF000
10:14:41.0848 0x157c \Device\Harddisk0\DR0\Partition8: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {ABD53171-A084-4CA2-8ABD-CC2D4B9A911E}, Name: Basic data partition, StartLBA 0x71550000, BlocksNum 0x31B6800
10:14:41.0848 0x157c MBR partitions:
10:14:41.0848 0x157c \Device\Harddisk1\DR1:
10:14:41.0848 0x157c MBR partitions:
10:14:41.0848 0x157c \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x760000
10:14:41.0848 0x157c \Device\Harddisk2\DR2:
10:14:41.0848 0x157c MBR partitions:
10:14:41.0848 0x157c ============================================================
10:14:41.0864 0x157c C: <-> \Device\Harddisk0\DR0\Partition5
10:14:41.0864 0x157c ============================================================
10:14:41.0864 0x157c Initialize success
10:14:41.0864 0x157c ============================================================
10:15:38.0343 0x1550 ============================================================
10:15:38.0343 0x1550 Scan started
10:15:38.0343 0x1550 Mode: Manual; SigCheck; TDLFS;
10:15:38.0343 0x1550 ============================================================
10:15:38.0343 0x1550 KSN ping started
10:15:38.0499 0x1550 KSN ping finished: true
10:15:42.0492 0x1550 ================ Scan system memory ========================
10:15:42.0492 0x1550 System memory - ok
10:15:42.0492 0x1550 ================ Scan services =============================
10:15:42.0836 0x1550 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
10:15:42.0914 0x1550 1394ohci - ok
10:15:42.0945 0x1550 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
10:15:42.0961 0x1550 3ware - ok
10:15:42.0992 0x1550 [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
10:15:43.0023 0x1550 ACPI - ok
10:15:43.0023 0x1550 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
10:15:43.0039 0x1550 acpiex - ok
10:15:43.0055 0x1550 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
10:15:43.0086 0x1550 acpipagr - ok
10:15:43.0133 0x1550 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
10:15:43.0211 0x1550 AcpiPmi - ok
10:15:43.0211 0x1550 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
10:15:43.0227 0x1550 acpitime - ok
10:15:43.0289 0x1550 [ B1EA9681502EE57F87DB71D726288A5B, D17BD2CFAE72E92C77D183331D5CBA0FEA893BF54875920870E271940F40A8BB ] AdobeARMservice c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:15:43.0305 0x1550 AdobeARMservice - ok
10:15:43.0398 0x1550 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
10:15:43.0430 0x1550 ADP80XX - ok
10:15:43.0508 0x1550 [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
10:15:43.0586 0x1550 AeLookupSvc - ok
10:15:43.0633 0x1550 [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD C:\WINDOWS\system32\drivers\afd.sys
10:15:43.0727 0x1550 AFD - ok
10:15:43.0773 0x1550 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
10:15:43.0789 0x1550 agp440 - ok
10:15:43.0820 0x1550 [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
10:15:43.0883 0x1550 ahcache - ok
10:15:43.0930 0x1550 [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\WINDOWS\System32\alg.exe
10:15:44.0008 0x1550 ALG - ok
10:15:44.0039 0x1550 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
10:15:44.0086 0x1550 AmdK8 - ok
10:15:44.0117 0x1550 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
10:15:44.0149 0x1550 AmdPPM - ok
10:15:44.0149 0x1550 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
10:15:44.0164 0x1550 amdsata - ok
10:15:44.0195 0x1550 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
10:15:44.0211 0x1550 amdsbs - ok
10:15:44.0227 0x1550 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
10:15:44.0242 0x1550 amdxata - ok
10:15:44.0274 0x1550 [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\WINDOWS\system32\drivers\appid.sys
10:15:44.0320 0x1550 AppID - ok
10:15:44.0352 0x1550 [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
10:15:44.0399 0x1550 AppIDSvc - ok
10:15:44.0430 0x1550 [ 734622FBA766DBD65B1803549B24A04A, 3B6872B87A60D4DA265D3B8AB0561A929CFE2C097419183E93D3843422363C89 ] Appinfo C:\WINDOWS\System32\appinfo.dll
10:15:44.0477 0x1550 Appinfo - ok
10:15:44.0524 0x1550 [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
10:15:44.0602 0x1550 AppReadiness - ok
10:15:44.0727 0x1550 [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
10:15:44.0820 0x1550 AppXSvc - ok
10:15:44.0852 0x1550 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
10:15:44.0867 0x1550 arcsas - ok
10:15:44.0883 0x1550 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
10:15:44.0899 0x1550 atapi - ok
10:15:44.0930 0x1550 [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
10:15:44.0961 0x1550 AudioEndpointBuilder - ok
10:15:44.0992 0x1550 [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
10:15:45.0086 0x1550 Audiosrv - ok
10:15:45.0133 0x1550 [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
10:15:45.0242 0x1550 AxInstSV - ok
10:15:45.0336 0x1550 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
10:15:45.0367 0x1550 b06bdrv - ok
10:15:45.0399 0x1550 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
10:15:45.0430 0x1550 BasicDisplay - ok
10:15:45.0461 0x1550 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
10:15:45.0507 0x1550 BasicRender - ok
10:15:45.0549 0x1550 [ 656B7660FB8FD2D3D015172486A2DB04, CF2F71EAE9413346F509E4C8D25199C040485CEBDD7AD3967889D9CE06479881 ] bcbtums C:\WINDOWS\system32\drivers\bcbtums.sys
10:15:45.0564 0x1550 bcbtums - ok
10:15:45.0596 0x1550 [ 80EF4382B5CB1DB7BF56629131D36AA5, BEC4F3AE3E805688A2DB394046451276FFB1663838778F3B33950C5CE766CDE9 ] BCM42RLY C:\WINDOWS\system32\drivers\BCM42RLY.sys
10:15:45.0611 0x1550 BCM42RLY - ok
10:15:45.0955 0x1550 [ D7DBC8C2C159BE83A14D7A84DF6A9622, 2C089F6BDD74C1980CB166C1A32E06B95342465EB3100F2735D6956F13B15681 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys
10:15:46.0283 0x1550 BCM43XX - ok
10:15:46.0455 0x1550 [ 47F0FE026652F601F367ECE2DFFCFC40, 93986523D33FEF323727A15BF5FB7BA7472CEBC1E185917897AF212E4EA9302D ] BcmBtRSupport C:\WINDOWS\system32\BtwRSupportService.exe
10:15:46.0549 0x1550 BcmBtRSupport - ok
10:15:46.0596 0x1550 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
10:15:46.0611 0x1550 bcmfn2 - ok
10:15:46.0658 0x1550 [ 174394F4EF93C117BF7BE3878046A1B1, D58E868342D1DAFC4B04384A3713F729DF07F408AA6AE4762E6A4244F976526A ] BDESVC C:\WINDOWS\System32\bdesvc.dll
10:15:46.0721 0x1550 BDESVC - ok
10:15:46.0752 0x1550 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys
10:15:46.0814 0x1550 Beep - ok
10:15:46.0908 0x1550 [ 5059D93764340D4EAEDF49C47133118F, 26C5779469E04BEAFD290B619CA355648F3911C66D41B22D2C3DCA909FCA0F6E ] BFE C:\WINDOWS\System32\bfe.dll
10:15:47.0018 0x1550 BFE - ok
10:15:47.0096 0x1550 [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\WINDOWS\System32\qmgr.dll
10:15:47.0221 0x1550 BITS - ok
10:15:47.0252 0x1550 [ 4938A9236300A356F97E378491EE4844, 60D892960D48EEF48F8EC4DE4F174EBD0BC0E7B28B6D8723D554CD1979EB55B4 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
10:15:47.0330 0x1550 bowser - ok
10:15:47.0361 0x1550 [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
10:15:47.0439 0x1550 BrokerInfrastructure - ok
10:15:47.0471 0x1550 [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\WINDOWS\System32\browser.dll
10:15:47.0570 0x1550 Browser - ok
10:15:47.0600 0x1550 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
10:15:47.0632 0x1550 BthAvrcpTg - ok
10:15:47.0663 0x1550 [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
10:15:47.0710 0x1550 BthEnum - ok
10:15:47.0751 0x1550 [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
10:15:47.0817 0x1550 BthHFEnum - ok
10:15:47.0848 0x1550 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
10:15:47.0879 0x1550 bthhfhid - ok
10:15:47.0919 0x1550 [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
10:15:47.0962 0x1550 BthHFSrv - ok
10:15:47.0993 0x1550 [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
10:15:48.0024 0x1550 BthLEEnum - ok
10:15:48.0040 0x1550 [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
10:15:48.0071 0x1550 BTHMODEM - ok
10:15:48.0102 0x1550 [ FEA8FC81431AD93F44D5FBFBBF096AA7, C0581DF6B2AD24836604B083F4866F93A3F4D9091D382029948A5E6221EDF788 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
10:15:48.0134 0x1550 BthPan - ok
10:15:48.0196 0x1550 [ 0CC00ADC1B84C93FB46E1A0974E956E1, 64C759244651B916901F4D0C82C3D6034532A20714A72FD26FC9D050B99E230B ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys
10:15:48.0321 0x1550 BTHPORT - ok
10:15:48.0352 0x1550 [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\WINDOWS\system32\bthserv.dll
10:15:48.0415 0x1550 bthserv - ok
10:15:48.0446 0x1550 [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys
10:15:48.0477 0x1550 BTHUSB - ok
10:15:48.0805 0x1550 [ 35412CD4A227EE7A99179A930B1FDF4E, E6349B7646544B5B065112D9C7563F0A95462CA4511CB00B77D91E7C14DAD541 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
10:15:48.0852 0x1550 btwdins - ok
10:15:48.0884 0x1550 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
10:15:48.0946 0x1550 cdfs - ok
10:15:48.0977 0x1550 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
10:15:49.0009 0x1550 cdrom - ok
10:15:49.0040 0x1550 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
10:15:49.0087 0x1550 CertPropSvc - ok
10:15:49.0118 0x1550 [ 59B4AB79011957DD3B83F0C2E63741BD, 5DE68785D701DBA0F98452B7D5CC407BEECD51685F39516157733CED2EF2FA19 ] chip1click C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
10:15:49.0149 0x1550 chip1click - detected UnsignedFile.Multi.Generic ( 1 )
10:15:49.0384 0x1550 chip1click ( UnsignedFile.Multi.Generic ) - warning
10:15:49.0571 0x1550 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
10:15:49.0602 0x1550 circlass - ok
10:15:49.0649 0x1550 [ 28D94419E856D61D7686ED942611D15E, AC9ED48AA09B09B854512B35E905C8C4C451B34F59951661367392AF64E8ADE7 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
10:15:49.0665 0x1550 CLFS - ok
10:15:49.0727 0x1550 [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
10:15:49.0743 0x1550 CLVirtualDrive - ok
10:15:49.0774 0x1550 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
10:15:49.0806 0x1550 CmBatt - ok
10:15:49.0837 0x1550 [ 5CBF8B3E27D824D2AA2A34AFB406F1D0, 955AF1307C02D2B4DEEB150F37F77B8631C0F3C450037C233E9E27D6571B0265 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
10:15:49.0899 0x1550 CNG - ok
10:15:49.0931 0x1550 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
10:15:49.0977 0x1550 CompositeBus - ok
10:15:49.0977 0x1550 COMSysApp - ok
10:15:50.0009 0x1550 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys
10:15:50.0040 0x1550 condrv - ok
10:15:50.0227 0x1550 [ BB812787B838A74943DEF209350C3883, 2C168F48A68644AA3CB6167BEC2A260E3E9C78D0766A15AA0FAA39CDBD7FA040 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
10:15:50.0446 0x1550 cphs - ok
10:15:50.0477 0x1550 [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
10:15:50.0571 0x1550 CryptSvc - ok
10:15:50.0602 0x1550 [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam C:\WINDOWS\system32\drivers\dam.sys
10:15:50.0618 0x1550 dam - ok
10:15:50.0712 0x1550 [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
10:15:50.0790 0x1550 DcomLaunch - ok
10:15:50.0837 0x1550 [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\WINDOWS\System32\defragsvc.dll
10:15:50.0915 0x1550 defragsvc - ok
10:15:50.0962 0x1550 [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
10:15:51.0040 0x1550 DeviceAssociationService - ok
10:15:51.0056 0x1550 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
10:15:51.0102 0x1550 DeviceInstall - ok
10:15:51.0118 0x1550 [ FBFF94FC1FE0699A6BC5ACE270AB9EA1, 7D67E7BE539D9D515A1A6B9282C72114310E874DD1FE51E71F002DBB0E1439FB ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
10:15:51.0196 0x1550 Dfsc - ok
10:15:51.0321 0x1550 [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
10:15:51.0399 0x1550 Dhcp - ok
10:15:51.0462 0x1550 [ 0AC9F83A5508935DE89C447473085EEA, 223782B17BACEFB0A663EB13514B68B919C95EF641CDDA7AC30CB239BC4307EC ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
10:15:51.0634 0x1550 DiagTrack - ok
10:15:51.0665 0x1550 [ 8B1E62881D5AC68E673CD94B136B34AC, A0C50F17041E43AC07B67A74F2C408820316201439F47CDEA37A4F5891CC0E6F ] disk C:\WINDOWS\system32\drivers\disk.sys
10:15:51.0681 0x1550 disk - ok
10:15:51.0696 0x1550 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
10:15:51.0759 0x1550 dmvsc - ok
10:15:51.0790 0x1550 [ 561CBB163EB3C8221D9B1D7D1E5CA477, 4D235E73CC127769A257B31A92180552276EC8DDD991F1106815FADEF385E72D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
10:15:51.0884 0x1550 Dnscache - ok
10:15:51.0915 0x1550 [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
10:15:51.0993 0x1550 dot3svc - ok
10:15:52.0009 0x1550 [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\WINDOWS\system32\dps.dll
10:15:52.0040 0x1550 DPS - ok
10:15:52.0071 0x1550 [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
10:15:52.0087 0x1550 drmkaud - ok
10:15:52.0118 0x1550 [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
10:15:52.0149 0x1550 DsmSvc - ok
10:15:52.0228 0x1550 [ F74B839FA0F4E6060CA1DA6B8DA17941, EF493E1F55FCD6A8C32B3D5D5809B7EFCCC9829E9A347522D1E6FE080D41BF37 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
10:15:52.0321 0x1550 DXGKrnl - ok
10:15:52.0337 0x1550 [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
10:15:52.0399 0x1550 Eaphost - ok
10:15:52.0524 0x1550 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
10:15:52.0696 0x1550 ebdrv - ok
10:15:52.0728 0x1550 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\WINDOWS\System32\lsass.exe
10:15:52.0743 0x1550 EFS - ok
10:15:52.0759 0x1550 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
10:15:52.0774 0x1550 EhStorClass - ok
10:15:52.0790 0x1550 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
10:15:52.0806 0x1550 EhStorTcgDrv - ok
10:15:52.0821 0x1550 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
10:15:52.0853 0x1550 ErrDev - ok
10:15:52.0915 0x1550 [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\WINDOWS\system32\es.dll
10:15:52.0978 0x1550 EventSystem - ok
10:15:53.0024 0x1550 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
10:15:53.0103 0x1550 exfat - ok
10:15:53.0118 0x1550 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
10:15:53.0149 0x1550 fastfat - ok
10:15:53.0181 0x1550 [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\WINDOWS\system32\fxssvc.exe
10:15:53.0274 0x1550 Fax - ok
10:15:53.0306 0x1550 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
10:15:53.0337 0x1550 fdc - ok
10:15:53.0368 0x1550 [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
10:15:53.0384 0x1550 fdPHost - ok
10:15:53.0399 0x1550 [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
10:15:53.0431 0x1550 FDResPub - ok
10:15:53.0462 0x1550 [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
10:15:53.0524 0x1550 fhsvc - ok
10:15:53.0556 0x1550 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
10:15:53.0571 0x1550 FileInfo - ok
10:15:53.0587 0x1550 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
10:15:53.0603 0x1550 Filetrace - ok
10:15:53.0618 0x1550 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
10:15:53.0649 0x1550 flpydisk - ok
10:15:53.0665 0x1550 [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
10:15:53.0696 0x1550 FltMgr - ok
10:15:53.0774 0x1550 [ 1EFEF3B4EF2B241263F0F791EA128598, B6CADC254B0779E43E0D6AB6125A7E7ED8FF50C3158911681BA7B43160A08176 ] FontCache C:\WINDOWS\system32\FntCache.dll
10:15:53.0915 0x1550 FontCache - ok
10:15:53.0993 0x1550 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:15:54.0009 0x1550 FontCache3.0.0.0 - ok
10:15:54.0024 0x1550 [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
10:15:54.0040 0x1550 FsDepends - ok
10:15:54.0056 0x1550 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:15:54.0071 0x1550 Fs_Rec - ok
10:15:54.0118 0x1550 [ D4AB6EE3D715BC44C00277FD934FAACF, DE8A8B14D7BA73BA1B5A833DE193CA65EDFE512A57D84F4F2CE19D9646D97F4E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
10:15:54.0165 0x1550 fvevol - ok
10:15:54.0196 0x1550 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
10:15:54.0228 0x1550 FxPPM - ok
10:15:54.0259 0x1550 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
10:15:54.0274 0x1550 gagp30kx - ok
10:15:54.0321 0x1550 [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
10:15:54.0337 0x1550 GamesAppService - ok
10:15:54.0368 0x1550 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
10:15:54.0399 0x1550 gencounter - ok
10:15:54.0446 0x1550 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
10:15:54.0462 0x1550 GPIOClx0101 - ok
10:15:54.0524 0x1550 [ 9678FD4747A4F2E2318245EE6099482E, C76AE30E8BA77DC330F9CFE5ECEA58FAE0995396742923B564A2257DE24D7B32 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
10:15:54.0696 0x1550 gpsvc - ok
10:15:54.0728 0x1550 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
10:15:54.0759 0x1550 HDAudBus - ok
10:15:54.0790 0x1550 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
10:15:54.0821 0x1550 HidBatt - ok
10:15:54.0868 0x1550 [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
10:15:54.0946 0x1550 HidBth - ok
10:15:54.0962 0x1550 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
10:15:54.0993 0x1550 hidi2c - ok
10:15:55.0025 0x1550 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
10:15:55.0056 0x1550 HidIr - ok
10:15:55.0087 0x1550 [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\WINDOWS\system32\hidserv.dll
10:15:55.0118 0x1550 hidserv - ok
10:15:55.0150 0x1550 [ 49676FEC898AB2A11B157F848269A56E, 011E6DDEF9570212520F92FEFD205E1F8104F198B57C40D11BE857FCBCC5F68D ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
10:15:55.0212 0x1550 HidUsb - ok
10:15:55.0243 0x1550 [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
10:15:55.0306 0x1550 hkmsvc - ok
10:15:55.0337 0x1550 [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
10:15:55.0415 0x1550 HomeGroupListener - ok
10:15:55.0446 0x1550 [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
10:15:55.0508 0x1550 HomeGroupProvider - ok
10:15:55.0547 0x1550 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
10:15:55.0562 0x1550 HpSAMD - ok
10:15:55.0625 0x1550 [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
10:15:55.0672 0x1550 HTTP - ok
10:15:55.0703 0x1550 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
10:15:55.0718 0x1550 hwpolicy - ok
10:15:55.0734 0x1550 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
10:15:55.0765 0x1550 hyperkbd - ok
10:15:55.0812 0x1550 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
10:15:55.0843 0x1550 HyperVideo - ok
10:15:55.0890 0x1550 [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
10:15:56.0000 0x1550 i8042prt - ok
10:15:56.0047 0x1550 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
10:15:56.0047 0x1550 iaLPSSi_GPIO - ok
10:15:56.0062 0x1550 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
10:15:56.0078 0x1550 iaLPSSi_I2C - ok
10:15:56.0125 0x1550 [ 6C91E425ACE29594BD574DE38AC9B76D, 697784E4C7AF08B1F35662D8AD871E6890CECE22B6E64985B7C1A66C10DA390D ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
10:15:56.0156 0x1550 iaStorA - ok
10:15:56.0187 0x1550 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
10:15:56.0234 0x1550 iaStorAV - ok
10:15:56.0265 0x1550 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
10:15:56.0297 0x1550 iaStorV - ok
10:15:56.0344 0x1550 [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
10:15:56.0359 0x1550 ICCS - ok
10:15:56.0469 0x1550 [ DEA2F976E7327716AA0038EBF550003A, 5EA4666874F1D03879EA95F28228AC9EA3D7DF0F2E199EEE9B5BC6C81CA290B3 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
10:15:56.0578 0x1550 IconMan_R - ok
10:15:56.0594 0x1550 IEEtwCollectorService - ok
10:15:56.0734 0x1550 [ CEFA6BDB4789F3DA003ACBDCC64F5877, 0FE78AEFA9A75B4A99AD6B73AC3252E4C6DFA9D306FEC02D26C1FD574108BFBA ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
10:15:57.0015 0x1550 igfx - ok
10:15:57.0047 0x1550 [ 75909533EECD0CD9D5974B59474AA6C0, F81D0F949F1F01D09C91735C79288395B82C27B8FB78804752E5A678D7EF3860 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
10:15:57.0062 0x1550 igfxCUIService1.0.0.0 - ok
10:15:57.0125 0x1550 [ 5697FD05EC6915A1E7193D658D8D6E05, 0179C3AF29880AA21F609CB471034EA5FA49324ACCE12736866675C037EBEC7A ] IKEEXT C:\WINDOWS\System32\ikeext.dll
10:15:57.0203 0x1550 IKEEXT - ok
10:15:57.0234 0x1550 [ B1F193AB8FB72E9FC34B3A39314ED872, 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
10:15:57.0265 0x1550 intaud_WaveExtensible - ok
10:15:57.0422 0x1550 [ F9A6ACDDD86D3281F765374A0BF37DE0, 988911FC45B14A5E40AD91B49A18DFFF56F81874611ED994624D7200E7FDD834 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
10:15:57.0608 0x1550 IntcAzAudAddService - ok
10:15:57.0663 0x1550 [ 87871AB7AC797F922A6F3D4C874CED96, 2BCD89911E42827CD294DD7D1486A7845D1F98019E51958E0F488384401B2944 ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
10:15:57.0694 0x1550 IntcDAud - ok
10:15:57.0790 0x1550 [ B353F1834FCD36D77BE3F74992C147D4, BFBC42B500FC7D6D2B523F988DD54156D2B6132CBE366EB591BF45556959A8E9 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
10:15:57.0800 0x1550 Intel(R) Capability Licensing Service Interface - ok
10:15:57.0863 0x1550 [ 420142EC02098130910F34191F38D1B1, 8D853F69DFF2D6D66BB1A25644E66DC1E8D841B86674925821B7795FBDC6A683 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
10:15:57.0863 0x1550 Intel(R) ME Service - ok
10:15:57.0894 0x1550 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
10:15:57.0910 0x1550 intelide - ok
10:15:57.0942 0x1550 [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
10:15:57.0954 0x1550 intelpep - ok
10:15:57.0961 0x1550 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
10:15:57.0992 0x1550 intelppm - ok
10:15:58.0023 0x1550 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:15:58.0086 0x1550 IpFilterDriver - ok
10:15:58.0148 0x1550 [ B452623C1DE60544054E784D94A7AA47, 57AECDEE0AB2B80DFFE11E43608988D46E9169288CB56D644DDE2CAFED6AFD40 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
10:15:58.0242 0x1550 iphlpsvc - ok
10:15:58.0273 0x1550 [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
10:15:58.0351 0x1550 IPMIDRV - ok
10:15:58.0367 0x1550 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
10:15:58.0398 0x1550 IPNAT - ok
10:15:58.0430 0x1550 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
10:15:58.0445 0x1550 IRENUM - ok
10:15:58.0477 0x1550 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
10:15:58.0492 0x1550 isapnp - ok
10:15:58.0539 0x1550 [ AD3C1F4BD9167420F04052FDA197CF29, 82B687092DFC50E8885656AF06BFB7559930750F4905BC4DBDA3A5D334A443D1 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
10:15:58.0555 0x1550 iScsiPrt - ok
10:15:58.0586 0x1550 [ DD1F43B86AD84E53203F92FD3EF3AEB6, 9DE2BA80B315E56DF2E74EAA65F4ECB8324DFC19E30EB56EDDF08340AB100E87 ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
10:15:58.0617 0x1550 iwdbus - ok
10:15:58.0648 0x1550 [ 9B24288D9F247BC5B3DAA71C571A028C, 0A1EF61858F9C1066F299C94C0FC4BB434D7585536294847CA8E21E731B9B931 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
10:15:58.0664 0x1550 jhi_service - ok
10:15:58.0680 0x1550 [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
10:15:58.0727 0x1550 kbdclass - ok
10:15:58.0758 0x1550 [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
10:15:58.0773 0x1550 kbdhid - ok
10:15:58.0805 0x1550 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
10:15:58.0836 0x1550 kdnic - ok
10:15:58.0867 0x1550 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\WINDOWS\system32\lsass.exe
10:15:58.0883 0x1550 KeyIso - ok
10:15:58.0914 0x1550 [ 304DA394D958BC3B62AF6DF514005B01, 8D17777C82F034E800181E82D30FCED800CBC46CD659AE2E0D972CA1381BD4C2 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
10:15:58.0930 0x1550 KSecDD - ok
10:15:58.0945 0x1550 [ 3D4AE520CD6F6FFE549DD195C1F515BE, 2AD3E07F504CE50956C391FD4633D20B354A854C940B3563A67B79BB6E40218F ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
10:15:58.0977 0x1550 KSecPkg - ok
10:15:58.0977 0x1550 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
10:15:59.0008 0x1550 ksthunk - ok
10:15:59.0055 0x1550 [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
10:15:59.0102 0x1550 KtmRm - ok
10:15:59.0148 0x1550 [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
10:15:59.0211 0x1550 LanmanServer - ok
10:15:59.0242 0x1550 [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
10:15:59.0273 0x1550 LanmanWorkstation - ok
10:15:59.0320 0x1550 [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll
10:15:59.0398 0x1550 lfsvc - ok
10:15:59.0430 0x1550 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
10:15:59.0477 0x1550 lltdio - ok
10:15:59.0523 0x1550 [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
10:15:59.0570 0x1550 lltdsvc - ok
10:15:59.0602 0x1550 [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
10:15:59.0664 0x1550 lmhosts - ok
10:15:59.0695 0x1550 [ F194FE43BD9C0E949384E16EED7AA52E, 6260DD6DE9E6BBE8AB2CB8FA3A008C921ACDD340A6BF5C6A1C7C4FFE84C5BD79 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
10:15:59.0711 0x1550 LMS - ok
10:15:59.0742 0x1550 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
10:15:59.0758 0x1550 LSI_SAS - ok
10:15:59.0773 0x1550 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
10:15:59.0789 0x1550 LSI_SAS2 - ok
10:15:59.0805 0x1550 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys
10:15:59.0820 0x1550 LSI_SAS3 - ok
10:15:59.0836 0x1550 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
10:15:59.0852 0x1550 LSI_SSS - ok
10:15:59.0898 0x1550 [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\WINDOWS\System32\lsm.dll
10:15:59.0977 0x1550 LSM - ok
10:16:00.0008 0x1550 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
10:16:00.0070 0x1550 luafv - ok
10:16:00.0102 0x1550 [ 1239597BAB7EED2BB16D035AF87E65D9, 67A4F1C8BA77502404629C3411BA76729435012CFA6D7794C46F31BBC118064E ] mbamchameleon C:\WINDOWS\system32\drivers\mbamchameleon.sys
10:16:00.0320 0x1550 mbamchameleon - ok
10:16:00.0336 0x1550 [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
10:16:00.0352 0x1550 MBAMProtector - ok
10:16:00.0398 0x1550 [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
10:16:00.0461 0x1550 MBAMService - ok
10:16:00.0492 0x1550 [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
10:16:00.0508 0x1550 MBAMSwissArmy - ok
10:16:00.0523 0x1550 [ 898415AC0B5F1D2A9A48ABCB68A6DC4B, E1FD9AE5E22E3E5A18288E66A6184E92A4B63A1274DCE147A7728BB09C6A225E ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
10:16:00.0555 0x1550 MBAMWebAccessControl - ok
10:16:00.0586 0x1550 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys
10:16:00.0602 0x1550 megasas - ok
10:16:00.0633 0x1550 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
10:16:00.0664 0x1550 megasr - ok
10:16:00.0680 0x1550 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
10:16:00.0695 0x1550 MEIx64 - ok
10:16:00.0727 0x1550 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\WINDOWS\system32\mmcss.dll
10:16:00.0773 0x1550 MMCSS - ok
10:16:00.0789 0x1550 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys
10:16:00.0820 0x1550 Modem - ok
10:16:00.0867 0x1550 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
10:16:00.0899 0x1550 monitor - ok
10:16:00.0930 0x1550 [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
10:16:00.0961 0x1550 mouclass - ok
10:16:00.0992 0x1550 [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
10:16:01.0070 0x1550 mouhid - ok
10:16:01.0102 0x1550 [ 24DABC0A77FAFDC0E379AB3B30F61BB6, E66624ABBF1D742879035F9161F9D3713DE7B759B3D3CF8B96C9E397A02FCF82 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
10:16:01.0117 0x1550 mountmgr - ok
10:16:01.0180 0x1550 [ 7AAFF443581F9B6F86CDF761ED0A437D, 6E159C875F5666E6D17C58628EEAF79818697355AFE213CE778BD3FEA04248C0 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:16:01.0289 0x1550 MozillaMaintenance - ok
10:16:01.0320 0x1550 [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
10:16:01.0414 0x1550 mpsdrv - ok
10:16:01.0477 0x1550 [ D1418745A5472F3930A288E05B9E2C05, 95785F0FA7EE239459C0288DB37E9E54648029FD6FE45A61E6343526D67FFA32 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
10:16:01.0555 0x1550 MpsSvc - ok
10:16:01.0586 0x1550 [ 3F818C1518DA702C8F10259095C9BDE0, B98C1A6F9A3C01A10503B2B2C45CC89AFF17B346B15990F4DB4820F68BDC62C8 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
10:16:01.0680 0x1550 MRxDAV - ok
10:16:01.0711 0x1550 [ 3AF30CEB99E581E2FADA0B5FC4B551D8, 59BDE83C10D6F31E13B81FC317F1DE0E00793FBA288EAF844E29CFA0EB184502 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:16:01.0774 0x1550 mrxsmb - ok
10:16:01.0789 0x1550 [ 15D7AF1A26CCEBA32DF21A8E2098F463, 84390806AD3A9651DAB803E9257EEE851B898ED2AB56D8936E8C9F6B41967243 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
10:16:01.0867 0x1550 mrxsmb10 - ok
10:16:01.0883 0x1550 [ 0790EEB1EC199F8BE8259E47B373ED23, F9330F43B40675CCB60804182EF04BFBA3837ED14C798788A4B27D65A646D1C7 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
10:16:01.0914 0x1550 mrxsmb20 - ok
10:16:01.0961 0x1550 [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
10:16:01.0977 0x1550 MsBridge - ok
10:16:02.0024 0x1550 [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\WINDOWS\System32\msdtc.exe
10:16:02.0055 0x1550 MSDTC - ok
10:16:02.0102 0x1550 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
10:16:02.0117 0x1550 Msfs - ok
10:16:02.0133 0x1550 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
10:16:02.0133 0x1550 msgpiowin32 - ok
10:16:02.0149 0x1550 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
10:16:02.0180 0x1550 mshidkmdf - ok
10:16:02.0211 0x1550 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
10:16:02.0242 0x1550 mshidumdf - ok
10:16:02.0242 0x1550 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
10:16:02.0258 0x1550 msisadrv - ok
10:16:02.0305 0x1550 [ A06142B3850B06972F1C89748FAA2C02, B1CCC5C8D100FEB384FCC85FED2A77F47DA4C9BA5F6889A130F4D73E30ACAA78 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
10:16:02.0399 0x1550 MSiSCSI - ok
10:16:02.0399 0x1550 msiserver - ok
10:16:02.0445 0x1550 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:16:02.0477 0x1550 MSKSSRV - ok
10:16:02.0508 0x1550 [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
10:16:02.0555 0x1550 MsLldp - ok
10:16:02.0570 0x1550 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:16:02.0602 0x1550 MSPCLOCK - ok
10:16:02.0617 0x1550 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
10:16:02.0633 0x1550 MSPQM - ok
10:16:02.0664 0x1550 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
10:16:02.0680 0x1550 MsRPC - ok
10:16:02.0695 0x1550 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
10:16:02.0711 0x1550 mssmbios - ok
10:16:02.0742 0x1550 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
10:16:02.0742 0x1550 MSTEE - ok
10:16:02.0758 0x1550 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
10:16:02.0805 0x1550 MTConfig - ok
10:16:02.0836 0x1550 [ 438EA7A2D8D4F9B8AFB64748ACA70BA8, AEEB7B657B645C4006C6D5E8D07ECE581DEE7AD22EA1A587C552574990CF091B ] Mup C:\WINDOWS\system32\Drivers\mup.sys
10:16:02.0852 0x1550 Mup - ok
10:16:02.0867 0x1550 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
10:16:02.0883 0x1550 mvumis - ok
10:16:02.0914 0x1550 [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\WINDOWS\system32\qagentRT.dll
10:16:02.0961 0x1550 napagent - ok
10:16:03.0008 0x1550 [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
10:16:03.0086 0x1550 NativeWifiP - ok
10:16:03.0133 0x1550 [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
10:16:03.0180 0x1550 NcaSvc - ok
10:16:03.0195 0x1550 [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\WINDOWS\System32\ncbservice.dll
10:16:03.0227 0x1550 NcbService - ok
10:16:03.0242 0x1550 [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
10:16:03.0321 0x1550 NcdAutoSetup - ok
10:16:03.0461 0x1550 [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
10:16:04.0852 0x1550 NDIS - ok
10:16:05.0008 0x1550 [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
10:16:05.0086 0x1550 NdisCap - ok
10:16:05.0117 0x1550 [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
10:16:05.0149 0x1550 NdisImPlatform - ok
10:16:05.0274 0x1550 [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:16:05.0414 0x1550 NdisTapi - ok
10:16:05.0461 0x1550 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:16:05.0513 0x1550 Ndisuio - ok
10:16:05.0536 0x1550 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
10:16:05.0583 0x1550 NdisVirtualBus - ok
10:16:05.0630 0x1550 [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:16:05.0755 0x1550 NdisWan - ok
10:16:05.0786 0x1550 [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:16:05.0802 0x1550 NdisWanLegacy - ok
10:16:05.0818 0x1550 [ 0BBE2FA30BAD58C9ADC01E4F84A3D2A1, 913AEC8A5F735C2EFDCB417E4077AB5A15457C601E6E88A1F4FA52C91E6E0BBF ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
10:16:05.0849 0x1550 NDProxy - ok
10:16:05.0865 0x1550 [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
10:16:05.0943 0x1550 Ndu - ok
10:16:05.0974 0x1550 [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
10:16:06.0005 0x1550 NetBIOS - ok
10:16:06.0052 0x1550 [ 9DC17B7D9D84C37C102D379FCC7D4942, D522022ED4395686837E96F57EE29F8065FB749D1195B60D2A406FB33F696C09 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
10:16:06.0130 0x1550 NetBT - ok
10:16:06.0161 0x1550 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\WINDOWS\system32\lsass.exe
10:16:06.0177 0x1550 Netlogon - ok
10:16:06.0240 0x1550 [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\WINDOWS\System32\netman.dll
10:16:06.0271 0x1550 Netman - ok
10:16:06.0333 0x1550 [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
10:16:06.0365 0x1550 netprofm - ok
10:16:06.0427 0x1550 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:16:06.0474 0x1550 NetTcpPortSharing - ok
10:16:06.0505 0x1550 [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\WINDOWS\System32\drivers\netvsc63.sys
10:16:06.0521 0x1550 netvsc - ok
10:16:06.0771 0x1550 [ 109413059775750CE8248A491834514E, F8665953F9E5EA3FA1B1020C0DA7DF1F82D97D204D6D9A32B81F48534903B098 ] NetworkSupport C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe
10:16:06.0802 0x1550 NetworkSupport - ok
10:16:06.0833 0x1550 [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
10:16:06.0927 0x1550 NlaSvc - ok
10:16:06.0943 0x1550 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
10:16:06.0974 0x1550 Npfs - ok
10:16:06.0990 0x1550 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
10:16:07.0021 0x1550 npsvctrig - ok
10:16:07.0052 0x1550 [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\WINDOWS\system32\nsisvc.dll
10:16:07.0083 0x1550 nsi - ok
10:16:07.0099 0x1550 [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
10:16:07.0130 0x1550 nsiproxy - ok
10:16:07.0224 0x1550 [ 9980B262DBE439AE6BDC91AA985F19EE, E998E4CAE9CD103ADA9CA3C737C4DAD017D056828BFA42A41C7B4E4E108FB13C ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
10:16:07.0318 0x1550 Ntfs - ok
10:16:07.0333 0x1550 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys
10:16:07.0365 0x1550 Null - ok
10:16:07.0396 0x1550 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
10:16:07.0411 0x1550 nvraid - ok
10:16:07.0427 0x1550 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
10:16:07.0443 0x1550 nvstor - ok
10:16:07.0458 0x1550 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
10:16:07.0474 0x1550 nv_agp - ok
10:16:07.0505 0x1550 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
10:16:07.0581 0x1550 p2pimsvc - ok
10:16:07.0600 0x1550 [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\WINDOWS\system32\p2psvc.dll
10:16:07.0679 0x1550 p2psvc - ok
10:16:07.0710 0x1550 [ 57DCE4FB0467986AE78E1C6FC5240D32, F7F3ADD1B48E4D6BB0A664A2FE556F71ED7453054B4FB667A29BE050C845045B ] Parport C:\WINDOWS\System32\drivers\parport.sys
10:16:07.0784 0x1550 Parport - ok
10:16:07.0800 0x1550 [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
10:16:07.0816 0x1550 partmgr - ok
10:16:07.0847 0x1550 [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
10:16:07.0912 0x1550 PcaSvc - ok
10:16:07.0925 0x1550 [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\WINDOWS\system32\drivers\pci.sys
10:16:07.0945 0x1550 pci - ok
10:16:07.0961 0x1550 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
10:16:07.0976 0x1550 pciide - ok
10:16:07.0992 0x1550 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
10:16:08.0008 0x1550 pcmcia - ok
10:16:08.0023 0x1550 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
10:16:08.0039 0x1550 pcw - ok
10:16:08.0054 0x1550 [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
10:16:08.0070 0x1550 pdc - ok
10:16:08.0101 0x1550 [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
10:16:08.0164 0x1550 PEAUTH - ok
10:16:08.0226 0x1550 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
10:16:08.0273 0x1550 PerfHost - ok
10:16:08.0351 0x1550 [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\WINDOWS\system32\pla.dll
10:16:08.0429 0x1550 pla - ok
10:16:08.0461 0x1550 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
10:16:08.0476 0x1550 PlugPlay - ok
10:16:08.0492 0x1550 [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
10:16:08.0523 0x1550 PNRPAutoReg - ok
10:16:08.0570 0x1550 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
10:16:08.0586 0x1550 PNRPsvc - ok
10:16:08.0633 0x1550 [ 0FF8507A8B901B904E98EB36B9E347EE, FE4A9A6159A8490F3155D166656748722EFDEDCDC447C09155A5AD6D9F5D294D ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
10:16:08.0711 0x1550 PolicyAgent - ok
10:16:08.0742 0x1550 [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\WINDOWS\system32\umpo.dll
10:16:08.0773 0x1550 Power - ok
10:16:08.0929 0x1550 [ F6EA63145C20A23732AD2CA1EBA65FA1, 0DD1164D37C1500258E9CCCE458778A3DA196D9A65919B2672E3C88383068F52 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
10:16:09.0195 0x1550 PrintNotify - ok
10:16:09.0242 0x1550 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys
10:16:09.0258 0x1550 Processor - ok
10:16:09.0304 0x1550 [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc C:\WINDOWS\system32\profsvc.dll
10:16:09.0414 0x1550 ProfSvc - ok
10:16:09.0429 0x1550 [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
10:16:09.0445 0x1550 Psched - ok
10:16:09.0476 0x1550 [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\WINDOWS\system32\qwave.dll
10:16:09.0539 0x1550 QWAVE - ok
10:16:09.0570 0x1550 [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
10:16:09.0586 0x1550 QWAVEdrv - ok
10:16:09.0617 0x1550 [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:16:09.0648 0x1550 RasAcd - ok
10:16:09.0695 0x1550 [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\WINDOWS\System32\rasauto.dll
10:16:09.0711 0x1550 RasAuto - ok
10:16:09.0758 0x1550 [ 15C0034561FE5B03FA376F1A6232478B, 0F9B5C2BD7D8803FF3C5ED957D3F0859F2A59B74510E4659FBF05EDCBF230208 ] RasMan C:\WINDOWS\System32\rasmans.dll
10:16:09.0820 0x1550 RasMan - ok
10:16:09.0851 0x1550 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:16:09.0883 0x1550 RasPppoe - ok
10:16:09.0929 0x1550 [ D67ED4AB59D1EF66B05AD1A81AC28B26, 72E750A9A6B484D8BEDE52FA6DABEF4D95765DE491152E1F6C856D0590B50C28 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:16:09.0992 0x1550 rdbss - ok
10:16:10.0008 0x1550 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
10:16:10.0039 0x1550 rdpbus - ok
10:16:10.0070 0x1550 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
10:16:10.0117 0x1550 RDPDR - ok
10:16:10.0148 0x1550 [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
10:16:10.0148 0x1550 RdpVideoMiniport - ok
10:16:10.0179 0x1550 [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
10:16:10.0195 0x1550 rdyboost - ok
10:16:10.0258 0x1550 [ 759FB47B96FA0A9D767B3269F76E5E25, B19EF75D2ECC9041F2578D6D4574302A06A12E551CE6211C049CD642E92D4D3E ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
10:16:10.0304 0x1550 ReFS - ok
10:16:10.0336 0x1550 [ DF78648AC3C8DC9D70E6714AF785382F, 56E104939ED0AB5B26AE07BAB1BBB7D15828DBD3A2AD35361423D7ADDA4BA551 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
10:16:10.0351 0x1550 RemoteAccess - ok
10:16:10.0383 0x1550 [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
10:16:10.0430 0x1550 RemoteRegistry - ok
10:16:10.0445 0x1550 [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
10:16:10.0492 0x1550 RFCOMM - ok
10:16:10.0523 0x1550 [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
10:16:10.0555 0x1550 RpcEptMapper - ok
10:16:10.0601 0x1550 [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\WINDOWS\system32\locator.exe
10:16:10.0633 0x1550 RpcLocator - ok
10:16:10.0695 0x1550 [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] RpcSs C:\WINDOWS\system32\rpcss.dll
10:16:10.0726 0x1550 RpcSs - ok
10:16:10.0758 0x1550 [ D5E76FA33A4109490228F4015564133E, 2C8206F3E8149D8A6DDFAF5EF0341752586C210ABAB8809E1AB42777CB1B6447 ] RSPCIESTOR C:\WINDOWS\system32\DRIVERS\RtsPStor.sys
10:16:10.0773 0x1550 RSPCIESTOR - ok
10:16:10.0805 0x1550 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
10:16:10.0836 0x1550 rspndr - ok
10:16:10.0914 0x1550 [ D2768897FCEA8EEFAD3D69BAC9DC4180, 81E23AA9E13C06BD417C34566766A9F98FD3A8F916123F282CB6E52AB1A10A1D ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
10:16:10.0976 0x1550 RTL8168 - ok
10:16:10.0992 0x1550 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
10:16:11.0055 0x1550 s3cap - ok
10:16:11.0070 0x1550 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\WINDOWS\system32\lsass.exe
10:16:11.0086 0x1550 SamSs - ok
10:16:11.0133 0x1550 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
10:16:11.0148 0x1550 sbp2port - ok
10:16:11.0164 0x1550 [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
10:16:11.0195 0x1550 SCardSvr - ok
10:16:11.0211 0x1550 [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
10:16:11.0242 0x1550 ScDeviceEnum - ok
10:16:11.0273 0x1550 [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
10:16:11.0305 0x1550 scfilter - ok
10:16:11.0383 0x1550 [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule C:\WINDOWS\system32\schedsvc.dll
10:16:11.0492 0x1550 Schedule - ok
10:16:11.0539 0x1550 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
10:16:11.0555 0x1550 SCPolicySvc - ok
10:16:11.0586 0x1550 [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
10:16:11.0601 0x1550 sdbus - ok
10:16:11.0648 0x1550 [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
10:16:11.0664 0x1550 sdstor - ok
10:16:11.0680 0x1550 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
10:16:11.0742 0x1550 secdrv - ok
10:16:11.0758 0x1550 [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon C:\WINDOWS\system32\seclogon.dll
10:16:11.0836 0x1550 seclogon - ok
10:16:11.0851 0x1550 [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\WINDOWS\System32\sens.dll
10:16:11.0867 0x1550 SENS - ok
10:16:11.0898 0x1550 [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
10:16:11.0914 0x1550 SensrSvc - ok
10:16:11.0945 0x1550 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
10:16:11.0961 0x1550 SerCx - ok
10:16:11.0976 0x1550 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
10:16:11.0992 0x1550 SerCx2 - ok
10:16:12.0039 0x1550 [ 1F0135949A6AD6025F363F80FE268251, DB2D503863143F2251E589F7B0B3E9FBF997D7333D54C55856590B5080B5513D ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
10:16:12.0086 0x1550 Serenum - ok
10:16:12.0101 0x1550 [ 81633C87B42B63BA484A6177179AC750, A22BA40E9EC74E88D8098CBDC954E1D63B832FCB789E3C7B731DE5DA39BEE2CA ] Serial C:\WINDOWS\System32\drivers\serial.sys
10:16:12.0133 0x1550 Serial - ok
10:16:12.0180 0x1550 [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
10:16:12.0211 0x1550 sermouse - ok
10:16:12.0273 0x1550 [ 389458EA0B5FAEBA325FAC47B9ED589E, F7F37A1F1E912069F65E4629FF733F080AE675DF6FE255AF48F5E23EB47D0622 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
10:16:12.0367 0x1550 SessionEnv - ok
10:16:12.0383 0x1550 [ 415B1326C40A2E1F251A3845B9C7DF31, D7BD668962B71DC3877366EB0C0BD5CDB1FF564A5866EE58DB90838D78227AD6 ] SFEP C:\WINDOWS\System32\drivers\SFEP.sys
10:16:12.0445 0x1550 SFEP - ok
10:16:12.0492 0x1550 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
10:16:12.0523 0x1550 sfloppy - ok
10:16:12.0586 0x1550 [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
10:16:12.0633 0x1550 SharedAccess - ok
10:16:12.0711 0x1550 [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:16:12.0773 0x1550 ShellHWDetection - ok
10:16:12.0805 0x1550 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
10:16:12.0820 0x1550 SiSRaid2 - ok
10:16:12.0852 0x1550 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
10:16:12.0867 0x1550 SiSRaid4 - ok
10:16:12.0898 0x1550 [ 817B64BE830C64FEA9A5FDE2251F8F8B, 0CF2D24DF4B56B4928167597D44C17835903B0AEB8B6169E6A1CD65CED293C04 ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
10:16:12.0914 0x1550 SmbDrvI - ok
10:16:12.0945 0x1550 [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\WINDOWS\System32\smphost.dll
10:16:12.0961 0x1550 smphost - ok
10:16:13.0008 0x1550 [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
10:16:13.0039 0x1550 SNMPTRAP - ok
10:16:13.0133 0x1550 [ 56210E78E7ED9CD178DF3B710D0D514C, 641C8CA7264975DA82A532B816723454235CFD247E0311803B472070DBE83320 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
10:16:13.0133 0x1550 SOHCImp - ok
10:16:13.0180 0x1550 [ F939D397853E433C1D59B96B96497F88, 98FC1EC27B758774A708910AE217AA02B14DA34245A1D6BA072436928FDA972D ] SOHDms C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
10:16:13.0211 0x1550 SOHDms - ok
10:16:13.0227 0x1550 [ FA4AC5624B245FA03D4CCBA9C48D385E, 3125359763D34EE51EB1125217050DB29045154E76673F7CFED25B6301C7EEBE ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
10:16:13.0242 0x1550 SOHDs - ok
10:16:13.0305 0x1550 [ B312191DCBECE3C07DF9A99DE433B126, D9D9028331C703CE9B9EC75772D29BB04FE43B3A7895F8CBB3AC701CA0548F8D ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
10:16:13.0320 0x1550 spaceport - ok
10:16:13.0352 0x1550 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
10:16:13.0367 0x1550 SpbCx - ok
10:16:13.0445 0x1550 [ C03E480E63A80D73FABE28D24D3B6B47, F8C68DC63A5492587F9343158348ADD99A99AF34DC7ED29E5562EE90C0AB8F25 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
10:16:13.0461 0x1550 SpfService - ok
10:16:13.0508 0x1550 [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler C:\WINDOWS\System32\spoolsv.exe
10:16:13.0617 0x1550 Spooler - ok
10:16:13.0852 0x1550 [ F264662C057A54AA2DE41B3C7551712F, 2C123C6ACD967CDF1AD2855187CF3D8357B16A4FD9C2F18AE54CFA384165FA11 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
10:16:14.0164 0x1550 sppsvc - ok
10:16:14.0242 0x1550 [ 36B082C7A764A34FB1DC72D975870B61, 572CB632D9FDC1183F7BF8BFCBC51765C647945E0C13D1C91ADE3D0E76DF83BC ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
10:16:14.0336 0x1550 srv - ok
10:16:14.0383 0x1550 [ F5849909D4B29B4E3D4445F943E5C7E3, 3FCA1423753716FE1AFDD27EE1E13C4D779A3C976185B5C998EF1A9A39BFC186 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
10:16:14.0461 0x1550 srv2 - ok
10:16:14.0477 0x1550 [ FABC49666708EA562549E78E6FBF3191, BE1FEBFC259308B39C727915C41A67CD50720A6E2A68D148F4F2F926AED43B02 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
10:16:14.0539 0x1550 srvnet - ok
10:16:14.0586 0x1550 [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
10:16:14.0633 0x1550 SSDPSRV - ok
10:16:14.0664 0x1550 [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
10:16:14.0727 0x1550 SstpSvc - ok
10:16:14.0742 0x1550 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
10:16:14.0758 0x1550 stexstor - ok
10:16:14.0805 0x1550 [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\WINDOWS\System32\wiaservc.dll
10:16:14.0852 0x1550 stisvc - ok
10:16:14.0867 0x1550 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
10:16:14.0883 0x1550 storahci - ok
10:16:14.0898 0x1550 [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
10:16:14.0930 0x1550 storflt - ok
10:16:14.0945 0x1550 [ 0EDD1F4D470C775740625B06A60C9DD5, 94964D0A793B1C984E87095249EE383A5E669D05BA6BF9F655587887E6CE3C19 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
10:16:14.0961 0x1550 stornvme - ok
10:16:14.0992 0x1550 [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\WINDOWS\system32\storsvc.dll
10:16:15.0086 0x1550 StorSvc - ok
10:16:15.0086 0x1550 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
10:16:15.0102 0x1550 storvsc - ok
10:16:15.0133 0x1550 [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\WINDOWS\system32\svsvc.dll
10:16:15.0211 0x1550 svsvc - ok
10:16:15.0242 0x1550 [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\WINDOWS\System32\drivers\swenum.sys
10:16:15.0242 0x1550 swenum - ok
10:16:15.0305 0x1550 [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\WINDOWS\System32\swprv.dll
10:16:15.0383 0x1550 swprv - ok
10:16:15.0430 0x1550 [ AD6575A2637FF1B3C094791D1CFEC0F5, AA89886E1E86A64B6B81D9FF53FE5EA59E7F61C4F7A75E6EB0A04273C46E3576 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
10:16:15.0445 0x1550 SynTP - ok
10:16:15.0507 0x1550 [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain C:\WINDOWS\system32\sysmain.dll
10:16:15.0609 0x1550 SysMain - ok
10:16:15.0640 0x1550 [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
10:16:15.0687 0x1550 SystemEventsBroker - ok
10:16:15.0734 0x1550 [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
10:16:15.0781 0x1550 TabletInputService - ok
10:16:15.0827 0x1550 [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
10:16:15.0906 0x1550 TapiSrv - ok
10:16:16.0046 0x1550 [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
10:16:16.0187 0x1550 Tcpip - ok
10:16:16.0265 0x1550 [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:16:16.0359 0x1550 TCPIP6 - ok
10:16:16.0390 0x1550 [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
10:16:16.0421 0x1550 tcpipreg - ok
10:16:16.0452 0x1550 [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
10:16:16.0515 0x1550 tdx - ok
10:16:16.0531 0x1550 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
10:16:16.0546 0x1550 terminpt - ok
10:16:16.0593 0x1550 [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\WINDOWS\System32\termsrv.dll
10:16:16.0718 0x1550 TermService - ok
10:16:16.0749 0x1550 [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\WINDOWS\system32\themeservice.dll
10:16:16.0796 0x1550 Themes - ok
10:16:16.0828 0x1550 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\WINDOWS\system32\mmcss.dll
10:16:16.0843 0x1550 THREADORDER - ok
10:16:16.0890 0x1550 [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
10:16:16.0953 0x1550 TimeBroker - ok
10:16:16.0984 0x1550 [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
10:16:17.0015 0x1550 TPM - ok
10:16:17.0062 0x1550 [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\WINDOWS\System32\trkwks.dll
10:16:17.0109 0x1550 TrkWks - ok
10:16:17.0171 0x1550 [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
10:16:17.0218 0x1550 TrustedInstaller - ok
10:16:17.0234 0x1550 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
10:16:17.0265 0x1550 TsUsbFlt - ok
10:16:17.0281 0x1550 [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
10:16:17.0328 0x1550 TsUsbGD - ok
10:16:17.0374 0x1550 [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
10:16:17.0406 0x1550 tunnel - ok
10:16:17.0437 0x1550 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
10:16:17.0453 0x1550 uagp35 - ok
10:16:17.0468 0x1550 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
10:16:17.0484 0x1550 UASPStor - ok
10:16:17.0499 0x1550 [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
10:16:17.0515 0x1550 UCX01000 - ok
10:16:17.0562 0x1550 [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
10:16:17.0631 0x1550 udfs - ok
10:16:17.0647 0x1550 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
10:16:17.0663 0x1550 UEFI - ok
10:16:17.0678 0x1550 [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
10:16:17.0741 0x1550 UI0Detect - ok
10:16:17.0772 0x1550 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
10:16:17.0785 0x1550 uliagpkx - ok
10:16:17.0800 0x1550 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
10:16:17.0801 0x1550 umbus - ok
10:16:17.0816 0x1550 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
10:16:17.0848 0x1550 UmPass - ok
10:16:17.0895 0x1550 [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
10:16:17.0951 0x1550 UmRdpService - ok
10:16:18.0024 0x1550 [ 83C37EF0E54580BAB3497259516A9431, A5EAC7241774EF738AB3927B11091F0C1E7E987DAF936B76D129EA3E516C6733 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
10:16:18.0040 0x1550 UNS - ok
10:16:18.0086 0x1550 [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\WINDOWS\System32\upnphost.dll
10:16:18.0118 0x1550 upnphost - ok
10:16:18.0149 0x1550 [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
10:16:18.0165 0x1550 usbccgp - ok
10:16:18.0211 0x1550 [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
10:16:18.0227 0x1550 usbcir - ok
10:16:18.0258 0x1550 [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
10:16:18.0258 0x1550 usbehci - ok
10:16:18.0290 0x1550 [ CD81683F4553677B9BF5163A922153EB, 6B304B0D68B9BFF0245EC755CDAAF9DF59DF3A081727E32CB66672929F0DBC50 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
10:16:18.0337 0x1550 usbhub - ok
10:16:18.0368 0x1550 [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
10:16:18.0399 0x1550 USBHUB3 - ok
10:16:18.0415 0x1550 [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
10:16:18.0462 0x1550 usbohci - ok
10:16:18.0493 0x1550 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
10:16:18.0524 0x1550 usbprint - ok
10:16:18.0571 0x1550 [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
10:16:18.0587 0x1550 USBSTOR - ok
10:16:18.0602 0x1550 [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
10:16:18.0633 0x1550 usbuhci - ok
10:16:18.0680 0x1550 [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
10:16:18.0712 0x1550 usbvideo - ok
10:16:18.0758 0x1550 [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
10:16:18.0774 0x1550 USBXHCI - ok
10:16:18.0837 0x1550 [ 1CA1DC88D9484BCFD6C26560F397539A, 95C2AB45D4682BB4F75F1D03D57CCA944BA570EFEA06E0AB71062C6E6E7C7F4A ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
10:16:18.0852 0x1550 VAIO Event Service - ok
10:16:18.0899 0x1550 [ 0E15735307E1068F2E2169BEB1CA4CC2, BF44F28E473EBBA1910436C17FD14CF9A4DD4AD0716FFD3129D2B6F2300ADCF1 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
10:16:18.0930 0x1550 VAIO Power Management - ok
10:16:18.0946 0x1550 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\WINDOWS\system32\lsass.exe
10:16:18.0962 0x1550 VaultSvc - ok
10:16:19.0024 0x1550 [ DEBA4273293DAE85EE4BE3F433C903D7, 62254F305DDE2D14CE3ABD1FA7B2B1F1FAC3925926D73A217EF863F6D4B25FBF ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
10:16:19.0087 0x1550 VCFw - ok
10:16:19.0133 0x1550 [ 213B5C9C5D13EF583574C87EDA2F4BB5, 039BD34F4739FE4D64FCD1A7CF73F47A59C106D8EEC2C9B7B62A6E6718EDBD1C ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe
10:16:19.0149 0x1550 VCService - ok
10:16:19.0165 0x1550 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
10:16:19.0180 0x1550 vdrvroot - ok
10:16:19.0243 0x1550 [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\WINDOWS\System32\vds.exe
10:16:19.0321 0x1550 vds - ok
10:16:19.0337 0x1550 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
10:16:19.0352 0x1550 VerifierExt - ok
10:16:19.0399 0x1550 [ 8ABB4BABF59F092DF0B43778D8FD1884, 94C2100CE86448543A8DD586AD4A128AB9EB37959238D70F33EF59202270AC6C ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
10:16:19.0446 0x1550 vhdmp - ok
10:16:19.0462 0x1550 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys
10:16:19.0477 0x1550 viaide - ok
10:16:19.0493 0x1550 [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
10:16:19.0508 0x1550 vmbus - ok
10:16:19.0508 0x1550 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
10:16:19.0524 0x1550 VMBusHID - ok
10:16:19.0571 0x1550 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
10:16:19.0618 0x1550 vmicguestinterface - ok
10:16:19.0633 0x1550 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
10:16:19.0665 0x1550 vmicheartbeat - ok
10:16:19.0680 0x1550 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
10:16:19.0712 0x1550 vmickvpexchange - ok
10:16:19.0727 0x1550 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
10:16:19.0758 0x1550 vmicrdv - ok
10:16:19.0774 0x1550 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
10:16:19.0805 0x1550 vmicshutdown - ok
10:16:19.0821 0x1550 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
10:16:19.0852 0x1550 vmictimesync - ok
10:16:19.0883 0x1550 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
10:16:19.0899 0x1550 vmicvss - ok
10:16:19.0946 0x1550 [ 436E1A724E7E683F6B612D3D58F04241, 939B5EF0090DF3759295F88402FD0EA33F499DDA9F89E5D0E90D1F9AED65D491 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
10:16:19.0962 0x1550 volmgr - ok
10:16:19.0977 0x1550 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
10:16:20.0008 0x1550 volmgrx - ok
10:16:20.0024 0x1550 [ 17F7B0F2298D97F4B6C7A69511033D3D, 5BDFC225F31553786726808FB7952940FC05CA72B3977D684056F42AFAA59565 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
10:16:20.0055 0x1550 volsnap - ok
10:16:20.0087 0x1550 [ DAC438FB5FF85A9E72806E2341D5D732, B1D1EFCA8C588A6BF53CEC941CC59702C366F15C7D5943431736EC857E57C0A2 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
10:16:20.0102 0x1550 vpci - ok
10:16:20.0133 0x1550 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
10:16:20.0149 0x1550 vsmraid - ok
10:16:20.0243 0x1550 [ D0CBA7B3531CCF2ADB985856D5F92434, 7FCBBCAF1AA85DCE8D75FB38DC4848AE12E8DD913CEBBC37BCD3D0123F0A3CAB ] VSS C:\WINDOWS\system32\vssvc.exe
10:16:20.0415 0x1550 VSS - ok
10:16:20.0446 0x1550 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
10:16:20.0462 0x1550 VSTXRAID - ok
10:16:20.0587 0x1550 [ 16595E67A5AE390C70F4A482644C6D3D, 5D233199963E4970CDE93A800E4C40E675979AE255590E060391AE315D45DA71 ] VUAgent C:\Program Files\Sony\VAIO Update\vuagent.exe
10:16:20.0665 0x1550 VUAgent - ok
10:16:20.0680 0x1550 [ 71066FF95C487327E44C8AF1B72EBE8B, EA2729126B452CAE0C80D07501779D804B08E47F1217B61D53277B40869FEC25 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
10:16:20.0743 0x1550 vwifibus - ok
10:16:20.0759 0x1550 [ 29AB43937FFDA0B0FB56984226E698C6, 6A1A559964FE5D594E54988C46149969E6FFD5A8D5A6862E14648B608794CC29 ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys
10:16:20.0852 0x1550 vwififlt - ok
10:16:20.0868 0x1550 [ 8B8624A93E3F88CB923AEB05B6313227, 2856B63CD376BF2B1A9129581E7B9207588D4EAFD29A2C8D98F176FEAFDE26A9 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys
10:16:20.0899 0x1550 vwifimp - ok
10:16:20.0930 0x1550 [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\WINDOWS\system32\w32time.dll
10:16:20.0993 0x1550 W32Time - ok
10:16:21.0024 0x1550 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
10:16:21.0040 0x1550 WacomPen - ok
10:16:21.0118 0x1550 [ 841345442390953CBC8801B95D3D0540, FD4F9FD2C4C60A1A580177FFF2E9035009AC6A38E78D4236B0ED4773E3B263EE ] wbengine C:\WINDOWS\system32\wbengine.exe
10:16:21.0352 0x1550 wbengine - ok
10:16:21.0384 0x1550 [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
10:16:21.0430 0x1550 WbioSrvc - ok
10:16:21.0446 0x1550 [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
10:16:21.0477 0x1550 Wcmsvc - ok
10:16:21.0509 0x1550 [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
10:16:21.0540 0x1550 wcncsvc - ok
10:16:21.0555 0x1550 [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
10:16:21.0618 0x1550 WcsPlugInService - ok
10:16:21.0649 0x1550 [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
10:16:21.0665 0x1550 WdBoot - ok
10:16:21.0712 0x1550 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
10:16:21.0759 0x1550 Wdf01000 - ok
10:16:21.0774 0x1550 [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
10:16:21.0805 0x1550 WdFilter - ok
10:16:21.0821 0x1550 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
10:16:21.0837 0x1550 WdiServiceHost - ok
10:16:21.0837 0x1550 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
10:16:21.0852 0x1550 WdiSystemHost - ok
10:16:21.0884 0x1550 [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
10:16:21.0899 0x1550 WdNisDrv - ok
10:16:21.0930 0x1550 WdNisSvc - ok
10:16:21.0962 0x1550 [ A70CAF5EA36CBA5FCA24244306D4D5C6, 76C3E20B62B89D9699A1E817377FAD70B144B877BCC5C850A5B64CC68184D8DA ] WebClient C:\WINDOWS\System32\webclnt.dll
10:16:21.0993 0x1550 WebClient - ok
10:16:22.0024 0x1550 [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
10:16:22.0055 0x1550 Wecsvc - ok
10:16:22.0087 0x1550 [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
10:16:22.0118 0x1550 WEPHOSTSVC - ok
10:16:22.0149 0x1550 [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
10:16:22.0243 0x1550 wercplsupport - ok
10:16:22.0259 0x1550 [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\WINDOWS\System32\WerSvc.dll
10:16:22.0274 0x1550 WerSvc - ok
10:16:22.0305 0x1550 [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
10:16:22.0321 0x1550 WFPLWFS - ok
10:16:22.0352 0x1550 [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
10:16:22.0384 0x1550 WiaRpc - ok
10:16:22.0415 0x1550 [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
10:16:22.0430 0x1550 WIMMount - ok
10:16:22.0430 0x1550 WinDefend - ok
10:16:22.0493 0x1550 [ 0E70990EC2E5D2331AA5E88DB0CFB826, 79DFF565C3FCBC691E8FEB669CEC00E340FD2A2AFA4488D23A7CC63A2A98A5C1 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
10:16:22.0571 0x1550 WinHttpAutoProxySvc - ok
10:16:22.0618 0x1550 [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
10:16:22.0696 0x1550 Winmgmt - ok
10:16:22.0805 0x1550 [ 427873F889F2F508BE8BE982219CE578, CA8DCFB774BF0F747295A7A0CB46A6177DE12AD6BD58266182206C41A3C9001E ] WinRM C:\WINDOWS\system32\WsmSvc.dll
10:16:22.0977 0x1550 WinRM - ok
10:16:23.0055 0x1550 [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
10:16:23.0165 0x1550 WlanSvc - ok
10:16:23.0243 0x1550 [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
10:16:23.0352 0x1550 wlidsvc - ok
10:16:23.0415 0x1550 [ 73B8665D4C3111E4AFF871955BDEB2DB, D919425768589D6BC5806CD559599D7775BF03BABC19D406E2E8F5C35BFA6F44 ] wltrysvc C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
10:16:23.0415 0x1550 wltrysvc - detected UnsignedFile.Multi.Generic ( 1 )
10:16:23.0509 0x1550 Detect skipped due to KSN trusted
10:16:23.0509 0x1550 wltrysvc - ok
10:16:23.0540 0x1550 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
10:16:23.0556 0x1550 WmiAcpi - ok
10:16:23.0587 0x1550 [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
10:16:23.0602 0x1550 wmiApSrv - ok
10:16:23.0634 0x1550 WMPNetworkSvc - ok
10:16:23.0649 0x1550 [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\WINDOWS\system32\drivers\Wof.sys
10:16:23.0665 0x1550 Wof - ok
10:16:23.0743 0x1550 [ EDFA5CEDBE174FAAA4A09A6B297AEA42, 5998FE15462E4AD9C7B1444E5E2C17BD470DA3A5D474A0A118E02E47DADC678A ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
10:16:23.0915 0x1550 workfolderssvc - ok
10:16:23.0946 0x1550 [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
10:16:23.0962 0x1550 wpcfltr - ok
10:16:23.0993 0x1550 [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
10:16:24.0009 0x1550 WPCSvc - ok
10:16:24.0056 0x1550 [ DBDCE2378F65F0A07D4644AC103037E7, 99714F0CD31297C9831BAF04768F467F6E0BF710C859CEDCA83069226BF1A68A ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
10:16:24.0102 0x1550 WPDBusEnum - ok
10:16:24.0118 0x1550 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
10:16:24.0134 0x1550 WpdUpFltr - ok
10:16:24.0134 0x1550 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
10:16:24.0149 0x1550 ws2ifsl - ok
10:16:24.0181 0x1550 [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc C:\WINDOWS\System32\wscsvc.dll
10:16:24.0212 0x1550 wscsvc - ok
10:16:24.0227 0x1550 WSearch - ok
10:16:24.0368 0x1550 [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\WINDOWS\System32\WSService.dll
10:16:24.0524 0x1550 WSService - ok
10:16:24.0681 0x1550 [ F3F60C88A6BBC8D0C68FE5B1C91181AF, AF9A4D282CD4BB1127BC3F48AB89DC294408D96F7906553C636F37D1503CFA48 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
10:16:24.0852 0x1550 wuauserv - ok
10:16:24.0899 0x1550 [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
10:16:24.0946 0x1550 WudfPf - ok
10:16:24.0977 0x1550 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
10:16:24.0993 0x1550 WUDFRd - ok
10:16:25.0009 0x1550 [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
10:16:25.0040 0x1550 wudfsvc - ok
10:16:25.0087 0x1550 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:16:25.0102 0x1550 WUDFWpdFs - ok
10:16:25.0134 0x1550 [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
10:16:25.0196 0x1550 WwanSvc - ok
10:16:25.0227 0x1550 ================ Scan global ===============================
10:16:25.0259 0x1550 [ 3500AF0BA2EF095BF313EEB75D2366C6, C755E57B02BFA82151A182DF964349859575570EA5C3FBA81F747B8D2134A4D0 ] C:\WINDOWS\system32\basesrv.dll
10:16:25.0290 0x1550 [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
10:16:25.0321 0x1550 [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
10:16:25.0368 0x1550 [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\WINDOWS\system32\services.exe
10:16:25.0384 0x1550 [ Global ] - ok
10:16:25.0384 0x1550 ================ Scan MBR ==================================
10:16:25.0399 0x1550 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
10:16:25.0498 0x1550 \Device\Harddisk0\DR0 - ok
10:16:25.0507 0x1550 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
10:16:25.0580 0x1550 \Device\Harddisk1\DR1 - ok
10:16:25.0580 0x1550 [ 4488CF05DA3BE2BD4DBF8072212D22A5 ] \Device\Harddisk2\DR2
10:16:25.0674 0x1550 \Device\Harddisk2\DR2 - ok
10:16:25.0674 0x1550 ================ Scan VBR ==================================
10:16:25.0674 0x1550 [ 6781C8F30AB7A08BC7AF94CEE0086344 ] \Device\Harddisk0\DR0\Partition1
10:16:25.0674 0x1550 \Device\Harddisk0\DR0\Partition1 - ok
10:16:25.0705 0x1550 [ 53640AAAD0622F3D128833781CA42B3F ] \Device\Harddisk0\DR0\Partition2
10:16:25.0705 0x1550 \Device\Harddisk0\DR0\Partition2 - ok
10:16:25.0705 0x1550 [ 3511EA8789A5E34434456264C53DC25E ] \Device\Harddisk0\DR0\Partition3
10:16:25.0705 0x1550 \Device\Harddisk0\DR0\Partition3 - ok
10:16:25.0721 0x1550 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition4
10:16:25.0721 0x1550 \Device\Harddisk0\DR0\Partition4 - ok
10:16:25.0737 0x1550 [ 833DC2E47A729589C626F5AD527C265B ] \Device\Harddisk0\DR0\Partition5
10:16:25.0737 0x1550 \Device\Harddisk0\DR0\Partition5 - ok
10:16:25.0768 0x1550 [ B8AB2E3E99A0C7B75E6241DB6AAB563D ] \Device\Harddisk0\DR0\Partition6
10:16:25.0768 0x1550 \Device\Harddisk0\DR0\Partition6 - ok
10:16:25.0783 0x1550 [ 8BA350FD369DFAD8265FB4ED78A4C001 ] \Device\Harddisk0\DR0\Partition7
10:16:25.0783 0x1550 \Device\Harddisk0\DR0\Partition7 - ok
10:16:25.0799 0x1550 [ 400A4E913209DFFC52CCCA67EAECB4DC ] \Device\Harddisk0\DR0\Partition8
10:16:25.0799 0x1550 \Device\Harddisk0\DR0\Partition8 - ok
10:16:25.0815 0x1550 [ B01BCAB3C449C7EB0455A13F3433CCE2 ] \Device\Harddisk1\DR1\Partition1
10:16:25.0815 0x1550 \Device\Harddisk1\DR1\Partition1 - ok
10:16:25.0815 0x1550 ================ Scan generic autorun ======================
10:16:25.0893 0x1550 [ AAA55BD633DBDB39746CC2394A04187F, 2F22135FCE51B31047A231DB9B22F9FB1F29CED67E32660B56F7FA68BBCD5235 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
10:16:25.0955 0x1550 RtHDVBg - ok
10:16:26.0315 0x1550 [ 693B9E5DF7A394D70D2AA96958854C67, F1FB4CE517DC7FB8788D991F354B7429EF756B15953C38B859FDACAFD356DC21 ] C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe
10:16:26.0737 0x1550 Broadcom Wireless Manager UI - detected UnsignedFile.Multi.Generic ( 1 )
10:16:26.0830 0x1550 Detect skipped due to KSN trusted
10:16:26.0830 0x1550 Broadcom Wireless Manager UI - ok
10:16:26.0893 0x1550 [ 5018884304BC23A3870F6BF92B840FD0, 66C105881A3F1A83654E53A71E047AF82C587458C437EB6851EB57A352B3FBE2 ] C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe
10:16:26.0924 0x1550 Bluetooth - ok
10:16:26.0955 0x1550 [ 8D2A1935AE10BE1E11A8C58B2F473560, BAD89C2E6231C950D345FC8FD4E128136B5520C8429E101A79A64BAFC9DE0EB2 ] C:\WINDOWS\system32\igfxtray.exe
10:16:26.0971 0x1550 IgfxTray - ok
10:16:26.0971 0x1550 HotKeysCmds - ok
10:16:26.0971 0x1550 Persistence - ok
10:16:26.0987 0x1550 SynTPEnh - ok
10:16:27.0034 0x1550 [ FE821F6FA60E9DF9FDEE69A23488BBAB, 98D9926152FDA45705F5E208D7236E467CAEEF83D756A14B4104EBF804644B29 ] c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
10:16:27.0080 0x1550 Adobe ARM - ok
10:16:27.0143 0x1550 [ 49CD8D25D932C5BF867EBFF00D432B75, D107F7736AC8D43CE93ABDE1A8038D8FE87779F25F41B3FD1E942DF439581236 ] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
10:16:27.0159 0x1550 Intel AppUp(R) center - ok
10:16:27.0159 0x1550 Waiting for KSN requests completion. In queue: 130
10:16:28.0164 0x1550 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x61100 ( enabled : updated )
10:16:28.0226 0x1550 Win FW state via NFP2: enabled ( trusted )
10:16:28.0336 0x1550 ============================================================
10:16:28.0336 0x1550 Scan finished
10:16:28.0336 0x1550 ============================================================
10:16:28.0336 0x161c Detected object count: 1
10:16:28.0336 0x161c Actual detected object count: 1
10:17:22.0382 0x161c chip1click ( UnsignedFile.Multi.Generic ) - skipped by user
10:17:22.0382 0x161c chip1click ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
07.12.2016, 11:10
| #9 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Unidentifizierter Virusbefall Rechner rebooten und MBAR nochmal probieren
__________________ Logfiles bitte immer in CODE-Tags posten |
|
10.12.2016, 20:34
| #10 |
| | Unidentifizierter VirusbefallCode:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.12.07.09
rootkit: v2016.11.20.01
Windows 8.1 x64 NTFS
Internet Explorer 11.0.9600.18525
Lotte :: VAIO [administrator]
07.12.2016 19:05:14
mbar-log-2016-12-07 (19-05-14).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 322091
Time elapsed: 18 minute(s), 15 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
10.12.2016, 21:13
| #11 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Unidentifizierter Virusbefall Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
10.12.2016, 21:58
| #12 |
| | Unidentifizierter VirusbefallCode:
ATTFilter # AdwCleaner v6.040 - Bericht erstellt am 10/12/2016 um 21:49:44
# Aktualisiert am 02/12/2016 von Malwarebytes
# Datenbank : 2016-12-02.1 [Lokal]
# Betriebssystem : Windows 8.1 (X64)
# Benutzername : Lotte - VAIO
# Gestartet von : C:\Users\Lotte\Desktop\AdwCleaner_6.040.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
[-] Datei gelöscht: C:\Users\Public\Desktop\eBay.lnk
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
***** [ Browser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1279 Bytes] - [10/12/2016 21:49:44]
C:\AdwCleaner\AdwCleaner[S0].txt - [1555 Bytes] - [10/12/2016 21:48:43]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1425 Bytes] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 8.1 x64
Ran by Lotte (Administrator) on 10.12.2016 at 21:52:28,62
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 10.12.2016 at 21:53:48,11
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 |
|
11.12.2016, 14:14
| #13 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Unidentifizierter Virusbefall Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken
__________________ Logfiles bitte immer in CODE-Tags posten |
|
11.12.2016, 18:37
| #14 |
| | Unidentifizierter Virusbefall FRST Teil 1: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2016
durchgeführt von Lotte (Administrator) auf VAIO (11-12-2016 18:29:22)
Gestartet von F:\
Geladene Profile: Lotte (Verfügbare Profile: Lotte)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: IE)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\BCMWLTRY.EXE
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\livecomm.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-11] (Realtek Semiconductor)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [10590208 2013-03-14] (Broadcom Corporation)
HKLM\...\Run: [Bluetooth] => C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe [526704 2012-12-14] (Broadcom Corporation.)
HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe"
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3039984 2013-03-14] (Synaptics Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-02-19] (Intel Corporation)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1A46D567-875B-45A4-98FE-CAF331EF188B}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{A3513364-028E-42DF-837F-A15CF72021FD}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sony13.msn.com/
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\S-1-5-21-927612283-1200829413-3393210303-1001 -> {48235808-A77B-491C-A5F9-4BC1D50B3D36} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-&_nkw={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-19] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-19] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-19] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-19] (Oracle Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Lotte\AppData\Roaming\Mozilla\Firefox\Profiles\d4gtqdy3.default-1480958885914 [2016-12-10]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
FF Plugin: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\system32\npDeployJava1.dll [2013-12-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-12-19] (Oracle Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin-x32: Adobe Reader -> c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-927612283-1200829413-3393210303-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [2013-02-19] (Intel)
FF Plugin HKU\S-1-5-21-927612283-1200829413-3393210303-1001: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll [2013-02-19] (Intel)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2227992 2013-01-23] (Broadcom Corporation.)
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-10-27] (Chip Digital GmbH) [Datei ist nicht signiert]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129824 2013-01-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166688 2013-01-23] (Intel Corporation)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [639576 2013-05-10] (Sony Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2013-01-06] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1656600 2016-03-31] (Sony Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2016-11-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2016-11-12] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [6070272 2013-03-14] (Broadcom Corporation) [Datei ist nicht signiert]
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [169240 2013-01-23] (Broadcom Corporation.)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [8469680 2016-11-05] (Broadcom Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-03-14] (Synaptics Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44560 2016-11-12] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [270168 2016-11-12] (Microsoft Corporation)
R2 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2016-11-12] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-12-10 21:52 - 2016-12-10 21:36 - 01631928 _____ (Malwarebytes) C:\Users\Lotte\Desktop\JRT.exe
2016-12-10 21:44 - 2016-12-10 21:49 - 00000000 ____D C:\AdwCleaner
2016-12-10 21:43 - 2016-12-10 21:36 - 03968464 _____ C:\Users\Lotte\Desktop\AdwCleaner_6.040.exe
2016-12-07 19:04 - 2016-12-07 19:25 - 00000000 ____D C:\Users\Lotte\Downloads\mbar
2016-12-07 18:09 - 2016-12-07 19:25 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-12-06 17:03 - 2016-12-06 17:03 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Lotte\Desktop\mbar-1.09.3.1001.exe
2016-12-06 16:54 - 2016-12-10 21:37 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-12-06 16:54 - 2016-12-06 16:54 - 00001114 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-12-06 16:54 - 2016-12-06 16:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-12-06 16:54 - 2016-12-06 16:54 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-12-06 16:54 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-12-06 16:54 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-12-06 16:53 - 2016-12-11 18:23 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-12-06 16:51 - 2016-12-06 16:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-12-06 16:40 - 2016-12-06 16:40 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Lotte\Downloads\mbar-1.09.3.1001.exe
2016-12-06 16:33 - 2016-12-06 16:33 - 00000000 ____D C:\Users\Lotte\Downloads\Neuer Ordner
2016-12-05 18:31 - 2016-10-28 02:22 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-11-30 14:52 - 2016-12-11 18:29 - 00000000 ____D C:\FRST
2016-11-30 13:12 - 2016-12-10 21:45 - 00000000 ____D C:\Users\Lotte\AppData\LocalLow\Mozilla
2016-11-30 13:11 - 2016-12-07 10:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-30 13:11 - 2016-11-30 13:11 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-30 13:07 - 2016-11-30 13:07 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-30 13:05 - 2016-10-28 22:04 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-11-30 13:05 - 2016-10-28 22:04 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-13 21:39 - 2015-07-30 15:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 21:39 - 2015-07-30 14:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-13 21:18 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-11-13 21:18 - 2014-04-16 00:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-11-13 20:37 - 2016-06-10 19:11 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-11-13 20:37 - 2016-06-10 19:11 - 01487992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-11-13 20:37 - 2016-04-06 19:17 - 18825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-11-13 20:37 - 2016-04-06 17:25 - 15158272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-11-13 20:36 - 2016-06-18 21:06 - 00590688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-11-13 20:36 - 2016-06-18 21:06 - 00072408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2016-11-13 20:36 - 2016-06-11 20:52 - 00379232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-11-13 20:36 - 2016-06-11 20:52 - 00057184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-11-13 20:36 - 2016-06-11 19:05 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2016-11-13 20:36 - 2016-06-11 18:14 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpresult.exe
2016-11-13 20:36 - 2016-06-11 17:50 - 00987136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-11-13 20:36 - 2016-06-11 17:46 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2016-11-13 20:36 - 2016-06-11 17:44 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-11-13 20:36 - 2016-06-11 17:37 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-11-13 20:36 - 2016-06-11 17:24 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-11-13 20:36 - 2016-06-11 17:20 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-11-13 20:36 - 2016-06-11 17:16 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-11-13 20:36 - 2016-06-10 21:07 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-13 20:36 - 2016-06-10 19:11 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-11-13 20:36 - 2016-06-10 19:11 - 00125024 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2016-11-13 20:36 - 2016-06-10 19:10 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2016-11-13 20:36 - 2016-06-10 19:07 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-13 20:36 - 2016-06-09 20:32 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-11-13 20:36 - 2016-06-09 19:18 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-11-13 20:36 - 2016-06-07 19:10 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\hbaapi.dll
2016-11-13 20:36 - 2016-06-07 18:13 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hbaapi.dll
2016-11-13 20:36 - 2016-06-04 01:38 - 01613528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-11-13 20:36 - 2016-06-04 01:37 - 01970968 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-11-13 20:36 - 2016-05-18 22:54 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2016-11-13 20:36 - 2016-05-18 22:15 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2016-11-13 20:36 - 2016-05-18 21:56 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2016-11-13 20:36 - 2016-05-18 21:33 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2016-11-13 20:36 - 2016-05-18 21:28 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-11-13 20:36 - 2016-05-18 21:16 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-11-13 20:36 - 2016-05-14 21:26 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-11-13 20:36 - 2016-05-14 06:19 - 01134768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-11-13 20:36 - 2016-05-14 00:08 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-11-13 20:36 - 2016-05-14 00:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-11-13 20:36 - 2016-05-14 00:08 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-11-13 20:36 - 2016-05-13 23:24 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-11-13 20:36 - 2016-05-13 22:42 - 03667968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-11-13 20:36 - 2016-05-13 22:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-11-13 20:36 - 2016-05-13 22:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-11-13 20:36 - 2016-05-13 22:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-11-13 20:36 - 2016-05-13 22:27 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-11-13 20:36 - 2016-05-13 22:26 - 02230784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-11-13 20:36 - 2016-05-13 22:26 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-11-13 20:36 - 2016-05-13 22:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-11-13 20:36 - 2016-05-13 22:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-11-13 20:36 - 2016-05-13 22:16 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-11-13 20:36 - 2016-05-13 22:16 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-11-13 20:36 - 2016-05-12 19:36 - 00034600 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2016-11-13 20:36 - 2016-05-12 18:39 - 00030984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2016-11-13 20:36 - 2016-05-06 22:59 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-11-13 20:36 - 2016-05-05 18:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2016-11-13 20:36 - 2016-05-05 18:02 - 03320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-11-13 20:36 - 2016-05-05 17:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2016-11-13 20:36 - 2016-05-05 17:29 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-11-13 20:36 - 2016-04-09 23:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-11-13 20:36 - 2016-04-09 23:14 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2016-11-13 20:36 - 2016-04-09 23:10 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-11-13 20:36 - 2016-04-09 23:09 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-11-13 20:36 - 2016-04-09 23:02 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2016-11-13 20:36 - 2016-04-09 22:59 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Geolocation.dll
2016-11-13 20:36 - 2016-04-09 22:59 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-11-13 20:36 - 2016-04-09 22:56 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-11-13 20:36 - 2016-04-09 22:55 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-11-13 20:36 - 2016-04-09 22:52 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2016-11-13 20:36 - 2016-04-07 17:06 - 00927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-11-13 20:36 - 2016-04-06 22:21 - 00114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-11-13 20:36 - 2016-04-06 19:20 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-11-13 20:36 - 2016-04-05 23:37 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-11-13 20:36 - 2016-04-02 14:58 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-11-13 20:36 - 2016-04-01 18:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-11-13 20:36 - 2016-04-01 17:53 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-11-13 20:36 - 2016-04-01 17:50 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-11-13 20:36 - 2016-02-04 17:57 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-11-13 20:36 - 2016-02-04 17:49 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-11-13 20:36 - 2016-02-04 17:39 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-11-13 20:34 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-11-13 20:34 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-11-13 20:33 - 2016-07-12 15:08 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-11-13 20:33 - 2016-07-09 17:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-11-13 20:33 - 2016-07-08 23:35 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-11-13 20:33 - 2016-07-08 15:17 - 00377344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-11-13 20:33 - 2016-07-08 15:17 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-11-13 20:33 - 2016-07-07 23:32 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2016-11-13 20:33 - 2016-07-07 23:18 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2016-11-13 20:33 - 2016-07-07 23:10 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-11-13 20:33 - 2016-07-07 23:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2016-11-13 20:33 - 2016-07-07 22:04 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2016-11-13 20:33 - 2016-07-07 21:59 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-11-13 20:33 - 2016-07-07 21:44 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-11-13 20:33 - 2016-07-07 21:41 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-11-13 20:33 - 2016-07-07 21:34 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-11-13 20:33 - 2016-07-07 21:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-11-13 20:33 - 2016-07-07 21:29 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-11-13 20:33 - 2016-07-07 21:23 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2016-11-13 20:33 - 2016-07-07 21:18 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-11-13 20:33 - 2016-07-07 21:11 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2016-11-13 20:33 - 2016-07-07 20:35 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2016-11-13 20:33 - 2016-07-07 20:14 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-11-13 20:33 - 2016-07-04 06:09 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-13 20:33 - 2016-07-04 04:45 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2016-11-13 20:33 - 2016-07-04 04:33 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-11-13 20:33 - 2016-07-04 04:02 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-11-13 20:33 - 2016-07-04 03:19 - 03547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-13 20:33 - 2016-07-01 21:39 - 00197352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssenh.dll
2016-11-13 20:33 - 2016-07-01 21:39 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dssenh.dll
2016-11-13 20:33 - 2016-01-10 18:08 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-11-13 20:33 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2016-11-13 20:32 - 2016-08-27 20:44 - 22360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-13 20:32 - 2016-08-27 20:44 - 02755504 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-13 20:32 - 2016-08-27 20:44 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2016-11-13 20:32 - 2016-08-27 19:26 - 19789232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-13 20:32 - 2016-08-27 19:26 - 02411048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-13 20:32 - 2016-08-27 19:26 - 00113656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2016-11-13 20:32 - 2016-08-27 17:09 - 14466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-13 20:32 - 2016-08-27 16:55 - 12879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-13 20:32 - 2015-05-12 14:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-11-13 20:09 - 2016-12-11 18:16 - 00000000 __SHD C:\Users\Lotte\IntelGraphicsProfiles
2016-11-13 20:09 - 2016-11-13 20:09 - 00001450 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-11-13 20:09 - 2016-11-13 20:09 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-11-13 20:09 - 2016-11-13 20:09 - 00000020 ___SH C:\Users\Lotte\ntuser.ini
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-11-13 00:57 - 2016-11-13 00:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-11-13 00:56 - 2016-11-13 00:56 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-11-13 00:43 - 2016-11-13 00:43 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-13 00:40 - 2016-11-13 00:40 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-11-13 00:38 - 2016-12-07 10:08 - 00000000 ____D C:\Users\Lotte
2016-11-13 00:38 - 2016-11-13 00:56 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2016-11-13 00:38 - 2016-11-13 00:56 - 00020958 _____ C:\WINDOWS\diagerr.xml
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Vorlagen
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Startmenü
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Netzwerkumgebung
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Lokale Einstellungen
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Eigene Dateien
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Druckumgebung
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Videos
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Musik
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Documents\Eigene Bilder
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Local\Verlauf
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\AppData\Local\Anwendungsdaten
2016-11-13 00:38 - 2016-11-13 00:38 - 00000000 _SHDL C:\Users\Lotte\Anwendungsdaten
2016-11-13 00:38 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-11-13 00:38 - 2014-11-21 04:42 - 00000369 _____ C:\Users\Lotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-11-13 00:29 - 2016-11-13 00:41 - 00000000 ____D C:\Program Files (x86)\Intel
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-13 00:29 - 2016-11-13 00:29 - 00000000 ____D C:\Program Files\Realtek
2016-11-13 00:29 - 2015-08-27 18:20 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-13 00:29 - 2015-08-27 18:20 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-13 00:28 - 2016-11-13 00:28 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2016-11-13 00:28 - 2016-11-13 00:28 - 00000000 ____D C:\Program Files\Synaptics
2016-11-13 00:24 - 2016-11-13 20:09 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-13 00:21 - 2016-11-13 00:21 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-11-13 00:21 - 2016-11-13 00:21 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-11-13 00:20 - 2016-11-13 00:20 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2016-11-13 00:20 - 2016-11-13 00:20 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2016-11-13 00:20 - 2016-11-13 00:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2016-11-13 00:20 - 2016-11-13 00:20 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-11-13 00:20 - 2016-11-13 00:20 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-11-13 00:20 - 2016-11-13 00:20 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-11-13 00:19 - 2016-11-13 00:19 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-11-13 00:19 - 2016-11-13 00:19 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpsapi.dll
2016-11-13 00:19 - 2016-11-13 00:19 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpsapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02745184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02528784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02450240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02447136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 02334104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 02324744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01798480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01484888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01288128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01210200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01115640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 01037680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 01010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00914672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00850680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00736256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00735496 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00700360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00629600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00557856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00492736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00463776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00299080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-11-13 00:18 - 2016-11-13 00:18 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00274280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00248432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00246856 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-11-13 00:18 - 2016-11-13 00:18 - 00244296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00229272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00203016 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00184912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00183856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00177712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00148752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00110544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-11-13 00:18 - 2016-11-13 00:18 - 00090904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00090392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00081032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-11-13 00:18 - 2016-11-13 00:18 - 00076936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2016-11-13 00:17 - 2016-11-13 00:17 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2016-11-13 00:17 - 2016-11-13 00:17 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-11-13 00:17 - 2016-11-13 00:17 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2016-11-13 00:17 - 2016-11-13 00:17 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 25763328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 20304896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 15431168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 15257088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 13654016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 13317120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-11-13 00:16 - 2016-11-13 00:16 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-11-13 00:16 - 2016-11-13 00:16 - 07444312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 06047744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 04608000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 03754496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02920448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02463744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02315496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02287616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 02131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-13 00:16 - 2016-11-13 00:16 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-13 00:16 - 2016-11-13 00:16 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01946176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01754112 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01663184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-13 00:16 - 2016-11-13 00:16 - 01660040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01560064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01523208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01490112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-13 00:16 - 2016-11-13 00:16 - 01445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01377792 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01358952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 01317888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01124376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00921944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-13 00:16 - 2016-11-13 00:16 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-11-13 00:16 - 2016-11-13 00:16 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00497448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-13 00:16 - 2016-11-13 00:16 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00444248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00420184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2016-11-13 00:16 - 2016-11-13 00:16 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00399776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-11-13 00:16 - 2016-11-13 00:16 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00377176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2016-11-13 00:16 - 2016-11-13 00:16 - 00333656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00275800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00162850 _____ C:\WINDOWS\SysWOW64\C_932.NLS
2016-11-13 00:16 - 2016-11-13 00:16 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-11-13 00:16 - 2016-11-13 00:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiexe.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00121176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\parport.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2016-11-13 00:16 - 2016-11-13 00:16 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsidsc.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2016-11-13 00:16 - 2016-11-13 00:16 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsidsc.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-13 00:16 - 2016-11-13 00:16 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifibus.sys
2016-11-13 00:16 - 2016-11-13 00:16 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serenum.sys
2016-11-13 00:13 - 2016-11-13 00:13 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2016-11-13 00:13 - 2016-11-13 00:13 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2016-11-13 00:13 - 2016-11-13 00:13 - 00099672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 02466136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-11-13 00:12 - 2016-11-13 00:12 - 00160160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2016-11-13 00:12 - 2016-11-13 00:12 - 00121912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2016-11-13 00:12 - 2016-11-13 00:12 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2016-11-13 00:12 - 2016-11-13 00:12 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-11-13 00:12 - 2016-11-13 00:12 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01379040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2016-11-13 00:11 - 2016-11-13 00:11 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-11-13 00:10 - 2016-11-13 00:10 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-11-13 00:10 - 2016-11-13 00:10 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-11-13 00:10 - 2016-11-13 00:10 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2016-11-13 00:09 - 2016-11-13 00:09 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-13 00:09 - 2016-11-13 00:09 - 00513480 _____ C:\WINDOWS\system32\locale.nls
Code:
ATTFilter 2016-11-13 00:09 - 2016-11-13 00:09 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-11-13 00:09 - 2016-11-13 00:09 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2016-11-13 00:08 - 2016-11-13 00:08 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2016-11-13 00:08 - 2016-11-13 00:08 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2016-11-13 00:08 - 2016-11-13 00:08 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-11-13 00:08 - 2016-11-13 00:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-11-13 00:08 - 2016-11-13 00:08 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2016-11-13 00:07 - 2016-11-13 00:07 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsparse.dll
2016-11-13 00:07 - 2016-11-13 00:07 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsparse.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2016-11-13 00:06 - 2016-11-13 00:06 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2016-11-13 00:06 - 2016-11-13 00:06 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2016-11-13 00:06 - 2016-11-13 00:06 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 01763376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 01489088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00179248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-11-13 00:05 - 2016-11-13 00:05 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-11-13 00:05 - 2016-11-13 00:05 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 01549144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00993632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00987848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2016-11-13 00:04 - 2016-11-13 00:04 - 00690016 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-11-13 00:04 - 2016-11-13 00:04 - 00484552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-11-13 00:04 - 2016-11-13 00:04 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-11-13 00:04 - 2016-11-13 00:04 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00952928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00786152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00470360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2016-11-13 00:03 - 2016-11-13 00:03 - 00218448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00192120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-11-13 00:03 - 2016-11-13 00:03 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2016-11-13 00:02 - 2016-11-13 00:02 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-11-13 00:02 - 2016-11-13 00:02 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-11-13 00:02 - 2016-11-13 00:02 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-11-13 00:02 - 2016-11-13 00:02 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2016-11-13 00:01 - 2016-11-13 00:01 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-11-13 00:01 - 2016-11-13 00:01 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 02609152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 02170880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-11-13 00:00 - 2016-11-13 00:00 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2016-11-13 00:00 - 2016-11-13 00:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 07795712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 07076864 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 05273600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 05268480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 03120640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02712576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02592256 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01348096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 01197056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-11-12 23:59 - 2016-11-12 23:59 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00273264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-11-12 23:59 - 2016-11-12 23:59 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-11-12 23:59 - 2016-11-12 23:59 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01673728 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01541248 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 01376768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00685432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00563024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00397232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00340880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00292696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-11-12 23:58 - 2016-11-12 23:58 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00243032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-11-12 23:58 - 2016-11-12 23:58 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-11-12 23:58 - 2016-11-12 23:58 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00137976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00120384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00107984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-11-12 23:58 - 2016-11-12 23:58 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-11-12 23:57 - 2016-11-12 23:57 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2016-11-12 23:57 - 2016-11-12 23:57 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01501488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01360896 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 01307328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00738096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00613624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-11-12 23:56 - 2016-11-12 23:56 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2016-11-12 23:56 - 2016-11-12 23:56 - 00135336 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2016-11-12 23:56 - 2016-11-12 23:56 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 02175008 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-11-12 23:55 - 2016-11-12 23:55 - 01063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00548024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00468824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-11-12 23:55 - 2016-11-12 23:55 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-11-12 23:55 - 2016-11-12 23:55 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-11-12 23:55 - 2016-11-12 23:55 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00270168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2016-11-12 23:54 - 2016-11-12 23:54 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2016-11-12 23:54 - 2016-11-12 23:54 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2016-11-12 23:54 - 2016-11-12 23:54 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00803176 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00611576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00462168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00443224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00183368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-11-12 23:53 - 2016-11-12 23:53 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00091992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00072024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00027992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-11-12 23:53 - 2016-11-12 23:53 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2016-11-12 23:53 - 2016-11-12 23:53 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 02017624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-12 23:52 - 2016-11-12 23:52 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2016-11-12 23:52 - 2016-11-12 23:52 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2016-11-12 23:52 - 2016-11-12 23:52 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-11-12 23:52 - 2016-11-12 23:52 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2016-11-12 23:50 - 2016-11-12 23:50 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-11-12 23:50 - 2016-11-12 23:50 - 00074584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2016-11-12 23:50 - 2016-11-12 23:50 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 01455104 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-11-12 23:49 - 2016-11-12 23:49 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2016-11-12 23:49 - 2016-11-12 23:49 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2016-11-12 23:49 - 2016-11-12 23:49 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2016-11-12 23:47 - 2016-11-12 23:47 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2016-11-12 23:47 - 2016-11-12 23:47 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2016-11-12 23:47 - 2016-11-12 23:47 - 00316760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01482240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-11-12 23:46 - 2016-11-12 23:46 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-11-12 23:46 - 2016-11-12 23:46 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2016-11-12 23:45 - 2016-11-12 23:45 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2016-11-12 23:44 - 2016-11-12 23:44 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2016-11-12 23:44 - 2016-11-12 23:44 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2016-11-12 23:44 - 2016-11-12 23:44 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files\MSBuild
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-11-12 23:42 - 2016-11-12 23:42 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-12 23:41 - 2016-11-12 23:41 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2016-11-12 23:41 - 2016-11-12 23:41 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2016-11-12 23:41 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-11-12 23:41 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-12-11 18:27 - 2014-11-21 04:35 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-11 18:27 - 2014-11-21 03:45 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2016-12-11 18:27 - 2014-11-21 03:45 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2016-12-11 18:27 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-12-11 18:16 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-07 22:29 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-12-07 10:26 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-12-07 10:23 - 2016-11-05 22:19 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-927612283-1200829413-3393210303-1001
2016-12-07 10:07 - 2016-11-05 09:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-06 17:13 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-06 16:28 - 2016-11-05 09:35 - 00000000 ____D C:\Program Files (x86)\Avira
2016-12-05 18:31 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-12-05 18:21 - 2013-12-19 11:09 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-30 15:15 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-30 13:16 - 2016-11-05 09:25 - 00000000 ____D C:\Update
2016-11-30 13:03 - 2016-11-06 21:22 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\setup
2016-11-13 22:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-11-13 22:06 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-11-13 21:28 - 2016-11-05 23:59 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-13 21:23 - 2016-11-05 23:59 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-13 21:12 - 2013-12-19 11:23 - 00000000 ____D C:\ProgramData\Sony Corporation
2016-11-13 21:11 - 2016-11-05 09:19 - 00000000 ____D C:\Users\Lotte\AppData\Roaming\Sony Corporation
2016-11-13 21:10 - 2013-08-22 16:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-13 20:16 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-13 20:11 - 2016-11-05 09:18 - 00000000 ____D C:\Users\Lotte\AppData\Local\Packages
2016-11-13 00:57 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2016-11-13 00:57 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2016-11-13 00:54 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2016-11-13 00:53 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-13 00:46 - 2013-08-22 15:44 - 00382744 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-13 00:45 - 2016-11-05 22:25 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2016-11-13 00:45 - 2016-11-05 10:04 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.3
2016-11-13 00:45 - 2016-11-05 09:19 - 00000000 ____D C:\WINDOWS\SysWOW64\VAIO Startup Setting Tool
2016-11-13 00:45 - 2013-12-19 11:50 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-13 00:45 - 2013-12-19 11:45 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2016-11-13 00:45 - 2013-12-19 11:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel AppUp(R) center
2016-11-13 00:45 - 2013-12-19 11:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD
2016-11-13 00:45 - 2013-12-19 11:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayMemories Home
2016-11-13 00:45 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-11-13 00:43 - 2014-11-21 03:45 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-11-13 00:43 - 2013-12-19 11:19 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-11-13 00:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2016-11-13 00:43 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2016-11-13 00:43 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-13 00:43 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2016-11-13 00:42 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Resources
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2016-11-13 00:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2016-11-13 00:41 - 2016-11-05 22:30 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Main
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-11-13 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-13 00:41 - 2012-08-03 03:25 - 00000000 ____D C:\ProgramData\PRICache
2016-11-13 00:41 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal
2016-11-13 00:24 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2016-11-13 00:21 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-13 00:17 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-11-13 00:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2016-11-12 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2016-11-12 23:54 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-11-12 23:44 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-11-12 22:44 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-11-13 00:29 - 2016-11-13 00:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Lotte\AppData\Local\Temp\libeay32.dll
C:\Users\Lotte\AppData\Local\Temp\msvcr120.dll
C:\Users\Lotte\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-11-30 15:07
==================== Ende von FRST.txt ============================
|
|
11.12.2016, 18:40
| #15 |
| | Unidentifizierter Virusbefall Addition Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 07-12-2016
durchgeführt von Lotte (11-12-2016 18:30:55)
Gestartet von F:\
Windows 8.1 (Update) (X64) (2016-11-13 19:09:12)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-927612283-1200829413-3393210303-500 - Administrator - Disabled)
Gast (S-1-5-21-927612283-1200829413-3393210303-501 - Limited - Disabled)
Lotte (S-1-5-21-927612283-1200829413-3393210303-1001 - Administrator - Enabled) => C:\Users\Lotte
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Reader XI MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Azteca (x32 Version: 2.2.0.97 - WildTangent) Hidden
Behind The Reflection 2: Witch's Revenge (x32 Version: 3.0.2.32 - WildTangent) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.223.181 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\{4CDA59B9-7AD3-4283-9F5C-BC469FF975B6}) (Version: 6.30.59.125 - Broadcom Corporation)
Build-a-lot: On Vacation (x32 Version: 2.2.0.110 - WildTangent) Hidden
chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cut the Rope (x32 Version: 3.0.2.38 - WildTangent) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.2529 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.6201.52 - CyberLink Corp.)
Einstellungen für VAIO Media Server (HKLM\...\{62A172B2-550E-499D-9A82-5190D18390AA}) (Version: 1.1.0.02220 - Sony Corporation)
Enchanted Cavern 2 (x32 Version: 2.2.0.110 - WildTangent) Hidden
ESDL (x32 Version: 1.0.0 - Sony Corporation) Hidden
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Heroes of Hellas 3: Athens (x32 Version: 3.0.2.32 - WildTangent) Hidden
Intel AppUp(R) center (HKLM-x32\...\Intel AppUp(R) center 41800) (Version: 3.8.0.41800.66 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) PROSet/Wireless NFC-Software (HKLM\...\Intel(R) PROSet/Wireless NFC-Software) (Version: 1.0.1.003 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 7 Update 13 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417013FF}) (Version: 7.0.130 - Oracle)
Java 7 Update 13 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217013FF}) (Version: 7.0.130 - Oracle)
Luxor HD (x32 Version: 2.2.0.110 - WildTangent) Hidden
Mahjongg Artifacts (x32 Version: 2.2.0.110 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mozilla Firefox 50.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.0.2 (x86 de)) (Version: 50.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.2.6177 - Mozilla)
Mozilla Thunderbird 45.4.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.4.0 (x86 de)) (Version: 45.4.0 - Mozilla)
My Kingdom for the Princess 3 (x32 Version: 2.2.0.110 - WildTangent) Hidden
Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden
Networkx64 (Version: 1.0.0 - Sony Corporation) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{8D5FCC56-BB9F-4122-923C-71753F50F6F5}) (Version: 4.13.9783 - Apache Software Foundation)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayMemories Home (HKLM-x32\...\{1E5C7043-09C5-4974-A69F-A5271FD82BBC}) (Version: 7.0.02.14060 - Sony Corporation)
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7177 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.28135 - Realtek Semiconductor Corp.)
Remote Keyboard (x32 Version: 1.2.0.09270 - Sony Corporation) Hidden
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.4.0.1 - Synaptics Incorporated)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
VAIO - Remote-Tastatur (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.2.0.09270 - Sony Corporation)
VAIO - Remote-Tastatur mit PlayStation®3 (HKLM-x32\...\{E682702C-609C-4017-99E7-3129C163955F}) (Version: 1.2.1.05220 - Sony Corporation)
VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.4.0.15030 - Sony Corporation)
VAIO BIOS Data Transfer Utility (x32 Version: 1.0.0.02050 - Sony Corporation) Hidden
VAIO Care (HKLM\...\{404D6E7E-948E-4D2E-9540-59550AB59D4F}) (Version: 8.4.5.06026 - Sony Corporation)
VAIO Care Recovery (HKLM\...\{15B9204E-BA09-485E-8F2C-094AC0077664}) (Version: 1.1.2.13230 - Sony Corporation)
VAIO Care-Hardwarediagnose-Plugin (HKLM-x32\...\{EC153498-00E1-4C9C-89BE-81527C6750BE}) (Version: 4.11.1.11210 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 6.2.0.03070 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.11.0.13250 - Sony Corporation)
VAIO Easy Connect (x32 Version: 8.4.4.07220 - Sony Corporation) Hidden
VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 2.2.0.01230 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.2.0.01230 - Sony Corporation) Hidden
VAIO Image Optimizer (HKLM-x32\...\InstallShield_{5597C927-029A-46A7-A0C0-8DABD9891A50}) (Version: 3.3.00.10220 - Sony Corporation)
VAIO Image Optimizer (x32 Version: 3.1.00.14260 - Sony Corporation) Hidden
VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 2.2.0.01240 - Sony Corporation)
VAIO Movie Creator (HKLM-x32\...\InstallShield_{C2CC5822-32E6-4D21-88EA-DE8CED09EE2F}) (Version: 4.3.01.11140 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.1.01.15140 - Sony Corporation) Hidden
VAIO Sample Music (HKLM-x32\...\{FBEE3D44-0933-4B84-BB6A-49957F89187F}) (Version: 1.0.0.03051 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.2.0.16270 - Sony Corporation)
VAIO*CPU-Lüfterdiagnose (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.2.0.03050 - Sony Corporation)
VAIO-Support für Übertragungen (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.9.0.11060 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
Virtual Villagers 5 - New Believers (x32 Version: 3.0.2.32 - WildTangent) Hidden
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VUx64 (Version: 1.2.0 - Sony Corporation) Hidden
VUx86 (x32 Version: 1.2.0 - Sony Corporation) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.4900 - Broadcom Corporation)
WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden
WildTangent-Spiele (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AC}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)
CustomCLSID: HKU\S-1-5-21-927612283-1200829413-3393210303-1001_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AD}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {03A25EC0-E75E-4558-AC13-FD0378FAC0F8} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2016-04-25] (Sony Corporation)
Task: {0E2BAD16-BD41-46EB-BCBB-49740EF28E60} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2013-01-24] (Sony Corporation)
Task: {204CDCD8-7647-445B-8A37-A8DF44F45634} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2016-03-31] (Sony Corporation)
Task: {21A3858C-C8D4-4C25-911E-F63059C3087D} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {287B6E5F-2984-4E88-A980-5C96440A07BE} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2016-03-24] (Sony Corporation)
Task: {2A8A0E52-34CB-4F1C-B80F-4EE9D343A2E7} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {2EE8EAF3-FDE2-4A0B-8FD4-7363EE7B3F71} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2016-03-04] (Sony Corporation)
Task: {43814966-938F-4B44-9735-2176EEE8841C} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2013-01-23] (Sony Corporation)
Task: {54020D2B-8EE9-48B1-B77A-67EA816E00E8} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-03-08] (Sony Corporation)
Task: {5EC3FEAC-4E02-4C57-A39D-CA02A87B5346} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-03-08] (Sony Corporation)
Task: {62031FDF-8742-4ADA-AEF6-0EFDB420FC80} - System32\Tasks\Sony Corporation\VAIO Care\VTUsr => C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe [2016-05-30] (Sony Corporation)
Task: {6F21F9AB-11CC-433C-AF54-29D2E1E8A691} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {83B969F2-B842-4260-974F-BC363283F8E4} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {8C940F42-BD0E-44B6-8744-035734B7EF13} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {93A8D53D-9570-4411-A06A-E8334A815974} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcWeekly => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation)
Task: {9D666896-0388-42D2-8DEB-A39DB42A7B9B} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {AB91E0E8-6780-4FB2-90B7-8A3176FEFE13} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {AE6A609D-A5C9-4273-991B-3F9D4491761F} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2016-03-18] (Sony Corporation)
Task: {B109E244-289C-4E42-AEC9-04ED2B811498} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {B4740220-0EE3-4327-BEF6-86A3FE4C3D72} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {BE1E2485-37EA-44D9-A3D4-6AEB16917BC4} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {C1B32111-3E2F-4810-BE54-ACFFFE3A90DF} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
Task: {C589A061-6AA6-47F8-AC31-ECE6892967EB} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {D21378E3-8ACE-4CD8-B270-B31EAA4BC837} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {E542BE74-768B-44B9-BE1E-495C77582DAB} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {E5E9F06D-74C2-4AF4-83C7-52B9FBED48C2} - System32\Tasks\Sony Corporation\VAIO Care\VTSvc => C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe [2016-05-30] (Sony Corporation)
Task: {FD4D7BFD-4329-4E74-B551-CC6CE469FCBD} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcDaily => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2012-12-14 14:27 - 2012-12-14 14:27 - 00049520 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btwleapi.dll
2014-11-21 04:19 - 2014-11-21 04:19 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\ErrorReporting.dll
2013-12-19 11:11 - 2013-01-23 10:26 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-927612283-1200829413-3393210303-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\Sony\VAIO 13 img1 Wallpaper 1366x768.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{95225308-8D1C-494B-8325-45CE3A3B17EA}] => C:\Program Files\Sony\VAIO Care\VAIOShell.exe
FirewallRules: [{E005A6CF-CF6B-4554-BC6D-BF84294536B1}] => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
FirewallRules: [{5927AAE6-DC1E-49E7-8C10-BE80C9E482E3}] => C:\Program Files\Sony\VAIO Care\VCAdmin.exe
FirewallRules: [{62DB37CB-BF6A-4051-BBB3-E059B5A24141}] => C:\Program Files\Sony\VAIO Care\VCAgent.exe
FirewallRules: [{9930954B-B1E1-4874-B41A-75168E5B2C71}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3361260A-6546-48DE-92D9-C33998A45C4A}] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
FirewallRules: [{55F335C9-5BAB-41DF-A857-D3B20604F70B}] => C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
==================== Wiederherstellungspunkte =========================
13-11-2016 21:09:22 Removed Microsoft Office
30-11-2016 15:07:23 Windows Update
07-12-2016 18:53:47 Geplanter Prüfpunkt
10-12-2016 21:52:32 JRT Pre-Junkware Removal
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: BCM43142 Bluetooth Adapter
Description: BCM43142 Bluetooth Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (12/10/2016 08:49:27 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "select * from __InstanceModificationEvent where targetinstance isa '__ArbitratorConfiguration'" konnte im Namespace "//./root" aufgrund des Fehlers "0x80041033" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.
Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/05/2016 09:08:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/05/2016 06:49:11 PM) (Source: Intel(R) PROSet/Wireless NFC Software) (EventID: 260) (User: )
Description: HECI-MEI communication failure.
Error: (11/30/2016 03:20:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VAIO)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (11/30/2016 02:57:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DllHost.exe, Version: 6.3.9600.17415, Zeitstempel: 0x54504134
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18438, Zeitstempel: 0x57ae642e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003dd8e
ID des fehlerhaften Prozesses: 0x3b0
Startzeit der fehlerhaften Anwendung: 0x01d24b11ad392224
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\DllHost.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: eb3b83e0-b704-11e6-be7a-3423877ff934
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Systemfehler:
=============
Error: (12/11/2016 06:29:43 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Der Dienst konnte nicht gestartet werden.
Error: (12/11/2016 06:29:43 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde nicht richtig gestartet.
Error: (12/11/2016 06:16:13 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (12/11/2016 06:16:13 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (12/10/2016 10:00:20 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll
Error: (12/10/2016 09:50:47 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (12/10/2016 09:50:47 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (12/10/2016 09:50:08 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll
Error: (12/10/2016 09:50:08 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\WINDOWS\System32\bcmihvsrv64.dll
Error: (12/10/2016 09:50:01 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
Es wird bereits eine Instanz des Dienstes ausgeführt.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Pentium(R) CPU 2117U @ 1.80GHz
Prozentuale Nutzung des RAM: 20%
Installierter physikalischer RAM: 8070.8 MB
Verfügbarer physikalischer RAM: 6449.04 MB
Summe virtueller Speicher: 9350.8 MB
Verfügbarer virtueller Speicher: 7693.89 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:903.8 GB) (Free:864.79 GB) NTFS
Drive e: () (Removable) (Total:3.68 GB) (Free:3.68 GB) FAT32
Drive f: () (Removable) (Total:1.96 GB) (Free:1.9 GB) FAT
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A42C908E)
Partition: GPT.
========================================================
Disk: 1 (Size: 3.7 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 2 (Size: 2 GB) (Disk ID: 6E652072)
No partition Table on disk 2.
==================== Ende von Addition.txt ============================
|
|
| Themen zu Unidentifizierter Virusbefall |
| dateien, desktop, einzeln, erlebt, guter, ide, klicke, klicken, komplett, neue, neuen, nichts, notebook, ordner, recovery, scan, schonmal, spinnt, tab, tool, unterforum, vertauscht, virus, windowsapps, wirklich, öffnet |
Linear-Darstellung
