| |
| |||||||
Log-Analyse und Auswertung: systemhealer+firefox und 6malige avast blocksWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
29.04.2017, 17:50
| #31 |
 |  systemhealer+firefox und 6malige avast blocksCode:
ATTFilter 2017-04-17 21:37 - 2016-09-15 19:14 - 00119648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-04-17 21:37 - 2016-09-15 18:55 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetworkCollectionAgent.dll
2017-04-17 21:37 - 2016-09-15 18:38 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll
2017-04-17 21:37 - 2016-09-15 18:38 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2017-04-17 21:37 - 2016-09-15 18:36 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2017-04-17 21:37 - 2016-09-15 18:35 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2017-04-17 21:37 - 2016-09-15 18:30 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2017-04-17 21:37 - 2016-09-15 18:27 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2017-04-17 21:37 - 2016-09-07 07:04 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2017-04-17 21:37 - 2016-09-07 07:03 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2017-04-17 21:37 - 2016-09-07 07:03 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2017-04-17 21:37 - 2016-09-07 07:03 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2017-04-17 21:37 - 2016-09-07 07:03 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2017-04-17 21:37 - 2016-09-07 07:03 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2017-04-17 21:37 - 2016-09-07 07:02 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2017-04-17 21:37 - 2016-09-07 07:02 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2017-04-17 21:37 - 2016-09-07 07:02 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2017-04-17 21:37 - 2016-09-07 07:02 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2017-04-17 21:37 - 2016-09-07 07:02 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2017-04-17 21:37 - 2016-09-07 07:02 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2017-04-17 21:37 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2017-04-17 21:37 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2017-04-17 21:37 - 2016-09-07 07:01 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2017-04-17 21:37 - 2016-09-07 07:01 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2017-04-17 21:37 - 2016-09-07 07:00 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2017-04-17 21:37 - 2016-09-07 06:59 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2017-04-17 21:37 - 2016-09-07 06:59 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2017-04-17 21:37 - 2016-09-07 06:59 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2017-04-17 21:37 - 2016-09-07 06:56 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2017-04-17 21:37 - 2016-09-07 06:56 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2017-04-17 21:37 - 2016-09-07 06:55 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2017-04-17 21:37 - 2016-09-07 06:54 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-04-17 21:37 - 2016-09-07 06:53 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2017-04-17 21:37 - 2016-09-07 06:43 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2017-04-17 21:37 - 2016-08-27 06:44 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2017-04-17 21:37 - 2016-08-20 07:22 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2017-04-17 21:37 - 2016-08-20 07:21 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2017-04-17 21:37 - 2016-08-20 07:20 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2017-04-17 21:37 - 2016-08-20 07:20 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2017-04-17 21:37 - 2016-08-20 07:19 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2017-04-17 21:37 - 2016-08-20 07:14 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2017-04-17 21:37 - 2016-08-06 05:50 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2017-04-17 21:37 - 2016-08-06 05:48 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2017-04-17 21:37 - 2016-08-06 05:48 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2017-04-17 21:37 - 2016-08-06 05:48 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2017-04-17 21:37 - 2016-08-06 05:48 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2017-04-17 21:37 - 2016-08-06 05:48 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2017-04-17 21:37 - 2016-08-06 05:48 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2017-04-17 21:37 - 2016-08-06 05:47 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2017-04-17 21:37 - 2016-08-06 05:47 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2017-04-17 21:37 - 2016-08-06 05:47 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2017-04-17 21:37 - 2016-08-06 05:47 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2017-04-17 21:37 - 2016-08-06 05:46 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2017-04-17 21:37 - 2016-08-06 05:46 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2017-04-17 21:37 - 2016-08-06 05:46 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2017-04-17 21:37 - 2016-08-06 05:45 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2017-04-17 21:37 - 2016-08-06 05:45 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2017-04-17 21:37 - 2016-08-06 05:45 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2017-04-17 21:37 - 2016-08-06 05:45 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2017-04-17 21:37 - 2016-08-06 05:44 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2017-04-17 21:37 - 2016-08-06 05:44 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2017-04-17 21:37 - 2016-08-06 05:43 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2017-04-17 21:37 - 2016-08-06 05:41 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2017-04-17 21:37 - 2016-08-06 05:40 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2017-04-17 21:37 - 2016-08-06 05:40 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2017-04-17 21:37 - 2016-08-06 05:39 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2017-04-17 21:37 - 2016-08-02 10:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2017-04-17 21:37 - 2016-08-02 10:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-04-17 21:37 - 2016-08-02 06:37 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2017-04-17 21:36 - 2017-03-28 08:36 - 01617760 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-04-17 21:36 - 2017-03-28 08:36 - 01294688 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-04-17 21:36 - 2017-03-28 08:36 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-04-17 21:36 - 2017-03-28 08:36 - 00343904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-04-17 21:36 - 2017-03-28 08:36 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-04-17 21:36 - 2017-03-28 08:35 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-04-17 21:36 - 2017-03-28 08:20 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-04-17 21:36 - 2017-03-28 08:09 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-04-17 21:36 - 2017-03-28 08:09 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-04-17 21:36 - 2017-03-28 08:08 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-04-17 21:36 - 2017-03-28 08:08 - 00989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-04-17 21:36 - 2017-03-28 08:04 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-04-17 21:36 - 2017-03-28 08:00 - 01569184 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-04-17 21:36 - 2017-03-28 08:00 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-04-17 21:36 - 2017-03-28 07:44 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-04-17 21:36 - 2017-03-28 07:34 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2017-04-17 21:36 - 2017-03-28 07:33 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-04-17 21:36 - 2017-03-28 07:27 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2017-04-17 21:36 - 2017-03-28 07:25 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-04-17 21:36 - 2017-03-28 07:25 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-04-17 21:36 - 2017-03-28 07:24 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-04-17 21:36 - 2017-03-28 07:23 - 09130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-04-17 21:36 - 2017-03-28 07:17 - 05114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2017-04-17 21:36 - 2017-03-28 07:17 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-04-17 21:36 - 2017-03-28 07:14 - 01692160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-04-17 21:36 - 2017-03-28 07:14 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-04-17 21:36 - 2017-03-28 07:14 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-04-17 21:36 - 2017-03-28 07:13 - 01359872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-04-17 21:36 - 2017-03-28 07:11 - 02914816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-04-17 21:36 - 2017-03-28 07:10 - 02316288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-04-17 21:36 - 2017-03-28 07:10 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-04-17 21:36 - 2017-03-28 07:09 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-04-17 21:36 - 2017-03-28 07:09 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-04-17 21:36 - 2017-03-28 07:08 - 03612672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-04-17 21:36 - 2017-03-28 07:08 - 03542016 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2017-04-17 21:36 - 2017-03-18 18:50 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-04-17 21:36 - 2017-03-18 18:35 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-04-17 21:36 - 2017-03-04 09:57 - 00192352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-04-17 21:36 - 2017-03-04 09:35 - 00655200 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-04-17 21:36 - 2017-03-04 09:35 - 00590952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-04-17 21:36 - 2017-03-04 09:35 - 00315232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-04-17 21:36 - 2017-03-04 09:35 - 00242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-04-17 21:36 - 2017-03-04 09:35 - 00086368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-04-17 21:36 - 2017-03-04 09:35 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-04-17 21:36 - 2017-03-04 09:25 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-04-17 21:36 - 2017-03-04 09:24 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-04-17 21:36 - 2017-03-04 09:24 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-04-17 21:36 - 2017-03-04 09:24 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2017-04-17 21:36 - 2017-03-04 09:22 - 01354312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-04-17 21:36 - 2017-03-04 09:22 - 01172984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-04-17 21:36 - 2017-03-04 09:21 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-04-17 21:36 - 2017-03-04 09:20 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2017-04-17 21:36 - 2017-03-04 09:20 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-04-17 21:36 - 2017-03-04 09:15 - 00404320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2017-04-17 21:36 - 2017-03-04 09:13 - 00635456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-04-17 21:36 - 2017-03-04 09:11 - 00266544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-04-17 21:36 - 2017-03-04 09:09 - 00578392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-04-17 21:36 - 2017-03-04 09:08 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-04-17 21:36 - 2017-03-04 09:08 - 00342456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2017-04-17 21:36 - 2017-03-04 09:07 - 02913144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-04-17 21:36 - 2017-03-04 09:07 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-04-17 21:36 - 2017-03-04 09:07 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-04-17 21:36 - 2017-03-04 09:07 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-04-17 21:36 - 2017-03-04 09:03 - 04674360 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-04-17 21:36 - 2017-03-04 09:01 - 00201568 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-04-17 21:36 - 2017-03-04 08:58 - 01416224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-04-17 21:36 - 2017-03-04 08:58 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2017-04-17 21:36 - 2017-03-04 08:34 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-04-17 21:36 - 2017-03-04 08:30 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-04-17 21:36 - 2017-03-04 08:30 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-04-17 21:36 - 2017-03-04 08:30 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2017-04-17 21:36 - 2017-03-04 08:28 - 00623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-04-17 21:36 - 2017-03-04 08:28 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2017-04-17 21:36 - 2017-03-04 08:28 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-04-17 21:36 - 2017-03-04 08:27 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-04-17 21:36 - 2017-03-04 08:25 - 01016320 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-04-17 21:36 - 2017-03-04 08:25 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-04-17 21:36 - 2017-03-04 08:24 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2017-04-17 21:36 - 2017-03-04 08:24 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-04-17 21:36 - 2017-03-04 08:24 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2017-04-17 21:36 - 2017-03-04 08:24 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2017-04-17 21:36 - 2017-03-04 08:23 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2017-04-17 21:36 - 2017-03-04 08:23 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-04-17 21:36 - 2017-03-04 08:21 - 00776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabletPC.cpl
2017-04-17 21:36 - 2017-03-04 08:21 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-04-17 21:36 - 2017-03-04 08:20 - 01913856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-04-17 21:36 - 2017-03-04 08:20 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2017-04-17 21:36 - 2017-03-04 08:20 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2017-04-17 21:36 - 2017-03-04 08:19 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-04-17 21:36 - 2017-03-04 08:18 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2017-04-17 21:36 - 2017-03-04 08:17 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-04-17 21:36 - 2017-03-04 08:17 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2017-04-17 21:36 - 2017-03-04 08:16 - 03289088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-04-17 21:36 - 2017-03-04 08:15 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-04-17 21:36 - 2017-03-04 08:15 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2017-04-17 21:36 - 2017-03-04 08:14 - 01562112 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2017-04-17 21:36 - 2017-03-04 08:14 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2017-04-17 21:36 - 2017-03-04 08:14 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2017-04-17 21:36 - 2017-03-04 08:14 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2017-04-17 21:36 - 2017-03-04 08:13 - 00961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2017-04-17 21:36 - 2017-03-04 08:13 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2017-04-17 21:36 - 2017-03-04 08:13 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2017-04-17 21:36 - 2017-03-04 08:12 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2017-04-17 21:36 - 2017-03-04 08:11 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2017-04-17 21:36 - 2017-03-04 08:11 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-04-17 21:36 - 2017-03-04 08:11 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2017-04-17 21:36 - 2017-03-04 08:11 - 00818176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-04-17 21:36 - 2017-03-04 08:10 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-04-17 21:36 - 2017-03-04 08:10 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-04-17 21:36 - 2017-03-04 08:09 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-04-17 21:36 - 2017-03-04 08:08 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-04-17 21:36 - 2017-03-04 08:08 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2017-04-17 21:36 - 2017-03-04 08:07 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2017-04-17 21:36 - 2017-03-04 08:07 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-04-17 21:36 - 2017-03-04 08:07 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2017-04-17 21:36 - 2017-03-04 08:06 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2017-04-17 21:36 - 2017-03-04 08:06 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-04-17 21:36 - 2017-03-04 08:06 - 04060672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-04-17 21:36 - 2017-03-04 08:06 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-04-17 21:36 - 2017-03-04 08:06 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-04-17 21:36 - 2017-03-04 08:05 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-04-17 21:36 - 2017-03-04 08:04 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2017-04-17 21:36 - 2017-03-04 08:03 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-04-17 21:36 - 2017-03-04 08:01 - 03478528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-04-17 21:36 - 2016-12-21 10:08 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-04-17 21:36 - 2016-12-21 10:08 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-04-17 21:36 - 2016-12-21 09:37 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-04-17 21:36 - 2016-12-21 08:59 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-04-17 21:36 - 2016-12-21 08:54 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2017-04-17 21:36 - 2016-12-14 07:33 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-04-17 21:36 - 2016-12-14 07:14 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2017-04-17 21:36 - 2016-12-14 07:14 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-04-17 21:36 - 2016-12-14 06:46 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-04-17 21:36 - 2016-12-14 06:42 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-04-17 21:36 - 2016-12-14 06:25 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2017-04-17 21:36 - 2016-12-14 06:24 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-04-17 21:36 - 2016-12-09 12:19 - 00168424 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2017-04-17 21:36 - 2016-12-09 12:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-04-17 21:36 - 2016-12-09 11:37 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-04-17 21:36 - 2016-12-09 11:20 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-04-17 21:36 - 2016-12-09 11:20 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-04-17 21:36 - 2016-11-11 12:13 - 01886344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-04-17 21:36 - 2016-11-11 11:56 - 00163752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2017-04-17 21:36 - 2016-11-11 11:55 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-04-17 21:36 - 2016-11-11 11:55 - 00743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-04-17 21:36 - 2016-11-11 11:25 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2017-04-17 21:36 - 2016-11-11 11:24 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2017-04-17 21:36 - 2016-11-11 11:22 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2017-04-17 21:36 - 2016-11-11 11:20 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2017-04-17 21:36 - 2016-11-11 11:20 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2017-04-17 21:36 - 2016-11-11 11:19 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2017-04-17 21:36 - 2016-11-11 11:19 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-04-17 21:36 - 2016-11-11 11:16 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-04-17 21:36 - 2016-11-11 11:16 - 01477632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2017-04-17 21:36 - 2016-11-11 11:15 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2017-04-17 21:36 - 2016-11-11 11:07 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-04-17 21:36 - 2016-11-11 11:07 - 01691136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-04-17 21:36 - 2016-11-11 11:07 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-04-17 21:36 - 2016-11-11 11:06 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2017-04-17 21:36 - 2016-11-11 11:05 - 04136448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-04-17 21:36 - 2016-11-11 11:04 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-04-17 21:36 - 2016-11-11 11:03 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2017-04-17 21:36 - 2016-11-02 12:56 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2017-04-17 21:36 - 2016-11-02 12:34 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2017-04-17 21:36 - 2016-11-02 12:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2017-04-17 21:36 - 2016-11-02 12:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2017-04-17 21:36 - 2016-11-02 12:24 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2017-04-17 21:36 - 2016-11-02 12:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-04-17 21:36 - 2016-11-02 12:13 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2017-04-17 21:36 - 2016-11-02 12:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2017-04-17 21:36 - 2016-11-02 11:11 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2017-04-17 21:36 - 2016-11-02 11:11 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2017-04-17 21:36 - 2016-10-15 06:38 - 00500064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2017-04-17 21:36 - 2016-10-15 06:30 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-04-17 21:36 - 2016-10-15 06:29 - 00908640 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2017-04-17 21:36 - 2016-10-15 06:29 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2017-04-17 21:36 - 2016-10-15 05:56 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-04-17 21:36 - 2016-10-15 05:56 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2017-04-17 21:36 - 2016-10-15 05:54 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2017-04-17 21:36 - 2016-10-15 05:51 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2017-04-17 21:36 - 2016-10-15 05:49 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-04-17 21:36 - 2016-10-15 05:48 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2017-04-17 21:36 - 2016-10-15 05:39 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-04-17 21:36 - 2016-10-15 05:36 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2017-04-17 21:36 - 2016-10-15 05:35 - 03054080 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2017-04-17 21:36 - 2016-10-15 05:32 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2017-04-17 21:36 - 2016-10-15 05:31 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2017-04-17 21:36 - 2016-10-05 12:17 - 01322848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-04-17 21:36 - 2016-10-05 11:30 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2017-04-17 21:36 - 2016-10-05 11:29 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2017-04-17 21:36 - 2016-09-15 19:29 - 00169056 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2017-04-17 21:36 - 2016-09-15 19:15 - 00649568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-04-17 21:36 - 2016-09-15 19:07 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2017-04-17 21:36 - 2016-09-15 18:42 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2017-04-17 21:36 - 2016-09-15 18:40 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2017-04-17 21:36 - 2016-09-15 18:38 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2017-04-17 21:36 - 2016-09-15 18:37 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2017-04-17 21:36 - 2016-09-15 18:36 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2017-04-17 21:36 - 2016-09-15 18:36 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2017-04-17 21:36 - 2016-09-15 18:35 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2017-04-17 21:36 - 2016-09-15 18:35 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-04-17 21:36 - 2016-09-15 18:35 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2017-04-17 21:36 - 2016-09-15 18:34 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2017-04-17 21:36 - 2016-09-15 18:33 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2017-04-17 21:36 - 2016-09-15 18:27 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2017-04-17 21:36 - 2016-09-15 18:27 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Sens.dll
2017-04-17 21:36 - 2016-09-15 18:22 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-04-17 21:36 - 2016-09-07 07:33 - 00681304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2017-04-17 21:36 - 2016-09-07 06:55 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-04-17 21:36 - 2016-09-07 06:54 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2017-04-17 21:36 - 2016-09-07 06:39 - 03116544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2017-04-17 21:36 - 2016-08-06 06:29 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2017-04-17 21:36 - 2016-08-06 05:43 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2017-04-17 21:36 - 2016-08-06 05:35 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2017-04-17 21:36 - 2016-08-06 05:23 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2017-04-17 21:36 - 2016-07-22 03:25 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-04-17 21:36 - 2016-07-16 04:29 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CspCellularSettings.dll
2017-04-17 21:36 - 2016-07-16 04:28 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-04-17 21:36 - 2016-07-16 04:26 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-04-17 21:35 - 2017-03-28 08:10 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-04-17 21:35 - 2017-03-28 08:10 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-04-17 21:35 - 2017-03-28 08:09 - 02446704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-04-17 21:35 - 2017-03-28 08:08 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-04-17 21:35 - 2017-03-28 07:58 - 00372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-04-17 21:35 - 2017-03-28 07:38 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-04-17 21:35 - 2017-03-28 07:37 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2017-04-17 21:35 - 2017-03-28 07:36 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-04-17 21:35 - 2017-03-28 07:36 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-04-17 21:35 - 2017-03-28 07:35 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2017-04-17 21:35 - 2017-03-28 07:35 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-04-17 21:35 - 2017-03-28 07:34 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2017-04-17 21:35 - 2017-03-28 07:34 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
2017-04-17 21:35 - 2017-03-28 07:34 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2017-04-17 21:35 - 2017-03-28 07:33 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-04-17 21:35 - 2017-03-28 07:33 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-04-17 21:35 - 2017-03-28 07:33 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-04-17 21:35 - 2017-03-28 07:33 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2017-04-17 21:35 - 2017-03-28 07:32 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-04-17 21:35 - 2017-03-28 07:32 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-04-17 21:35 - 2017-03-28 07:31 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-04-17 21:35 - 2017-03-28 07:31 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-04-17 21:35 - 2017-03-28 07:31 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-04-17 21:35 - 2017-03-28 07:30 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-04-17 21:35 - 2017-03-28 07:30 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-04-17 21:35 - 2017-03-28 07:30 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2017-04-17 21:35 - 2017-03-28 07:29 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2017-04-17 21:35 - 2017-03-28 07:29 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2017-04-17 21:35 - 2017-03-28 07:29 - 00379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-04-17 21:35 - 2017-03-28 07:29 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-04-17 21:35 - 2017-03-28 07:29 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2017-04-17 21:35 - 2017-03-28 07:29 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-04-17 21:35 - 2017-03-28 07:29 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-04-17 21:35 - 2017-03-28 07:29 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2017-04-17 21:35 - 2017-03-28 07:28 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-04-17 21:35 - 2017-03-28 07:28 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-04-17 21:35 - 2017-03-28 07:27 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2017-04-17 21:35 - 2017-03-28 07:27 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-04-17 21:35 - 2017-03-28 07:26 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2017-04-17 21:35 - 2017-03-28 07:25 - 00966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2017-04-17 21:35 - 2017-03-28 07:25 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-04-17 21:35 - 2017-03-28 07:23 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2017-04-17 21:35 - 2017-03-28 07:19 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2017-04-17 21:35 - 2017-03-28 07:16 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2017-04-17 21:35 - 2017-03-28 07:16 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-04-17 21:35 - 2017-03-28 07:15 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-04-17 21:35 - 2017-03-28 07:13 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-04-17 21:35 - 2017-03-28 07:12 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2017-04-17 21:35 - 2017-03-28 07:08 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2017-04-17 21:35 - 2017-03-16 06:47 - 00038768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2017-04-17 21:35 - 2017-03-04 09:07 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2017-04-17 21:35 - 2017-03-04 09:07 - 00110944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2017-04-17 21:35 - 2017-03-04 09:01 - 00128648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2017-04-17 21:35 - 2017-03-04 08:37 - 00025088 _____ C:\WINDOWS\system32\GamePanelExternalHook.dll
2017-04-17 21:35 - 2017-03-04 08:36 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2017-04-17 21:35 - 2017-03-04 08:36 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-04-17 21:35 - 2017-03-04 08:36 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-04-17 21:35 - 2017-03-04 08:34 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfui.dll
2017-04-17 21:35 - 2017-03-04 08:33 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2017-04-17 21:35 - 2017-03-04 08:33 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothDesktopHandlers.dll
2017-04-17 21:35 - 2017-03-04 08:33 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInputUap.dll
2017-04-17 21:35 - 2017-03-04 08:32 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-04-17 21:35 - 2017-03-04 08:32 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-04-17 21:35 - 2017-03-04 08:32 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-04-17 21:35 - 2017-03-04 08:31 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-04-17 21:35 - 2017-03-04 08:30 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscandui.dll
2017-04-17 21:35 - 2017-03-04 08:29 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-04-17 21:35 - 2017-03-04 08:28 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-04-17 21:35 - 2017-03-04 08:26 - 00643072 _____ (Microsoft Corporation) C:\WINDOWS\system32\main.cpl
2017-04-17 21:35 - 2017-03-04 08:26 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2017-04-17 21:35 - 2017-03-04 08:26 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-04-17 21:35 - 2017-03-04 08:26 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-04-17 21:35 - 2017-03-04 08:24 - 01092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2017-04-17 21:35 - 2017-03-04 08:23 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-04-17 21:35 - 2017-03-04 08:20 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-04-17 21:35 - 2017-03-04 08:19 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\tabcal.exe
2017-04-17 21:35 - 2017-03-04 08:18 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2017-04-17 21:35 - 2017-03-04 08:16 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2017-04-17 21:35 - 2017-03-04 08:16 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-04-17 21:35 - 2017-03-04 08:13 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MultiDigiMon.exe
2017-04-17 21:35 - 2017-03-04 08:10 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-04-17 21:35 - 2016-12-14 07:17 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-04-17 21:35 - 2016-12-14 06:43 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-04-17 21:35 - 2016-12-14 06:36 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-04-17 21:35 - 2016-12-14 06:35 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-04-17 21:35 - 2016-12-09 11:41 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2017-04-17 21:35 - 2016-12-09 11:20 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-04-17 21:35 - 2016-11-11 12:15 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2017-04-17 21:35 - 2016-11-11 12:08 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2017-04-17 21:35 - 2016-11-11 11:27 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2017-04-17 21:35 - 2016-11-11 11:27 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2017-04-17 21:35 - 2016-11-11 11:26 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-04-17 21:35 - 2016-11-11 11:26 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
2017-04-17 21:35 - 2016-11-11 11:26 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2017-04-17 21:35 - 2016-11-11 11:25 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2017-04-17 21:35 - 2016-11-11 11:24 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2017-04-17 21:35 - 2016-11-11 11:24 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2017-04-17 21:35 - 2016-11-11 11:23 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
2017-04-17 21:35 - 2016-11-11 11:22 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2017-04-17 21:35 - 2016-11-11 11:20 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2017-04-17 21:35 - 2016-11-11 11:20 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-04-17 21:35 - 2016-11-11 11:19 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-04-17 21:35 - 2016-11-11 11:19 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-04-17 21:35 - 2016-11-11 11:19 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-04-17 21:35 - 2016-11-11 11:16 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2017-04-17 21:35 - 2016-11-11 11:16 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-04-17 21:35 - 2016-11-11 11:14 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2017-04-17 21:35 - 2016-11-11 11:11 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2017-04-17 21:35 - 2016-11-11 11:04 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-04-17 21:35 - 2016-11-02 13:02 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2017-04-17 21:35 - 2016-11-02 13:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-04-17 21:35 - 2016-11-02 12:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2017-04-17 21:35 - 2016-11-02 12:31 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2017-04-17 21:35 - 2016-11-02 12:28 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2017-04-17 21:35 - 2016-11-02 12:27 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2017-04-17 21:35 - 2016-11-02 12:23 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2017-04-17 21:35 - 2016-11-02 12:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-04-17 21:35 - 2016-11-02 12:19 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2017-04-17 21:35 - 2016-11-02 12:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2017-04-17 21:35 - 2016-10-15 05:56 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2017-04-17 21:35 - 2016-10-15 05:56 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2017-04-17 21:35 - 2016-10-15 05:54 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2017-04-17 21:35 - 2016-10-15 05:54 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingFolder.dll
2017-04-17 21:35 - 2016-10-15 05:54 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-04-17 21:35 - 2016-10-15 05:52 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2017-04-17 21:35 - 2016-10-15 05:50 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2017-04-17 21:35 - 2016-10-15 05:37 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmifw.dll
2017-04-17 21:35 - 2016-10-05 12:33 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-04-17 21:35 - 2016-10-05 11:31 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-04-17 21:35 - 2016-10-05 11:31 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-04-17 21:35 - 2016-10-05 11:24 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2017-04-17 21:35 - 2016-10-05 11:22 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-04-17 21:35 - 2016-09-15 19:29 - 00074080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2017-04-17 21:35 - 2016-09-15 18:46 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2017-04-17 21:35 - 2016-09-15 18:42 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2017-04-17 21:35 - 2016-09-15 18:41 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2017-04-17 21:35 - 2016-09-15 18:38 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2017-04-17 21:35 - 2016-09-15 18:35 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2017-04-17 21:35 - 2016-09-15 18:35 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2017-04-17 21:35 - 2016-09-15 18:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2017-04-17 21:35 - 2016-09-15 18:26 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2017-04-17 21:35 - 2016-09-15 18:23 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2017-04-17 21:35 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-04-17 21:35 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2017-04-17 21:35 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2017-04-17 21:35 - 2016-09-07 06:56 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2017-04-17 21:35 - 2016-09-07 06:35 - 00650240 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2017-04-17 21:35 - 2016-09-07 06:33 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2017-04-17 21:35 - 2016-08-20 07:21 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2017-04-17 21:35 - 2016-08-20 07:21 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2017-04-17 21:35 - 2016-08-20 07:20 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2017-04-17 21:35 - 2016-08-20 07:08 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2017-04-17 21:35 - 2016-08-20 07:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2017-04-17 21:35 - 2016-08-20 07:04 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2017-04-17 21:35 - 2016-08-19 03:33 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2017-04-17 21:35 - 2016-08-06 06:31 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2017-04-17 21:35 - 2016-08-06 06:23 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2017-04-17 21:35 - 2016-08-06 06:16 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2017-04-17 21:35 - 2016-08-06 06:16 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-04-17 21:35 - 2016-08-06 06:16 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2017-04-17 21:35 - 2016-08-06 05:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2017-04-17 21:35 - 2016-08-06 05:48 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2017-04-17 21:35 - 2016-08-06 05:34 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2017-04-17 21:35 - 2016-08-06 05:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2017-04-17 21:35 - 2016-08-06 05:19 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2017-04-17 21:35 - 2016-08-05 11:14 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2017-04-17 21:35 - 2016-08-05 11:10 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2017-04-17 21:35 - 2016-08-05 11:05 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2017-04-17 21:35 - 2016-08-05 10:29 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2017-04-17 21:35 - 2016-08-05 10:28 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2017-04-17 21:35 - 2016-08-05 10:22 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2017-04-17 21:35 - 2016-08-05 10:08 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2017-04-17 21:35 - 2016-08-02 10:44 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2017-04-17 21:35 - 2016-05-29 20:38 - 08886976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSetup.exe
2017-04-17 21:24 - 2016-12-21 09:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-04-17 21:24 - 2016-12-21 06:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-04-17 19:09 - 2017-04-17 19:10 - 00000000 ___DC C:\Winantispy
2017-04-17 18:37 - 2017-04-17 18:39 - 00000340 _____ C:\Users\davAdmin\Desktop\ts crew.txt
2017-04-17 18:37 - 2017-04-02 20:25 - 00030813 _____ C:\Users\davAdmin\Desktop\ts.txt
2017-04-17 18:36 - 2017-04-23 14:47 - 00000830 _____ C:\Users\davAdmin\Desktop\paypal.txt
2017-04-17 18:36 - 2017-02-13 15:58 - 00001709 _____ C:\Users\davAdmin\Desktop\bewerbneu1.txt
2017-04-17 18:36 - 2017-02-09 16:19 - 00004935 _____ C:\Users\davAdmin\Desktop\congstar.txt
2017-04-17 18:36 - 2017-02-08 22:00 - 00002079 _____ C:\Users\davAdmin\Desktop\bewerbneu.txt
2017-04-17 18:33 - 2017-04-29 13:09 - 00000000 ____D C:\Users\davAdmin\AppData\Roaming\vlc
2017-04-17 18:29 - 2017-04-17 18:29 - 00000000 ___DC C:\Plugins
2017-04-17 18:27 - 2017-04-17 18:27 - 00000000 ___DC C:\irfawV
2017-04-17 18:20 - 2017-04-17 18:20 - 00000923 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-04-17 18:20 - 2017-04-17 18:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-04-17 18:20 - 2017-04-17 18:20 - 00000000 ____D C:\Program Files\VideoLAN
2017-04-17 18:01 - 2017-04-29 16:10 - 00000000 ____D C:\Users\davAdmin\AppData\LocalLow\Mozilla
2017-04-17 18:01 - 2017-04-17 18:06 - 00000000 ____D C:\Users\davAdmin\AppData\Local\Mozilla
2017-04-17 18:01 - 2017-04-17 18:01 - 00000000 ____D C:\Users\davAdmin\AppData\Roaming\Mozilla
2017-04-17 18:00 - 2017-04-27 16:53 - 00002064 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-04-17 18:00 - 2017-04-27 14:38 - 00002076 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-04-17 18:00 - 2017-04-22 22:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-04-17 18:00 - 2017-04-22 22:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-04-17 17:57 - 2017-04-17 17:14 - 00000000 ___DC C:\WINDOWS\Panther
2017-04-17 17:56 - 2017-04-19 22:05 - 00000000 ___DC C:\Windows.old
2017-04-17 17:56 - 2017-04-17 17:56 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-04-17 17:53 - 2017-04-17 17:53 - 00000000 ____D C:\Users\davAdmin\Intel
2017-04-17 17:52 - 2017-04-17 17:52 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-04-17 17:52 - 2017-04-17 17:52 - 00000000 ____D C:\Program Files\Realtek
2017-04-17 17:52 - 2014-03-14 13:08 - 03896920 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-04-17 17:52 - 2014-03-14 11:14 - 00628440 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-04-17 17:52 - 2014-03-14 08:42 - 00947928 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-04-17 17:52 - 2014-03-11 15:50 - 00853784 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-04-17 17:52 - 2014-03-07 04:57 - 02794200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2017-04-17 17:52 - 2014-03-06 10:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-04-17 17:52 - 2014-03-04 14:27 - 02831576 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-04-17 17:52 - 2014-03-03 14:21 - 01019608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-04-17 17:52 - 2014-02-16 14:30 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2017-04-17 17:52 - 2014-01-28 05:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-04-17 17:52 - 2011-12-20 09:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-04-17 17:52 - 2011-11-22 10:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-04-17 17:52 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2017-04-17 17:52 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2017-04-17 17:52 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2017-04-17 17:52 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2017-04-17 17:52 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2017-04-17 17:52 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2017-04-17 17:52 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-04-17 17:52 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2017-04-17 17:52 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2017-04-17 17:52 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2017-04-17 17:52 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2017-04-17 17:51 - 2017-04-17 17:52 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-04-17 17:51 - 2017-04-17 17:51 - 00000000 ____D C:\Program Files (x86)\Realtek
2017-04-17 17:51 - 2014-02-26 09:16 - 02080472 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2017-04-17 17:51 - 2014-02-18 12:12 - 01042520 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2017-04-17 17:51 - 2014-02-18 11:04 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2017-04-17 17:51 - 2014-02-16 14:30 - 02040920 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2017-04-17 17:51 - 2014-01-08 09:25 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll
2017-04-17 17:51 - 2013-10-15 21:43 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2017-04-17 17:51 - 2013-10-11 06:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-04-17 17:51 - 2012-06-08 10:21 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll
2017-04-17 17:51 - 2012-06-08 10:21 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll
2017-04-17 17:51 - 2012-03-08 05:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2017-04-17 17:51 - 2011-12-16 08:57 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll
2017-04-17 17:51 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2017-04-17 17:51 - 2009-11-18 01:13 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll
2017-04-17 17:50 - 2017-04-17 17:50 - 00000000 ____D C:\ProgramData\Intel
2017-04-17 17:50 - 2013-09-16 12:17 - 00016344 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\IntelMEFWVer.dll
2017-04-17 17:49 - 2017-04-17 17:49 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2017-04-17 17:49 - 2013-09-16 12:17 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2017-04-17 17:49 - 2013-09-16 12:17 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2017-04-17 17:48 - 2013-08-21 15:16 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll
2017-04-17 17:46 - 2017-04-17 17:46 - 00025640 ____N (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys
2017-04-17 17:46 - 2017-04-17 17:46 - 00000010 _____ C:\WINDOWS\GSetup.ini
2017-04-17 17:46 - 2009-08-27 09:04 - 00207400 ____R () C:\WINDOWS\GSetup.exe
2017-04-17 17:45 - 2017-04-18 19:01 - 00000000 ___DC C:\temp
2017-04-17 17:45 - 2017-04-18 15:00 - 00000000 ____D C:\Users\davAdmin\AppData\Local\NVIDIA Corporation
2017-04-17 17:45 - 2017-04-18 15:00 - 00000000 ____D C:\Users\davAdmin\AppData\Local\NVIDIA
2017-04-17 17:45 - 2014-08-09 02:28 - 01715224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-04-17 17:45 - 2014-08-09 02:28 - 01291280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-04-17 17:45 - 2014-08-09 02:28 - 01283136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-04-17 17:45 - 2014-08-09 02:28 - 01126480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-04-17 17:45 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-04-17 17:45 - 2014-03-31 18:42 - 00037320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-04-17 17:45 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-04-17 17:45 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2017-04-17 17:45 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2017-04-17 17:45 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2017-04-17 17:45 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2017-04-17 17:45 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2017-04-17 17:45 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2017-04-17 17:44 - 2017-04-17 17:44 - 00000000 ____D C:\Users\davAdmin\AppData\Local\Comms
2017-04-17 17:43 - 2017-04-17 17:51 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-04-17 17:43 - 2017-04-17 17:43 - 00002767 _____ C:\Users\Public\Desktop\GIGABYTE OC_GURU.lnk
2017-04-17 17:43 - 2017-04-17 17:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2017-04-17 17:43 - 2017-04-17 17:43 - 00000000 ____D C:\Program Files (x86)\GIGABYTE
2017-04-17 17:39 - 2017-04-29 15:57 - 00000000 __SHD C:\Users\davAdmin\IntelGraphicsProfiles
2017-04-17 17:28 - 2017-04-28 18:46 - 00002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-17 17:28 - 2017-04-17 17:28 - 00000000 ____D C:\Users\davAdmin\AppData\Local\Google
2017-04-17 17:27 - 2017-04-27 20:38 - 00003628 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-17 17:27 - 2017-04-27 20:38 - 00003504 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-17 17:27 - 2017-04-17 17:28 - 00000000 ____D C:\Program Files (x86)\Google
2017-04-17 17:26 - 2017-04-17 17:26 - 00003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-04-17 17:26 - 2017-04-17 17:26 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-04-17 17:26 - 2017-04-17 17:26 - 00000000 ____D C:\Users\davAdmin\AppData\Local\CEF
2017-04-17 17:24 - 2017-04-29 15:57 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-04-17 17:24 - 2017-04-17 17:49 - 00000000 ____D C:\Program Files\Intel
2017-04-17 17:24 - 2017-04-17 17:49 - 00000000 ____D C:\Program Files (x86)\Intel
2017-04-17 17:24 - 2017-04-17 17:24 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-04-17 17:24 - 2017-04-17 17:24 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-04-17 17:23 - 2017-04-28 21:24 - 00000000 ____D C:\ProgramData\AVAST Software
2017-04-17 17:22 - 2017-04-17 17:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-04-17 17:22 - 2017-04-17 17:23 - 00000000 ____D C:\Users\davAdmin\AppData\Local\MicrosoftEdge
2017-04-17 17:22 - 2017-04-17 17:22 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-04-17 17:22 - 2016-12-29 14:43 - 00133056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-04-17 17:22 - 2016-09-09 20:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-04-17 17:22 - 2016-09-09 20:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-04-17 17:22 - 2016-09-09 20:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-04-17 17:22 - 2016-09-09 20:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-04-17 17:21 - 2017-04-29 15:57 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-17 17:21 - 2017-04-17 17:46 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-04-17 17:21 - 2017-04-17 17:45 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-04-17 17:21 - 2017-04-17 17:45 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-04-17 17:21 - 2016-12-29 15:06 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-04-17 17:21 - 2016-12-29 14:44 - 06386232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-04-17 17:21 - 2016-12-29 14:44 - 02477624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-04-17 17:21 - 2016-12-29 14:44 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-04-17 17:21 - 2016-12-29 14:44 - 00546752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-04-17 17:21 - 2016-12-29 14:44 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-04-17 17:21 - 2016-12-29 14:44 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-04-17 17:21 - 2016-12-29 14:44 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-04-17 17:21 - 2016-12-19 09:26 - 07651057 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-04-17 17:21 - 2016-11-01 23:05 - 00103952 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-04-17 17:21 - 2016-11-01 23:05 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-04-17 17:20 - 2017-04-29 15:58 - 00000000 ____D C:\Users\davAdmin\AppData\Roaming\Skype
2017-04-17 17:20 - 2017-04-18 17:20 - 00003296 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-04-17 17:19 - 2017-04-18 17:20 - 00002399 _____ C:\Users\davAdmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-17 17:19 - 2017-04-18 17:20 - 00000000 ___RD C:\Users\davAdmin\OneDrive
2017-04-17 17:19 - 2017-04-17 17:19 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-04-17 17:17 - 2017-04-22 22:23 - 00000000 ____D C:\Users\davAdmin\AppData\Local\Packages
2017-04-17 17:17 - 2017-04-18 13:37 - 00000000 ____D C:\Users\davAdmin\AppData\Local\VirtualStore
2017-04-17 17:17 - 2017-04-18 09:54 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-04-17 17:17 - 2017-04-17 17:41 - 00000000 ____D C:\Users\davAdmin\AppData\Local\ConnectedDevicesPlatform
2017-04-17 17:17 - 2017-04-17 17:17 - 00000000 ____D C:\Users\davAdmin\AppData\Roaming\Adobe
2017-04-17 17:17 - 2017-04-17 17:17 - 00000000 ____D C:\Users\davAdmin\AppData\Local\TileDataLayer
2017-04-17 17:17 - 2017-04-17 17:17 - 00000000 ____D C:\Users\davAdmin\AppData\Local\Publishers
2017-04-17 17:16 - 2017-04-29 15:56 - 00000000 ____D C:\Users\davAdmin
2017-04-17 17:16 - 2017-04-17 17:16 - 00000020 ___SH C:\Users\davAdmin\ntuser.ini
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\Vorlagen
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\Startmenü
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\Netzwerkumgebung
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\Lokale Einstellungen
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\Eigene Dateien
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\Druckumgebung
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\Documents\Eigene Videos
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\Documents\Eigene Musik
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\Documents\Eigene Bilder
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\AppData\Local\Verlauf
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\AppData\Local\Anwendungsdaten
2017-04-17 17:16 - 2017-04-17 17:16 - 00000000 _SHDL C:\Users\davAdmin\Anwendungsdaten
2017-04-17 17:14 - 2017-04-17 17:16 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Packages
2017-04-17 17:14 - 2017-04-17 17:14 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\VirtualStore
2017-04-17 17:14 - 2017-04-17 17:14 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\TileDataLayer
2017-04-17 17:14 - 2017-04-17 17:14 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\ConnectedDevicesPlatform
2017-04-17 17:12 - 2017-04-29 16:04 - 01843372 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-17 17:11 - 2017-04-17 17:11 - 00000020 ___SH C:\Users\defaultuser0\ntuser.ini
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\Vorlagen
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\Startmenü
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\Netzwerkumgebung
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\Lokale Einstellungen
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\Eigene Dateien
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\Druckumgebung
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Videos
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Musik
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Bilder
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Verlauf
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Anwendungsdaten
2017-04-17 17:11 - 2017-04-17 17:11 - 00000000 _SHDL C:\Users\defaultuser0\Anwendungsdaten
2017-04-17 17:10 - 2017-04-17 17:11 - 00000000 ____D C:\Users\defaultuser0
2017-04-17 17:10 - 2017-03-28 08:20 - 02717184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\Vorlagen
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\Startmenü
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\ProgramData\Vorlagen
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\ProgramData\Startmenü
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\ProgramData\Dokumente
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2017-04-17 17:08 - 2017-04-17 17:08 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2017-04-17 17:01 - 2017-04-17 17:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-04-17 17:01 - 2017-04-17 17:01 - 00000000 ____D C:\ProgramData\USOShared
2017-04-17 17:00 - 2017-04-29 15:57 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-17 16:59 - 2017-04-29 14:49 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-17 16:59 - 2017-04-18 09:50 - 00194296 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-17 16:59 - 2017-04-17 16:59 - 00000000 ____D C:\WINDOWS\ServiceProfiles
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-04-29 16:04 - 2016-07-17 00:51 - 00709586 _____ C:\WINDOWS\system32\perfh007.dat
2017-04-29 16:04 - 2016-07-17 00:51 - 00152700 _____ C:\WINDOWS\system32\perfc007.dat
2017-04-29 15:56 - 2016-07-16 08:04 - 00262144 _____ C:\WINDOWS\system32\config\BBI
2017-04-28 17:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-27 17:01 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-24 17:09 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-04-22 22:12 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-04-22 21:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-04-20 22:09 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2017-04-18 15:14 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\setup
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Defender
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-04-18 04:50 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-04-18 04:50 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-04-18 04:50 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-04-18 04:50 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-04-18 04:50 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\servicing
2017-04-18 04:49 - 2016-07-16 13:47 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2017-04-18 04:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-04-18 04:44 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2017-04-17 18:09 - 2015-02-24 17:29 - 00000000 ____D C:\Games
2017-04-17 17:57 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-04-17 17:49 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-04-17 17:21 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Help
2017-04-17 17:10 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool
2017-04-17 17:10 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-04-17 17:09 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-04-17 17:08 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2017-04-17 17:02 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2017-04-17 17:01 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate
2017-04-17 17:00 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-04-01 20:52 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-04-01 20:52 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
Einige Dateien in TEMP:
====================
2017-04-22 17:21 - 2017-04-22 17:21 - 1199825 _____ () C:\Users\davAdmin\AppData\Local\Temp\unins000.exe
2017-04-22 17:21 - 2017-04-22 17:21 - 1249917 _____ (VideoBox ) C:\Users\davAdmin\AppData\Local\Temp\vbsetup.exe
2017-04-19 12:35 - 2017-04-19 12:35 - 14773216 _____ (Microsoft Corporation) C:\Users\davAdmin\AppData\Local\Temp\vcredist_x64.exe
2017-04-21 10:21 - 2017-04-21 10:22 - 14456872 _____ (Microsoft Corporation) C:\Users\davAdmin\AppData\Local\Temp\vc_redist.x86.exe
2017-04-17 17:49 - 2006-05-24 06:10 - 0455600 _____ (Macrovision Corporation) C:\Users\davAdmin\AppData\Local\Temp\_is4E00.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-04-27 22:00
==================== Ende von FRST.txt ============================
Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Datum des Schutzereignisses: 29.04.17
Uhrzeit des Schutzereignisses: 18:21
Protokolldatei: amb1.txt
Administrator: Ja
-Softwaredaten-
Version: 3.0.6.1469
Komponentenversion: 1.0.103
Version des Aktualisierungspakets: 1.0.1835
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: System
-Einzelheiten zu blockierten Websites-
Bösartige Website: 1
, , Blockiert, [-1], [-1],0.0.0
-Website-Daten-
Domäne: d2buh1bf1g584w.cloudfront.net
IP-Adresse: 52.222.250.153
Port: [50847]
Typ: Ausgehend
Datei: C:\Windows\System32\msiexec.exe
(end)
Geändert von davz (29.04.2017 um 18:08 Uhr) |
|
29.04.2017, 21:36
| #32 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | systemhealer+firefox und 6malige avast blocks FRST-Fix
__________________Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft! Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
Task: {D34DC53B-F59B-455C-96F3-627E22DB80BB} - \{7E797E47-790E-7D0B-7911-7E040B0A110C} -> Keine Datei <==== ACHTUNG
Task: {FA51E855-75CF-495C-8B95-FE3357AF8548} - \Stiwewardanevuse -> Keine Datei <==== ACHTUNG
2017-04-28 21:12 - 2017-04-28 21:23 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-04-28 18:46 - 2017-04-28 18:46 - 00000000 ____D C:\Users\davAdmin\AppData\Local\Cuptony
2017-04-28 18:46 - 2017-04-28 18:46 - 00000000 ____D C:\Program Files (x86)\Cuptony
2017-04-22 17:21 - 2017-04-28 11:07 - 00000000 ____D C:\Program Files (x86)\Vvughtbazipy
2017-04-22 17:21 - 2017-04-22 22:08 - 00000000 ____D C:\Users\davAdmin\AppData\Roaming\Rikashkefige
2017-04-22 17:21 - 2017-04-22 17:21 - 00000000 ____D C:\Users\davAdmin\AppData\Local\Reuzuatewerse
hosts:
emptytemp:
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ |
|
29.04.2017, 21:51
| #33 |
| | systemhealer+firefox und 6malige avast blocksCode:
ATTFilter ich hoffe sie halten mich nicht für bescheuert :D
wie du aus den logs am anfang gesehen hast,habe ich die testversion von mwb drauf und der echtzeitschutz..?.. ist da aktiviert.bei den Scans habe ich natürlich alles ausgemacht.
wie in mein letzten postanhang erkennt er immer noch was...
wie gerade ebend
nun ist es die Datei...(ausgehende Verbindung)
forallshop.info
ich bin auf keine komischen seiten drauf..nur YouTube mit Firefox
ich verstehe das alles nicht mehr..
Geändert von davz (29.04.2017 um 22:30 Uhr) |
|
29.04.2017, 21:51
| #34 |
| | systemhealer+firefox und 6malige avast blocks **gelöscht* Geändert von davz (29.04.2017 um 22:31 Uhr) |
|
29.04.2017, 22:14
| #35 |
| | systemhealer+firefox und 6malige avast blocksCode:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 27-04-2017
durchgeführt von davAdmin (29-04-2017 22:58:58) Run:1
Gestartet von C:\Users\davAdmin\Desktop
Geladene Profile: davAdmin (Verfügbare Profile: defaultuser0 & davAdmin)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
Task: {D34DC53B-F59B-455C-96F3-627E22DB80BB} - \{7E797E47-790E-7D0B-7911-7E040B0A110C} -> Keine Datei <==== ACHTUNG
Task: {FA51E855-75CF-495C-8B95-FE3357AF8548} - \Stiwewardanevuse -> Keine Datei <==== ACHTUNG
2017-04-28 21:12 - 2017-04-28 21:23 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-04-28 18:46 - 2017-04-28 18:46 - 00000000 ____D C:\Users\davAdmin\AppData\Local\Cuptony
2017-04-28 18:46 - 2017-04-28 18:46 - 00000000 ____D C:\Program Files (x86)\Cuptony
2017-04-22 17:21 - 2017-04-28 11:07 - 00000000 ____D C:\Program Files (x86)\Vvughtbazipy
2017-04-22 17:21 - 2017-04-22 22:08 - 00000000 ____D C:\Users\davAdmin\AppData\Roaming\Rikashkefige
2017-04-22 17:21 - 2017-04-22 17:21 - 00000000 ____D C:\Users\davAdmin\AppData\Local\Reuzuatewerse
hosts:
emptytemp:
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => Schlüssel erfolgreich entfernt
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => Schlüssel nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D34DC53B-F59B-455C-96F3-627E22DB80BB} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D34DC53B-F59B-455C-96F3-627E22DB80BB} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7E797E47-790E-7D0B-7911-7E040B0A110C} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FA51E855-75CF-495C-8B95-FE3357AF8548} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA51E855-75CF-495C-8B95-FE3357AF8548} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Stiwewardanevuse => Schlüssel erfolgreich entfernt
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => erfolgreich verschoben
C:\Users\davAdmin\AppData\Local\Cuptony => erfolgreich verschoben
C:\Program Files (x86)\Cuptony => erfolgreich verschoben
C:\Program Files (x86)\Vvughtbazipy => erfolgreich verschoben
C:\Users\davAdmin\AppData\Roaming\Rikashkefige => erfolgreich verschoben
C:\Users\davAdmin\AppData\Local\Reuzuatewerse => erfolgreich verschoben
C:\Windows\System32\Drivers\etc\hosts => erfolgreich verschoben
Hosts erfolgreich wiederhergestellt.
=========== EmptyTemp: ==========
BITS transfer queue => 314646 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 30477684 B
Java, Flash, Steam htmlcache => 167017901 B
Windows/system/drivers => 25576575 B
Edge => 1837331 B
Chrome => 308305 B
Firefox => 381701138 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 20316052 B
LocalService => 25270 B
NetworkService => 8140 B
defaultuser0 => 7296 B
davAdmin => 844529225 B
RecycleBin => 0 B
EmptyTemp: => 1.4 GB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 22:59:29 ====
Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Datum des Schutzereignisses: 29.04.17
Uhrzeit des Schutzereignisses: 23:06
Protokolldatei: tro2a.txt
Administrator: Ja
-Softwaredaten-
Version: 3.0.6.1469
Komponentenversion:
Version des Aktualisierungspakets:
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: System
-Einzelheiten zu blockierter Schadsoftware-
Datei: 1
Adware.Elex, C:\PROGRAMDATA\MICROSOFT\IDENTITYCRL\PRODUCTION\PPCRLCONFIG617.DLL, In Quarantäne, [2], [394174],
(end)
Geändert von davz (29.04.2017 um 22:35 Uhr) |
|
29.04.2017, 22:22
| #36 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | systemhealer+firefox und 6malige avast blocks Kontrollscans mit (1) MBAM, (2) ESET und (3) SecurityCheck bitte: 1. Schritt: Malwarebytes Version 3 Downloade Dir bitte Malwarebytes Anti-Malware 3
2. Schritt: ESET ESET Online Scanner
3. Schritt: SecurityCheck Downloade Dir bitte  SecurityCheck und:
__________________ --> systemhealer+firefox und 6malige avast blocks |
|
30.04.2017, 11:21
| #37 |
| | systemhealer+firefox und 6malige avast blocksCode:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 30.04.17
Scan-Zeit: 02:22
Protokolldatei: mbam.txt
Administrator: Ja
-Softwaredaten-
Version: 3.0.6.1469
Komponentenversion: 1.0.103
Version des Aktualisierungspakets: 1.0.1837
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: DESKTOP-9EEUMKR\davAdmin
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Ergebnis: Abgeschlossen
Gescannte Objekte: 369539
Abgelaufene Zeit: 1 Min., 10 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 0
(keine bösartigen Elemente erkannt)
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
(end)
Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=2a315cee8ba90c4088679451dc466e0e
# end=init
# utc_time=2017-04-30 12:27:19
# local_time=2017-04-30 02:27:19 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 33221
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=2a315cee8ba90c4088679451dc466e0e
# end=updated
# utc_time=2017-04-30 12:29:45
# local_time=2017-04-30 02:29:45 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=2a315cee8ba90c4088679451dc466e0e
# engine=33221
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2017-04-30 02:43:30
# local_time=2017-04-30 04:43:30 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 20068 24850824 0 0
# scanned=352097
# found=4
# cleaned=0
# scan_time=8025
sh=CC3ECA7CA274BB43CB6CF0D46DE28675FB960894 ft=1 fh=cf112ad3f9d9acaa vn="Variante von Win64/Snarasite.A Trojaner" ac=I fn="C:\AdwCleaner\quarantine\files\znothwwlxjpqszxmcdwemiwiacltfwig\Snare.dll"
sh=42F09EB64E788F6A04E7221B33BD9C86B8223C87 ft=1 fh=10aa7bcc908eb15c vn="Variante von Win32/Adware.ELEX.QG Anwendung" ac=I fn="C:\FRST\Quarantine\C\Program Files (x86)\Vvughtbazipy\goopdate.dll"
sh=4396EB6B9E885A53169614811AAAB87B48C1C45E ft=1 fh=83ada8f267882d38 vn="Variante von Win32/GenKryptik.ADJF Trojaner" ac=I fn="C:\Insist\rzf.8v0"
sh=8A2186D297F49B02683F1E5D43E1DA4276A25793 ft=0 fh=0000000000000000 vn="Variante von Win64/Adware.ELEX.J Anwendung" ac=I fn="E:\DAVZOCKVER\Backup Set 2017-02-19 190007\Backup Files 2017-02-19 190007\Backup files 10.zip"
Code:
ATTFilter Results of screen317's Security Check version 1.009 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Windows Defender WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` Mozilla Firefox (53.0) Google Chrome (58.0.3029.81) Google Chrome (SetupMetrics...) ````````Process Check: objlist.exe by Laurent```````` Windows Defender MSMpEng.exe Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamtray.exe Windows Defender MSASCuiL.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log`````````````````````` |
|
01.05.2017, 12:45
| #38 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | systemhealer+firefox und 6malige avast blocksZitat:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
01.05.2017, 13:16
| #39 |
| | systemhealer+firefox und 6malige avast blocks keine Ahnung. es ist eine Datei dadrinne rzf.8v0 |
|
01.05.2017, 18:05
| #40 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | systemhealer+firefox und 6malige avast blocks FRST-Fix[/COLOR] Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter C:\Insist
emptytemp:
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ Logfiles bitte immer in CODE-Tags posten |
|
01.05.2017, 18:49
| #41 |
| | systemhealer+firefox und 6malige avast blocks Geändert von davz (01.05.2017 um 18:59 Uhr) |
|
01.05.2017, 18:52
| #42 |
| | systemhealer+firefox und 6malige avast blocks gelöscht Geändert von davz (01.05.2017 um 18:59 Uhr) |
|
01.05.2017, 19:05
| #43 |
| | systemhealer+firefox und 6malige avast blockssry nicht richtig gelesen Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 01-05-2017
durchgeführt von davAdmin (01-05-2017 20:00:29) Run:2
Gestartet von C:\Users\davAdmin\Desktop
Geladene Profile: davAdmin (Verfügbare Profile: defaultuser0 & davAdmin)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
C:\Insist
emptytemp:
*****************
C:\Insist => erfolgreich verschoben
=========== EmptyTemp: ==========
BITS transfer queue => 32768 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 5738038 B
Java, Flash, Steam htmlcache => 60488324 B
Windows/system/drivers => 36018 B
Edge => 0 B
Chrome => 0 B
Firefox => 375579598 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 2114 B
defaultuser0 => 0 B
davAdmin => 119904052 B
RecycleBin => 0 B
EmptyTemp: => 535.8 MB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 20:00:41 ====
|
|
01.05.2017, 19:21
| #44 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | systemhealer+firefox und 6malige avast blocks Was ist jetzt noch an Problemen offen?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
01.05.2017, 20:57
| #45 |
| | systemhealer+firefox und 6malige avast blocksCode:
ATTFilter sh=8A2186D297F49B02683F1E5D43E1DA4276A25793 ft=0 fh=0000000000000000 vn="Variante von Win64/Adware.ELEX.J Anwendung" ac=I fn="E:\DAVZOCKVER\Backup Set 2017-02-19 190007\Backup Files 2017-02-19 190007\Backup files 10.zip"
hätte 1-2 fragen noch zum abschluss dann ;-) |
|
| Themen zu systemhealer+firefox und 6malige avast blocks |
| anleitung, avast, blockiert, browser, explorer, firefox, geht nicht mehr, guten, kurze, logdatei, nicht mehr, problem, programm, regeln, runter, scan, scanner, standart, testversion, umgeleitet, version, versuche, virenscan, virenscanner, windows |
Linear-Darstellung
