| |
| |||||||
Log-Analyse und Auswertung: Windows 7: Plötzlich alle Ordner und Unterordner schreibgeschützt!Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
27.12.2016, 14:43
| #1 |
 |  Windows 7: Plötzlich alle Ordner und Unterordner schreibgeschützt! Hallo erstmal  Also ich versuche mich kurz zu fassen: Seit gestern sind sämtlich Ordner und deren Unterordner auf meinem Windows 7 System schreibgeschützt. Dateien die sich in diesen Ordnern befinden sind aber nicht geschützt. Wenn ich versuche den Schreibschutz aufzuheben, aktiviert er sich von alleine wieder.  MfG kampfkevin Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 21-12-2016
durchgeführt von jones (Administrator) auf JONES-PC (27-12-2016 14:24:13)
Gestartet von D:\Desktop
Geladene Profile: jones (Verfügbare Profile: jones)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avpui.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Valve Corporation) D:\Steam\Steam.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(Wargaming.net) D:\World_of_Warships\WargamingGameUpdater.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
(Valve Corporation) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(MAXON Computer GmbH) D:\Cinema 4D R15\CINEMA 4D 64 Bit.exe
() D:\Cinema 4D R15\resource\libs\win32\qtguiagent.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [16286840 2016-08-30] (Logitech Inc.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-1883078689-1713311263-2009741731-1000\...\Run: [Steam] => D:\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation)
HKU\S-1-5-21-1883078689-1713311263-2009741731-1000\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3582240 2016-08-03] (Nota Inc.)
HKU\S-1-5-21-1883078689-1713311263-2009741731-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1883078689-1713311263-2009741731-1000\...\Run: [World of Warships] => D:\World_of_Warships\WargamingGameUpdater.exe [3134216 2016-12-05] (Wargaming.net)
HKU\S-1-5-21-1883078689-1713311263-2009741731-1000\...\MountPoints2: {5056ca8a-8348-11e6-a56c-806e6f6e6963} - E:\.\Bin\Instv2.exe
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
GroupPolicy: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{FECD1C8E-B62A-4F36-A020-C09A2FC33A23}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{FECD1C8E-B62A-4F36-A020-C09A2FC33A23}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-07] (AO Kaspersky Lab)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2016-12-03] (Microsoft Corporation)
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2016-12-07] (AO Kaspersky Lab)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-12-03] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-15] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2016-12-03] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-03] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-15] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-07] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2016-12-07] (AO Kaspersky Lab)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-03] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-03] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-03] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-03] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-03] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-03] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-03] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-03] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: w9eabcxv.default
FF ProfilePath: C:\Users\jones\AppData\Roaming\Mozilla\Firefox\Profiles\w9eabcxv.default [2016-12-27]
FF NewTab: Mozilla\Firefox\Profiles\w9eabcxv.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\w9eabcxv.default -> Search Provided by Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\w9eabcxv.default -> Search Provided by Bing
FF Homepage: Mozilla\Firefox\Profiles\w9eabcxv.default -> about:home
FF Keyword.URL: Mozilla\Firefox\Profiles\w9eabcxv.default -> user_pref("keyword.URL", true);
FF Extension: (Tails Download and Verify) - C:\Users\jones\AppData\Roaming\Mozilla\Firefox\Profiles\w9eabcxv.default\Extensions\dave@tails.boum.org.xpi [2016-12-14]
FF Extension: (BetterTTV) - C:\Users\jones\AppData\Roaming\Mozilla\Firefox\Profiles\w9eabcxv.default\Extensions\firefox@betterttv.net.xpi [2016-10-15]
FF Extension: (Hotspot Shield Free VPN Proxy – Unblock Sites) - C:\Users\jones\AppData\Roaming\Mozilla\Firefox\Profiles\w9eabcxv.default\Extensions\hotspot-shield@anchorfree.com.xpi [2016-12-25]
FF Extension: (Lightbeam) - C:\Users\jones\AppData\Roaming\Mozilla\Firefox\Profiles\w9eabcxv.default\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2016-10-30]
FF Extension: (uBlock Origin) - C:\Users\jones\AppData\Roaming\Mozilla\Firefox\Profiles\w9eabcxv.default\Extensions\uBlock0@raymondhill.net.xpi [2016-12-20]
FF SearchPlugin: C:\Users\jones\AppData\Roaming\Mozilla\Firefox\Profiles\w9eabcxv.default\searchplugins\search provided by bing.xml [2016-12-03]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2016-12-07]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-15] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-03] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-15] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-15] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-12-03] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-20] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1883078689-1713311263-2009741731-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-10-17] ()
Chrome:
=======
CHR Profile: C:\Users\jones\AppData\Local\Google\Chrome\User Data\Default [2016-12-10]
CHR Extension: (Google Präsentationen) - C:\Users\jones\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-21]
CHR Extension: (Google Docs) - C:\Users\jones\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-21]
CHR Extension: (Google Drive) - C:\Users\jones\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-21]
CHR Extension: (YouTube) - C:\Users\jones\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-21]
CHR Extension: (Google Tabellen) - C:\Users\jones\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-21]
CHR Extension: (Kaspersky Protection) - C:\Users\jones\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2016-12-10]
CHR Extension: (Google Docs Offline) - C:\Users\jones\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-10]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\jones\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-21]
CHR Extension: (Google Mail) - C:\Users\jones\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-21]
CHR Extension: (Chrome Media Router) - C:\Users\jones\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-21]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
S4 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-05-08] ()
S4 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2015-05-08] (ASUSTeK Computer Inc.)
S4 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-09-26] () [Datei ist nicht signiert]
S4 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.26\AsusFanControlService.exe [397592 2015-07-02] (ASUSTeK Computer Inc.)
S4 AsusGameFirstService; C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe [346424 2015-04-10] (ASUSTeK)
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1457160 2016-10-06] ()
S3 BstHdAndroidSvc; C:\Program Files (x86)\Bluestacks\HD-Service.exe [486936 2016-12-01] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe [470552 2016-12-01] (BlueStack Systems, Inc.)
S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\Bluestacks\HD-Plus-Service.exe [511512 2016-12-01] (BlueStack Systems, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3294912 2016-10-30] (Microsoft Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-02] (Intel Corporation)
S4 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
R2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-08-30] (Logitech Inc.)
S2 MBAMService; D:\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-01] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-11-17] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2016-12-13] (NVIDIA Corporation)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2016-12-10] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2016-12-10] (Electronic Arts)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [218248 2016-11-15] (Geek Software GmbH)
S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 VSStandardCollectorService140; C:\Visual Studio\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-09-06] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R3 AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [43064 2015-06-11] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] ()
R2 AsRamDisk; C:\Windows\System32\DRIVERS\asramdisk.sys [111416 2014-05-07] (Asus)
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation)
S3 AWEAlloc; C:\Windows\System32\DRIVERS\awealloc.sys [21304 2014-02-17] (Olof Lagerkvist)
S3 BstHdDrv; C:\Program Files (x86)\Bluestacks\HD-Hypervisor-amd64.sys [152672 2016-12-01] (BlueStack Systems)
S3 BstkDrv; C:\Program Files (x86)\Bluestacks\BstkDrv.sys [270904 2016-11-08] (Bluestack System Inc. )
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
S3 dtproscsibus; C:\Windows\System32\DRIVERS\dtproscsibus.sys [30352 2016-09-25] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [501216 2015-06-18] (Intel Corporation)
R0 FNETHYRAMAS; C:\Windows\System32\drivers\FNETHYRAMAS.SYS [45688 2016-09-25] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2016-09-25] (FNet Co., Ltd.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31144 2015-06-22] (Intel Corporation)
R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24824 2014-09-08] (ASUSTeK Computer Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [189264 2016-06-26] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [305496 2016-11-25] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1036512 2016-12-07] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [57936 2016-12-07] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [52144 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [75696 2016-05-17] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [134880 2016-12-07] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [194480 2016-06-14] (AO Kaspersky Lab)
R3 ladfGSS; C:\Windows\System32\drivers\ladfGSS.sys [45208 2016-08-30] (Logitech Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\Windows\System32\drivers\LGJoyXlCore.sys [67736 2016-08-30] (Logitech Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [172832 2015-05-08] (Intel Corporation)
R1 NFC_Driver; C:\Windows\System32\drivers\NFC_Driver.sys [48336 2015-04-10] (Titan ARC Corp.)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2016-12-13] (NVIDIA Corporation)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [50392 2015-08-13] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42064 2016-08-23] (Anchorfree Inc.)
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [132120 2016-11-21] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [206416 2016-11-21] (Oracle Corporation)
R3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2016-06-15] (SplitmediaLabs Limited)
S3 ALSysIO; \??\C:\Users\jones\AppData\Local\Temp\ALSysIO64.sys [X]
S3 NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-12-27 14:22 - 2016-12-27 14:24 - 00000000 ____D C:\FRST
2016-12-27 00:58 - 2016-12-27 00:58 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign354e97dde3ea7d29
2016-12-27 00:49 - 2016-12-27 00:49 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsigne81e82cbe043aac0
2016-12-27 00:47 - 2016-12-27 00:47 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsigndc9acc32be2c3f2d
2016-12-27 00:45 - 2016-12-27 00:45 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsignfac97c20acb4c43b
2016-12-27 00:44 - 2016-12-27 00:44 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsignf3c06d12ea8c3cff
2016-12-27 00:44 - 2016-12-27 00:44 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign91fa0ab59a8ca6c8
2016-12-27 00:44 - 2016-12-27 00:44 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign7554ccbafccb7bee
2016-12-27 00:44 - 2016-12-27 00:44 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign628bacfd18266615
2016-12-25 21:10 - 2016-12-25 21:10 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign89c849fb7aa815fc
2016-12-25 20:53 - 2016-12-25 20:53 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsignd44e0b3ae7e2743f
2016-12-25 20:53 - 2016-12-25 20:53 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign76a445c852299d41
2016-12-25 20:53 - 2016-12-25 20:53 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign1920737777514d0b
2016-12-25 20:17 - 2016-12-25 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
2016-12-25 16:48 - 2016-12-25 18:57 - 00001819 _____ C:\Users\jones\AppData\Roaming\net.telestream.gameshow.xml
2016-12-25 16:48 - 2016-12-25 16:48 - 00000101 _____ C:\Users\jones\AppData\Roaming\net.telestream.gameshow.app_user_guid.xml
2016-12-25 16:48 - 2016-12-25 16:48 - 00000000 ____D C:\Users\jones\AppData\Roaming\WirecastCache
2016-12-25 16:48 - 2016-12-25 16:48 - 00000000 ____D C:\Users\jones\AppData\Roaming\Wirecast
2016-12-25 16:48 - 2016-12-25 16:48 - 00000000 ____D C:\Users\jones\AppData\Roaming\Vara Software
2016-12-25 16:48 - 2016-12-25 16:48 - 00000000 ____D C:\Users\jones\AppData\Roaming\Gameshow
2016-12-25 16:48 - 2016-12-25 16:48 - 00000000 ____D C:\Users\jones\AppData\Local\Telestream
2016-12-25 16:48 - 2016-12-25 16:48 - 00000000 ____D C:\ProgramData\Telestream
2016-12-23 23:47 - 2016-12-23 23:47 - 00430280 _____ C:\Windows\Minidump\122316-5818-01.dmp
2016-12-22 17:18 - 2016-12-22 17:18 - 00000000 ____D C:\Users\jones\AppData\Roaming\Microsoft FxCop
2016-12-22 11:44 - 2016-12-25 00:51 - 00000000 ____D C:\Users\jones\AppData\Roaming\FileZilla
2016-12-22 11:44 - 2016-12-22 11:46 - 00000000 ____D C:\Users\jones\AppData\Local\FileZilla
2016-12-22 11:44 - 2016-12-22 11:44 - 00000000 ____D C:\Users\jones\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2016-12-22 09:44 - 2016-12-27 10:41 - 00005110 _____ C:\ProgramData\NvTelemetryContainer.log_backup1
2016-12-21 16:13 - 2016-12-12 15:36 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2016-12-21 16:12 - 2016-12-13 00:36 - 00156096 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-12-21 16:12 - 2016-12-13 00:36 - 00123840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-12-15 22:24 - 2016-12-15 22:24 - 00000000 ____D C:\Users\jones\AppData\Local\4kdownload.com
2016-12-15 22:22 - 2016-12-15 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
2016-12-15 22:22 - 2016-12-15 22:22 - 00000000 ____D C:\Program Files (x86)\4KDownload
2016-12-15 20:28 - 2016-12-15 20:28 - 00000000 ____D C:\Users\jones\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2016-12-15 18:57 - 2016-12-15 18:57 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-12-15 18:57 - 2016-12-15 18:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-12-15 18:57 - 2016-12-15 18:57 - 00000000 ____D C:\Program Files (x86)\Java
2016-12-15 18:18 - 2016-12-27 13:26 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-15 18:18 - 2016-12-15 22:24 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-12-14 18:05 - 2016-12-14 18:05 - 00000000 ____D C:\Users\jones\AppData\Roaming\MySQL
2016-12-14 15:43 - 2016-12-14 15:43 - 00000000 ____D C:\Users\jones\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Warships
2016-12-14 09:51 - 2016-11-21 19:16 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-12-14 09:51 - 2016-11-21 19:16 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-12-14 09:51 - 2016-11-21 19:12 - 01462272 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-12-14 09:51 - 2016-11-21 19:12 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-12-14 09:51 - 2016-11-21 19:12 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-12-14 09:51 - 2016-11-21 19:12 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-12-14 09:51 - 2016-11-21 19:12 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-12-14 09:51 - 2016-11-21 19:12 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-12-14 09:51 - 2016-11-21 19:12 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-12-14 09:51 - 2016-11-21 19:12 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2016-12-14 09:51 - 2016-11-21 19:12 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-12-14 09:51 - 2016-11-21 19:12 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-12-14 09:51 - 2016-11-20 17:20 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-12-14 09:51 - 2016-11-20 17:20 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-12-14 09:51 - 2016-11-20 17:20 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2016-12-14 09:51 - 2016-11-20 17:19 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-12-14 09:51 - 2016-11-20 17:19 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-12-14 09:51 - 2016-11-20 17:19 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-12-14 09:51 - 2016-11-20 16:58 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-12-14 09:51 - 2016-11-20 16:57 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-12-14 09:51 - 2016-11-20 15:07 - 00467392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-12-14 09:51 - 2016-11-17 17:41 - 00370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-12-14 09:51 - 2016-11-15 00:27 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-12-14 09:51 - 2016-11-14 23:39 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-12-14 09:51 - 2016-11-12 20:28 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-12-14 09:51 - 2016-11-12 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-12-14 09:51 - 2016-11-12 20:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-12-14 09:51 - 2016-11-12 20:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-12-14 09:51 - 2016-11-12 20:25 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-12-14 09:51 - 2016-11-12 20:21 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-12-14 09:51 - 2016-11-12 20:15 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-12-14 09:51 - 2016-11-12 20:09 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-12-14 09:51 - 2016-11-12 20:08 - 25759744 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-12-14 09:51 - 2016-11-12 20:08 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-12-14 09:51 - 2016-11-12 20:07 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-12-14 09:51 - 2016-11-12 20:07 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-12-14 09:51 - 2016-11-12 19:56 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-12-14 09:51 - 2016-11-12 19:53 - 06049280 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-12-14 09:51 - 2016-11-12 19:52 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-12-14 09:51 - 2016-11-12 19:41 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-12-14 09:51 - 2016-11-12 19:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-12-14 09:51 - 2016-11-12 19:35 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-12-14 09:51 - 2016-11-12 19:34 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-12-14 09:51 - 2016-11-12 19:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-12-14 09:51 - 2016-11-12 19:29 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-12-14 09:51 - 2016-11-12 19:29 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-12-14 09:51 - 2016-11-12 19:28 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-12-14 09:51 - 2016-11-12 19:20 - 02287616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-12-14 09:51 - 2016-11-12 19:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-12-14 09:51 - 2016-11-12 19:17 - 20302848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-12-14 09:51 - 2016-11-12 19:15 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-12-14 09:51 - 2016-11-12 19:14 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-12-14 09:51 - 2016-11-12 19:14 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-12-14 09:51 - 2016-11-12 19:14 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-12-14 09:51 - 2016-11-12 19:14 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-12-14 09:51 - 2016-11-12 19:11 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-12-14 09:51 - 2016-11-12 19:10 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-12-14 09:51 - 2016-11-12 19:08 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-12-14 09:51 - 2016-11-12 19:08 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-12-14 09:51 - 2016-11-12 19:03 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-12-14 09:51 - 2016-11-12 18:52 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-12-14 09:51 - 2016-11-12 18:51 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-12-14 09:51 - 2016-11-12 18:49 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-12-14 09:51 - 2016-11-12 18:47 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-12-14 09:51 - 2016-11-12 18:41 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-12-14 09:51 - 2016-11-12 18:40 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-12-14 09:51 - 2016-11-12 18:38 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-12-14 09:51 - 2016-11-12 18:37 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-12-14 09:51 - 2016-11-12 18:36 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-12-14 09:51 - 2016-11-12 18:36 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-12-14 09:51 - 2016-11-12 18:35 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-12-14 09:51 - 2016-11-12 18:21 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-12-14 09:51 - 2016-11-12 18:20 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-12-14 09:51 - 2016-11-12 18:11 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-12-14 09:51 - 2016-11-12 18:05 - 02444800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-12-14 09:51 - 2016-11-12 18:02 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-12-14 09:51 - 2016-11-12 18:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-12-14 09:51 - 2016-11-10 17:32 - 01009152 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-12-14 09:51 - 2016-11-10 17:19 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-12-14 09:51 - 2016-11-09 17:41 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-12-14 09:51 - 2016-11-09 17:33 - 03244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-12-14 09:51 - 2016-11-09 17:33 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-12-14 09:51 - 2016-11-09 17:33 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-12-14 09:51 - 2016-11-09 17:33 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-12-14 09:51 - 2016-11-09 17:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-12-14 09:51 - 2016-11-09 17:17 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-12-14 09:51 - 2016-11-09 17:17 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-12-14 09:51 - 2016-11-09 17:02 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-12-14 09:51 - 2016-11-09 16:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-12-14 09:51 - 2016-11-06 17:33 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-12-14 09:51 - 2016-11-06 17:16 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-12-14 09:51 - 2016-11-06 17:01 - 03219456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-12-14 09:51 - 2016-10-27 16:33 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2016-12-14 09:51 - 2016-10-27 16:20 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2016-12-14 09:51 - 2016-10-11 16:40 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-12-14 09:51 - 2016-10-11 16:37 - 05547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-12-14 09:51 - 2016-10-11 16:37 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-12-14 09:51 - 2016-10-11 16:34 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-12-14 09:51 - 2016-10-11 16:32 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-12-14 09:51 - 2016-10-11 16:32 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-12-14 09:51 - 2016-10-11 16:32 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-12-14 09:51 - 2016-10-11 16:32 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2016-12-14 09:51 - 2016-10-11 16:31 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-12-14 09:51 - 2016-10-11 16:31 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-12-14 09:51 - 2016-10-11 16:31 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-12-14 09:51 - 2016-10-11 16:24 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-12-14 09:51 - 2016-10-11 16:24 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-12-14 09:51 - 2016-10-11 16:21 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-12-14 09:51 - 2016-10-11 16:18 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-12-14 09:51 - 2016-10-11 16:18 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll
2016-12-14 09:51 - 2016-10-11 15:59 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-12-14 09:51 - 2016-10-11 15:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2016-12-14 09:51 - 2016-10-11 15:55 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-12-14 09:51 - 2016-10-11 14:18 - 00419648 _____ C:\Windows\SysWOW64\locale.nls
2016-12-14 09:51 - 2016-10-11 14:17 - 00419648 _____ C:\Windows\system32\locale.nls
2016-12-14 09:51 - 2016-10-08 14:06 - 00633296 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-12-14 09:51 - 2016-10-04 16:31 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-12-14 09:51 - 2016-10-04 16:31 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-12-14 09:51 - 2016-10-04 16:31 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-12-14 09:51 - 2016-10-04 16:31 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-12-14 09:51 - 2016-10-04 16:13 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-12-14 09:51 - 2016-10-04 16:13 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-12-14 09:50 - 2016-11-21 19:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-12-14 09:50 - 2016-11-21 19:12 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-12-14 09:50 - 2016-11-21 19:12 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-12-14 09:50 - 2016-11-21 19:12 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-12-14 09:50 - 2016-11-21 19:12 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-12-14 09:50 - 2016-11-21 19:12 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-12-14 09:50 - 2016-11-21 19:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-12-14 09:50 - 2016-11-21 19:12 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-12-14 09:50 - 2016-11-21 19:12 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-12-14 09:50 - 2016-11-21 19:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-12-14 09:50 - 2016-11-20 17:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-12-14 09:50 - 2016-11-20 17:20 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-12-14 09:50 - 2016-11-20 17:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-12-14 09:50 - 2016-11-20 17:19 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-12-14 09:50 - 2016-11-20 17:19 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-12-14 09:50 - 2016-11-20 17:19 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-12-14 09:50 - 2016-11-20 17:19 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-12-14 09:50 - 2016-11-20 17:19 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-12-14 09:50 - 2016-11-20 17:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-12-14 09:50 - 2016-11-20 17:19 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-12-14 09:50 - 2016-11-20 17:19 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-12-14 09:50 - 2016-11-20 17:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-12-14 09:50 - 2016-11-20 16:57 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-12-14 09:50 - 2016-11-20 16:57 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-12-14 09:50 - 2016-11-20 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-12-14 09:50 - 2016-11-20 16:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-12-14 09:50 - 2016-11-12 20:48 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-12-14 09:50 - 2016-11-12 20:48 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-12-14 09:50 - 2016-11-12 20:14 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-12-14 09:50 - 2016-11-12 20:08 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-12-14 09:50 - 2016-11-12 19:47 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-12-14 09:50 - 2016-11-12 19:30 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-12-14 09:50 - 2016-11-12 19:29 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-12-14 09:50 - 2016-11-12 19:27 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-12-14 09:50 - 2016-11-12 19:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-12-14 09:50 - 2016-11-12 18:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-12-14 09:50 - 2016-11-12 18:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-12-14 09:50 - 2016-11-09 17:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-12-14 09:50 - 2016-11-09 17:33 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-12-14 09:50 - 2016-11-09 17:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-12-14 09:50 - 2016-11-09 17:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-12-14 09:50 - 2016-10-11 16:32 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-12-14 09:50 - 2016-10-11 16:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-12-14 09:50 - 2016-10-11 16:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-12-14 09:50 - 2016-10-11 16:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-12-14 09:50 - 2016-10-11 16:32 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:18 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 16:03 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-12-14 09:50 - 2016-10-11 16:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-12-14 09:50 - 2016-10-11 16:03 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-12-14 09:50 - 2016-10-11 15:59 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-12-14 09:50 - 2016-10-11 15:51 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-12-14 09:50 - 2016-10-11 15:51 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-12-14 09:50 - 2016-10-11 15:51 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-12-14 09:50 - 2016-10-11 15:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-12-14 09:50 - 2016-10-11 15:50 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 15:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 15:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-12-14 09:50 - 2016-10-11 15:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-12-14 09:50 - 2016-10-04 16:13 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-12-14 09:50 - 2016-10-04 16:13 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-12-13 18:18 - 2016-12-22 16:06 - 00000000 ____D C:\Program Files\MySQL
2016-12-13 18:18 - 2016-12-13 18:18 - 00003658 _____ C:\Windows\System32\Tasks\MySQLNotifierTask
2016-12-13 18:18 - 2016-12-13 18:18 - 00000469 _____ C:\Windows\ODBCINST.INI
2016-12-13 18:18 - 2016-12-13 18:18 - 00000000 ____D C:\Users\jones\AppData\Roaming\Oracle
2016-12-13 18:18 - 2016-12-13 18:18 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2016-12-13 18:12 - 2016-12-25 16:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2016-12-13 18:12 - 2016-12-25 16:35 - 00000000 ____D C:\Program Files (x86)\MySQL
2016-12-13 18:12 - 2016-12-13 18:12 - 00000000 ____D C:\Windows\System32\Tasks\MySQL
2016-12-13 18:12 - 2016-12-13 18:12 - 00000000 ____D C:\ProgramData\MySQL
2016-12-13 15:10 - 2016-12-13 15:10 - 00000000 ____D C:\Users\jones\AppData\Local\Chromium
2016-12-12 18:35 - 2016-12-12 18:35 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2016-12-12 18:35 - 2016-12-12 18:35 - 00000000 ____D C:\Users\Default\AppData\Local\Apple
2016-12-12 18:35 - 2016-12-12 18:35 - 00000000 ____D C:\Users\Default User\AppData\Local\Apple
2016-12-12 18:35 - 2016-12-12 18:35 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-12-12 18:08 - 2016-12-12 18:10 - 00000000 ____D C:\Users\jones\AppData\LocalLow\Daybreak Game Company
2016-12-12 18:08 - 2016-12-12 18:08 - 00000000 ____D C:\Users\jones\AppData\Local\SCE
2016-12-12 18:08 - 2016-12-12 18:08 - 00000000 ____D C:\Users\jones\AppData\Local\Daybreak Game Company
2016-12-12 17:50 - 2016-12-12 17:50 - 00000000 ____D C:\Users\jones\AppData\Roaming\Apple Computer
2016-12-11 21:45 - 2016-12-12 18:35 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-12-11 21:45 - 2016-12-11 21:45 - 00000000 ____D C:\Users\jones\AppData\LocalLow\Apple Computer
2016-12-11 21:45 - 2016-12-11 21:45 - 00000000 ____D C:\Users\jones\AppData\Local\Apple
2016-12-11 21:45 - 2016-12-11 21:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2016-12-11 21:45 - 2016-12-11 21:45 - 00000000 ____D C:\ProgramData\Apple Computer
2016-12-11 21:45 - 2016-12-11 21:45 - 00000000 ____D C:\ProgramData\Apple
2016-12-11 13:28 - 2016-12-11 13:42 - 00000000 ____D C:\Users\jones\AppData\Local\Troubleshooter
2016-12-11 13:16 - 2016-12-11 13:16 - 00000000 ____D C:\Users\jones\AppData\Local\Macromedia
2016-12-11 13:10 - 2016-11-23 14:37 - 00000570 _____ C:\Users\jones\AppData\Local\TroubleshooterConfig.json
2016-12-11 13:09 - 2016-12-11 13:10 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-12-11 13:09 - 2016-12-11 13:09 - 00001636 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BlueStacks.lnk
2016-12-11 13:09 - 2016-12-11 13:09 - 00000000 ____D C:\Users\jones\AppData\Local\Bluestacks
2016-12-11 13:09 - 2016-12-11 13:09 - 00000000 ____D C:\Program Files (x86)\Bluestacks
2016-12-10 18:02 - 2016-12-10 18:02 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsignb8ae7aa56fc1fb82
2016-12-10 17:58 - 2016-12-10 17:58 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsignba25b980fad0f8bd
2016-12-10 17:58 - 2016-12-10 17:58 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign02fc446167f0ca14
2016-12-10 17:57 - 2016-12-10 17:57 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsignc08a35b36bbfbe2c
2016-12-10 17:57 - 2016-12-10 17:57 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign32a7196cf398f5e2
2016-12-10 17:57 - 2016-12-10 17:57 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign249a5aef232b417a
2016-12-09 15:00 - 2016-12-09 15:00 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-12-09 15:00 - 2016-12-01 18:04 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-12-09 15:00 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-12-09 15:00 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-12-09 15:00 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-12-09 15:00 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-12-09 14:59 - 2016-12-01 20:52 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 35222976 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 34703416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 28137920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 14055360 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-12-09 14:59 - 2016-12-01 20:52 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 10795312 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 10346208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 09151400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 08913328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 08754160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 03645496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 03206592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 01951680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437619.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437619.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 01036736 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00974272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00943552 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00895424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00683824 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00573072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00438208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00407064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00390200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00170872 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00148200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-12-09 14:59 - 2016-12-01 20:52 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-12-09 14:58 - 2016-12-13 00:36 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-12-07 12:25 - 2016-12-07 12:25 - 00001149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-12-06 20:27 - 2016-12-13 17:55 - 00000000 ____D C:\Users\jones\.VirtualBox
2016-12-06 20:27 - 2016-12-06 20:27 - 00000000 ____D C:\Users\jones\VirtualBox VMs
2016-12-06 20:26 - 2016-12-06 20:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2016-12-06 20:26 - 2016-12-06 20:26 - 00000000 ____D C:\Program Files\Oracle
2016-12-06 20:26 - 2016-11-21 17:45 - 00933088 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2016-12-06 20:26 - 2016-11-21 17:44 - 00150280 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2016-12-06 20:02 - 2016-12-06 20:02 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsignda27caeac2fc6849
2016-12-06 20:02 - 2016-12-06 20:02 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsignd11d79c13c8b7cb4
2016-12-06 20:02 - 2016-12-06 20:02 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign9131f71e0b828803
2016-12-06 20:02 - 2016-12-06 20:02 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign774b043f706c9930
2016-12-06 19:04 - 2016-12-06 19:04 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign94819b1d872688ce
2016-12-06 19:02 - 2016-12-06 19:02 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsignd81ca5932ec02288
2016-12-06 19:02 - 2016-12-06 19:02 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign7f511a63b33f2a74
2016-12-06 19:02 - 2016-12-06 19:02 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign7aec91d2846b7c74
2016-12-06 19:02 - 2016-12-06 19:02 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign677de4a702b881ab
2016-12-06 19:02 - 2016-12-06 19:02 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign3ca798d80f75dc7c
2016-12-06 17:31 - 2016-12-06 17:31 - 00000000 ____D C:\Users\jones\AppData\Roaming\NuGet
2016-12-04 20:46 - 2016-12-04 20:46 - 00001106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2017.lnk
2016-12-04 12:07 - 2016-12-04 12:07 - 00430376 _____ C:\Windows\Minidump\120416-8392-01.dmp
2016-12-04 11:55 - 2016-12-04 11:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2016-12-03 23:25 - 2016-12-03 23:25 - 00000000 ____D C:\Users\jones\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2016-12-03 22:11 - 2016-12-25 19:55 - 00000000 ___RD C:\Users\jones\Creative Cloud Files
2016-12-03 22:11 - 2016-12-25 19:55 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-12-03 21:53 - 2016-12-03 21:53 - 00001523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
2016-12-03 21:53 - 2016-12-03 21:53 - 00001194 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CS6.lnk
2016-12-03 21:53 - 2016-12-03 21:53 - 00001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CS6.lnk
2016-12-03 21:53 - 2016-12-03 21:53 - 00001037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk
2016-12-03 21:53 - 2016-12-03 21:53 - 00000997 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2016-12-03 21:53 - 2016-12-03 21:53 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2016-12-03 21:53 - 2016-12-03 21:53 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2016-12-03 21:42 - 2016-12-03 21:42 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign65b3eecb41c9c89e
2016-12-03 21:42 - 2016-12-03 21:42 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign1c3758160151a712
2016-12-03 21:40 - 2016-12-03 21:40 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsigna929a537f99eba8c
2016-12-03 21:39 - 2016-12-03 21:39 - 00001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2017.lnk
2016-12-03 21:39 - 2016-12-03 21:39 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsigna3078dbefe233b3a
2016-12-03 21:39 - 2016-12-03 21:39 - 00000000 ____D C:\Users\jones\AppData\Local\Tempzxpsign1b0e4e8584018b99
2016-12-03 18:22 - 2016-12-07 21:15 - 00000000 ____D C:\Users\jones\AppData\Roaming\vlc
2016-12-03 18:22 - 2016-12-03 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-12-03 17:18 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts_bkup
2016-12-03 17:05 - 2016-12-04 20:46 - 00000000 ____D C:\Program Files\Adobe
2016-12-03 17:05 - 2016-12-04 20:34 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-12-03 17:05 - 2016-12-03 21:53 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-12-03 17:05 - 2016-12-03 17:05 - 00003502 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-jones-PC-jones
2016-12-03 17:05 - 2016-12-03 17:05 - 00001073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CC 2017.lnk
2016-12-03 17:00 - 2016-12-25 16:45 - 00000000 ____D C:\Users\jones\AppData\Local\Deployment
2016-12-03 17:00 - 2016-12-03 17:00 - 00000000 ____D C:\Users\jones\AppData\Local\Apps\2.0
2016-12-03 16:47 - 2016-12-03 16:47 - 00002142 _____ C:\Users\jones\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-12-03 16:47 - 2016-12-03 16:47 - 00002124 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-12-03 16:47 - 2016-12-03 16:47 - 00002124 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-12-03 16:47 - 2016-12-03 16:47 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-12-03 16:44 - 2016-12-03 16:44 - 00002464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-12-03 16:44 - 2016-12-03 16:44 - 00002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-12-03 16:44 - 2016-12-03 16:44 - 00002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-12-03 16:44 - 2016-12-03 16:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2016-12-03 16:42 - 2016-12-03 16:42 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-12-03 16:00 - 2016-12-03 16:00 - 00000000 ____D C:\Users\jones\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2016-12-03 16:00 - 2016-12-03 16:00 - 00000000 ____D C:\Users\jones\AppData\Local\{F28CC4D0-D624-A868-BBBC-8D809FD47118}
2016-12-02 21:24 - 2016-12-02 21:25 - 00001138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2016-12-02 21:24 - 2016-12-02 21:25 - 00000000 ____D C:\Users\jones\AppData\Local\UnrealEngine
2016-12-02 21:24 - 2016-12-02 21:25 - 00000000 ____D C:\ProgramData\Epic
2016-12-02 21:24 - 2016-12-02 21:24 - 00000000 ____D C:\Users\jones\AppData\Local\UnrealEngineLauncher
2016-12-02 21:24 - 2016-12-02 21:24 - 00000000 ____D C:\Users\jones\AppData\Local\EpicGamesLauncher
2016-11-30 20:50 - 2016-11-30 20:50 - 00000000 ____D C:\Users\jones\AppData\Local\PDF24
2016-11-30 20:49 - 2016-11-30 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2016-11-30 20:49 - 2016-11-30 20:49 - 00000000 ____D C:\Program Files (x86)\PDF24
2016-11-29 22:34 - 2016-11-29 22:34 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2016-11-29 22:34 - 2016-11-29 22:34 - 00019112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110_clr0400.dll
2016-11-29 22:34 - 2016-11-29 22:34 - 00019112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2016-11-29 22:34 - 2016-11-29 22:34 - 00019112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110_clr0400.dll
2016-11-29 22:27 - 2016-11-29 22:27 - 00030400 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2016-11-29 22:27 - 2016-11-29 22:27 - 00019112 _____ (Microsoft Corporation) C:\Windows\system32\msvcr110_clr0400.dll
2016-11-29 22:27 - 2016-11-29 22:27 - 00019112 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2016-11-29 22:27 - 2016-11-29 22:27 - 00019112 _____ (Microsoft Corporation) C:\Windows\system32\msvcp110_clr0400.dll
2016-11-28 21:07 - 2016-11-28 21:07 - 00000000 ____D C:\Python27
2016-11-28 21:07 - 2016-11-28 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.7
2016-11-28 20:38 - 2016-11-28 20:38 - 00000000 ____D C:\Users\jones\AppData\Roaming\Skype
2016-11-28 20:36 - 2016-12-03 16:47 - 00000000 ___RD C:\Users\jones\OneDrive
2016-11-28 20:36 - 2016-12-03 16:47 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-11-28 20:36 - 2016-11-28 20:36 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-11-28 20:30 - 2016-11-28 20:30 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-11-28 20:28 - 2016-12-03 22:14 - 00000000 ____D C:\Program Files\Microsoft Office
2016-11-27 14:27 - 2016-11-27 14:27 - 00000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information
2016-11-27 14:27 - 2016-11-27 14:27 - 00000000 ___HD C:\ProgramData\CanonBJ
2016-11-27 14:27 - 2012-03-14 05:00 - 00385024 _____ (CANON INC.) C:\Windows\system32\CNMLMAE.DLL
2016-11-27 13:47 - 2016-11-27 13:47 - 00000000 ____D C:\Users\jones\AppData\Local\CrashRpt
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-12-27 13:04 - 2016-09-29 19:47 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-12-27 10:50 - 2009-07-14 05:45 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-27 10:50 - 2009-07-14 05:45 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-27 10:48 - 2016-11-19 11:59 - 00000000 ____D C:\Users\jones\AppData\LocalLow\Mozilla
2016-12-27 10:48 - 2016-09-26 18:07 - 00000000 ____D C:\Users\jones\AppData\Local\CrashDumps
2016-12-27 10:47 - 2016-11-25 16:27 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-12-27 10:47 - 2016-09-25 20:01 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-27 10:47 - 2011-04-12 08:43 - 00699092 _____ C:\Windows\system32\perfh007.dat
2016-12-27 10:47 - 2011-04-12 08:43 - 00149232 _____ C:\Windows\system32\perfc007.dat
2016-12-27 10:47 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-27 10:47 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-12-27 10:42 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-27 09:51 - 2009-07-14 05:45 - 05036784 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-27 01:00 - 2016-09-25 19:29 - 00076256 _____ C:\Users\jones\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-26 11:54 - 2016-11-19 21:42 - 00000000 ____D C:\Users\jones\AppData\Local\Battle.net
2016-12-26 11:36 - 2016-09-26 18:26 - 00000000 ____D C:\Users\jones\AppData\Local\Adobe
2016-12-26 00:12 - 2016-10-10 18:36 - 00000000 ____D C:\Users\jones\AppData\Roaming\Audacity
2016-12-25 19:55 - 2016-11-14 18:04 - 00000000 ____D C:\Users\jones\AppData\Roaming\discord
2016-12-25 19:52 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-12-25 16:51 - 2016-10-22 14:41 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-12-25 16:51 - 2016-10-22 14:40 - 00000000 ____D C:\Visual Studio
2016-12-25 16:51 - 2016-09-25 19:46 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-25 16:51 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-12-25 16:50 - 2016-10-22 14:42 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-12-25 16:50 - 2016-10-22 14:41 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-12-25 16:49 - 2016-10-22 14:51 - 00000000 ____D C:\Users\jones\AppData\Local\VSIXInstaller
2016-12-25 16:43 - 2016-10-22 14:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2016-12-25 16:43 - 2016-10-22 14:52 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2016-12-24 16:45 - 2016-10-12 17:38 - 00000000 ____D C:\Users\jones\AppData\Local\ElevatedDiagnostics
2016-12-23 23:47 - 2016-11-01 18:19 - 896961039 _____ C:\Windows\MEMORY.DMP
2016-12-23 23:47 - 2016-11-01 18:19 - 00000000 ____D C:\Windows\Minidump
2016-12-23 22:52 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-12-23 00:49 - 2016-10-20 18:18 - 00000000 ____D C:\ProgramData\Origin
2016-12-23 00:48 - 2016-10-20 18:19 - 00000000 ____D C:\Users\jones\AppData\Roaming\Origin
2016-12-22 15:03 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-12-22 09:44 - 2016-09-25 20:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-12-21 16:25 - 2016-09-29 17:53 - 00000000 ____D C:\Users\jones\AppData\Local\UmmyVideoDownloader
2016-12-21 16:13 - 2016-09-25 20:08 - 00003832 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-21 16:13 - 2016-09-25 20:08 - 00003832 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-21 16:13 - 2016-09-25 20:08 - 00003824 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-21 16:13 - 2016-09-25 20:08 - 00003648 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-21 16:13 - 2016-09-25 20:08 - 00003588 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-21 16:13 - 2016-09-25 20:02 - 00000000 ____D C:\Users\jones\AppData\Local\NVIDIA Corporation
2016-12-21 16:13 - 2016-09-25 20:01 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-12-20 19:12 - 2016-11-21 20:07 - 00003542 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-20 19:12 - 2016-11-21 20:07 - 00003414 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-20 18:21 - 2016-11-18 15:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-20 18:21 - 2016-09-25 20:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-15 22:24 - 2016-10-12 17:00 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-15 22:24 - 2016-10-12 17:00 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-15 22:24 - 2016-10-12 17:00 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-12-15 22:24 - 2016-10-12 17:00 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-15 22:19 - 2016-09-25 18:52 - 00000000 ____D C:\Users\jones
2016-12-15 20:51 - 2016-10-17 17:54 - 00000000 ____D C:\Users\jones\AppData\Local\Ubisoft Game Launcher
2016-12-15 19:13 - 2016-09-26 18:07 - 00000316 _____ C:\Users\jones\.packettracer
2016-12-15 18:58 - 2016-11-01 18:35 - 00000000 ____D C:\ProgramData\Oracle
2016-12-15 18:19 - 2016-09-25 20:06 - 00001087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-12-15 18:14 - 2016-11-21 20:07 - 00002187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-14 22:35 - 2016-09-25 22:05 - 00000000 ____D C:\Windows\system32\MRT
2016-12-14 22:34 - 2016-09-25 22:05 - 135632432 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-12-14 22:33 - 2016-09-25 19:46 - 01594174 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-12-14 22:21 - 2016-10-07 21:26 - 00000306 __RSH C:\ProgramData\ntuser.pol
2016-12-13 15:10 - 2016-09-25 21:31 - 00000000 ____D C:\Users\jones\AppData\Local\Steam
2016-12-12 15:37 - 2016-09-25 20:08 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-12-11 16:18 - 2016-10-29 22:24 - 00000000 ____D C:\Users\jones\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-12-11 13:09 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-12-10 22:42 - 2016-10-20 18:19 - 00000000 ____D C:\Program Files (x86)\Origin
2016-12-10 11:08 - 2016-11-21 20:07 - 00000000 ____D C:\Users\jones\AppData\Local\Google
2016-12-09 15:01 - 2016-09-25 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-12-09 15:01 - 2016-09-25 19:50 - 00000000 ____D C:\Temp
2016-12-09 14:58 - 2016-09-25 20:08 - 00003782 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-09 14:58 - 2016-09-25 20:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-12-07 17:53 - 2016-10-24 16:10 - 00000000 ____D C:\Users\jones\AppData\Local\fabi.me
2016-12-07 12:24 - 2016-09-25 19:31 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-12-07 12:15 - 2016-11-25 14:42 - 01036512 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2016-12-07 12:15 - 2016-06-20 17:29 - 00057936 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klim6.sys
2016-12-07 12:15 - 2016-06-02 22:39 - 00134880 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klwtp.sys
2016-12-06 20:23 - 2016-10-05 19:37 - 00000000 ____D C:\Users\jones\AppData\Roaming\VMware
2016-12-06 20:23 - 2016-10-05 18:07 - 00000000 ____D C:\ProgramData\VMware
2016-12-06 20:22 - 2016-10-05 19:37 - 00000000 ____D C:\Users\jones\AppData\Local\VMware
2016-12-04 20:46 - 2016-09-25 20:24 - 00000000 ____D C:\Users\jones\AppData\Roaming\Adobe
2016-12-04 12:23 - 2016-09-29 19:49 - 00000000 ____D C:\Program Files\Common Files\AV
2016-12-03 22:11 - 2016-09-25 19:31 - 00000000 ____D C:\ProgramData\Adobe
2016-12-03 16:41 - 2016-10-04 17:33 - 00000000 ____D C:\Users\jones\AppData\Roaming\Samsung
2016-12-03 16:41 - 2016-09-25 19:22 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-12-03 16:40 - 2016-09-25 18:53 - 00000000 ____D C:\Users\jones\AppData\Local\VirtualStore
2016-12-01 20:52 - 2016-11-19 17:52 - 14410120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-12-01 20:52 - 2016-10-22 22:09 - 00491536 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-12-01 20:52 - 2016-09-26 17:36 - 19948848 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-12-01 20:52 - 2016-09-26 17:36 - 17440744 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-12-01 20:52 - 2016-09-25 20:01 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-12-01 20:52 - 2016-09-25 20:00 - 17373312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-12-01 20:52 - 2016-09-25 20:00 - 03941536 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-12-01 20:52 - 2016-09-25 20:00 - 03479560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-12-01 18:32 - 2016-09-26 17:37 - 00546752 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-12-01 18:32 - 2016-09-26 17:37 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-12-01 18:32 - 2016-09-25 20:01 - 06384576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-12-01 18:32 - 2016-09-25 20:01 - 02475968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-12-01 18:32 - 2016-09-25 20:01 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-12-01 18:32 - 2016-09-25 20:01 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-12-01 18:32 - 2016-09-25 20:01 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-11-30 17:23 - 2016-11-25 19:03 - 00000000 ____D C:\Users\jones\AppData\Roaming\iw4play
2016-11-30 10:34 - 2016-09-25 20:01 - 07607057 _____ C:\Windows\system32\nvcoproc.bin
2016-11-29 19:57 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-11-27 02:29 - 2016-09-25 19:30 - 01048576 _____ C:\Windows\PE_Rom.dll
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-12-25 16:48 - 2016-12-25 16:48 - 0000101 _____ () C:\Users\jones\AppData\Roaming\net.telestream.gameshow.app_user_guid.xml
2016-12-25 16:48 - 2016-12-25 18:57 - 0001819 _____ () C:\Users\jones\AppData\Roaming\net.telestream.gameshow.xml
2016-09-26 19:04 - 2016-11-25 17:19 - 0007594 _____ () C:\Users\jones\AppData\Local\Resmon.ResmonCfg
2016-10-16 12:52 - 2016-10-16 13:05 - 25397336 _____ (One Click Root) C:\Users\jones\AppData\Local\TempOneClickRoot.exe
2016-12-11 13:10 - 2016-11-23 14:37 - 0000570 _____ () C:\Users\jones\AppData\Local\TroubleshooterConfig.json
2016-11-17 20:10 - 2016-11-17 20:10 - 0019456 _____ () C:\Users\jones\AppData\Local\WebpageIcons.db
2016-12-22 09:44 - 2016-12-27 10:42 - 0002938 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-22 09:44 - 2016-12-27 10:41 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Einige Dateien in TEMP:
====================
C:\Users\jones\AppData\Local\Temp\131244059793244084.exe
C:\Users\jones\AppData\Local\Temp\131252507815310005.exe
C:\Users\jones\AppData\Local\Temp\hss_update.exe
C:\Users\jones\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\jones\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\jones\AppData\Local\Temp\nvStInst.exe
C:\Users\jones\AppData\Local\Temp\NvTelemetry.dll
C:\Users\jones\AppData\Local\Temp\NvTelemetryAPI32.dll
C:\Users\jones\AppData\Local\Temp\NvTelemetryAPI64.dll
C:\Users\jones\AppData\Local\Temp\proxy_vole3767493610430601260.dll
C:\Users\jones\AppData\Local\Temp\proxy_vole8515395891240894562.dll
C:\Users\jones\AppData\Local\Temp\uninstall_flash_player.exe
C:\Users\jones\AppData\Local\Temp\utils.dll
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-12-24 16:38
==================== Ende von FRST.txt ============================
|
| Themen zu Windows 7: Plötzlich alle Ordner und Unterordner schreibgeschützt! |
| aktiviert, befinden, gestern, https, launch, meinem, nicht, node.js, nvcontainer, ordner, ordnern, plötzlich, schreibgeschützt, schreibschutz, system, ublock, ublock origin, versuche, windows, windows 7 |
Baum-Darstellung