Trojaner-Board
Seite 1 von 4 1 23 Letzte »
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Bing.vc Infektion (https://www.trojaner-board.de/170005-bing-vc-infektion.html)

sam33321 19.08.2015 11:15
Bing.vc Infektion
 
Leider hat sich auf meinem Notebook (Acer Aspire 7736z) nach dem Update von Windows 7 auf Windows 10 der Trojaner Bing.vc breit gemacht.
IE11 und Firefox werden immer auf die Seite "hxxp://bing.vc/?r=15443&lnk=ext2" gezwungen.
MS Edge ist nicht betroffen.
Chrome ist nicht installiert.
Ich hoffe sehr, dass mir Jemand aus diesem Board bei der Beseitigung dieser Infektion helfen kann.
Vielen Dank.

schrauber 19.08.2015 11:16
Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307




Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


sam33321 19.08.2015 11:24
Noch ein Hinweis:
Gmer-19357.exe konnte ich leider nicht korrekt ausführen.
Windows 10 ist dabei 3x abgestürzt mit einer Meldung ähnlich wie "attempted_write_to_readonly_memory win32k.sys".

defogger_disable by jpshortstuff (23.02.10.1)
Log created at 16:17 on 19/08/2015 (sam33321)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:17-08-2015
durchgeführt von sam33321 (Administrator) auf ACER-NOTEBOOK (19-08-2015 16:17:59)
Gestartet von C:\install\virus-tools\2015_BVC
Geladene Profile: sam33321 (Verfügbare Profile: sam33321 & Administrator & DefaultAppPool)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Greatis Software, LLC) C:\Program Files (x86)\BootRacer\BootRacerServ.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mega System Technologies, Inc.) C:\Program Files (x86)\MegaTec\UPSilon 2000\RupsMon.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Mega System Technologies, Inc.) C:\Program Files (x86)\MegaTec\UPSilon 2000\usbmate.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
() C:\Windows\PLFSetI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Mega System Technologies, Inc.) C:\Program Files (x86)\MegaTec\UPSilon 2000\Monw32.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Farbar) C:\install\virus-tools\2015_BVC\1_FRST64.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [295936 2009-05-22] (Alps Electric Co., Ltd.)
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [206208 2010-05-05] ()
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935912 2015-08-09] (Synaptics Incorporated)
HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [641504 2015-07-21] (McAfee, Inc.)
HKLM-x32\...\Run: [Samsung PanelMgr] => C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe [688128 2011-07-06] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files (x86)\BootRacer\Bootrace.exe [3901200 2015-03-24] (Greatis Software)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53655680 2015-07-28] (Skype Technologies S.A.)
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-18] (Piriform Ltd)
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\RunOnce: [Uninstall C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [IconOverlayEx] -> {E1773C0E-364D-4210-B831-72F5A359E88F} => C:\Users\sam33321\AppData\Local\IconOverlayEx.dll [2015-06-20] ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.ch/
SearchScopes: HKLM-x32 -> DefaultScope {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\Snagit 9\DLLx64\SnagitBHO64.dll [2009-04-29] (TechSmith Corporation)
BHO-x32: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\Snagit 9\SnagitBHO.dll [2009-04-29] (TechSmith Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-29] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-29] (Oracle Corporation)
Toolbar: HKLM-x32 - Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitIEAddin.dll [2009-04-29] (TechSmith Corporation)
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} hxxp://office.microsoft.com/_layouts/ClientBin/ieawsdc32.cab
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://qtinstall.apple.com/qtactivex/qtplugin.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://active.macromedia.com/flash2/cabs/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://iwork.css.ch/dana-cached/sc/JuniperSetupClient.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2015-07-21] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2015-07-21] (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3aa86cd7-caf4-45e2-9462-fd2cde3e2b9f}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default
FF SearchEngineOrder.1: Sichere Suche
FF SelectedSearchEngine: Sichere Suche
FF Homepage: hxxp://torrentz.eu/search?f=flac
FF Keyword.URL: https://search.yahoo.com/search?fr=mcafee&type=B111CH0D20140928&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-07-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin-x32: @bittorrent.com/BitTorrentDNA -> C:\Program Files (x86)\DNA\plugins\npbtdna.dll [2010-11-01] (BitTorrent, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-29] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-07-21] ()
FF Plugin-x32: @mcafee.com/MVT -> C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll [2013-02-05] (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.)
FF SearchPlugin: C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\searchplugins\power-torrent-search.xml [2011-02-09]
FF SearchPlugin: C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\searchplugins\torrentz-search.xml [2011-01-07]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2015-03-15]
FF Extension: Torrent Finder Toolbar - C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\Extensions\TFToolbarX@torrent-finder.xpi [2012-01-09]
FF Extension: TorrentBar - C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\Extensions\{7b821b0e-b102-4f9b-b6e3-433ede1fe379}.xpi [2011-07-09]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-09-25]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2014-09-25]
FF HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-04-03]

Chrome:
=======
CHR Profile: C:\Users\sam33321\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 BootRacerServ; C:\Program Files (x86)\BootRacer\BootRacerServ.exe [65296 2014-04-30] (Greatis Software, LLC)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-07-22] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-07-22] (Microsoft Corporation)
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-11] (Microsoft Corporation)
R3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [155368 2015-04-29] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [782608 2015-07-21] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe [1694152 2015-07-23] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [639456 2015-07-17] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Datei ist nicht signiert]
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-06-29] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [373704 2015-07-06] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [254792 2015-06-29] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-09] (Microsoft Corporation)
S4 NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [250368 2010-03-09] (NewTech Infosystems, Inc.) [Datei ist nicht signiert]
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 RetailDemo; C:\Windows\system32\RDXService.dll [996352 2015-08-11] (Microsoft Corporation)
R2 Rupsmon; C:\Program Files (x86)\MegaTec\UPSilon 2000\RupsMon.exe [245760 2013-04-15] (Mega System Technologies, Inc.) [Datei ist nicht signiert]
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-07-12] (Microsoft Corporation)
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-07-24] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-07-24] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 USBMate; C:\Program Files (x86)\MegaTec\UPSilon 2000\USBMate.exe [106555 2012-10-22] (Mega System Technologies, Inc.) [Datei ist nicht signiert]
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-30] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-09] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-09] (Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [77536 2015-07-02] (McAfee, Inc.)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R2 megabattery; C:\Windows\System32\drivers\megabatteryX64.sys [20608 2012-03-31] (Megatec System Co.)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [412440 2015-07-02] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [347800 2015-07-02] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [496888 2015-07-02] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [875928 2015-07-02] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344704 2015-07-02] (McAfee, Inc.)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-09] (Microsoft Corporation)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-08-09] (Synaptics Incorporated)
R2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-07-29] (Samsung Electronics)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-07-14] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> Keine Datei

==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-19 16:17 - 2015-08-19 16:17 - 00000000 _____ C:\Users\sam33321\defogger_reenable
2015-08-19 16:02 - 2015-08-19 16:04 - 00045693 _____ C:\Users\sam33321\Downloads\Addition.txt
2015-08-19 15:58 - 2015-08-19 16:04 - 00134262 _____ C:\Users\sam33321\Downloads\FRST.txt
2015-08-19 15:57 - 2015-08-19 16:18 - 00000000 ____D C:\FRST
2015-08-19 15:57 - 2015-08-19 15:57 - 02173440 _____ (Farbar) C:\Users\sam33321\Downloads\FRST64.exe
2015-08-19 15:51 - 2015-08-19 15:51 - 00016148 _____ C:\WINDOWS\system32\ACER-NOTEBOOK_sam33321_HistoryPrediction.bin
2015-08-19 15:48 - 2015-08-19 15:49 - 00000000 ____D C:\AdwCleaner
2015-08-19 15:18 - 2015-08-19 15:18 - 01791580 _____ (Malwarebytes Corporation) C:\Users\sam33321\Downloads\JRT.exe
2015-08-19 07:11 - 2015-08-13 11:33 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-19 07:11 - 2015-08-13 11:23 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-19 07:11 - 2015-08-13 11:22 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 07:11 - 2015-08-13 11:20 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 07:11 - 2015-08-13 11:17 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-19 07:11 - 2015-08-13 11:07 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-08-19 07:11 - 2015-08-13 10:53 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-08-19 07:11 - 2015-08-11 17:04 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-19 07:11 - 2015-08-11 17:04 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-19 07:11 - 2015-08-11 17:04 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-19 07:11 - 2015-08-11 17:03 - 08021840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-19 07:11 - 2015-08-11 17:03 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-08-19 07:11 - 2015-08-11 17:02 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 07:11 - 2015-08-11 17:02 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 07:11 - 2015-08-11 17:02 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-08-19 07:11 - 2015-08-11 16:57 - 03622256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-19 07:11 - 2015-08-11 16:52 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-19 07:11 - 2015-08-11 16:50 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-19 07:11 - 2015-08-11 16:40 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-19 07:11 - 2015-08-11 16:40 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-19 07:11 - 2015-08-11 16:40 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-19 07:11 - 2015-08-11 16:38 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-08-19 07:11 - 2015-08-11 16:37 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-19 07:11 - 2015-08-11 16:31 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-08-19 07:11 - 2015-08-11 16:26 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-19 07:11 - 2015-08-11 16:23 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 07:11 - 2015-08-11 16:22 - 21875200 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-19 07:11 - 2015-08-11 16:21 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 07:11 - 2015-08-11 16:21 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 07:11 - 2015-08-11 16:20 - 02224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-19 07:11 - 2015-08-11 16:20 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 07:11 - 2015-08-11 16:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 07:11 - 2015-08-11 16:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 07:11 - 2015-08-11 16:16 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 07:11 - 2015-08-11 16:14 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 07:11 - 2015-08-11 16:13 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 07:11 - 2015-08-11 16:11 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-19 07:11 - 2015-08-11 16:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-19 07:11 - 2015-08-11 16:10 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 07:11 - 2015-08-11 16:10 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 07:11 - 2015-08-11 16:10 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 07:11 - 2015-08-11 16:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 07:11 - 2015-08-11 16:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 07:11 - 2015-08-11 16:08 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 07:11 - 2015-08-11 16:07 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-19 07:11 - 2015-08-11 16:07 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 07:11 - 2015-08-11 16:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 07:11 - 2015-08-11 16:06 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-19 07:11 - 2015-08-11 16:06 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 07:11 - 2015-08-11 16:03 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-19 07:11 - 2015-08-11 16:02 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-19 07:11 - 2015-08-11 16:02 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-19 07:11 - 2015-08-11 16:02 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 07:11 - 2015-08-11 16:02 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-19 07:11 - 2015-08-11 16:01 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 07:11 - 2015-08-11 16:00 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 07:11 - 2015-08-11 16:00 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-08-19 07:11 - 2015-08-11 15:58 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 07:11 - 2015-08-11 15:57 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-19 07:11 - 2015-08-11 15:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-08-19 07:11 - 2015-08-11 15:51 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-19 07:11 - 2015-08-11 15:51 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-19 07:11 - 2015-08-11 15:50 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-19 07:11 - 2015-08-11 15:50 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-19 07:11 - 2015-08-11 15:50 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 07:11 - 2015-08-11 15:49 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 07:11 - 2015-08-11 15:49 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 07:11 - 2015-08-11 15:48 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-08-19 07:11 - 2015-08-11 15:47 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-19 07:11 - 2015-08-11 15:45 - 18805760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-08-19 07:11 - 2015-08-11 15:45 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-19 07:11 - 2015-08-11 15:43 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-08-19 07:11 - 2015-08-11 15:42 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-19 07:11 - 2015-08-11 15:40 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-19 07:11 - 2015-08-11 15:40 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-19 07:11 - 2015-08-11 15:40 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-19 07:11 - 2015-08-11 15:39 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-08-19 07:11 - 2015-08-11 15:38 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-18 15:30 - 2015-08-18 15:30 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 ____D C:\Users\DefaultAppPool
2015-08-18 15:30 - 2015-08-12 20:11 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-18 15:30 - 2015-08-08 23:40 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-17 19:59 - 2015-08-17 19:59 - 05267299 _____ C:\Users\sam33321\Downloads\unhackme.zip.87wre0p.partial
2015-08-17 19:56 - 2015-08-19 15:53 - 00000000 ____D C:\ProgramData\BootRacer
2015-08-17 19:54 - 2015-08-19 15:52 - 00040960 ____H C:\Users\Public\Documents\bootracer.his
2015-08-17 19:51 - 2015-08-19 15:53 - 00038395 ____H C:\Users\Public\Documents\bootracer.log
2015-08-17 19:51 - 2015-08-19 15:53 - 00000447 ____H C:\Users\Public\Documents\bootracer.ini
2015-08-17 19:51 - 2015-08-19 15:51 - 00000000 ____D C:\Program Files (x86)\BootRacer
2015-08-17 19:51 - 2015-08-17 19:51 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BootRacer
2015-08-17 19:50 - 2015-08-17 19:50 - 04764468 _____ C:\Users\sam33321\Downloads\bootracer_free_ger.zip
2015-08-17 18:06 - 2015-08-17 19:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-17 17:54 - 2015-08-17 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2015-08-17 15:36 - 2015-08-17 15:36 - 00002878 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-08-17 15:36 - 2015-08-17 15:36 - 00000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-08-17 15:36 - 2015-08-17 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-17 15:36 - 2015-08-17 15:36 - 00000000 ____D C:\Program Files\CCleaner
2015-08-17 12:26 - 2015-08-17 12:26 - 00000000 ____D C:\WINDOWS\pss
2015-08-17 11:58 - 2015-08-17 11:58 - 00001598 _____ C:\Users\sam33321\Desktop\IE 11.lnk
2015-08-15 22:05 - 2015-08-15 22:05 - 00000126 ___RH C:\Users\sam33321\Downloads\Stinger.opt
2015-08-15 21:21 - 2015-08-15 21:27 - 00000813 _____ C:\Users\sam33321\Downloads\Stinger_15082015_212157.html
2015-08-15 21:20 - 2015-08-15 21:21 - 13240688 _____ (McAfee Inc) C:\Users\sam33321\Downloads\stinger64 (1).exe
2015-08-15 21:19 - 2015-08-15 21:20 - 13240688 _____ (McAfee Inc) C:\Users\sam33321\Downloads\stinger64.exe
2015-08-15 21:14 - 2015-08-15 23:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-08-15 13:23 - 2015-08-15 13:24 - 01012365 _____ C:\Users\sam33321\Downloads\html5player-new.js
2015-08-15 13:07 - 2015-08-15 13:07 - 00000000 ___RD C:\Users\sam33321\3D Objects
2015-08-15 13:01 - 2015-08-15 13:01 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-08-15 13:01 - 2015-08-15 13:01 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-08-15 13:00 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-08-15 13:00 - 2015-06-18 17:59 - 02862488 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-08-15 13:00 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-08-15 13:00 - 2015-06-17 19:47 - 02585816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2015-08-15 13:00 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-08-15 13:00 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-08-15 13:00 - 2015-06-11 19:40 - 03157796 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2015-08-15 13:00 - 2015-06-10 13:20 - 03129672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2015-08-15 13:00 - 2015-06-10 13:20 - 00728392 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-08-15 13:00 - 2015-06-09 11:17 - 05708736 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-08-15 13:00 - 2015-05-27 18:51 - 00349528 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-08-15 13:00 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-08-15 13:00 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-08-15 13:00 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-08-15 13:00 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-08-15 13:00 - 2015-05-11 18:53 - 12996528 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 01374640 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 01192368 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 01145264 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 00980400 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-08-15 13:00 - 2015-04-27 16:09 - 00328816 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-08-15 13:00 - 2015-04-24 05:42 - 00858256 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2015-08-15 13:00 - 2015-04-24 05:42 - 00684176 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2015-08-15 13:00 - 2015-04-24 05:42 - 00435856 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2015-08-15 13:00 - 2015-04-24 05:41 - 00555664 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.DLL
2015-08-15 13:00 - 2015-04-13 16:25 - 03262184 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2015-08-15 13:00 - 2015-02-05 17:48 - 12834736 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-08-15 13:00 - 2015-02-05 17:48 - 02789808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 01413776 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00454288 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00369296 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2015-08-15 13:00 - 2015-01-23 18:16 - 00213432 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaemaxapo64.dll
2015-08-15 13:00 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-08-15 13:00 - 2014-12-11 08:10 - 01104040 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2015-08-15 13:00 - 2014-12-11 08:10 - 00943784 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2015-08-15 13:00 - 2014-12-11 08:10 - 00734376 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2015-08-15 13:00 - 2014-12-11 08:10 - 00250536 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2015-08-15 13:00 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-08-15 13:00 - 2014-10-24 10:12 - 05234952 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-08-15 13:00 - 2014-10-24 10:12 - 00995120 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-08-15 13:00 - 2014-08-14 19:16 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2015-08-15 13:00 - 2014-06-17 19:17 - 00856992 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2015-08-15 13:00 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-08-15 13:00 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-08-15 13:00 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2015-08-15 13:00 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-08-15 13:00 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-08-15 13:00 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-08-15 13:00 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-08-15 13:00 - 2013-07-23 15:39 - 14048512 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-08-15 13:00 - 2013-07-23 15:39 - 00922880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-08-15 13:00 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2015-08-15 13:00 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2015-08-15 13:00 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2015-08-15 13:00 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2015-08-15 13:00 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-08-15 13:00 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2015-08-15 13:00 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-08-15 13:00 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-08-15 13:00 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-08-15 13:00 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-08-15 13:00 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-08-15 13:00 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2015-08-15 13:00 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2015-08-15 13:00 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-08-15 13:00 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-08-15 13:00 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-08-15 12:59 - 2015-06-02 19:25 - 01576976 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2015-08-15 12:59 - 2015-05-27 18:51 - 02461016 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-08-15 12:59 - 2015-05-27 18:51 - 02393432 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-08-15 12:59 - 2015-05-27 18:51 - 00944984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-08-15 12:59 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 06242576 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 01933584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 00336144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 00284944 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 07087448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 01939800 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 00315736 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-08-15 12:59 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-08-15 12:59 - 2014-05-22 16:24 - 00096568 _____ C:\WINDOWS\system32\audioLibVc.dll
2015-08-15 12:59 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-08-15 12:59 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-08-15 12:59 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-08-15 12:59 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2015-08-15 12:59 - 2013-06-21 11:01 - 00109848 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-08-15 12:59 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-08-15 12:56 - 2015-05-27 17:38 - 02825944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2015-08-13 11:56 - 2015-08-13 11:56 - 00001379 _____ C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iexplore.lnk
2015-08-13 11:31 - 2015-08-13 11:32 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\DeutschTV
2015-08-12 20:07 - 2015-08-08 14:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-12 20:07 - 2015-08-08 14:19 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-08-12 20:07 - 2015-08-08 14:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-12 20:07 - 2015-08-08 13:48 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-08-12 20:07 - 2015-08-08 13:40 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-12 20:07 - 2015-08-08 13:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-12 20:07 - 2015-08-08 13:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-12 20:07 - 2015-08-08 13:15 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-08-12 20:07 - 2015-08-08 13:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-12 20:07 - 2015-08-06 10:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-12 20:07 - 2015-08-06 10:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-12 20:07 - 2015-08-06 09:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-12 20:07 - 2015-08-05 11:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-12 20:07 - 2015-08-05 11:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-12 20:07 - 2015-08-05 11:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-12 20:07 - 2015-08-05 10:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-12 20:07 - 2015-08-05 10:47 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-12 20:07 - 2015-08-05 10:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-12 20:07 - 2015-08-04 11:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-12 20:07 - 2015-08-04 11:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-12 20:07 - 2015-08-04 11:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-12 20:07 - 2015-08-04 10:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-12 20:07 - 2015-08-04 09:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-12 20:07 - 2015-08-04 09:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-12 20:07 - 2015-08-03 09:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-12 20:07 - 2015-08-03 09:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-12 20:07 - 2015-08-03 09:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-12 20:07 - 2015-08-03 09:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-12 20:07 - 2015-08-03 09:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-12 20:07 - 2015-08-03 09:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-12 20:07 - 2015-08-03 09:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-12 20:07 - 2015-08-03 09:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-12 20:07 - 2015-08-03 09:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-12 20:07 - 2015-08-03 09:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-12 20:07 - 2015-08-03 09:13 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-12 20:07 - 2015-08-03 09:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-12 20:07 - 2015-08-03 08:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-12 20:07 - 2015-08-03 08:50 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-12 20:07 - 2015-08-03 08:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-12 20:07 - 2015-08-03 08:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-12 20:07 - 2015-08-03 08:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-12 20:07 - 2015-08-03 08:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-12 20:07 - 2015-08-03 08:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-12 20:07 - 2015-08-03 08:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-12 20:07 - 2015-08-03 08:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-12 20:07 - 2015-08-03 08:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-12 20:07 - 2015-08-03 08:22 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-08-12 20:07 - 2015-08-03 08:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-12 20:07 - 2015-08-03 08:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-12 20:07 - 2015-08-03 08:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-12 20:07 - 2015-08-03 08:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-12 20:07 - 2015-08-03 08:18 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-12 20:07 - 2015-08-03 08:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-12 20:07 - 2015-08-03 08:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-12 20:07 - 2015-08-03 08:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-12 20:07 - 2015-08-03 08:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-12 20:07 - 2015-08-03 08:14 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-12 20:07 - 2015-08-03 08:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-12 20:07 - 2015-08-03 08:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-12 20:07 - 2015-08-03 08:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-12 20:07 - 2015-08-03 08:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-12 20:07 - 2015-08-03 08:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-12 20:07 - 2015-08-03 08:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-12 20:07 - 2015-08-03 08:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-12 20:07 - 2015-08-03 08:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-12 20:07 - 2015-08-03 08:01 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-08-12 20:07 - 2015-08-03 07:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-12 18:18 - 2015-08-12 18:18 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-08-11 11:38 - 2015-08-11 11:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2015-08-10 12:25 - 2015-08-10 12:25 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-10 10:30 - 2015-08-10 10:30 - 00001179 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-09 15:12 - 2015-08-09 15:12 - 00000000 ____D C:\Users\sam33321\AppData\Local\Comms
2015-08-09 14:56 - 2015-08-09 14:56 - 00000000 ____D C:\Intel
2015-08-09 12:14 - 2015-08-09 12:16 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Acer Drivers Update Utility
2015-08-09 12:14 - 2015-06-20 17:14 - 01875456 ____R C:\Users\sam33321\AppData\Local\IconOverlayEx.dll
2015-08-09 12:07 - 2015-08-09 12:07 - 00000000 ____D C:\backup
2015-08-09 10:21 - 2015-08-08 22:38 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-09 10:21 - 2015-08-08 22:38 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-09 10:09 - 2015-07-30 13:21 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-09 10:09 - 2015-07-30 13:16 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-09 10:09 - 2015-07-30 13:05 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-09 10:09 - 2015-07-30 13:04 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-09 10:09 - 2015-07-30 11:25 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-09 10:09 - 2015-07-30 11:24 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-09 10:09 - 2015-07-30 11:21 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-09 10:09 - 2015-07-30 10:52 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-09 10:09 - 2015-07-30 10:49 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-09 10:09 - 2015-07-30 10:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-09 10:09 - 2015-07-30 10:15 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-09 10:09 - 2015-07-30 10:04 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-09 10:09 - 2015-07-26 12:16 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-09 10:09 - 2015-07-26 12:14 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-09 10:09 - 2015-07-26 12:14 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-09 10:09 - 2015-07-26 12:13 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-09 10:09 - 2015-07-26 11:28 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-09 10:09 - 2015-07-26 10:49 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-09 10:09 - 2015-07-26 10:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-09 10:09 - 2015-07-26 10:40 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-09 10:09 - 2015-07-26 10:39 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-09 10:09 - 2015-07-26 10:38 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-09 10:09 - 2015-07-26 10:30 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-09 10:09 - 2015-07-24 10:30 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-09 10:09 - 2015-07-24 09:40 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-09 10:09 - 2015-07-24 09:39 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-09 10:09 - 2015-07-24 09:25 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-09 10:09 - 2015-07-24 09:24 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-09 10:09 - 2015-07-24 09:24 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-09 10:09 - 2015-07-22 12:18 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-09 10:09 - 2015-07-22 12:02 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-09 10:09 - 2015-07-22 11:00 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-09 10:09 - 2015-07-22 11:00 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-09 10:09 - 2015-07-22 10:59 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-09 10:09 - 2015-07-22 10:55 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-09 10:09 - 2015-07-22 10:54 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-09 10:09 - 2015-07-22 10:53 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-09 10:09 - 2015-07-22 10:46 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-09 10:09 - 2015-07-22 10:13 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-08-09 10:09 - 2015-07-22 10:13 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-09 10:09 - 2015-07-22 10:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-09 10:09 - 2015-07-22 10:03 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-09 10:09 - 2015-07-19 11:04 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-09 10:09 - 2015-07-18 14:29 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-09 10:09 - 2015-07-18 10:59 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-09 10:09 - 2015-07-18 10:52 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-09 10:09 - 2015-07-17 09:31 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-09 10:09 - 2015-07-17 09:26 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-09 10:09 - 2015-07-17 08:53 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-09 10:09 - 2015-07-16 11:04 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-09 10:09 - 2015-07-16 10:47 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-09 10:09 - 2015-07-16 10:44 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-09 10:09 - 2015-07-16 10:43 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-09 10:09 - 2015-07-16 10:35 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-09 10:09 - 2015-07-16 10:29 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-09 10:09 - 2015-07-16 10:27 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-09 10:09 - 2015-07-15 10:21 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-09 10:09 - 2015-07-15 09:49 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-09 10:09 - 2015-07-15 09:41 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-09 10:09 - 2015-07-15 09:22 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-09 10:09 - 2015-07-15 08:47 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-09 10:09 - 2015-07-12 07:25 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-09 10:09 - 2015-07-12 07:18 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-09 10:09 - 2015-07-12 06:46 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-09 10:09 - 2015-07-11 08:17 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-09 10:09 - 2015-07-11 08:07 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-09 10:09 - 2015-07-11 08:04 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-09 10:09 - 2015-07-11 08:03 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-09 10:09 - 2015-07-11 07:57 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-09 10:09 - 2015-07-11 07:51 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-09 10:09 - 2015-07-11 07:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-09 10:09 - 2015-07-11 07:41 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-09 10:09 - 2015-07-11 07:40 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-09 10:09 - 2015-07-10 22:51 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-09 10:09 - 2015-07-10 22:00 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-09 10:09 - 2015-07-10 16:53 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-09 10:09 - 2015-07-10 16:31 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-09 10:08 - 2015-07-30 13:24 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-09 10:08 - 2015-07-30 13:23 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-09 10:08 - 2015-07-30 13:17 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-09 10:08 - 2015-07-30 13:17 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 13:15 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-09 10:08 - 2015-07-30 13:14 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-09 10:08 - 2015-07-30 13:09 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-09 10:08 - 2015-07-30 13:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-09 10:08 - 2015-07-30 13:05 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-09 10:08 - 2015-07-30 13:03 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-09 10:08 - 2015-07-30 12:24 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-09 10:08 - 2015-07-30 11:29 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-09 10:08 - 2015-07-30 11:26 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-09 10:08 - 2015-07-30 11:26 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-09 10:08 - 2015-07-30 11:25 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-09 10:08 - 2015-07-30 11:24 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-09 10:08 - 2015-07-30 11:24 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-09 10:08 - 2015-07-30 11:24 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-09 10:08 - 2015-07-30 11:22 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 11:22 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-09 10:08 - 2015-07-30 11:12 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-09 10:08 - 2015-07-30 11:12 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-09 10:08 - 2015-07-30 11:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-09 10:08 - 2015-07-30 11:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-09 10:08 - 2015-07-30 11:08 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-09 10:08 - 2015-07-30 11:08 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-09 10:08 - 2015-07-30 10:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-09 10:08 - 2015-07-30 10:52 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-09 10:08 - 2015-07-30 10:52 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-09 10:08 - 2015-07-30 10:46 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 10:46 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-09 10:08 - 2015-07-30 10:45 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-09 10:08 - 2015-07-30 10:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-09 10:08 - 2015-07-30 10:44 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-09 10:08 - 2015-07-30 10:44 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-09 10:08 - 2015-07-30 10:44 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-09 10:08 - 2015-07-30 10:44 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-09 10:08 - 2015-07-30 10:44 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-09 10:08 - 2015-07-30 10:42 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-09 10:08 - 2015-07-30 10:41 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-09 10:08 - 2015-07-30 10:41 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-09 10:08 - 2015-07-30 10:40 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-09 10:08 - 2015-07-30 10:38 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-09 10:08 - 2015-07-30 10:38 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-09 10:08 - 2015-07-30 10:34 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-09 10:08 - 2015-07-30 10:29 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-09 10:08 - 2015-07-30 10:07 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-09 10:08 - 2015-07-30 10:06 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 10:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-09 10:08 - 2015-07-30 10:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-09 10:08 - 2015-07-30 10:04 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-09 10:08 - 2015-07-30 09:59 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-09 10:08 - 2015-07-30 09:58 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-09 10:08 - 2015-07-26 12:16 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-09 10:08 - 2015-07-26 12:06 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-09 10:08 - 2015-07-26 10:49 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-09 10:08 - 2015-07-26 10:47 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-09 10:08 - 2015-07-26 10:39 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-09 10:08 - 2015-07-26 10:35 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-09 10:08 - 2015-07-26 10:34 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-09 10:08 - 2015-07-26 10:30 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-09 10:08 - 2015-07-26 10:29 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-09 10:08 - 2015-07-24 10:18 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-09 10:08 - 2015-07-24 10:17 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-09 10:08 - 2015-07-24 10:17 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-09 10:08 - 2015-07-24 10:12 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-09 10:08 - 2015-07-24 09:55 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-09 10:08 - 2015-07-24 09:52 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-09 10:08 - 2015-07-24 09:46 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-09 10:08 - 2015-07-24 09:44 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-09 10:08 - 2015-07-24 09:34 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-09 10:08 - 2015-07-24 09:30 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-09 10:08 - 2015-07-24 09:29 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-09 10:08 - 2015-07-24 09:24 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-09 10:08 - 2015-07-24 09:24 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-09 10:08 - 2015-07-22 12:15 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-09 10:08 - 2015-07-22 11:13 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-09 10:08 - 2015-07-22 11:02 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-09 10:08 - 2015-07-22 11:00 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-09 10:08 - 2015-07-22 10:55 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-09 10:08 - 2015-07-22 10:21 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-09 10:08 - 2015-07-22 10:10 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-09 10:08 - 2015-07-22 10:09 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-09 10:08 - 2015-07-22 10:07 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-09 10:08 - 2015-07-22 09:50 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-09 10:08 - 2015-07-19 10:54 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-09 10:08 - 2015-07-19 10:23 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-09 10:08 - 2015-07-19 10:18 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-09 10:08 - 2015-07-19 10:02 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-09 10:08 - 2015-07-19 09:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-09 10:08 - 2015-07-18 15:47 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-09 10:08 - 2015-07-18 14:43 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-09 10:08 - 2015-07-18 14:37 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-09 10:08 - 2015-07-18 14:28 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-09 10:08 - 2015-07-18 14:28 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-08-09 10:08 - 2015-07-18 14:26 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-08-09 10:08 - 2015-07-18 12:17 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-09 10:08 - 2015-07-18 12:02 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-09 10:08 - 2015-07-18 11:06 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-09 10:08 - 2015-07-18 10:59 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-09 10:08 - 2015-07-18 10:50 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-09 10:08 - 2015-07-18 10:50 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-09 10:08 - 2015-07-18 10:49 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-09 10:08 - 2015-07-18 10:49 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-09 10:08 - 2015-07-18 10:49 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-09 10:08 - 2015-07-18 10:48 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-09 10:08 - 2015-07-18 10:48 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-09 10:08 - 2015-07-18 10:47 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-09 10:08 - 2015-07-17 11:23 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-09 10:08 - 2015-07-17 11:13 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-09 10:08 - 2015-07-17 11:12 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-09 10:08 - 2015-07-17 11:07 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-09 10:08 - 2015-07-17 09:39 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-09 10:08 - 2015-07-17 09:39 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-09 10:08 - 2015-07-17 09:36 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-09 10:08 - 2015-07-17 09:33 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-09 10:08 - 2015-07-17 09:33 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-09 10:08 - 2015-07-17 09:32 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-09 10:08 - 2015-07-17 09:26 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-09 10:08 - 2015-07-17 09:24 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-09 10:08 - 2015-07-17 09:19 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-09 10:08 - 2015-07-17 09:19 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-09 10:08 - 2015-07-17 09:18 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-09 10:08 - 2015-07-17 09:05 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-09 10:08 - 2015-07-17 09:05 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-09 10:08 - 2015-07-17 08:56 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-09 10:08 - 2015-07-17 08:51 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-09 10:08 - 2015-07-17 08:50 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-09 10:08 - 2015-07-17 08:44 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-09 10:08 - 2015-07-16 12:39 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-09 10:08 - 2015-07-16 11:09 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-09 10:08 - 2015-07-16 11:03 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-09 10:08 - 2015-07-16 11:01 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-09 10:08 - 2015-07-16 10:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-09 10:08 - 2015-07-16 10:45 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-09 10:08 - 2015-07-16 10:41 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-09 10:08 - 2015-07-16 10:40 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-09 10:08 - 2015-07-16 10:36 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-09 10:08 - 2015-07-16 10:33 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-09 10:08 - 2015-07-16 10:32 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-09 10:08 - 2015-07-16 10:19 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-09 10:08 - 2015-07-15 09:49 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-09 10:08 - 2015-07-15 09:16 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-09 10:08 - 2015-07-15 09:04 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-09 10:08 - 2015-07-15 08:57 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-09 10:08 - 2015-07-15 08:41 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-09 10:08 - 2015-07-15 08:37 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-09 10:08 - 2015-07-15 08:35 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-09 10:08 - 2015-07-15 08:27 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-09 10:08 - 2015-07-14 10:00 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-09 10:08 - 2015-07-14 09:37 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-09 10:08 - 2015-07-14 09:04 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-09 10:08 - 2015-07-14 08:51 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-09 10:08 - 2015-07-14 08:49 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-09 10:08 - 2015-07-14 08:38 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-09 10:08 - 2015-07-14 08:20 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-09 10:08 - 2015-07-13 07:01 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-09 10:08 - 2015-07-13 06:30 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-09 10:08 - 2015-07-12 07:38 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-09 10:08 - 2015-07-11 08:28 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-09 10:08 - 2015-07-11 08:05 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-09 10:08 - 2015-07-11 08:03 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-09 10:08 - 2015-07-11 08:02 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-09 10:08 - 2015-07-11 08:01 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-09 10:08 - 2015-07-11 07:42 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-09 10:08 - 2015-07-11 07:40 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-09 10:08 - 2015-07-11 07:40 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-09 10:08 - 2015-07-11 07:34 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-09 10:08 - 2015-07-10 22:47 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-09 10:08 - 2015-07-10 21:52 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-09 10:08 - 2015-07-10 17:59 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-09 10:08 - 2015-07-10 17:42 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-09 10:08 - 2015-07-10 17:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-09 10:08 - 2015-07-10 17:05 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-09 10:08 - 2015-07-10 16:35 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-09 10:08 - 2015-07-10 16:29 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-09 09:28 - 2015-08-19 13:01 - 00004180 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0E0083EF-5557-4714-8414-5E622512AE80}
2015-08-09 05:18 - 2015-08-09 00:05 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-09 05:14 - 2015-08-09 05:14 - 00000000 ____D C:\Windows.old
2015-08-09 05:13 - 2015-08-09 05:13 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\Program Files\MSBuild
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\inetpub
2015-08-09 05:10 - 2015-08-08 23:42 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-09 05:09 - 2015-06-18 00:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-09 05:09 - 2015-06-18 00:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 05:09 - 2015-06-18 00:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-09 05:09 - 2015-05-30 03:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-09 05:09 - 2015-05-30 03:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 05:09 - 2015-05-30 03:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-09 00:28 - 2015-08-09 00:28 - 10627744 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-08-09 00:28 - 2015-08-09 00:28 - 06593816 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 04931384 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 04755784 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 04370016 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 01991936 _____ C:\WINDOWS\system32\iglhxa64.cpa
2015-08-09 00:28 - 2015-08-09 00:28 - 00982240 _____ C:\WINDOWS\SysWOW64\igkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00982240 _____ C:\WINDOWS\system32\igkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00439308 _____ C:\WINDOWS\SysWOW64\igcompkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00439308 _____ C:\WINDOWS\system32\igcompkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00208896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00206336 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00147456 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00092356 _____ C:\WINDOWS\SysWOW64\igfcg500m.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00092356 _____ C:\WINDOWS\system32\igfcg500m.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00060254 _____ C:\WINDOWS\system32\iglhxg64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00060226 _____ C:\WINDOWS\system32\iglhxc64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00060015 _____ C:\WINDOWS\system32\iglhxo64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00005424 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00001090 _____ C:\WINDOWS\system32\iglhxa64.vp
2015-08-09 00:27 - 2015-08-09 00:27 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-08-09 00:27 - 2015-08-09 00:27 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-08-09 00:27 - 2015-08-09 00:24 - 00033960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-08-09 00:26 - 2015-08-09 00:26 - 00000000 ____D C:\Program Files\Synaptics
2015-08-09 00:25 - 2015-08-09 00:25 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00755880 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00606376 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-08-09 00:25 - 2015-08-09 00:25 - 00410792 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00260264 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00246952 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo31.dll
2015-08-09 00:24 - 2015-08-09 00:24 - 00231456 _____ C:\WINDOWS\system32\pca-manta.bin
2015-08-09 00:24 - 2015-08-09 00:24 - 00033960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-08-09 00:24 - 2015-08-09 00:24 - 00033448 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-08-09 00:24 - 2015-08-09 00:24 - 00000092 _____ C:\WINDOWS\system32\calibration.bin
2015-08-09 00:19 - 2015-07-09 20:39 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-08-09 00:19 - 2015-07-09 20:36 - 06238720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons000c.dll
2015-08-09 00:19 - 2015-07-09 20:36 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-08-09 00:19 - 2015-07-09 20:36 - 02268160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000c.dll
2015-08-09 00:19 - 2015-07-09 20:28 - 06358016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-08-09 00:19 - 2015-07-09 20:26 - 02353152 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000c.dll
2015-08-09 00:19 - 2015-07-09 20:25 - 06238720 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons000c.dll
2015-08-09 00:19 - 2015-07-09 20:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-08-09 00:19 - 2015-07-09 20:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-08-09 00:17 - 2015-08-09 00:18 - 00000000 ___RD C:\Users\sam33321\OneDrive
2015-08-09 00:17 - 2015-08-09 00:18 - 00000000 ____D C:\Users\sam33321\AppData\Local\MicrosoftEdge
2015-08-09 00:12 - 2015-08-09 00:12 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-08-09 00:09 - 2015-08-09 00:09 - 00000000 ____D C:\Users\sam33321\AppData\Local\Publishers
2015-08-09 00:07 - 2015-08-09 00:07 - 00000000 ____D C:\Users\sam33321\AppData\Local\NetworkTiles
2015-08-09 00:05 - 2015-08-18 17:25 - 00000000 ____D C:\Users\sam33321\AppData\Local\Packages
2015-08-09 00:05 - 2015-08-09 00:05 - 00000020 ___SH C:\Users\sam33321\ntuser.ini
2015-08-09 00:05 - 2015-08-09 00:05 - 00000000 ____D C:\Users\sam33321\AppData\Local\TileDataLayer
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 __SHD C:\Recovery
2015-08-08 23:47 - 2015-07-10 17:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-08 23:40 - 2015-08-08 23:40 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-08 23:40 - 2015-08-08 23:40 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-08-08 23:40 - 2015-08-08 23:40 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-08-08 23:33 - 2015-08-08 23:33 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-08-08 23:28 - 2015-08-19 16:17 - 00000000 ____D C:\Users\sam33321
2015-08-08 23:28 - 2015-08-08 23:50 - 00000000 ____D C:\Users\Administrator
2015-08-08 23:28 - 2015-08-08 23:29 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Vorlagen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Startmenü
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Netzwerkumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Lokale Einstellungen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Eigene Dateien
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Druckumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Documents\Eigene Musik
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Documents\Eigene Bilder
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\AppData\Local\Verlauf
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\AppData\Local\Anwendungsdaten
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Anwendungsdaten
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 __RSD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-08 23:26 - 2015-08-18 17:23 - 02085854 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-08 23:26 - 2015-08-08 23:27 - 00021209 _____ C:\WINDOWS\iis.log
2015-08-08 23:26 - 2015-08-08 23:26 - 01980268 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01007.Wdf
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____D C:\Program Files\LSI SoftModem
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____D C:\Program Files\Apoint2K
2015-08-08 23:23 - 2015-08-15 13:01 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-08 23:23 - 2015-08-08 23:23 - 00000000 ____D C:\Program Files\Realtek
2015-08-08 23:20 - 2015-08-08 23:21 - 00023385 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-08 23:19 - 2015-08-17 19:54 - 00011064 _____ C:\WINDOWS\PFRO.log
2015-08-08 22:46 - 2015-08-08 23:58 - 00007322 _____ C:\WINDOWS\comsetup.log
2015-08-08 22:28 - 2015-08-08 22:42 - 00000000 ___HD C:\$Windows.~BT
2015-08-03 09:22 - 2015-08-03 09:22 - 00000000 ____D C:\Users\sam33321\AppData\Local\GWX
2015-08-03 08:21 - 2015-05-26 00:00 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-08-03 08:20 - 2015-07-10 00:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-08-03 08:19 - 2015-01-09 10:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\powertracker.dll

sam33321 19.08.2015 11:29
Farbar Logfile Teil 2


==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-19 16:04 - 2012-12-31 08:46 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-19 15:59 - 2013-12-28 20:28 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Skype
2015-08-19 15:56 - 2013-10-26 07:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-08-19 15:55 - 2015-07-10 19:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-19 15:52 - 2014-06-17 16:12 - 00001106 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8a0c3832eee1.job
2015-08-19 15:50 - 2015-07-10 19:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-19 15:50 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-19 15:50 - 2015-07-10 16:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-19 15:49 - 2013-10-14 13:44 - 00001110 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cec8a8d405f05d.job
2015-08-19 15:06 - 2014-12-21 14:06 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-19 14:37 - 2014-06-05 21:26 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\GlobalTV
2015-08-19 13:15 - 2011-01-02 19:18 - 00000099 _____ C:\Users\Public\LMDebug.log
2015-08-19 08:41 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-19 08:41 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-19 07:52 - 2015-07-10 17:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-19 07:14 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-18 17:23 - 2015-07-10 23:34 - 00888476 _____ C:\WINDOWS\system32\perfh007.dat
2015-08-18 17:23 - 2015-07-10 23:34 - 00197074 _____ C:\WINDOWS\system32\perfc007.dat
2015-08-18 16:51 - 2013-12-06 18:57 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2015-08-18 06:42 - 2015-07-10 16:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-17 19:54 - 2012-05-21 12:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-17 19:51 - 2010-10-28 22:16 - 00000000 ____D C:\install
2015-08-17 18:10 - 2011-06-19 22:20 - 00002673 _____ C:\WINDOWS\wininit.ini
2015-08-17 18:08 - 2010-10-29 00:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-08-17 18:08 - 2010-04-13 03:06 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-17 17:54 - 2015-07-10 18:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-17 17:54 - 2010-04-13 03:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-08-17 17:42 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-17 16:31 - 2010-10-28 23:59 - 00000000 ____D C:\Program Files\Microsoft Office
2015-08-17 15:47 - 2015-07-10 19:20 - 00387984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-17 15:14 - 2014-01-24 13:45 - 00000000 ____D C:\Users\sam33321\Documents\ML-1660_PrintDa
2015-08-17 15:13 - 2014-01-16 20:28 - 00000040 _____ C:\Autoconfig.ini
2015-08-17 14:49 - 2015-07-10 19:20 - 00030792 _____ C:\WINDOWS\setupact.log
2015-08-17 11:13 - 2010-12-06 17:30 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\vlc
2015-08-17 11:04 - 2010-11-01 18:32 - 00000000 ____D C:\bittorrent
2015-08-16 22:23 - 2011-01-14 13:32 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\FileZilla
2015-08-16 10:14 - 2014-06-05 21:24 - 00000000 ____D C:\Program Files (x86)\GlobalHDTV
2015-08-15 22:07 - 2014-07-26 08:59 - 00000000 ____D C:\TheraGate
2015-08-15 14:22 - 2013-01-22 11:52 - 00002085 _____ C:\Users\sam33321\Desktop\links.txt
2015-08-15 13:02 - 2010-05-05 07:24 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-08-14 07:29 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\rescache
2015-08-14 07:14 - 2010-10-28 22:42 - 00000000 ____D C:\Program Files (x86)\McAfee
2015-08-13 13:07 - 2010-10-28 22:45 - 00000000 ____D C:\Programme
2015-08-13 12:56 - 2010-10-28 22:15 - 00000000 ____D C:\Program Files (x86)\Windows Live
2015-08-13 12:37 - 2011-04-30 19:55 - 00001224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-13 11:34 - 2010-12-07 18:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-12 20:11 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 20:11 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 20:11 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-12 18:29 - 2013-07-27 08:58 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-12 18:21 - 2013-12-05 06:16 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-12 17:53 - 2012-12-31 08:46 - 00003858 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-11 11:42 - 2010-04-13 03:02 - 00000000 ____D C:\ProgramData\McAfee
2015-08-11 11:41 - 2010-10-28 22:42 - 00000000 ____D C:\Program Files\Common Files\McAfee
2015-08-10 17:05 - 2011-01-02 19:17 - 00000000 ____D C:\WINDOWS\Samsung
2015-08-10 17:04 - 2010-11-01 18:31 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\BitTorrent
2015-08-10 10:30 - 2014-12-21 14:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-10 10:30 - 2014-12-21 14:06 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-09 21:28 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-08-09 16:09 - 2011-05-19 17:30 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\ObviousIdea
2015-08-09 11:53 - 2015-01-12 11:18 - 00000468 _____ C:\WINDOWS\CLOSEAPP.INI
2015-08-09 11:42 - 2013-01-27 22:29 - 00000000 ____D C:\ProgramData\TuneUp Software
2015-08-09 11:41 - 2013-12-16 09:48 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2015-08-09 11:40 - 2011-02-04 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR ReadyNAS
2015-08-09 11:35 - 2012-01-17 09:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-08-09 11:35 - 2012-01-17 09:35 - 00000000 ____D C:\ProgramData\Freemake
2015-08-09 11:35 - 2012-01-17 09:35 - 00000000 ____D C:\Program Files (x86)\Freemake
2015-08-09 11:34 - 2013-06-21 08:01 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2015-08-09 11:34 - 2012-06-12 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-08-09 11:34 - 2012-06-12 15:53 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\DVDVideoSoft
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-09 10:15 - 2015-07-10 16:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-09 10:15 - 2015-07-10 16:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-09 05:18 - 2015-07-10 18:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-08-09 05:10 - 2015-07-10 18:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-08-09 05:10 - 2015-07-10 18:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-08-09 05:10 - 2015-07-10 18:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-08-09 05:10 - 2015-07-10 18:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-08-09 05:10 - 2015-07-10 18:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-08-09 05:10 - 2015-07-10 18:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-08-09 05:10 - 2015-07-10 18:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-08-09 03:49 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-09 00:19 - 2015-07-10 23:35 - 00000000 ____D C:\WINDOWS\OCR
2015-08-09 00:08 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-09 00:08 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-09 00:03 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-08-08 23:59 - 2015-07-10 18:04 - 00000000 ____D C:\Program Files\Windows NT
2015-08-08 23:59 - 2015-07-10 16:05 - 00000000 __RHD C:\Users\Default
2015-08-08 23:58 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\Registration
2015-08-08 23:58 - 2013-12-04 21:13 - 00014259 _____ C:\WINDOWS\diagerr.xml
2015-08-08 23:58 - 2013-12-04 21:13 - 00013338 _____ C:\WINDOWS\diagwrn.xml
2015-08-08 23:57 - 2015-07-10 18:04 - 00000000 __RSD C:\WINDOWS\Media
2015-08-08 23:57 - 2015-07-10 18:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-08 23:57 - 2015-04-16 17:41 - 00003268 _____ C:\WINDOWS\System32\Tasks\{DC46145C-0CA8-429F-BB1A-8E47D6AD21E5}
2015-08-08 23:57 - 2014-12-26 08:42 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-08-08 23:57 - 2014-06-17 16:12 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf8a0c3832eee1
2015-08-08 23:57 - 2014-02-10 12:42 - 00003556 _____ C:\WINDOWS\System32\Tasks\{D508D905-006F-497D-B963-6270456B9E68}
2015-08-08 23:57 - 2013-12-05 01:08 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-08 23:57 - 2013-10-14 13:44 - 00004216 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1cec8a8d405f05d
2015-08-08 23:57 - 2013-02-27 12:02 - 00002956 _____ C:\WINDOWS\System32\Tasks\Core Temp Autostart sam33321
2015-08-08 23:57 - 2013-02-01 15:35 - 00003434 _____ C:\WINDOWS\System32\Tasks\4780
2015-08-08 23:57 - 2013-01-28 15:09 - 00003804 _____ C:\WINDOWS\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2015-08-08 23:56 - 2015-07-10 18:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-08-08 23:51 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-08 23:42 - 2015-07-10 23:46 - 00000000 ____D C:\WINDOWS\ShellNew
2015-08-08 23:42 - 2015-07-10 18:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-08 23:42 - 2015-03-13 10:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout
2015-08-08 23:42 - 2014-11-02 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Share Manager
2015-08-08 23:42 - 2014-10-23 13:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-08 23:42 - 2014-08-14 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeTV
2015-08-08 23:42 - 2014-07-30 14:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UPSilon 2000
2015-08-08 23:42 - 2014-06-05 21:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Global HDTV
2015-08-08 23:42 - 2014-03-10 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2015-08-08 23:42 - 2013-12-18 16:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2015-08-08 23:42 - 2013-12-16 09:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
2015-08-08 23:42 - 2013-09-30 11:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-08 23:42 - 2013-07-24 17:42 - 00000000 ____D C:\WINDOWS\de
2015-08-08 23:42 - 2013-07-24 17:41 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-08-08 23:42 - 2013-02-26 09:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2015-08-08 23:42 - 2013-01-26 10:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DirPrintOK
2015-08-08 23:42 - 2013-01-19 14:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2015-08-08 23:42 - 2011-06-19 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp Backup Tool
2015-08-08 23:42 - 2011-05-21 18:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exif Tag Remover
2015-08-08 23:42 - 2011-01-14 13:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-08-08 23:42 - 2011-01-02 19:17 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-08-08 23:42 - 2010-12-19 22:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\freac - free audio converter
2015-08-08 23:42 - 2010-12-07 18:11 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-08 23:42 - 2010-11-05 23:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Snagit 9
2015-08-08 23:42 - 2010-11-01 18:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitTorrent
2015-08-08 23:42 - 2010-05-05 07:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Arcade Deluxe
2015-08-08 23:42 - 2010-05-05 07:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager
2015-08-08 23:42 - 2010-04-13 03:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Backup Manager
2015-08-08 23:42 - 2010-04-13 03:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
2015-08-08 23:42 - 2010-04-13 03:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-08-08 23:42 - 2010-04-13 02:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
2015-08-08 23:40 - 2015-07-10 18:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-08 23:40 - 2009-07-14 10:20 - 00000000 ____D C:\Users\Default.migrated
2015-08-08 23:35 - 2015-07-10 23:34 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-08-08 23:35 - 2010-05-05 07:22 - 00000000 ____D C:\WINDOWS\SysWOW64\x64
2015-08-08 23:35 - 2010-05-05 07:22 - 00000000 ____D C:\WINDOWS\SysWOW64\Lang
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-08 23:34 - 2011-06-09 11:53 - 00000000 ____D C:\WINDOWS\system32\SPReview
2015-08-08 23:34 - 2011-06-09 11:53 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2015-08-08 23:33 - 2015-07-10 20:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\schemas
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\IME
2015-08-08 23:33 - 2014-09-18 12:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-08 23:33 - 2013-02-08 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\yaDIS
2015-08-08 23:33 - 2011-07-02 14:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MKVtoolnix
2015-08-08 23:33 - 2011-05-21 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karaoke for DirectX
2015-08-08 23:33 - 2011-05-19 17:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ObviousIdea
2015-08-08 23:33 - 2011-04-12 14:54 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-08-08 23:33 - 2010-11-20 13:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Medieval Software
2015-08-08 23:33 - 2010-11-13 19:54 - 00000000 __SHD C:\WINDOWS\system32\%APPDATA%
2015-08-08 23:33 - 2010-10-29 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF
2015-08-08 23:33 - 2010-10-28 23:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2005
2015-08-08 23:33 - 2010-04-13 03:04 - 00000000 ____D C:\Program Files (x86)\Acer
2015-08-08 23:33 - 2009-07-14 12:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-08-08 23:33 - 2009-07-14 12:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-08-08 23:31 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-08 23:30 - 2009-07-14 10:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-08-08 23:26 - 2015-07-10 16:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-08 22:55 - 2013-12-05 02:39 - 01642611 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-08 22:35 - 2009-07-14 11:45 - 00030416 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-08 22:35 - 2009-07-14 11:45 - 00030416 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-08 21:45 - 2011-05-19 16:58 - 00000000 ____D C:\temp
2015-08-08 21:09 - 2014-08-14 22:12 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\FreeTV
2015-08-08 16:47 - 2015-03-14 08:59 - 00000000 ____D C:\Users\sam33321\AppData\Local\CrashDumps
2015-08-06 09:04 - 2010-10-28 22:21 - 00000000 ____D C:\ProgramData\Skype
2015-07-29 10:53 - 2014-10-23 13:40 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-29 10:53 - 2013-12-06 18:43 - 00000000 ____D C:\ProgramData\Oracle
2015-07-29 10:51 - 2015-01-25 10:42 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-07-23 18:01 - 2010-10-28 22:20 - 00000000 ____D C:\Users\sam33321\AppData\Local\Microsoft Help
2015-07-21 11:05 - 2010-10-29 00:46 - 00000000 ____D C:\Users\sam33321\AppData\Local\CutePDF Writer

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2012-01-21 22:14 - 2012-01-21 22:14 - 0010606 _____ () C:\Users\sam33321\AppData\Roaming\Kommagetrennte Werte (Windows).CAL
2013-11-12 16:03 - 2013-11-12 16:03 - 0038412 _____ () C:\Users\sam33321\AppData\Roaming\Microsoft Excel 97-2003.ADR
2013-11-16 07:50 - 2015-04-19 09:44 - 0000479 _____ () C:\Users\sam33321\AppData\Roaming\Poladroid prefs.plist
2013-02-26 13:13 - 2013-12-09 08:34 - 1178624 _____ (CPUID) C:\Users\sam33321\AppData\Roaming\siw_sdk.dll
2010-05-03 22:54 - 2010-05-03 22:54 - 0007680 _____ () C:\Users\sam33321\AppData\Roaming\SpareLib.dll
2010-05-03 22:54 - 2010-05-03 22:54 - 0024576 _____ () C:\Users\sam33321\AppData\Roaming\WSM.exe
2014-02-23 21:40 - 2014-02-23 21:40 - 0000393 _____ () C:\Users\sam33321\AppData\Local\HamsterVideoConverterSettings.cfg
2015-08-09 12:14 - 2015-06-20 17:14 - 1875456 ____R () C:\Users\sam33321\AppData\Local\IconOverlayEx.dll
2014-04-05 09:41 - 2014-05-27 16:13 - 0003671 _____ () C:\Users\sam33321\AppData\Local\Images.fl
2015-05-15 09:40 - 2015-05-15 09:40 - 0004096 ____H () C:\Users\sam33321\AppData\Local\keyfile3.drm
2014-01-30 09:12 - 2014-01-30 09:12 - 0015722 _____ () C:\Users\sam33321\AppData\Local\recently-used.xbel
2013-12-28 21:23 - 2013-12-28 21:23 - 0007605 _____ () C:\Users\sam33321\AppData\Local\Resmon.ResmonCfg
2015-08-15 13:01 - 2015-08-15 13:01 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
ZeroAccess:
C:\Users\sam33321\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install

Einige Dateien in TEMP:
====================
C:\Users\sam33321\AppData\Local\Temp\i4jdel0.exe
C:\Users\sam33321\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-19 07:49

==================== Ende von Ergebnis ============================

Addition.txt

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:17-08-2015
durchgeführt von sam33321 (2015-08-19 16:19:19)
Gestartet von C:\install\virus-tools\2015_BVC
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2429274901-1692467857-2381098989-500 - Administrator - Disabled) => C:\Users\Administrator
sam33321 (S-1-5-21-2429274901-1692467857-2381098989-1001 - Administrator - Enabled) => C:\Users\sam33321
DefaultAccount (S-1-5-21-2429274901-1692467857-2381098989-503 - Limited - Disabled)
Gast (S-1-5-21-2429274901-1692467857-2381098989-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2429274901-1692467857-2381098989-1002 - Limited - Enabled)
___VMware_Conv_SA___ (S-1-5-21-2429274901-1692467857-2381098989-1007 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Acer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.0.7006 - CyberLink Corp.)
Acer Arcade Deluxe (x32 Version: 3.0.7006 - CyberLink Corp.) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.60 - NewTech Infosystems)
Acer Crystal Eye webcam Ver:1.1.158.203 (HKLM-x32\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.158.203 - Chicony Electronics Co.,Ltd.)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.05.3004 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3007 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.7.0715 - Acer Incorporated)
Acer System Information (HKLM-x32\...\{72199E33-4F2A-4B7F-8E25-95DDDD50A678}) (Version: 1.0.0 - Acer)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.105.2015.1103 - Alps Electric)
Backup Manager Basic (x32 Version: 2.0.0.60 - NewTech Infosystems) Hidden
BitTorrent (HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\BitTorrent) (Version: 7.9.2.32241 - BitTorrent Inc.)
BootRacer (HKLM-x32\...\{FFB8386C-3B57-4172-A1A8-6B401C708E0A}) (Version: 4.9.0.390 - Greatis Software, LLC)
Broadcom Gigabit NetLink Controller (HKLM\...\{96F70DF8-160F-4F9C-9B9E-2A9B439B4EB9}) (Version: 12.26.02 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
Core Temp 1.0 RC4 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CutePDF Writer 2.8 (HKLM\...\CutePDF Writer Installation) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DirPrintOK (HKLM-x32\...\DirPrintOK) (Version: - )
DynGate (HKLM-x32\...\DynGate) (Version: - )
Exif Tag Remover 4.1 (HKLM-x32\...\Exif Tag Remover_is1) (Version: - RL Vision)
FileZilla Client 3.12.0.2 (HKLM-x32\...\FileZilla Client) (Version: 3.12.0.2 - Tim Kosse)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free YouTube Download version 3.2.54.219 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.54.219 - DVDVideoSoft Ltd.)
Freemake Audio Converter Version 1.1.0 (HKLM-x32\...\Freemake Audio Converter_is1) (Version: 1.1.0 - Ellora Assets Corporation)
GlobalHDTV (HKLM-x32\...\GlobalHDTV) (Version: - )
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1892 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Internet Explorer (Enable DEP) (HKLM\...\{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb) (Version: - )
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 3.0.06 - Acer Inc.)
Light Image Resizer 4.3.2.2 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.3.2.2 - ObviousIdea)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.1.94 - LSI Corporation)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
McAfee Internet Security (HKLM-x32\...\MSC) (Version: 14.0.4113 - McAfee, Inc.)
McAfee Virtual Technician (HKLM-x32\...\McAfee Virtual Technician) (Version: 7.5.0.3093 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.274 - McAfee, Inc.)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Project Professional 2003 (HKLM-x32\...\{903B0407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Visio Professional 2003 (HKLM-x32\...\{90510407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 40.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.2 (x86 de)) (Version: 40.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.2.5702 - Mozilla)
Mozilla Thunderbird 38.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.2.0 (x86 de)) (Version: 38.2.0 - Mozilla)
NTI Backup Now Standard (x32 Version: 5.1.2.628 - NewTech Infosystems) Hidden
NTI Media Maker 8 (x32 Version: 8.0.12.6630 - NewTech Infosystems) Hidden
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7100.30093 - Realtek Semiconductor Corp.)
Samsung Universal Print Driver 2 (HKLM-x32\...\Samsung Universal Print Driver 2) (Version: 2.50.04.00 - Samsung Electronics Co., Ltd.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
Snagit 9.1.2 (HKLM-x32\...\{B440D659-FECA-4BDD-A12B-5C9F05790FF3}) (Version: 9.1.2.124 - TechSmith Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.13.0 - Synaptics Incorporated)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_PROPLUS_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_PROPLUS_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_PROPLUS_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_PROPLUS_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
UPSilon 2000 (HKLM-x32\...\{E592E668-89A9-4098-B70C-0C2D59FB15CA}) (Version: 5.2 - MegaTec)
VL Sound 5.1 (HKLM-x32\...\VL Sound 5.1) (Version: - Valera Lavrov)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wartung Samsung ML-1660 Series (HKLM-x32\...\Samsung ML-1660 Series) (Version: - Samsung Electronics Co., Ltd.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Backup Tool (HKLM-x32\...\Winamp Backup Tool) (Version: 1.0 Beta 11.7 - Christoph Grether, Darren Owen & Paweł Porwisz)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Share Manager (HKLM-x32\...\{8A6AA24D-71B5-47FE-BDFF-D9304753D8E2}) (Version: 1.2 - Windows Share Manager)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
WinZip 17.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240D7}) (Version: 17.0.10283 - WinZip Computing, S.L. )
yaDIS 2.1.2 (HKLM-x32\...\{14F44B46-A8F0-457E-AC29-4C032C899715}_is1) (Version: - )

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{3560575F-7C2D-48AE-AB45-DAD430A95EBE}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.dll ()
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Wiederherstellungspunkte =========================

09-08-2015 00:03:54 Windows Modules Installer
09-08-2015 00:04:38 Windows Modules Installer
12-08-2015 18:14:13 Windows Update
12-08-2015 18:14:58 Windows Update
15-08-2015 12:57:33 Installiert Realtek High Definition Audio Driver
17-08-2015 15:40:34 Configured NTI Backup Now 5
18-08-2015 16:51:51 AA11

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 09:34 - 2009-06-11 04:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {002C59C9-1BE4-4BF0-AB1C-F131A9E2BF14} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {00390221-DD00-43DA-9A8D-058161F5D464} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {022A28C1-2420-497E-8FAB-C6850B18276A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {0477E82A-B141-4B42-91EB-44C944CC4CFE} - System32\Tasks\{DC46145C-0CA8-429F-BB1A-8E47D6AD21E5} => pcalua.exe -a C:\install\efrc\EFRCSetup36.exe -d C:\install\efrc
Task: {09037327-FFFB-451E-BC2B-AFA5159849E0} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {0FF1509E-A47C-4BE2-A100-836101067524} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)
Task: {12F50D53-3EF6-4716-86F9-6C5485EFE1E3} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {1771E521-268B-4D51-B149-C442EBE9D19D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {192E0E88-598B-4138-82AF-120651FB1355} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {197A1850-1AF8-44FB-9642-B6BAF7465AD6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {22BAEA48-6956-42CA-A571-47BBE65834C7} - System32\Tasks\{5A5D37FB-3510-49A7-B4BF-1F33E8464519} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\5\SSSDUninstall.exe
Task: {23C3A9E0-3F90-4003-B747-BBCA1D6DA98E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {25074B94-84DC-43AF-871F-691E13EB37F5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {267189B2-E26A-4FCC-B847-AC1CC4515FD3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-18] (Piriform Ltd)
Task: {267E8D6C-6FD1-422C-B3C7-2E6E93276269} - System32\Tasks\{99F93271-8944-4DBA-ACD1-F1C5CE9509B0} => pcalua.exe -a "C:\Program Files (x86)\NCH Swift Sound\ExpressBurn\uninst.exe"
Task: {2C03285D-3E2A-4AF0-AF49-B6BEE2DA39DE} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2F51857B-6072-42A1-A90B-1ED1E2FEC0BD} - System32\Tasks\{8FEF3DBF-752A-4CC6-B276-4CCD2BBE0F3D} => pcalua.exe -a C:\install\dreamweaver\e_008803\e_mdw4tfr.exe -d C:\install\dreamweaver\e_008803
Task: {336A36F5-86C8-4573-A1F2-FB1111B9987F} - System32\Tasks\{76FF5A2E-EB0C-4C89-9700-0AA5038ECD1A} => pcalua.exe -a C:\VRockPRO\VRockola.exe -d c:\VRockPRO
Task: {3A0F4D34-6F17-4BF4-8E1F-0A4FA7D07436} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {3A7747E2-0587-486C-9850-209A2E105438} - System32\Tasks\{D508D905-006F-497D-B963-6270456B9E68} => pcalua.exe -a "C:\bittorrent\Microsoft Office Professional Plus 2013 x86 &amp; x64 UPDATED Jan 2014\x86\setup.exe" -d "C:\bittorrent\Microsoft Office Professional Plus 2013 x86 &amp; x64 UPDATED Jan 2014\x86"
Task: {3A81B070-145C-451C-B4AA-54D5C032A672} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {3F163F6E-959A-4909-8AB7-6F438F2695F1} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {4609F4B8-DC97-49D3-BD41-0CCC6183559F} - \YourFile DownloaderUpdate -> Keine Datei <==== ACHTUNG
Task: {4CF17ED0-6C65-47F3-9689-7F4544BE5267} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {505232FF-5BB1-4E0A-919B-CBB0A1DA4404} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {55212E4D-05A5-4C38-B1F8-7F8815B9A1D1} - System32\Tasks\{9F40C934-7847-46EB-93FB-3883EE697256} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\1\SS_Uninstall.exe
Task: {5750C68A-90C1-4CB8-924A-B4F246039A7B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {65EA2621-DE91-49E1-B5A1-A2E378B3ED84} - System32\Tasks\{4F9C2C20-00AE-4D96-9717-6EF973693524} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\3\SSCDUninstall.exe
Task: {695D594A-25BE-4FFD-846E-7FA78D0D76C8} - System32\Tasks\{BFE36CAD-2201-4112-969D-910AD3F08144} => pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\8\INTEL3~1\IDriver.exe -c /M{D48C9BFC-FBCF-4F29-B97D-822ED6D497FE}
Task: {6DE9C553-7EB8-48D6-A19A-14B092370CC2} - System32\Tasks\{65D7960E-5BE5-438C-84B2-AD75FF73C31B} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\6\SSBCUninstall.exe
Task: {6E39FAD4-677F-445B-9DE0-05007781E574} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {6FA7704D-284B-4D34-85DC-27871813B879} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {6FB909E9-E247-41E5-B91B-44BEB78F13F1} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {725770B9-4773-42C7-B0DF-2381DC274EAD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {8713E7F5-E273-4C79-BBC9-F71902970CC2} - System32\Tasks\{A70AD6F3-8848-4691-B869-22EE95B50980} => pcalua.exe -a D:\SetupWizard.exe -d D:\
Task: {8A18E357-668E-4E40-A408-3BDF5556E332} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {8CD5E060-31F9-4DB4-8EBF-F3C9B131D221} - System32\Tasks\GoogleUpdateTaskMachineUA1cec8a8d405f05d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-07-15] (Microsoft Corporation)
Task: {90816627-647D-40EC-890B-4105EF227E33} - System32\Tasks\{BCE1C121-76CF-47D5-BC4F-C4382C19841A} => pcalua.exe -a C:\install\winamppro_5581\AndrewLabs_ATSurround_for_Winamp_4_5.exe -d C:\install\winamppro_5581
Task: {96F0F372-1CC9-4ABC-816E-9FA1EA7EE2A8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {98277114-698D-4D92-86FB-4F729C1F053C} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {992D587B-6327-4C85-A54F-9C5951157C19} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {9CFE248D-07C7-4D9E-9D7C-A9829DE78D30} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {9D5A9A45-8AA4-4F72-9ABB-EBADB3F6DBD1} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {A1201EAE-D59D-422C-85C9-D0CC350C491E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {A70B6867-1FD9-4E11-BD3E-1309ABC54C97} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {B0D946D5-0582-44AB-A54A-1489A9E45D08} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {B23EEB8B-127E-473E-876E-C1A1138CAA7C} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {BB039FEC-9BE2-4325-8453-F72A9F1F1FCA} - System32\Tasks\{0CC09549-5806-4FEB-91E5-691F5816B8CA} => pcalua.exe -a "C:\Program Files (x86)\NCH Swift Sound\WavePad\uninst.exe"
Task: {BE9ED2CD-5794-4CB1-912E-CB454BF4E5B5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {BF045C9C-27CF-4CA1-BF39-6C2E1CB0C154} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8a0c3832eee1 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Task: {BF8C6E3C-6B5F-403F-AB19-42841936744E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {C4F63C4C-7D03-4272-9314-084B2F5CBACE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {CE80D704-1E9B-4014-A305-91F711ACF23D} - System32\Tasks\4780 => Wscript.exe C:\Users\ANDIGE~1\AppData\Local\Temp\launchie.vbs //B <==== ACHTUNG
Task: {CF166AEA-05DA-4F0A-9880-1339149BBFBA} - System32\Tasks\Core Temp Autostart sam33321 => C:\Program Files\Core Temp\Core Temp.exe [2012-10-14] ()
Task: {D2A0E8AC-17CE-4181-B4DA-5B089B32EE72} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {D4FEF8F0-F5E2-42DF-A094-51FE2B638FA7} - System32\Tasks\{6B19064E-E76B-435C-9E34-C99929FABCE1} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{12EFA1A4-AC3B-443C-8143-237EDE760403}\setup.exe" -c -runfromtemp -l0x0409
Task: {DDF4FDDB-EACE-47DA-A546-7938C32D70EF} - System32\Tasks\{18417872-D8E0-45C0-B3AE-A35005EFC316} => pcalua.exe -a C:\install\irfanview\irfanview_plugins_430_setup.exe -d C:\install\irfanview
Task: {DF130F78-81F6-4749-A8C7-00D81601AEFE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {F23EF0ED-77FF-4586-9940-F6CDADBAF636} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {F40367E0-E7FA-41D6-903E-52542951C3BC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8a0c3832eee1.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cec8a8d405f05d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-09 10:08 - 2015-07-15 09:04 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2010-10-29 00:24 - 2009-11-05 13:40 - 00085504 _____ () C:\WINDOWS\System32\cpwmon64.dll
2014-01-16 20:27 - 2011-04-11 12:26 - 00034304 _____ () C:\WINDOWS\System32\spe__l.dll
2011-06-22 06:48 - 2011-06-22 06:48 - 00034304 _____ () C:\WINDOWS\System32\ssp7ml6.dll
2015-08-09 10:09 - 2015-07-30 13:05 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-09 10:09 - 2015-07-30 13:05 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-08-09 12:14 - 2015-06-20 17:14 - 01875456 ____R () C:\Users\sam33321\AppData\Local\IconOverlayEx.dll
2015-07-10 00:32 - 2015-07-10 00:32 - 00043480 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2010-12-07 18:11 - 2010-03-15 17:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2015-07-10 17:59 - 2015-07-10 17:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-12 20:07 - 2015-08-03 08:11 - 06569472 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 18:00 - 2015-07-10 23:45 - 00471040 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 07:11 - 2015-08-11 15:58 - 01808384 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-12 20:07 - 2015-08-03 08:09 - 02274816 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 18:00 - 2015-07-10 23:45 - 00210432 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2010-05-05 07:25 - 2010-05-05 07:25 - 00206208 _____ () C:\Windows\PLFSetI.exe
2015-07-18 00:34 - 2015-07-18 00:34 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-08-19 07:11 - 2015-08-11 16:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-08-15 21:14 - 2015-08-15 21:14 - 00153768 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2015-08-15 21:14 - 2015-08-15 21:14 - 00023208 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\samsungsetup.com -> hxxp://www.samsungsetup.com


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupreg: LManager => C:\Program Files (x86)\Launch Manager\LManager.exe
HKLM\...\StartupApproved\Run32: => "Samsung PanelMgr"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{EED27C10-304D-4C60-AE01-BD1E6E8E4087}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4DCCA305-5E22-4684-A5F1-B7F6D6379245}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0F54E8E8-8B16-4D77-BCD9-CABD6BF2FBF2}] => (Allow) C:\Users\sam33321\AppData\Roaming\McAfee\Supportability\MVTLogs\ProductDetection64.exe
FirewallRules: [{708D3E85-35B3-49E8-AC8A-F6401546ADD9}] => (Allow) C:\Users\sam33321\AppData\Roaming\McAfee\Supportability\MVTLogs\ProductDetection64.exe
FirewallRules: [{B96EA5D2-2DF4-45D2-AE24-F3910E40E81A}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{5996CE14-73FC-4A58-984C-190BB05AEC70}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{0AE0BF44-A04F-48E4-9E36-185A7DD6BF47}] => (Allow) C:\Users\sam33321\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{DA59EACE-D0A2-4157-86E0-93D86F4AD461}] => (Allow) C:\Users\sam33321\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{218766C1-50A4-47BC-8554-CD34E296821A}] => (Allow) C:\Program Files (x86)\MegaTec\UPSilon 2000\RupsMon.exe
FirewallRules: [{FFA85294-88CD-4033-B23E-A9B820E169C3}] => (Allow) C:\Program Files (x86)\MegaTec\UPSilon 2000\RupsMon.exe
FirewallRules: [{15625762-689D-4BED-BD99-40AB494FEECC}] => (Allow) C:\Program Files (x86)\MegaTec\UPSilon 2000\UPSilon.exe
FirewallRules: [{B443AF80-38F8-4094-9CCA-79D8CD94814E}] => (Allow) C:\Program Files (x86)\MegaTec\UPSilon 2000\UPSilon.exe
FirewallRules: [{3D17CD74-06B9-472F-AEED-95007EC8151F}] => (Allow) C:\Programme\Winamp\winamp.exe
FirewallRules: [{DED400C1-E6AD-41B9-9DA3-D8B24EB38C89}] => (Allow) C:\Programme\Winamp\winamp.exe
FirewallRules: [{6422BB44-85FC-4114-8C53-BD3FDBD6962A}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{6A543840-A53B-42BA-9004-840085BB7C3D}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: HL-DT-ST DVDRAM GT30N
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (08/19/2015 03:23:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ACER-NOTEBOOK)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (08/19/2015 03:21:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: ACER-NOTEBOOK)
Description: Das Paket „Microsoft.MicrosoftEdge_20.10240.16384.0_neutral__8wekyb3d8bbwe+MicrosoftEdge#{1d6567b8-8a8a-4df6-b3e8-3b92458c4fb6}“ wurde beendet, da das Anhalten zu lange dauerte.

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4

Error: (08/19/2015 01:50:00 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL4

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll4

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll4

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4

Error: (08/19/2015 01:49:52 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4


Systemfehler:
=============
Error: (08/19/2015 03:51:32 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert, nicht als
Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser
Konfiguration nicht gestartet zu sein.

Error: (08/19/2015 03:50:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069

Error: (08/19/2015 03:50:20 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WSearch" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%50

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (08/19/2015 03:50:14 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {7006698D-2974-4091-A424-85DD0B909E23}

Error: (08/19/2015 03:50:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (08/19/2015 03:49:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (08/19/2015 03:49:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "USB UPS of Megatec" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (08/19/2015 03:49:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Updater Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (08/19/2015 03:49:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "UPS Auto-Protect" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (08/19/2015 03:49:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Message Queuing" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.


Microsoft Office:
=========================

CodeIntegrity:
===================================
Date: 2015-08-18 08:40:41.752
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:41.647
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:41.524
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:41.375
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:41.325
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:41.272
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:38.793
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:37.960
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:37:05.141
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:37:05.059
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.


==================== Speicherinformationen ===========================

Processor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Prozentuale Nutzung des RAM: 48%
Installierter physikalischer RAM: 4024.92 MB
Verfügbarer physikalischer RAM: 2065.13 MB
Summe virtueller Speicher: 8120.92 MB
Verfügbarer virtueller Speicher: 6202.79 MB

==================== Laufwerke ================================

Drive c: (ACER) (Fixed) (Total:285.3 GB) (Free:153.88 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: DBECDBEC)
Partition 1: (Not Active) - (Size=12.7 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=285.3 GB) - (Type=07 NTFS)

==================== Ende von Ergebnis ============================

Addition.txt

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:17-08-2015
durchgeführt von sam33321 (2015-08-19 16:19:19)
Gestartet von C:\install\virus-tools\2015_BVC
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2429274901-1692467857-2381098989-500 - Administrator - Disabled) => C:\Users\Administrator
sam33321 (S-1-5-21-2429274901-1692467857-2381098989-1001 - Administrator - Enabled) => C:\Users\sam33321
DefaultAccount (S-1-5-21-2429274901-1692467857-2381098989-503 - Limited - Disabled)
Gast (S-1-5-21-2429274901-1692467857-2381098989-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2429274901-1692467857-2381098989-1002 - Limited - Enabled)
___VMware_Conv_SA___ (S-1-5-21-2429274901-1692467857-2381098989-1007 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Acer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.0.7006 - CyberLink Corp.)
Acer Arcade Deluxe (x32 Version: 3.0.7006 - CyberLink Corp.) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.60 - NewTech Infosystems)
Acer Crystal Eye webcam Ver:1.1.158.203 (HKLM-x32\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.158.203 - Chicony Electronics Co.,Ltd.)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.05.3004 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3007 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.7.0715 - Acer Incorporated)
Acer System Information (HKLM-x32\...\{72199E33-4F2A-4B7F-8E25-95DDDD50A678}) (Version: 1.0.0 - Acer)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.105.2015.1103 - Alps Electric)
Backup Manager Basic (x32 Version: 2.0.0.60 - NewTech Infosystems) Hidden
BitTorrent (HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\BitTorrent) (Version: 7.9.2.32241 - BitTorrent Inc.)
BootRacer (HKLM-x32\...\{FFB8386C-3B57-4172-A1A8-6B401C708E0A}) (Version: 4.9.0.390 - Greatis Software, LLC)
Broadcom Gigabit NetLink Controller (HKLM\...\{96F70DF8-160F-4F9C-9B9E-2A9B439B4EB9}) (Version: 12.26.02 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
Core Temp 1.0 RC4 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CutePDF Writer 2.8 (HKLM\...\CutePDF Writer Installation) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DirPrintOK (HKLM-x32\...\DirPrintOK) (Version: - )
DynGate (HKLM-x32\...\DynGate) (Version: - )
Exif Tag Remover 4.1 (HKLM-x32\...\Exif Tag Remover_is1) (Version: - RL Vision)
FileZilla Client 3.12.0.2 (HKLM-x32\...\FileZilla Client) (Version: 3.12.0.2 - Tim Kosse)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free YouTube Download version 3.2.54.219 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.54.219 - DVDVideoSoft Ltd.)
Freemake Audio Converter Version 1.1.0 (HKLM-x32\...\Freemake Audio Converter_is1) (Version: 1.1.0 - Ellora Assets Corporation)
GlobalHDTV (HKLM-x32\...\GlobalHDTV) (Version: - )
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1892 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Internet Explorer (Enable DEP) (HKLM\...\{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb) (Version: - )
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 3.0.06 - Acer Inc.)
Light Image Resizer 4.3.2.2 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.3.2.2 - ObviousIdea)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.1.94 - LSI Corporation)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
McAfee Internet Security (HKLM-x32\...\MSC) (Version: 14.0.4113 - McAfee, Inc.)
McAfee Virtual Technician (HKLM-x32\...\McAfee Virtual Technician) (Version: 7.5.0.3093 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.274 - McAfee, Inc.)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Project Professional 2003 (HKLM-x32\...\{903B0407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Visio Professional 2003 (HKLM-x32\...\{90510407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 40.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.2 (x86 de)) (Version: 40.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.2.5702 - Mozilla)
Mozilla Thunderbird 38.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.2.0 (x86 de)) (Version: 38.2.0 - Mozilla)
NTI Backup Now Standard (x32 Version: 5.1.2.628 - NewTech Infosystems) Hidden
NTI Media Maker 8 (x32 Version: 8.0.12.6630 - NewTech Infosystems) Hidden
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7100.30093 - Realtek Semiconductor Corp.)
Samsung Universal Print Driver 2 (HKLM-x32\...\Samsung Universal Print Driver 2) (Version: 2.50.04.00 - Samsung Electronics Co., Ltd.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
Snagit 9.1.2 (HKLM-x32\...\{B440D659-FECA-4BDD-A12B-5C9F05790FF3}) (Version: 9.1.2.124 - TechSmith Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.13.0 - Synaptics Incorporated)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_PROPLUS_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_PROPLUS_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_PROPLUS_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_PROPLUS_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
UPSilon 2000 (HKLM-x32\...\{E592E668-89A9-4098-B70C-0C2D59FB15CA}) (Version: 5.2 - MegaTec)
VL Sound 5.1 (HKLM-x32\...\VL Sound 5.1) (Version: - Valera Lavrov)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wartung Samsung ML-1660 Series (HKLM-x32\...\Samsung ML-1660 Series) (Version: - Samsung Electronics Co., Ltd.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Backup Tool (HKLM-x32\...\Winamp Backup Tool) (Version: 1.0 Beta 11.7 - Christoph Grether, Darren Owen & Paweł Porwisz)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Share Manager (HKLM-x32\...\{8A6AA24D-71B5-47FE-BDFF-D9304753D8E2}) (Version: 1.2 - Windows Share Manager)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
WinZip 17.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240D7}) (Version: 17.0.10283 - WinZip Computing, S.L. )
yaDIS 2.1.2 (HKLM-x32\...\{14F44B46-A8F0-457E-AC29-4C032C899715}_is1) (Version: - )

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{3560575F-7C2D-48AE-AB45-DAD430A95EBE}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.dll ()
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Wiederherstellungspunkte =========================

09-08-2015 00:03:54 Windows Modules Installer
09-08-2015 00:04:38 Windows Modules Installer
12-08-2015 18:14:13 Windows Update
12-08-2015 18:14:58 Windows Update
15-08-2015 12:57:33 Installiert Realtek High Definition Audio Driver
17-08-2015 15:40:34 Configured NTI Backup Now 5
18-08-2015 16:51:51 AA11

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 09:34 - 2009-06-11 04:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {002C59C9-1BE4-4BF0-AB1C-F131A9E2BF14} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {00390221-DD00-43DA-9A8D-058161F5D464} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {022A28C1-2420-497E-8FAB-C6850B18276A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {0477E82A-B141-4B42-91EB-44C944CC4CFE} - System32\Tasks\{DC46145C-0CA8-429F-BB1A-8E47D6AD21E5} => pcalua.exe -a C:\install\efrc\EFRCSetup36.exe -d C:\install\efrc
Task: {09037327-FFFB-451E-BC2B-AFA5159849E0} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {0FF1509E-A47C-4BE2-A100-836101067524} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)
Task: {12F50D53-3EF6-4716-86F9-6C5485EFE1E3} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {1771E521-268B-4D51-B149-C442EBE9D19D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {192E0E88-598B-4138-82AF-120651FB1355} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {197A1850-1AF8-44FB-9642-B6BAF7465AD6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {22BAEA48-6956-42CA-A571-47BBE65834C7} - System32\Tasks\{5A5D37FB-3510-49A7-B4BF-1F33E8464519} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\5\SSSDUninstall.exe
Task: {23C3A9E0-3F90-4003-B747-BBCA1D6DA98E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {25074B94-84DC-43AF-871F-691E13EB37F5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {267189B2-E26A-4FCC-B847-AC1CC4515FD3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-18] (Piriform Ltd)
Task: {267E8D6C-6FD1-422C-B3C7-2E6E93276269} - System32\Tasks\{99F93271-8944-4DBA-ACD1-F1C5CE9509B0} => pcalua.exe -a "C:\Program Files (x86)\NCH Swift Sound\ExpressBurn\uninst.exe"
Task: {2C03285D-3E2A-4AF0-AF49-B6BEE2DA39DE} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2F51857B-6072-42A1-A90B-1ED1E2FEC0BD} - System32\Tasks\{8FEF3DBF-752A-4CC6-B276-4CCD2BBE0F3D} => pcalua.exe -a C:\install\dreamweaver\e_008803\e_mdw4tfr.exe -d C:\install\dreamweaver\e_008803
Task: {336A36F5-86C8-4573-A1F2-FB1111B9987F} - System32\Tasks\{76FF5A2E-EB0C-4C89-9700-0AA5038ECD1A} => pcalua.exe -a C:\VRockPRO\VRockola.exe -d c:\VRockPRO
Task: {3A0F4D34-6F17-4BF4-8E1F-0A4FA7D07436} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {3A7747E2-0587-486C-9850-209A2E105438} - System32\Tasks\{D508D905-006F-497D-B963-6270456B9E68} => pcalua.exe -a "C:\bittorrent\Microsoft Office Professional Plus 2013 x86 &amp; x64 UPDATED Jan 2014\x86\setup.exe" -d "C:\bittorrent\Microsoft Office Professional Plus 2013 x86 &amp; x64 UPDATED Jan 2014\x86"
Task: {3A81B070-145C-451C-B4AA-54D5C032A672} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {3F163F6E-959A-4909-8AB7-6F438F2695F1} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {4609F4B8-DC97-49D3-BD41-0CCC6183559F} - \YourFile DownloaderUpdate -> Keine Datei <==== ACHTUNG
Task: {4CF17ED0-6C65-47F3-9689-7F4544BE5267} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {505232FF-5BB1-4E0A-919B-CBB0A1DA4404} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {55212E4D-05A5-4C38-B1F8-7F8815B9A1D1} - System32\Tasks\{9F40C934-7847-46EB-93FB-3883EE697256} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\1\SS_Uninstall.exe
Task: {5750C68A-90C1-4CB8-924A-B4F246039A7B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {65EA2621-DE91-49E1-B5A1-A2E378B3ED84} - System32\Tasks\{4F9C2C20-00AE-4D96-9717-6EF973693524} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\3\SSCDUninstall.exe
Task: {695D594A-25BE-4FFD-846E-7FA78D0D76C8} - System32\Tasks\{BFE36CAD-2201-4112-969D-910AD3F08144} => pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\8\INTEL3~1\IDriver.exe -c /M{D48C9BFC-FBCF-4F29-B97D-822ED6D497FE}
Task: {6DE9C553-7EB8-48D6-A19A-14B092370CC2} - System32\Tasks\{65D7960E-5BE5-438C-84B2-AD75FF73C31B} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\6\SSBCUninstall.exe
Task: {6E39FAD4-677F-445B-9DE0-05007781E574} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {6FA7704D-284B-4D34-85DC-27871813B879} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {6FB909E9-E247-41E5-B91B-44BEB78F13F1} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {725770B9-4773-42C7-B0DF-2381DC274EAD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {8713E7F5-E273-4C79-BBC9-F71902970CC2} - System32\Tasks\{A70AD6F3-8848-4691-B869-22EE95B50980} => pcalua.exe -a D:\SetupWizard.exe -d D:\
Task: {8A18E357-668E-4E40-A408-3BDF5556E332} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {8CD5E060-31F9-4DB4-8EBF-F3C9B131D221} - System32\Tasks\GoogleUpdateTaskMachineUA1cec8a8d405f05d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-07-15] (Microsoft Corporation)
Task: {90816627-647D-40EC-890B-4105EF227E33} - System32\Tasks\{BCE1C121-76CF-47D5-BC4F-C4382C19841A} => pcalua.exe -a C:\install\winamppro_5581\AndrewLabs_ATSurround_for_Winamp_4_5.exe -d C:\install\winamppro_5581
Task: {96F0F372-1CC9-4ABC-816E-9FA1EA7EE2A8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {98277114-698D-4D92-86FB-4F729C1F053C} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {992D587B-6327-4C85-A54F-9C5951157C19} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {9CFE248D-07C7-4D9E-9D7C-A9829DE78D30} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {9D5A9A45-8AA4-4F72-9ABB-EBADB3F6DBD1} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {A1201EAE-D59D-422C-85C9-D0CC350C491E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {A70B6867-1FD9-4E11-BD3E-1309ABC54C97} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {B0D946D5-0582-44AB-A54A-1489A9E45D08} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {B23EEB8B-127E-473E-876E-C1A1138CAA7C} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {BB039FEC-9BE2-4325-8453-F72A9F1F1FCA} - System32\Tasks\{0CC09549-5806-4FEB-91E5-691F5816B8CA} => pcalua.exe -a "C:\Program Files (x86)\NCH Swift Sound\WavePad\uninst.exe"
Task: {BE9ED2CD-5794-4CB1-912E-CB454BF4E5B5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {BF045C9C-27CF-4CA1-BF39-6C2E1CB0C154} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8a0c3832eee1 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Task: {BF8C6E3C-6B5F-403F-AB19-42841936744E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {C4F63C4C-7D03-4272-9314-084B2F5CBACE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {CE80D704-1E9B-4014-A305-91F711ACF23D} - System32\Tasks\4780 => Wscript.exe C:\Users\ANDIGE~1\AppData\Local\Temp\launchie.vbs //B <==== ACHTUNG
Task: {CF166AEA-05DA-4F0A-9880-1339149BBFBA} - System32\Tasks\Core Temp Autostart sam33321 => C:\Program Files\Core Temp\Core Temp.exe [2012-10-14] ()
Task: {D2A0E8AC-17CE-4181-B4DA-5B089B32EE72} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {D4FEF8F0-F5E2-42DF-A094-51FE2B638FA7} - System32\Tasks\{6B19064E-E76B-435C-9E34-C99929FABCE1} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{12EFA1A4-AC3B-443C-8143-237EDE760403}\setup.exe" -c -runfromtemp -l0x0409
Task: {DDF4FDDB-EACE-47DA-A546-7938C32D70EF} - System32\Tasks\{18417872-D8E0-45C0-B3AE-A35005EFC316} => pcalua.exe -a C:\install\irfanview\irfanview_plugins_430_setup.exe -d C:\install\irfanview
Task: {DF130F78-81F6-4749-A8C7-00D81601AEFE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {F23EF0ED-77FF-4586-9940-F6CDADBAF636} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {F40367E0-E7FA-41D6-903E-52542951C3BC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8a0c3832eee1.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cec8a8d405f05d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-09 10:08 - 2015-07-15 09:04 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2010-10-29 00:24 - 2009-11-05 13:40 - 00085504 _____ () C:\WINDOWS\System32\cpwmon64.dll
2014-01-16 20:27 - 2011-04-11 12:26 - 00034304 _____ () C:\WINDOWS\System32\spe__l.dll
2011-06-22 06:48 - 2011-06-22 06:48 - 00034304 _____ () C:\WINDOWS\System32\ssp7ml6.dll
2015-08-09 10:09 - 2015-07-30 13:05 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-09 10:09 - 2015-07-30 13:05 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-08-09 12:14 - 2015-06-20 17:14 - 01875456 ____R () C:\Users\sam33321\AppData\Local\IconOverlayEx.dll
2015-07-10 00:32 - 2015-07-10 00:32 - 00043480 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2010-12-07 18:11 - 2010-03-15 17:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2015-07-10 17:59 - 2015-07-10 17:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-12 20:07 - 2015-08-03 08:11 - 06569472 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 18:00 - 2015-07-10 23:45 - 00471040 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 07:11 - 2015-08-11 15:58 - 01808384 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-12 20:07 - 2015-08-03 08:09 - 02274816 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 18:00 - 2015-07-10 23:45 - 00210432 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2010-05-05 07:25 - 2010-05-05 07:25 - 00206208 _____ () C:\Windows\PLFSetI.exe
2015-07-18 00:34 - 2015-07-18 00:34 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-08-19 07:11 - 2015-08-11 16:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-08-15 21:14 - 2015-08-15 21:14 - 00153768 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2015-08-15 21:14 - 2015-08-15 21:14 - 00023208 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\samsungsetup.com -> hxxp://www.samsungsetup.com


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupreg: LManager => C:\Program Files (x86)\Launch Manager\LManager.exe
HKLM\...\StartupApproved\Run32: => "Samsung PanelMgr"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{EED27C10-304D-4C60-AE01-BD1E6E8E4087}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4DCCA305-5E22-4684-A5F1-B7F6D6379245}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0F54E8E8-8B16-4D77-BCD9-CABD6BF2FBF2}] => (Allow) C:\Users\sam33321\AppData\Roaming\McAfee\Supportability\MVTLogs\ProductDetection64.exe
FirewallRules: [{708D3E85-35B3-49E8-AC8A-F6401546ADD9}] => (Allow) C:\Users\sam33321\AppData\Roaming\McAfee\Supportability\MVTLogs\ProductDetection64.exe
FirewallRules: [{B96EA5D2-2DF4-45D2-AE24-F3910E40E81A}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{5996CE14-73FC-4A58-984C-190BB05AEC70}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{0AE0BF44-A04F-48E4-9E36-185A7DD6BF47}] => (Allow) C:\Users\sam33321\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{DA59EACE-D0A2-4157-86E0-93D86F4AD461}] => (Allow) C:\Users\sam33321\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{218766C1-50A4-47BC-8554-CD34E296821A}] => (Allow) C:\Program Files (x86)\MegaTec\UPSilon 2000\RupsMon.exe
FirewallRules: [{FFA85294-88CD-4033-B23E-A9B820E169C3}] => (Allow) C:\Program Files (x86)\MegaTec\UPSilon 2000\RupsMon.exe
FirewallRules: [{15625762-689D-4BED-BD99-40AB494FEECC}] => (Allow) C:\Program Files (x86)\MegaTec\UPSilon 2000\UPSilon.exe
FirewallRules: [{B443AF80-38F8-4094-9CCA-79D8CD94814E}] => (Allow) C:\Program Files (x86)\MegaTec\UPSilon 2000\UPSilon.exe
FirewallRules: [{3D17CD74-06B9-472F-AEED-95007EC8151F}] => (Allow) C:\Programme\Winamp\winamp.exe
FirewallRules: [{DED400C1-E6AD-41B9-9DA3-D8B24EB38C89}] => (Allow) C:\Programme\Winamp\winamp.exe
FirewallRules: [{6422BB44-85FC-4114-8C53-BD3FDBD6962A}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{6A543840-A53B-42BA-9004-840085BB7C3D}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: HL-DT-ST DVDRAM GT30N
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (08/19/2015 03:23:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ACER-NOTEBOOK)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (08/19/2015 03:21:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: ACER-NOTEBOOK)
Description: Das Paket „Microsoft.MicrosoftEdge_20.10240.16384.0_neutral__8wekyb3d8bbwe+MicrosoftEdge#{1d6567b8-8a8a-4df6-b3e8-3b92458c4fb6}“ wurde beendet, da das Anhalten zu lange dauerte.

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4

Error: (08/19/2015 01:50:00 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL4

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll4

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll4

Error: (08/19/2015 01:50:00 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4

Error: (08/19/2015 01:49:52 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4


Systemfehler:
=============
Error: (08/19/2015 03:51:32 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert, nicht als
Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser
Konfiguration nicht gestartet zu sein.

Error: (08/19/2015 03:50:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069

Error: (08/19/2015 03:50:20 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WSearch" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%50

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (08/19/2015 03:50:14 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {7006698D-2974-4091-A424-85DD0B909E23}

Error: (08/19/2015 03:50:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (08/19/2015 03:49:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (08/19/2015 03:49:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "USB UPS of Megatec" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (08/19/2015 03:49:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Updater Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (08/19/2015 03:49:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "UPS Auto-Protect" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (08/19/2015 03:49:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Message Queuing" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.


Microsoft Office:
=========================

CodeIntegrity:
===================================
Date: 2015-08-18 08:40:41.752
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:41.647
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:41.524
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:41.375
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:41.325
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:41.272
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:38.793
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:40:37.960
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:37:05.141
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2015-08-18 08:37:05.059
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.


==================== Speicherinformationen ===========================

Processor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Prozentuale Nutzung des RAM: 48%
Installierter physikalischer RAM: 4024.92 MB
Verfügbarer physikalischer RAM: 2065.13 MB
Summe virtueller Speicher: 8120.92 MB
Verfügbarer virtueller Speicher: 6202.79 MB

==================== Laufwerke ================================

Drive c: (ACER) (Fixed) (Total:285.3 GB) (Free:153.88 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: DBECDBEC)
Partition 1: (Not Active) - (Size=12.7 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=285.3 GB) - (Type=07 NTFS)

==================== Ende von Ergebnis ============================

schrauber 19.08.2015 17:14
So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307





Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

sam33321 20.08.2015 03:43
Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 20.08.2015
Suchlaufzeit: 07:51
Protokolldatei: MBAM_2015_08_20.txt
Administrator: Ja

Version: 2.1.8.1057
Malware-Datenbank: v2015.08.19.09
Rootkit-Datenbank: v2015.08.16.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: sam33321

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 494264
Abgelaufene Zeit: 40 Min., 36 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Warnen
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
Code:
# AdwCleaner v5.002 - Bericht erstellt 20/08/2015 um 08:36:28
# Aktualisiert 18/08/2015 von Xplode
# Datenbank : 2015-08-18.2 [Server]
# Betriebssystem : Windows 10 Home  (x64)
# Benutzername : sam33321 - ACER-NOTEBOOK
# Gestarted von : C:\install\virus-tools\2015_BVC\4_AdwCleaner_5.002.exe
# Option : Suchlauf

***** [ Dienste ] *****


***** [ Ordner ] *****


***** [ Dateien ] *****


***** [ Verknüpfungen ] *****


***** [ Geplante Tasks ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Internetbrowser ] *****


########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [561 Bytes] ##########
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.5.7 (08.18.2015:1)
OS: Windows 10 Home x64
Ran by sam33321 on 20.08.2015 at  8:41:35,57
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\sam33321\AppData\Roaming\mozilla\firefox\profiles\jo1f8jnk.default\minidumps [26 files]



~~~ Chrome


[C:\Users\sam33321\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\sam33321\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\sam33321\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\sam33321\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20.08.2015 at  8:50:48,57
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:20-08-2015
durchgeführt von sam33321 (Administrator) auf ACER-NOTEBOOK (20-08-2015 09:11:34)
Gestartet von C:\install\virus-tools\2015_BVC
Geladene Profile: sam33321 (Verfügbare Profile: sam33321 & Administrator & DefaultAppPool)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.12391.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.803.16240.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [295936 2009-05-22] (Alps Electric Co., Ltd.)
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [206208 2010-05-05] ()
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935912 2015-08-09] (Synaptics Incorporated)
HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [641504 2015-07-21] (McAfee, Inc.)
HKLM-x32\...\Run: [Samsung PanelMgr] => C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe [688128 2011-07-06] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files (x86)\BootRacer\Bootrace.exe [3901200 2015-03-24] (Greatis Software)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53655680 2015-07-28] (Skype Technologies S.A.)
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-18] (Piriform Ltd)
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\RunOnce: [Uninstall C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  Keine Datei
ShellIconOverlayIdentifiers: [IconOverlayEx] -> {E1773C0E-364D-4210-B831-72F5A359E88F} => C:\Users\sam33321\AppData\Local\IconOverlayEx.dll [2015-06-20] ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.ch/
SearchScopes: HKLM-x32 -> DefaultScope {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\Snagit 9\DLLx64\SnagitBHO64.dll [2009-04-29] (TechSmith Corporation)
BHO-x32: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\Snagit 9\SnagitBHO.dll [2009-04-29] (TechSmith Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-29] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-29] (Oracle Corporation)
Toolbar: HKLM-x32 - Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitIEAddin.dll [2009-04-29] (TechSmith Corporation)
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} hxxp://office.microsoft.com/_layouts/ClientBin/ieawsdc32.cab
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://qtinstall.apple.com/qtactivex/qtplugin.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://active.macromedia.com/flash2/cabs/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://iwork.css.ch/dana-cached/sc/JuniperSetupClient.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2015-07-21] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2015-07-21] (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3aa86cd7-caf4-45e2-9462-fd2cde3e2b9f}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default
FF SearchEngineOrder.1: Sichere Suche
FF SelectedSearchEngine: Sichere Suche
FF Homepage: hxxp://torrentz.eu/search?f=flac
FF Keyword.URL: hxxps://search.yahoo.com/search?fr=mcafee&type=B111CH0D20140928&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-07-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin-x32: @bittorrent.com/BitTorrentDNA -> C:\Program Files (x86)\DNA\plugins\npbtdna.dll [2010-11-01] (BitTorrent, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-29] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-07-21] ()
FF Plugin-x32: @mcafee.com/MVT -> C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll [2013-02-05] (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.)
FF SearchPlugin: C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\searchplugins\power-torrent-search.xml [2011-02-09]
FF SearchPlugin: C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\searchplugins\torrentz-search.xml [2011-01-07]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2015-03-15]
FF Extension: Torrent Finder Toolbar - C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\Extensions\TFToolbarX@torrent-finder.xpi [2012-01-09]
FF Extension: TorrentBar - C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\Extensions\{7b821b0e-b102-4f9b-b6e3-433ede1fe379}.xpi [2011-07-09]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-09-25]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2014-09-25]
FF HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-04-03]

Chrome:
=======
CHR Profile: C:\Users\sam33321\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 BootRacerServ; C:\Program Files (x86)\BootRacer\BootRacerServ.exe [65296 2014-04-30] (Greatis Software, LLC)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-07-22] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-07-22] (Microsoft Corporation)
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-11] (Microsoft Corporation)
R3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [155368 2015-04-29] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [782608 2015-07-21] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe [1694152 2015-07-23] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [639456 2015-07-17] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
S2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Datei ist nicht signiert]
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-06-29] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [373704 2015-07-06] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [254792 2015-06-29] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-09] (Microsoft Corporation)
S4 NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [250368 2010-03-09] (NewTech Infosystems, Inc.) [Datei ist nicht signiert]
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 RetailDemo; C:\Windows\system32\RDXService.dll [996352 2015-08-11] (Microsoft Corporation)
S2 Rupsmon; C:\Program Files (x86)\MegaTec\UPSilon 2000\RupsMon.exe [245760 2013-04-15] (Mega System Technologies, Inc.) [Datei ist nicht signiert]
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-07-12] (Microsoft Corporation)
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-07-24] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-07-24] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S2 USBMate; C:\Program Files (x86)\MegaTec\UPSilon 2000\USBMate.exe [106555 2012-10-22] (Mega System Technologies, Inc.) [Datei ist nicht signiert]
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-30] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-09] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-09] (Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S5 3ware; C:\Windows\System32\drivers\3ware.sys [107360 2015-07-10] (LSI)
R5 ACPI; C:\Windows\System32\drivers\ACPI.sys [565088 2015-07-22] (Microsoft Corporation)
R5 acpiex; C:\Windows\System32\Drivers\acpiex.sys [127840 2015-07-10] (Microsoft Corporation)
S5 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [1135456 2015-07-10] (PMC-Sierra)
S5 agp440; C:\Windows\System32\drivers\agp440.sys [63328 2015-07-10] (Microsoft Corporation)
S5 amdsata; C:\Windows\System32\drivers\amdsata.sys [83296 2015-07-10] (Advanced Micro Devices)
S5 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259424 2015-07-10] (AMD Technologies Inc.)
S5 amdxata; C:\Windows\System32\drivers\amdxata.sys [26976 2015-07-10] (Advanced Micro Devices)
S5 arcsas; C:\Windows\System32\drivers\arcsas.sys [131936 2015-07-10] (PMC-Sierra, Inc.)
S5 atapi; C:\Windows\System32\drivers\atapi.sys [28512 2015-07-10] (Microsoft Corporation)
S5 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2015-07-10] (Broadcom Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [77536 2015-07-02] (McAfee, Inc.)
R5 CLFS; C:\Windows\System32\drivers\CLFS.sys [380768 2015-07-10] (Microsoft Corporation)
R5 CNG; C:\Windows\System32\Drivers\cng.sys [601344 2015-07-17] (Microsoft Corporation)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
R5 disk; C:\Windows\System32\drivers\disk.sys [101216 2015-07-10] (Microsoft Corporation)
S5 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
R5 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [88928 2015-07-10] (Microsoft Corporation)
S5 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [116576 2015-07-10] (Microsoft Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
R5 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [83808 2015-07-10] (Microsoft Corporation)
R5 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [368992 2015-07-10] (Microsoft Corporation)
U5 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [31072 2015-07-10] (Microsoft Corporation)
R5 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [633184 2015-07-10] (Microsoft Corporation)
S5 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [66912 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.)
S5 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64352 2015-07-10] (Hewlett-Packard Company)
S5 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [29024 2015-07-10] (Microsoft Corporation)
R5 iaStor; C:\Windows\System32\drivers\iaStor.sys [408600 2009-06-05] (Intel Corporation)
S5 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [673120 2015-07-10] (Intel Corporation)
S5 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412000 2015-07-10] (Intel Corporation)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
S5 intelide; C:\Windows\System32\drivers\intelide.sys [19296 2015-07-10] (Microsoft Corporation)
S5 intelpep; C:\Windows\System32\drivers\intelpep.sys [43872 2015-07-10] (Microsoft Corporation)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
S5 isapnp; C:\Windows\System32\drivers\isapnp.sys [22368 2015-07-10] (Microsoft Corporation)
R5 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [131424 2015-07-10] (Microsoft Corporation)
R5 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [158560 2015-07-10] (Microsoft Corporation)
S5 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [108896 2015-07-10] (LSI Corporation)
S5 LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [104800 2015-07-10] (LSI Corporation)
S5 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
S5 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82784 2015-07-10] (LSI Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R2 megabattery; C:\Windows\System32\drivers\megabatteryX64.sys [20608 2012-03-31] (Megatec System Co.)
S5 megasas; C:\Windows\System32\drivers\megasas.sys [59744 2015-07-10] (Avago Technologies)
S5 megasr; C:\Windows\System32\drivers\megasr.sys [575840 2015-07-10] (LSI Corporation, Inc.)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [412440 2015-07-02] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [347800 2015-07-02] (McAfee, Inc.)
S5 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [496888 2015-07-02] (McAfee, Inc.)
R5 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [875928 2015-07-02] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)
R5 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344704 2015-07-02] (McAfee, Inc.)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
R5 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [102752 2015-08-04] (Microsoft Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-09] (Microsoft Corporation)
R5 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [19296 2015-07-10] (Microsoft Corporation)
R5 Mup; C:\Windows\System32\Drivers\mup.sys [118624 2015-07-10] (Microsoft Corporation)
S5 mvumis; C:\Windows\System32\drivers\mvumis.sys [63840 2015-07-10] (Marvell Semiconductor, Inc.)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
R5 NDIS; C:\Windows\System32\drivers\ndis.sys [1168736 2015-07-19] (Microsoft Corporation)
S5 nvraid; C:\Windows\System32\drivers\nvraid.sys [150368 2015-07-10] (NVIDIA Corporation)
S5 nvstor; C:\Windows\System32\drivers\nvstor.sys [166240 2015-07-10] (NVIDIA Corporation)
S5 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [126304 2015-07-10] (Microsoft Corporation)
R5 partmgr; C:\Windows\System32\drivers\partmgr.sys [117088 2015-07-10] (Microsoft Corporation)
R5 pci; C:\Windows\System32\drivers\pci.sys [325984 2015-07-15] (Microsoft Corporation)
S5 pciide; C:\Windows\System32\drivers\pciide.sys [15712 2015-07-10] (Microsoft Corporation)
S5 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [118112 2015-07-10] (Microsoft Corporation)
R5 pcw; C:\Windows\System32\drivers\pcw.sys [51552 2015-07-10] (Microsoft Corporation)
R5 pdc; C:\Windows\System32\drivers\pdc.sys [98144 2015-07-10] (Microsoft Corporation)
S5 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58208 2015-07-10] (LSI Corporation)
S5 percsas3i; C:\Windows\System32\drivers\percsas3i.sys [58720 2015-07-10] (Avago Technologies)
R5 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [237392 2015-08-06] (Microsoft Corporation)
S5 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [109920 2015-07-10] (Microsoft Corporation)
S5 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44896 2015-07-10] (Silicon Integrated Systems Corp.)
S5 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81760 2015-07-10] (Silicon Integrated Systems)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-08-09] (Synaptics Incorporated)
R5 spaceport; C:\Windows\System32\drivers\spaceport.sys [474464 2015-07-10] (Microsoft Corporation)
R2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-07-29] (Samsung Electronics)
S5 stexstor; C:\Windows\System32\drivers\stexstor.sys [31072 2015-07-10] (Promise Technology, Inc.)
S5 storahci; C:\Windows\System32\drivers\storahci.sys [133984 2015-07-10] (Microsoft Corporation)
S5 storflt; C:\Windows\System32\drivers\vmstorfl.sys [45920 2015-07-10] (Microsoft Corporation)
S5 stornvme; C:\Windows\System32\drivers\stornvme.sys [80720 2015-08-11] (Microsoft Corporation)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
S5 storufs; C:\Windows\System32\drivers\storufs.sys [40288 2015-07-10] (Microsoft Corporation)
S5 storvsc; C:\Windows\System32\drivers\storvsc.sys [36192 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
R5 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2430816 2015-07-10] (Microsoft Corporation)
S5 uagp35; C:\Windows\System32\drivers\uagp35.sys [66400 2015-07-10] (Microsoft Corporation)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-07-14] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S5 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [66912 2015-07-10] (Microsoft Corporation)
R5 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [42848 2015-07-10] (Microsoft Corporation)
S5 vmbus; C:\Windows\System32\drivers\vmbus.sys [125792 2015-07-10] (Microsoft Corporation)
R5 volmgr; C:\Windows\System32\drivers\volmgr.sys [81248 2015-07-10] (Microsoft Corporation)
R5 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [370016 2015-07-10] (Microsoft Corporation)
R5 volsnap; C:\Windows\System32\drivers\volsnap.sys [378720 2015-07-10] (Microsoft Corporation)
S5 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [166752 2015-07-10] (VIA Technologies Inc.,Ltd)
S5 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305504 2015-07-10] (VIA Corporation)
R5 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [892224 2015-07-10] (Microsoft Corporation)
R5 WFPLWFS; C:\Windows\System32\drivers\wfplwfs.sys [153440 2015-07-10] (Microsoft Corporation)
R5 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
R5 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
R5 Wof; C:\Windows\System32\Drivers\Wof.sys [200528 2015-08-06] (Microsoft Corporation)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> Keine Datei

==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-20 09:01 - 2015-08-20 09:01 - 00016148 _____ C:\WINDOWS\system32\ACER-NOTEBOOK_sam33321_HistoryPrediction.bin
2015-08-20 08:50 - 2015-08-20 08:50 - 00001220 _____ C:\Users\sam33321\Desktop\JRT.txt
2015-08-19 16:54 - 2015-08-19 16:54 - 00279880 _____ C:\WINDOWS\Minidump\081915-24484-01.dmp
2015-08-19 16:41 - 2015-08-19 16:42 - 00279880 _____ C:\WINDOWS\Minidump\081915-25750-01.dmp
2015-08-19 16:29 - 2015-08-19 16:54 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-19 16:29 - 2015-08-19 16:29 - 00279880 _____ C:\WINDOWS\Minidump\081915-25578-01.dmp
2015-08-19 16:17 - 2015-08-19 16:17 - 00000000 _____ C:\Users\sam33321\defogger_reenable
2015-08-19 16:02 - 2015-08-19 16:04 - 00045693 _____ C:\Users\sam33321\Downloads\Addition.txt
2015-08-19 15:58 - 2015-08-19 16:04 - 00134262 _____ C:\Users\sam33321\Downloads\FRST.txt
2015-08-19 15:57 - 2015-08-20 09:11 - 00000000 ____D C:\FRST
2015-08-19 15:57 - 2015-08-19 15:57 - 02173440 _____ (Farbar) C:\Users\sam33321\Downloads\FRST64.exe
2015-08-19 15:48 - 2015-08-20 08:36 - 00000000 ____D C:\AdwCleaner
2015-08-19 15:18 - 2015-08-19 15:18 - 01791580 _____ (Malwarebytes Corporation) C:\Users\sam33321\Downloads\JRT.exe
2015-08-19 07:11 - 2015-08-13 11:33 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-19 07:11 - 2015-08-13 11:23 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-19 07:11 - 2015-08-13 11:22 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 07:11 - 2015-08-13 11:20 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 07:11 - 2015-08-13 11:17 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-19 07:11 - 2015-08-13 11:07 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-08-19 07:11 - 2015-08-13 10:53 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-08-19 07:11 - 2015-08-11 17:04 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-19 07:11 - 2015-08-11 17:04 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-19 07:11 - 2015-08-11 17:04 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-19 07:11 - 2015-08-11 17:03 - 08021840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-19 07:11 - 2015-08-11 17:03 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-08-19 07:11 - 2015-08-11 17:02 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 07:11 - 2015-08-11 17:02 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 07:11 - 2015-08-11 17:02 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-08-19 07:11 - 2015-08-11 16:57 - 03622256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-19 07:11 - 2015-08-11 16:52 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-19 07:11 - 2015-08-11 16:50 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-19 07:11 - 2015-08-11 16:40 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-19 07:11 - 2015-08-11 16:40 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-19 07:11 - 2015-08-11 16:40 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-19 07:11 - 2015-08-11 16:38 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-08-19 07:11 - 2015-08-11 16:37 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-19 07:11 - 2015-08-11 16:31 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-08-19 07:11 - 2015-08-11 16:26 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-19 07:11 - 2015-08-11 16:23 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 07:11 - 2015-08-11 16:22 - 21875200 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-19 07:11 - 2015-08-11 16:21 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 07:11 - 2015-08-11 16:21 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 07:11 - 2015-08-11 16:20 - 02224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-19 07:11 - 2015-08-11 16:20 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 07:11 - 2015-08-11 16:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 07:11 - 2015-08-11 16:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 07:11 - 2015-08-11 16:16 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 07:11 - 2015-08-11 16:14 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 07:11 - 2015-08-11 16:13 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 07:11 - 2015-08-11 16:11 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-19 07:11 - 2015-08-11 16:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-19 07:11 - 2015-08-11 16:10 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 07:11 - 2015-08-11 16:10 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 07:11 - 2015-08-11 16:10 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 07:11 - 2015-08-11 16:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 07:11 - 2015-08-11 16:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 07:11 - 2015-08-11 16:08 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 07:11 - 2015-08-11 16:07 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-19 07:11 - 2015-08-11 16:07 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 07:11 - 2015-08-11 16:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 07:11 - 2015-08-11 16:06 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-19 07:11 - 2015-08-11 16:06 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 07:11 - 2015-08-11 16:03 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-19 07:11 - 2015-08-11 16:02 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-19 07:11 - 2015-08-11 16:02 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-19 07:11 - 2015-08-11 16:02 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 07:11 - 2015-08-11 16:02 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-19 07:11 - 2015-08-11 16:01 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 07:11 - 2015-08-11 16:00 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 07:11 - 2015-08-11 16:00 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-08-19 07:11 - 2015-08-11 15:58 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 07:11 - 2015-08-11 15:57 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-19 07:11 - 2015-08-11 15:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-08-19 07:11 - 2015-08-11 15:51 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-19 07:11 - 2015-08-11 15:51 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-19 07:11 - 2015-08-11 15:50 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-19 07:11 - 2015-08-11 15:50 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-19 07:11 - 2015-08-11 15:50 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 07:11 - 2015-08-11 15:49 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 07:11 - 2015-08-11 15:49 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 07:11 - 2015-08-11 15:48 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-08-19 07:11 - 2015-08-11 15:47 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-19 07:11 - 2015-08-11 15:45 - 18805760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-08-19 07:11 - 2015-08-11 15:45 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-19 07:11 - 2015-08-11 15:43 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-08-19 07:11 - 2015-08-11 15:42 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-19 07:11 - 2015-08-11 15:40 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-19 07:11 - 2015-08-11 15:40 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-19 07:11 - 2015-08-11 15:40 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-19 07:11 - 2015-08-11 15:39 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-08-19 07:11 - 2015-08-11 15:38 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-18 15:30 - 2015-08-18 15:30 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 ____D C:\Users\DefaultAppPool
2015-08-18 15:30 - 2015-08-12 20:11 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-18 15:30 - 2015-08-08 23:40 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-17 19:59 - 2015-08-17 19:59 - 05267299 _____ C:\Users\sam33321\Downloads\unhackme.zip.87wre0p.partial
2015-08-17 19:56 - 2015-08-20 06:51 - 00000000 ____D C:\ProgramData\BootRacer
2015-08-17 19:54 - 2015-08-20 06:51 - 00057344 ____H C:\Users\Public\Documents\bootracer.his
2015-08-17 19:51 - 2015-08-20 06:55 - 00040594 ____H C:\Users\Public\Documents\bootracer.log
2015-08-17 19:51 - 2015-08-20 06:51 - 00000448 ____H C:\Users\Public\Documents\bootracer.ini
2015-08-17 19:51 - 2015-08-20 06:49 - 00000000 ____D C:\Program Files (x86)\BootRacer
2015-08-17 19:51 - 2015-08-17 19:51 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BootRacer
2015-08-17 19:50 - 2015-08-17 19:50 - 04764468 _____ C:\Users\sam33321\Downloads\bootracer_free_ger.zip
2015-08-17 18:06 - 2015-08-17 19:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-17 17:54 - 2015-08-17 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2015-08-17 15:36 - 2015-08-17 15:36 - 00002878 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-08-17 15:36 - 2015-08-17 15:36 - 00000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-08-17 15:36 - 2015-08-17 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-17 15:36 - 2015-08-17 15:36 - 00000000 ____D C:\Program Files\CCleaner
2015-08-17 12:26 - 2015-08-17 12:26 - 00000000 ____D C:\WINDOWS\pss
2015-08-17 11:58 - 2015-08-17 11:58 - 00001598 _____ C:\Users\sam33321\Desktop\IE 11.lnk
2015-08-15 22:05 - 2015-08-15 22:05 - 00000126 ___RH C:\Users\sam33321\Downloads\Stinger.opt
2015-08-15 21:21 - 2015-08-15 21:27 - 00000813 _____ C:\Users\sam33321\Downloads\Stinger_15082015_212157.html
2015-08-15 21:20 - 2015-08-15 21:21 - 13240688 _____ (McAfee Inc) C:\Users\sam33321\Downloads\stinger64 (1).exe
2015-08-15 21:19 - 2015-08-15 21:20 - 13240688 _____ (McAfee Inc) C:\Users\sam33321\Downloads\stinger64.exe
2015-08-15 21:14 - 2015-08-15 23:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-08-15 13:23 - 2015-08-15 13:24 - 01012365 _____ C:\Users\sam33321\Downloads\html5player-new.js
2015-08-15 13:07 - 2015-08-15 13:07 - 00000000 ___RD C:\Users\sam33321\3D Objects
2015-08-15 13:01 - 2015-08-15 13:01 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-08-15 13:01 - 2015-08-15 13:01 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-08-15 13:00 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-08-15 13:00 - 2015-06-18 17:59 - 02862488 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-08-15 13:00 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-08-15 13:00 - 2015-06-17 19:47 - 02585816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2015-08-15 13:00 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-08-15 13:00 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-08-15 13:00 - 2015-06-11 19:40 - 03157796 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2015-08-15 13:00 - 2015-06-10 13:20 - 03129672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2015-08-15 13:00 - 2015-06-10 13:20 - 00728392 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-08-15 13:00 - 2015-06-09 11:17 - 05708736 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-08-15 13:00 - 2015-05-27 18:51 - 00349528 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-08-15 13:00 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-08-15 13:00 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-08-15 13:00 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-08-15 13:00 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-08-15 13:00 - 2015-05-11 18:53 - 12996528 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 01374640 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 01192368 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 01145264 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 00980400 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-08-15 13:00 - 2015-04-27 16:09 - 00328816 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-08-15 13:00 - 2015-04-24 05:42 - 00858256 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2015-08-15 13:00 - 2015-04-24 05:42 - 00684176 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2015-08-15 13:00 - 2015-04-24 05:42 - 00435856 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2015-08-15 13:00 - 2015-04-24 05:41 - 00555664 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.DLL
2015-08-15 13:00 - 2015-04-13 16:25 - 03262184 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2015-08-15 13:00 - 2015-02-05 17:48 - 12834736 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-08-15 13:00 - 2015-02-05 17:48 - 02789808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 01413776 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00454288 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00369296 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2015-08-15 13:00 - 2015-01-23 18:16 - 00213432 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaemaxapo64.dll
2015-08-15 13:00 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-08-15 13:00 - 2014-12-11 08:10 - 01104040 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2015-08-15 13:00 - 2014-12-11 08:10 - 00943784 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2015-08-15 13:00 - 2014-12-11 08:10 - 00734376 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2015-08-15 13:00 - 2014-12-11 08:10 - 00250536 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2015-08-15 13:00 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-08-15 13:00 - 2014-10-24 10:12 - 05234952 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-08-15 13:00 - 2014-10-24 10:12 - 00995120 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-08-15 13:00 - 2014-08-14 19:16 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2015-08-15 13:00 - 2014-06-17 19:17 - 00856992 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2015-08-15 13:00 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-08-15 13:00 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-08-15 13:00 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2015-08-15 13:00 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-08-15 13:00 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-08-15 13:00 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-08-15 13:00 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-08-15 13:00 - 2013-07-23 15:39 - 14048512 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-08-15 13:00 - 2013-07-23 15:39 - 00922880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-08-15 13:00 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2015-08-15 13:00 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2015-08-15 13:00 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2015-08-15 13:00 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2015-08-15 13:00 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-08-15 13:00 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2015-08-15 13:00 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-08-15 13:00 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-08-15 13:00 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-08-15 13:00 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-08-15 13:00 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-08-15 13:00 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2015-08-15 13:00 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2015-08-15 13:00 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-08-15 13:00 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-08-15 13:00 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-08-15 12:59 - 2015-06-02 19:25 - 01576976 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2015-08-15 12:59 - 2015-05-27 18:51 - 02461016 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-08-15 12:59 - 2015-05-27 18:51 - 02393432 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-08-15 12:59 - 2015-05-27 18:51 - 00944984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-08-15 12:59 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 06242576 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 01933584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 00336144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 00284944 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 07087448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 01939800 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 00315736 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-08-15 12:59 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-08-15 12:59 - 2014-05-22 16:24 - 00096568 _____ C:\WINDOWS\system32\audioLibVc.dll
2015-08-15 12:59 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-08-15 12:59 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-08-15 12:59 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-08-15 12:59 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2015-08-15 12:59 - 2013-06-21 11:01 - 00109848 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-08-15 12:59 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-08-15 12:56 - 2015-05-27 17:38 - 02825944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2015-08-13 11:56 - 2015-08-13 11:56 - 00001379 _____ C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iexplore.lnk
2015-08-13 11:31 - 2015-08-13 11:32 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\DeutschTV
2015-08-12 20:07 - 2015-08-08 14:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-12 20:07 - 2015-08-08 14:19 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-08-12 20:07 - 2015-08-08 14:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-12 20:07 - 2015-08-08 13:48 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-08-12 20:07 - 2015-08-08 13:40 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-12 20:07 - 2015-08-08 13:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-12 20:07 - 2015-08-08 13:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-12 20:07 - 2015-08-08 13:15 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-08-12 20:07 - 2015-08-08 13:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-12 20:07 - 2015-08-06 10:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-12 20:07 - 2015-08-06 10:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-12 20:07 - 2015-08-06 09:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-12 20:07 - 2015-08-05 11:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-12 20:07 - 2015-08-05 11:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-12 20:07 - 2015-08-05 11:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-12 20:07 - 2015-08-05 10:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-12 20:07 - 2015-08-05 10:47 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-12 20:07 - 2015-08-05 10:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-12 20:07 - 2015-08-04 11:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-12 20:07 - 2015-08-04 11:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-12 20:07 - 2015-08-04 11:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-12 20:07 - 2015-08-04 10:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-12 20:07 - 2015-08-04 09:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-12 20:07 - 2015-08-04 09:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-12 20:07 - 2015-08-03 09:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-12 20:07 - 2015-08-03 09:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-12 20:07 - 2015-08-03 09:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-12 20:07 - 2015-08-03 09:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-12 20:07 - 2015-08-03 09:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-12 20:07 - 2015-08-03 09:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-12 20:07 - 2015-08-03 09:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-12 20:07 - 2015-08-03 09:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-12 20:07 - 2015-08-03 09:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-12 20:07 - 2015-08-03 09:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-12 20:07 - 2015-08-03 09:13 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-12 20:07 - 2015-08-03 09:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-12 20:07 - 2015-08-03 08:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-12 20:07 - 2015-08-03 08:50 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-12 20:07 - 2015-08-03 08:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-12 20:07 - 2015-08-03 08:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-12 20:07 - 2015-08-03 08:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-12 20:07 - 2015-08-03 08:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-12 20:07 - 2015-08-03 08:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-12 20:07 - 2015-08-03 08:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-12 20:07 - 2015-08-03 08:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-12 20:07 - 2015-08-03 08:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-12 20:07 - 2015-08-03 08:22 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-08-12 20:07 - 2015-08-03 08:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-12 20:07 - 2015-08-03 08:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-12 20:07 - 2015-08-03 08:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-12 20:07 - 2015-08-03 08:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-12 20:07 - 2015-08-03 08:18 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-12 20:07 - 2015-08-03 08:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-12 20:07 - 2015-08-03 08:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-12 20:07 - 2015-08-03 08:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-12 20:07 - 2015-08-03 08:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-12 20:07 - 2015-08-03 08:14 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-12 20:07 - 2015-08-03 08:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-12 20:07 - 2015-08-03 08:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-12 20:07 - 2015-08-03 08:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-12 20:07 - 2015-08-03 08:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-12 20:07 - 2015-08-03 08:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-12 20:07 - 2015-08-03 08:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-12 20:07 - 2015-08-03 08:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-12 20:07 - 2015-08-03 08:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-12 20:07 - 2015-08-03 08:01 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-08-12 20:07 - 2015-08-03 07:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-12 18:18 - 2015-08-12 18:18 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-08-11 11:38 - 2015-08-11 11:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2015-08-10 12:25 - 2015-08-10 12:25 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-10 10:30 - 2015-08-10 10:30 - 00001179 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-09 15:12 - 2015-08-09 15:12 - 00000000 ____D C:\Users\sam33321\AppData\Local\Comms
2015-08-09 14:56 - 2015-08-09 14:56 - 00000000 ____D C:\Intel
2015-08-09 12:14 - 2015-08-09 12:16 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Acer Drivers Update Utility
2015-08-09 12:14 - 2015-06-20 17:14 - 01875456 ____R C:\Users\sam33321\AppData\Local\IconOverlayEx.dll
2015-08-09 12:07 - 2015-08-09 12:07 - 00000000 ____D C:\backup
2015-08-09 10:21 - 2015-08-08 22:38 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-09 10:21 - 2015-08-08 22:38 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-09 10:09 - 2015-07-30 13:21 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-09 10:09 - 2015-07-30 13:16 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-09 10:09 - 2015-07-30 13:05 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-09 10:09 - 2015-07-30 13:04 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-09 10:09 - 2015-07-30 11:25 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-09 10:09 - 2015-07-30 11:24 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-09 10:09 - 2015-07-30 11:21 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-09 10:09 - 2015-07-30 10:52 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-09 10:09 - 2015-07-30 10:49 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-09 10:09 - 2015-07-30 10:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-09 10:09 - 2015-07-30 10:15 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-09 10:09 - 2015-07-30 10:04 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-09 10:09 - 2015-07-26 12:16 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-09 10:09 - 2015-07-26 12:14 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-09 10:09 - 2015-07-26 12:14 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-09 10:09 - 2015-07-26 12:13 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-09 10:09 - 2015-07-26 11:28 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-09 10:09 - 2015-07-26 10:49 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-09 10:09 - 2015-07-26 10:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-09 10:09 - 2015-07-26 10:40 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-09 10:09 - 2015-07-26 10:39 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-09 10:09 - 2015-07-26 10:38 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-09 10:09 - 2015-07-26 10:30 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-09 10:09 - 2015-07-24 10:30 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-09 10:09 - 2015-07-24 09:40 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-09 10:09 - 2015-07-24 09:39 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-09 10:09 - 2015-07-24 09:25 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-09 10:09 - 2015-07-24 09:24 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-09 10:09 - 2015-07-24 09:24 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-09 10:09 - 2015-07-22 12:18 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-09 10:09 - 2015-07-22 12:02 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-09 10:09 - 2015-07-22 11:00 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-09 10:09 - 2015-07-22 11:00 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-09 10:09 - 2015-07-22 10:59 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-09 10:09 - 2015-07-22 10:55 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-09 10:09 - 2015-07-22 10:54 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-09 10:09 - 2015-07-22 10:53 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-09 10:09 - 2015-07-22 10:46 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-09 10:09 - 2015-07-22 10:13 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-08-09 10:09 - 2015-07-22 10:13 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-09 10:09 - 2015-07-22 10:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-09 10:09 - 2015-07-22 10:03 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-09 10:09 - 2015-07-19 11:04 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-09 10:09 - 2015-07-18 14:29 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-09 10:09 - 2015-07-18 10:59 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-09 10:09 - 2015-07-18 10:52 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-09 10:09 - 2015-07-17 09:31 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-09 10:09 - 2015-07-17 09:26 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-09 10:09 - 2015-07-17 08:53 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-09 10:09 - 2015-07-16 11:04 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-09 10:09 - 2015-07-16 10:47 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-09 10:09 - 2015-07-16 10:44 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-09 10:09 - 2015-07-16 10:43 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-09 10:09 - 2015-07-16 10:35 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-09 10:09 - 2015-07-16 10:29 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-09 10:09 - 2015-07-16 10:27 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-09 10:09 - 2015-07-15 10:21 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-09 10:09 - 2015-07-15 09:49 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-09 10:09 - 2015-07-15 09:41 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-09 10:09 - 2015-07-15 09:22 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-09 10:09 - 2015-07-15 08:47 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-09 10:09 - 2015-07-12 07:25 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-09 10:09 - 2015-07-12 07:18 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-09 10:09 - 2015-07-12 06:46 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-09 10:09 - 2015-07-11 08:17 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-09 10:09 - 2015-07-11 08:07 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-09 10:09 - 2015-07-11 08:04 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-09 10:09 - 2015-07-11 08:03 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-09 10:09 - 2015-07-11 07:57 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-09 10:09 - 2015-07-11 07:51 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-09 10:09 - 2015-07-11 07:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-09 10:09 - 2015-07-11 07:41 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-09 10:09 - 2015-07-11 07:40 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-09 10:09 - 2015-07-10 22:51 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-09 10:09 - 2015-07-10 22:00 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-09 10:09 - 2015-07-10 16:53 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-09 10:09 - 2015-07-10 16:31 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-09 10:08 - 2015-07-30 13:24 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-09 10:08 - 2015-07-30 13:23 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-09 10:08 - 2015-07-30 13:17 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-09 10:08 - 2015-07-30 13:17 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 13:15 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-09 10:08 - 2015-07-30 13:14 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-09 10:08 - 2015-07-30 13:09 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-09 10:08 - 2015-07-30 13:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-09 10:08 - 2015-07-30 13:05 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-09 10:08 - 2015-07-30 13:03 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-09 10:08 - 2015-07-30 12:24 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-09 10:08 - 2015-07-30 11:29 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-09 10:08 - 2015-07-30 11:26 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-09 10:08 - 2015-07-30 11:26 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-09 10:08 - 2015-07-30 11:25 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-09 10:08 - 2015-07-30 11:24 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-09 10:08 - 2015-07-30 11:24 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-09 10:08 - 2015-07-30 11:24 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-09 10:08 - 2015-07-30 11:22 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 11:22 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-09 10:08 - 2015-07-30 11:12 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-09 10:08 - 2015-07-30 11:12 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-09 10:08 - 2015-07-30 11:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-09 10:08 - 2015-07-30 11:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-09 10:08 - 2015-07-30 11:08 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-09 10:08 - 2015-07-30 11:08 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-09 10:08 - 2015-07-30 10:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-09 10:08 - 2015-07-30 10:52 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-09 10:08 - 2015-07-30 10:52 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-09 10:08 - 2015-07-30 10:46 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 10:46 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-09 10:08 - 2015-07-30 10:45 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-09 10:08 - 2015-07-30 10:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-09 10:08 - 2015-07-30 10:44 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-09 10:08 - 2015-07-30 10:44 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-09 10:08 - 2015-07-30 10:44 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-09 10:08 - 2015-07-30 10:44 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-09 10:08 - 2015-07-30 10:44 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-09 10:08 - 2015-07-30 10:42 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-09 10:08 - 2015-07-30 10:41 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-09 10:08 - 2015-07-30 10:41 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-09 10:08 - 2015-07-30 10:40 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-09 10:08 - 2015-07-30 10:38 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-09 10:08 - 2015-07-30 10:38 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-09 10:08 - 2015-07-30 10:34 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-09 10:08 - 2015-07-30 10:29 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-09 10:08 - 2015-07-30 10:07 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-09 10:08 - 2015-07-30 10:06 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 10:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-09 10:08 - 2015-07-30 10:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-09 10:08 - 2015-07-30 10:04 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-09 10:08 - 2015-07-30 09:59 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-09 10:08 - 2015-07-30 09:58 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-09 10:08 - 2015-07-26 12:16 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-09 10:08 - 2015-07-26 12:06 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-09 10:08 - 2015-07-26 10:49 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-09 10:08 - 2015-07-26 10:47 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-09 10:08 - 2015-07-26 10:39 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-09 10:08 - 2015-07-26 10:35 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-09 10:08 - 2015-07-26 10:34 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-09 10:08 - 2015-07-26 10:30 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-09 10:08 - 2015-07-26 10:29 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-09 10:08 - 2015-07-24 10:18 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-09 10:08 - 2015-07-24 10:17 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-09 10:08 - 2015-07-24 10:17 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-09 10:08 - 2015-07-24 10:12 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-09 10:08 - 2015-07-24 09:55 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-09 10:08 - 2015-07-24 09:52 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-09 10:08 - 2015-07-24 09:46 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-09 10:08 - 2015-07-24 09:44 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-09 10:08 - 2015-07-24 09:34 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-09 10:08 - 2015-07-24 09:30 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-09 10:08 - 2015-07-24 09:29 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-09 10:08 - 2015-07-24 09:24 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-09 10:08 - 2015-07-24 09:24 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-09 10:08 - 2015-07-22 12:15 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-09 10:08 - 2015-07-22 11:13 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-09 10:08 - 2015-07-22 11:02 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-09 10:08 - 2015-07-22 11:00 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-09 10:08 - 2015-07-22 10:55 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-09 10:08 - 2015-07-22 10:21 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-09 10:08 - 2015-07-22 10:10 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-09 10:08 - 2015-07-22 10:09 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-09 10:08 - 2015-07-22 10:07 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-09 10:08 - 2015-07-22 09:50 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-09 10:08 - 2015-07-19 10:54 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-09 10:08 - 2015-07-19 10:23 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-09 10:08 - 2015-07-19 10:18 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-09 10:08 - 2015-07-19 10:02 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-09 10:08 - 2015-07-19 09:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-09 10:08 - 2015-07-18 15:47 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-09 10:08 - 2015-07-18 14:43 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-09 10:08 - 2015-07-18 14:37 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-09 10:08 - 2015-07-18 14:28 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-09 10:08 - 2015-07-18 14:28 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-08-09 10:08 - 2015-07-18 14:26 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-08-09 10:08 - 2015-07-18 12:17 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-09 10:08 - 2015-07-18 12:02 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-09 10:08 - 2015-07-18 11:06 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-09 10:08 - 2015-07-18 10:59 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-09 10:08 - 2015-07-18 10:50 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-09 10:08 - 2015-07-18 10:50 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-09 10:08 - 2015-07-18 10:49 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-09 10:08 - 2015-07-18 10:49 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-09 10:08 - 2015-07-18 10:49 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-09 10:08 - 2015-07-18 10:48 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-09 10:08 - 2015-07-18 10:48 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-09 10:08 - 2015-07-18 10:47 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-09 10:08 - 2015-07-17 11:23 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-09 10:08 - 2015-07-17 11:13 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-09 10:08 - 2015-07-17 11:12 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-09 10:08 - 2015-07-17 11:07 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-09 10:08 - 2015-07-17 09:39 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-09 10:08 - 2015-07-17 09:39 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-09 10:08 - 2015-07-17 09:36 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-09 10:08 - 2015-07-17 09:33 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-09 10:08 - 2015-07-17 09:33 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-09 10:08 - 2015-07-17 09:32 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-09 10:08 - 2015-07-17 09:26 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-09 10:08 - 2015-07-17 09:24 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-09 10:08 - 2015-07-17 09:19 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-09 10:08 - 2015-07-17 09:19 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-09 10:08 - 2015-07-17 09:18 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-09 10:08 - 2015-07-17 09:05 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-09 10:08 - 2015-07-17 09:05 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-09 10:08 - 2015-07-17 08:56 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-09 10:08 - 2015-07-17 08:51 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-09 10:08 - 2015-07-17 08:50 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-09 10:08 - 2015-07-17 08:44 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-09 10:08 - 2015-07-16 12:39 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-09 10:08 - 2015-07-16 11:09 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-09 10:08 - 2015-07-16 11:03 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-09 10:08 - 2015-07-16 11:01 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-09 10:08 - 2015-07-16 10:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-09 10:08 - 2015-07-16 10:45 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-09 10:08 - 2015-07-16 10:41 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-09 10:08 - 2015-07-16 10:40 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-09 10:08 - 2015-07-16 10:36 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-09 10:08 - 2015-07-16 10:33 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-09 10:08 - 2015-07-16 10:32 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-09 10:08 - 2015-07-16 10:19 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-09 10:08 - 2015-07-15 09:49 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-09 10:08 - 2015-07-15 09:16 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-09 10:08 - 2015-07-15 09:04 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-09 10:08 - 2015-07-15 08:57 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-09 10:08 - 2015-07-15 08:41 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-09 10:08 - 2015-07-15 08:37 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-09 10:08 - 2015-07-15 08:35 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-09 10:08 - 2015-07-15 08:27 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-09 10:08 - 2015-07-14 10:00 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-09 10:08 - 2015-07-14 09:37 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-09 10:08 - 2015-07-14 09:04 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-09 10:08 - 2015-07-14 08:51 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-09 10:08 - 2015-07-14 08:49 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-09 10:08 - 2015-07-14 08:38 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-09 10:08 - 2015-07-14 08:20 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-09 10:08 - 2015-07-13 07:01 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-09 10:08 - 2015-07-13 06:30 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-09 10:08 - 2015-07-12 07:38 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-09 10:08 - 2015-07-11 08:28 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-09 10:08 - 2015-07-11 08:05 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-09 10:08 - 2015-07-11 08:03 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-09 10:08 - 2015-07-11 08:02 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-09 10:08 - 2015-07-11 08:01 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-09 10:08 - 2015-07-11 07:42 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-09 10:08 - 2015-07-11 07:40 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-09 10:08 - 2015-07-11 07:40 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-09 10:08 - 2015-07-11 07:34 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-09 10:08 - 2015-07-10 22:47 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-09 10:08 - 2015-07-10 21:52 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-09 10:08 - 2015-07-10 17:59 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-09 10:08 - 2015-07-10 17:42 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-09 10:08 - 2015-07-10 17:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-09 10:08 - 2015-07-10 17:05 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-09 10:08 - 2015-07-10 16:35 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-09 10:08 - 2015-07-10 16:29 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-09 09:28 - 2015-08-20 08:09 - 00004180 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0E0083EF-5557-4714-8414-5E622512AE80}
2015-08-09 05:18 - 2015-08-09 00:05 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-09 05:14 - 2015-08-09 05:14 - 00000000 ____D C:\Windows.old
2015-08-09 05:13 - 2015-08-09 05:13 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\Program Files\MSBuild
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\inetpub
2015-08-09 05:10 - 2015-08-08 23:42 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-09 05:09 - 2015-06-18 00:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-09 05:09 - 2015-06-18 00:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 05:09 - 2015-06-18 00:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-09 05:09 - 2015-05-30 03:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-09 05:09 - 2015-05-30 03:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 05:09 - 2015-05-30 03:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-09 00:28 - 2015-08-09 00:28 - 10627744 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-08-09 00:28 - 2015-08-09 00:28 - 06593816 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 04931384 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 04755784 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 04370016 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 01991936 _____ C:\WINDOWS\system32\iglhxa64.cpa
2015-08-09 00:28 - 2015-08-09 00:28 - 00982240 _____ C:\WINDOWS\SysWOW64\igkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00982240 _____ C:\WINDOWS\system32\igkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00439308 _____ C:\WINDOWS\SysWOW64\igcompkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00439308 _____ C:\WINDOWS\system32\igcompkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00208896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00206336 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00147456 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00092356 _____ C:\WINDOWS\SysWOW64\igfcg500m.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00092356 _____ C:\WINDOWS\system32\igfcg500m.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00060254 _____ C:\WINDOWS\system32\iglhxg64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00060226 _____ C:\WINDOWS\system32\iglhxc64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00060015 _____ C:\WINDOWS\system32\iglhxo64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00005424 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00001090 _____ C:\WINDOWS\system32\iglhxa64.vp
2015-08-09 00:27 - 2015-08-09 00:27 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-08-09 00:27 - 2015-08-09 00:27 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-08-09 00:27 - 2015-08-09 00:24 - 00033960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-08-09 00:26 - 2015-08-09 00:26 - 00000000 ____D C:\Program Files\Synaptics
2015-08-09 00:25 - 2015-08-09 00:25 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00755880 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00606376 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-08-09 00:25 - 2015-08-09 00:25 - 00410792 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00260264 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00246952 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo31.dll
2015-08-09 00:24 - 2015-08-09 00:24 - 00231456 _____ C:\WINDOWS\system32\pca-manta.bin
2015-08-09 00:24 - 2015-08-09 00:24 - 00033960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-08-09 00:24 - 2015-08-09 00:24 - 00033448 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-08-09 00:24 - 2015-08-09 00:24 - 00000092 _____ C:\WINDOWS\system32\calibration.bin
2015-08-09 00:19 - 2015-07-09 20:39 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-08-09 00:19 - 2015-07-09 20:36 - 06238720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons000c.dll
2015-08-09 00:19 - 2015-07-09 20:36 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-08-09 00:19 - 2015-07-09 20:36 - 02268160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000c.dll
2015-08-09 00:19 - 2015-07-09 20:28 - 06358016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-08-09 00:19 - 2015-07-09 20:26 - 02353152 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000c.dll
2015-08-09 00:19 - 2015-07-09 20:25 - 06238720 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons000c.dll
2015-08-09 00:19 - 2015-07-09 20:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-08-09 00:19 - 2015-07-09 20:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-08-09 00:17 - 2015-08-09 00:18 - 00000000 ___RD C:\Users\sam33321\OneDrive
2015-08-09 00:17 - 2015-08-09 00:18 - 00000000 ____D C:\Users\sam33321\AppData\Local\MicrosoftEdge
2015-08-09 00:12 - 2015-08-09 00:12 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-08-09 00:09 - 2015-08-09 00:09 - 00000000 ____D C:\Users\sam33321\AppData\Local\Publishers
2015-08-09 00:07 - 2015-08-09 00:07 - 00000000 ____D C:\Users\sam33321\AppData\Local\NetworkTiles
2015-08-09 00:05 - 2015-08-18 17:25 - 00000000 ____D C:\Users\sam33321\AppData\Local\Packages
2015-08-09 00:05 - 2015-08-09 00:05 - 00000020 ___SH C:\Users\sam33321\ntuser.ini
2015-08-09 00:05 - 2015-08-09 00:05 - 00000000 ____D C:\Users\sam33321\AppData\Local\TileDataLayer
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 __SHD C:\Recovery
2015-08-08 23:47 - 2015-07-10 17:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-08 23:40 - 2015-08-08 23:40 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-08 23:40 - 2015-08-08 23:40 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-08-08 23:40 - 2015-08-08 23:40 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-08-08 23:33 - 2015-08-08 23:33 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-08-08 23:28 - 2015-08-19 22:52 - 00000000 ____D C:\Users\sam33321
2015-08-08 23:28 - 2015-08-08 23:50 - 00000000 ____D C:\Users\Administrator
2015-08-08 23:28 - 2015-08-08 23:29 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Vorlagen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Startmenü
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Netzwerkumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Lokale Einstellungen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Eigene Dateien
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Druckumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Documents\Eigene Musik
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Documents\Eigene Bilder
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\AppData\Local\Verlauf
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\AppData\Local\Anwendungsdaten
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Anwendungsdaten
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 __RSD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-08 23:26 - 2015-08-18 17:23 - 02085854 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-08 23:26 - 2015-08-08 23:27 - 00021209 _____ C:\WINDOWS\iis.log
2015-08-08 23:26 - 2015-08-08 23:26 - 01980268 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01007.Wdf
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____D C:\Program Files\LSI SoftModem
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____D C:\Program Files\Apoint2K
2015-08-08 23:23 - 2015-08-15 13:01 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-08 23:23 - 2015-08-08 23:23 - 00000000 ____D C:\Program Files\Realtek
2015-08-08 23:20 - 2015-08-08 23:21 - 00023385 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-08 23:19 - 2015-08-17 19:54 - 00011064 _____ C:\WINDOWS\PFRO.log
2015-08-08 22:46 - 2015-08-08 23:58 - 00007322 _____ C:\WINDOWS\comsetup.log
2015-08-08 22:28 - 2015-08-08 22:42 - 00000000 ___HD C:\$Windows.~BT
2015-08-03 09:22 - 2015-08-03 09:22 - 00000000 ____D C:\Users\sam33321\AppData\Local\GWX
2015-08-03 08:21 - 2015-05-26 00:00 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-08-03 08:20 - 2015-07-10 00:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-08-03 08:19 - 2015-01-09 10:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\powertracker.dll

sam33321 20.08.2015 03:47
Code:
==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-20 09:04 - 2012-12-31 08:46 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-20 08:54 - 2015-07-10 19:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-20 08:52 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-20 08:49 - 2013-10-14 13:44 - 00001110 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cec8a8d405f05d.job
2015-08-20 08:36 - 2013-12-28 20:28 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Skype
2015-08-20 07:51 - 2014-12-21 14:06 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-20 06:56 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-20 06:55 - 2013-10-26 07:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-08-20 06:50 - 2014-06-17 16:12 - 00001106 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8a0c3832eee1.job
2015-08-20 06:49 - 2015-07-10 19:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-19 22:53 - 2015-07-10 16:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-19 17:59 - 2013-01-22 11:52 - 00001973 _____ C:\Users\sam33321\Desktop\links.txt
2015-08-19 16:53 - 2015-07-10 15:04 - 513436758 _____ C:\WINDOWS\MEMORY.DMP
2015-08-19 14:37 - 2014-06-05 21:26 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\GlobalTV
2015-08-19 13:15 - 2011-01-02 19:18 - 00000099 _____ C:\Users\Public\LMDebug.log
2015-08-19 08:41 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-19 08:41 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-19 07:52 - 2015-07-10 17:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-18 17:23 - 2015-07-10 23:34 - 00888476 _____ C:\WINDOWS\system32\perfh007.dat
2015-08-18 17:23 - 2015-07-10 23:34 - 00197074 _____ C:\WINDOWS\system32\perfc007.dat
2015-08-18 16:51 - 2013-12-06 18:57 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2015-08-18 06:42 - 2015-07-10 16:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-17 19:54 - 2012-05-21 12:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-17 19:51 - 2010-10-28 22:16 - 00000000 ____D C:\install
2015-08-17 18:10 - 2011-06-19 22:20 - 00002673 _____ C:\WINDOWS\wininit.ini
2015-08-17 18:08 - 2010-10-29 00:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-08-17 18:08 - 2010-04-13 03:06 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-17 17:54 - 2015-07-10 18:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-17 17:54 - 2010-04-13 03:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-08-17 17:42 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-17 16:31 - 2010-10-28 23:59 - 00000000 ____D C:\Program Files\Microsoft Office
2015-08-17 15:47 - 2015-07-10 19:20 - 00387984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-17 15:14 - 2014-01-24 13:45 - 00000000 ____D C:\Users\sam33321\Documents\ML-1660_PrintDa
2015-08-17 15:13 - 2014-01-16 20:28 - 00000040 _____ C:\Autoconfig.ini
2015-08-17 14:49 - 2015-07-10 19:20 - 00030792 _____ C:\WINDOWS\setupact.log
2015-08-17 11:13 - 2010-12-06 17:30 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\vlc
2015-08-17 11:04 - 2010-11-01 18:32 - 00000000 ____D C:\bittorrent
2015-08-16 22:23 - 2011-01-14 13:32 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\FileZilla
2015-08-16 10:14 - 2014-06-05 21:24 - 00000000 ____D C:\Program Files (x86)\GlobalHDTV
2015-08-15 22:07 - 2014-07-26 08:59 - 00000000 ____D C:\TheraGate
2015-08-15 13:02 - 2010-05-05 07:24 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-08-14 07:29 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\rescache
2015-08-14 07:14 - 2010-10-28 22:42 - 00000000 ____D C:\Program Files (x86)\McAfee
2015-08-13 13:07 - 2010-10-28 22:45 - 00000000 ____D C:\Programme
2015-08-13 12:56 - 2010-10-28 22:15 - 00000000 ____D C:\Program Files (x86)\Windows Live
2015-08-13 12:37 - 2011-04-30 19:55 - 00001224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-13 11:34 - 2010-12-07 18:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-12 20:11 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 20:11 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 20:11 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-12 18:29 - 2013-07-27 08:58 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-12 18:21 - 2013-12-05 06:16 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-12 17:53 - 2012-12-31 08:46 - 00003858 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-11 11:42 - 2010-04-13 03:02 - 00000000 ____D C:\ProgramData\McAfee
2015-08-11 11:41 - 2010-10-28 22:42 - 00000000 ____D C:\Program Files\Common Files\McAfee
2015-08-10 17:05 - 2011-01-02 19:17 - 00000000 ____D C:\WINDOWS\Samsung
2015-08-10 17:04 - 2010-11-01 18:31 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\BitTorrent
2015-08-10 10:30 - 2014-12-21 14:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-10 10:30 - 2014-12-21 14:06 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-09 21:28 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-08-09 16:09 - 2011-05-19 17:30 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\ObviousIdea
2015-08-09 11:53 - 2015-01-12 11:18 - 00000468 _____ C:\WINDOWS\CLOSEAPP.INI
2015-08-09 11:42 - 2013-01-27 22:29 - 00000000 ____D C:\ProgramData\TuneUp Software
2015-08-09 11:41 - 2013-12-16 09:48 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2015-08-09 11:40 - 2011-02-04 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR ReadyNAS
2015-08-09 11:35 - 2012-01-17 09:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-08-09 11:35 - 2012-01-17 09:35 - 00000000 ____D C:\ProgramData\Freemake
2015-08-09 11:35 - 2012-01-17 09:35 - 00000000 ____D C:\Program Files (x86)\Freemake
2015-08-09 11:34 - 2013-06-21 08:01 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2015-08-09 11:34 - 2012-06-12 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-08-09 11:34 - 2012-06-12 15:53 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\DVDVideoSoft
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-09 10:15 - 2015-07-10 16:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-09 10:15 - 2015-07-10 16:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-09 05:18 - 2015-07-10 18:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-08-09 05:10 - 2015-07-10 18:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-08-09 05:10 - 2015-07-10 18:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-08-09 05:10 - 2015-07-10 18:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-08-09 05:10 - 2015-07-10 18:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-08-09 05:10 - 2015-07-10 18:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-08-09 05:10 - 2015-07-10 18:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-08-09 05:10 - 2015-07-10 18:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-08-09 03:49 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-09 00:19 - 2015-07-10 23:35 - 00000000 ____D C:\WINDOWS\OCR
2015-08-09 00:08 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-09 00:08 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-09 00:03 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-08-08 23:59 - 2015-07-10 18:04 - 00000000 ____D C:\Program Files\Windows NT
2015-08-08 23:59 - 2015-07-10 16:05 - 00000000 __RHD C:\Users\Default
2015-08-08 23:58 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\Registration
2015-08-08 23:58 - 2013-12-04 21:13 - 00014259 _____ C:\WINDOWS\diagerr.xml
2015-08-08 23:58 - 2013-12-04 21:13 - 00013338 _____ C:\WINDOWS\diagwrn.xml
2015-08-08 23:57 - 2015-07-10 18:04 - 00000000 __RSD C:\WINDOWS\Media
2015-08-08 23:57 - 2015-07-10 18:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-08 23:57 - 2015-04-16 17:41 - 00003268 _____ C:\WINDOWS\System32\Tasks\{DC46145C-0CA8-429F-BB1A-8E47D6AD21E5}
2015-08-08 23:57 - 2014-12-26 08:42 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-08-08 23:57 - 2014-06-17 16:12 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf8a0c3832eee1
2015-08-08 23:57 - 2014-02-10 12:42 - 00003556 _____ C:\WINDOWS\System32\Tasks\{D508D905-006F-497D-B963-6270456B9E68}
2015-08-08 23:57 - 2013-12-05 01:08 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-08 23:57 - 2013-10-14 13:44 - 00004216 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1cec8a8d405f05d
2015-08-08 23:57 - 2013-02-27 12:02 - 00002956 _____ C:\WINDOWS\System32\Tasks\Core Temp Autostart sam33321
2015-08-08 23:57 - 2013-02-01 15:35 - 00003434 _____ C:\WINDOWS\System32\Tasks\4780
2015-08-08 23:57 - 2013-01-28 15:09 - 00003804 _____ C:\WINDOWS\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2015-08-08 23:56 - 2015-07-10 18:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-08-08 23:51 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-08 23:42 - 2015-07-10 23:46 - 00000000 ____D C:\WINDOWS\ShellNew
2015-08-08 23:42 - 2015-07-10 18:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-08 23:42 - 2015-03-13 10:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout
2015-08-08 23:42 - 2014-11-02 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Share Manager
2015-08-08 23:42 - 2014-10-23 13:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-08 23:42 - 2014-08-14 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeTV
2015-08-08 23:42 - 2014-07-30 14:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UPSilon 2000
2015-08-08 23:42 - 2014-06-05 21:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Global HDTV
2015-08-08 23:42 - 2014-03-10 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2015-08-08 23:42 - 2013-12-18 16:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2015-08-08 23:42 - 2013-12-16 09:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
2015-08-08 23:42 - 2013-09-30 11:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-08 23:42 - 2013-07-24 17:42 - 00000000 ____D C:\WINDOWS\de
2015-08-08 23:42 - 2013-07-24 17:41 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-08-08 23:42 - 2013-02-26 09:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2015-08-08 23:42 - 2013-01-26 10:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DirPrintOK
2015-08-08 23:42 - 2013-01-19 14:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2015-08-08 23:42 - 2011-06-19 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp Backup Tool
2015-08-08 23:42 - 2011-05-21 18:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exif Tag Remover
2015-08-08 23:42 - 2011-01-14 13:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-08-08 23:42 - 2011-01-02 19:17 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-08-08 23:42 - 2010-12-19 22:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\freac - free audio converter
2015-08-08 23:42 - 2010-12-07 18:11 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-08 23:42 - 2010-11-05 23:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Snagit 9
2015-08-08 23:42 - 2010-11-01 18:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitTorrent
2015-08-08 23:42 - 2010-05-05 07:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Arcade Deluxe
2015-08-08 23:42 - 2010-05-05 07:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager
2015-08-08 23:42 - 2010-04-13 03:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Backup Manager
2015-08-08 23:42 - 2010-04-13 03:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
2015-08-08 23:42 - 2010-04-13 03:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-08-08 23:42 - 2010-04-13 02:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
2015-08-08 23:40 - 2015-07-10 18:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-08 23:40 - 2009-07-14 10:20 - 00000000 ____D C:\Users\Default.migrated
2015-08-08 23:35 - 2015-07-10 23:34 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-08-08 23:35 - 2010-05-05 07:22 - 00000000 ____D C:\WINDOWS\SysWOW64\x64
2015-08-08 23:35 - 2010-05-05 07:22 - 00000000 ____D C:\WINDOWS\SysWOW64\Lang
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-08 23:34 - 2011-06-09 11:53 - 00000000 ____D C:\WINDOWS\system32\SPReview
2015-08-08 23:34 - 2011-06-09 11:53 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2015-08-08 23:33 - 2015-07-10 20:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\schemas
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\IME
2015-08-08 23:33 - 2014-09-18 12:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-08 23:33 - 2013-02-08 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\yaDIS
2015-08-08 23:33 - 2011-07-02 14:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MKVtoolnix
2015-08-08 23:33 - 2011-05-21 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karaoke for DirectX
2015-08-08 23:33 - 2011-05-19 17:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ObviousIdea
2015-08-08 23:33 - 2011-04-12 14:54 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-08-08 23:33 - 2010-11-20 13:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Medieval Software
2015-08-08 23:33 - 2010-11-13 19:54 - 00000000 __SHD C:\WINDOWS\system32\%APPDATA%
2015-08-08 23:33 - 2010-10-29 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF
2015-08-08 23:33 - 2010-10-28 23:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2005
2015-08-08 23:33 - 2010-04-13 03:04 - 00000000 ____D C:\Program Files (x86)\Acer
2015-08-08 23:33 - 2009-07-14 12:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-08-08 23:33 - 2009-07-14 12:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-08-08 23:31 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-08 23:30 - 2009-07-14 10:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-08-08 23:26 - 2015-07-10 16:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-08 22:55 - 2013-12-05 02:39 - 01642611 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-08 22:35 - 2009-07-14 11:45 - 00030416 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-08 22:35 - 2009-07-14 11:45 - 00030416 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-08 21:45 - 2011-05-19 16:58 - 00000000 ____D C:\temp
2015-08-08 21:09 - 2014-08-14 22:12 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\FreeTV
2015-08-08 16:47 - 2015-03-14 08:59 - 00000000 ____D C:\Users\sam33321\AppData\Local\CrashDumps
2015-08-06 09:04 - 2010-10-28 22:21 - 00000000 ____D C:\ProgramData\Skype
2015-07-29 10:53 - 2014-10-23 13:40 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-29 10:53 - 2013-12-06 18:43 - 00000000 ____D C:\ProgramData\Oracle
2015-07-29 10:51 - 2015-01-25 10:42 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-07-23 18:01 - 2010-10-28 22:20 - 00000000 ____D C:\Users\sam33321\AppData\Local\Microsoft Help
2015-07-21 11:05 - 2010-10-29 00:46 - 00000000 ____D C:\Users\sam33321\AppData\Local\CutePDF Writer

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2012-01-21 22:14 - 2012-01-21 22:14 - 0010606 _____ () C:\Users\sam33321\AppData\Roaming\Kommagetrennte Werte (Windows).CAL
2013-11-12 16:03 - 2013-11-12 16:03 - 0038412 _____ () C:\Users\sam33321\AppData\Roaming\Microsoft Excel 97-2003.ADR
2013-11-16 07:50 - 2015-04-19 09:44 - 0000479 _____ () C:\Users\sam33321\AppData\Roaming\Poladroid prefs.plist
2013-02-26 13:13 - 2013-12-09 08:34 - 1178624 _____ (CPUID) C:\Users\sam33321\AppData\Roaming\siw_sdk.dll
2010-05-03 22:54 - 2010-05-03 22:54 - 0007680 _____ () C:\Users\sam33321\AppData\Roaming\SpareLib.dll
2010-05-03 22:54 - 2010-05-03 22:54 - 0024576 _____ () C:\Users\sam33321\AppData\Roaming\WSM.exe
2014-02-23 21:40 - 2014-02-23 21:40 - 0000393 _____ () C:\Users\sam33321\AppData\Local\HamsterVideoConverterSettings.cfg
2015-08-09 12:14 - 2015-06-20 17:14 - 1875456 ____R () C:\Users\sam33321\AppData\Local\IconOverlayEx.dll
2014-04-05 09:41 - 2014-05-27 16:13 - 0003671 _____ () C:\Users\sam33321\AppData\Local\Images.fl
2015-05-15 09:40 - 2015-05-15 09:40 - 0004096 ____H () C:\Users\sam33321\AppData\Local\keyfile3.drm
2014-01-30 09:12 - 2014-01-30 09:12 - 0015722 _____ () C:\Users\sam33321\AppData\Local\recently-used.xbel
2013-12-28 21:23 - 2013-12-28 21:23 - 0007605 _____ () C:\Users\sam33321\AppData\Local\Resmon.ResmonCfg
2015-08-15 13:01 - 2015-08-15 13:01 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
ZeroAccess:
C:\Users\sam33321\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install

Einige Dateien in TEMP:
====================
C:\Users\sam33321\AppData\Local\Temp\i4jdel0.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-19 07:49

==================== Ende von Ergebnis ============================
@Schrauber
So nun hoffe ich dass die obigen Logfiles Informationen enthalten die es ermöglichen mir weiter zu helfen.
Vielen Dank für die Unterstützung.

schrauber 20.08.2015 15:28
Noch Kontrollscans, dann hauen wir die Reste raus.


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

sam33321 20.08.2015 16:29
Code:
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=f66aca354536584b821637e7ae7435bf
# end=init
# utc_time=2015-08-20 06:25:44
# local_time=2015-08-20 01:25:44 (+0700, Südostasiatische Normalzeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 25361
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=f66aca354536584b821637e7ae7435bf
# end=updated
# utc_time=2015-08-20 06:29:59
# local_time=2015-08-20 01:29:59 (+0700, Südostasiatische Normalzeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=f66aca354536584b821637e7ae7435bf
# engine=25361
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-08-20 11:51:21
# local_time=2015-08-20 06:51:21 (+0700, Südostasiatische Normalzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='*McAfee*'
# compatibility_mode=5133 16777214 100 100 0 35744945 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 3525406 3545493 0 0
# scanned=375594
# found=16
# cleaned=0
# scan_time=19281
sh=F65E56B7C07BCE2B9EF6E4DAF8AF6B3BBBE1780C ft=1 fh=5d78baca7f7ad589 vn="Win32/Toolbar.SearchSuite evtl. unerwünschte Anwendung" ac=I fn="C:\install\Free FLV Converter\FreeFLVConverter75Setup.exe"
sh=5257BE6DDE0E85266B2A78D055A9343BF5CF72F5 ft=1 fh=c71c0011bf6ca41b vn="Win32/InstallCore.ME evtl. unerwünschte Anwendung" ac=I fn="C:\install\FreeYouTubeDownload\FreeYouTubeDownload.exe"
sh=73DE1892D53516B246CFA69AF2E7BDBD8F1F11B2 ft=1 fh=c71c0011a17c88ed vn="Variante von Win32/InstallCore.D evtl. unerwünschte Anwendung" ac=I fn="C:\install\FreeYouTubeDownload\FreeYouTubeDownload_20140427.exe"
sh=8A010C6486A9211B7E632E7239747D91B7F75FFE ft=1 fh=65f410e20cf40b01 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\install\greenshot\Greenshot - CHIP-Installer.exe"
sh=796FCB32B27178DB7226F47AE87B93D686D2FD6B ft=1 fh=4bea93fe468821b4 vn="Win32/AdWare.Linkular.AH Anwendung" ac=I fn="C:\install\light_image_resizer\light_image_resizer4_setup.exe"
sh=998856CC6105C674E3A6D540F714CF14B6065459 ft=1 fh=8ac4f376e68dc631 vn="Win32/Adware.Linkular.AC Anwendung" ac=I fn="C:\install\light_image_resizer\light_image_resizer4_setup_4.3.2.2b_linkular.exe"
sh=EB083ECC07F4E735F86E1FD8C1398CCA36AD59B7 ft=1 fh=eee6e3ad7ea6ea9d vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\install\tunatic\My Music Recognition - CHIP-Installer.exe"
sh=3A03755C0624AE69DADEA2BA1A119199FBD8A5F9 ft=1 fh=f9765099f4f0e865 vn="Variante von Win32/Systweak.L evtl. unerwünschte Anwendung" ac=I fn="C:\install\winzip\wz170deupgstd.exe"
sh=DCF2C06FBBEC44AA1111293FD31E751AFB161DB4 ft=1 fh=8857da07f8dead4a vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\temp\iexplorer\Temporäre Internetdateien\Content.IE5\7YNDXCH7\ISO to USB - CHIP-Installer.exe"
sh=7D527032D4B56CA4CDA2DCA096EA0C719A08536F ft=0 fh=0000000000000000 vn="Variante von Java/Exploit.CVE-2013-2465.LX Trojaner" ac=I fn="C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\47d4db80-1aaada3c"
sh=7D527032D4B56CA4CDA2DCA096EA0C719A08536F ft=0 fh=0000000000000000 vn="Variante von Java/Exploit.CVE-2013-2465.LX Trojaner" ac=I fn="C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\47d4db80-64c211cb"
sh=F799AD7E9BD36B1959188B1B4ECE0E516CF7BDFD ft=0 fh=0000000000000000 vn="Variante von Java/Obfus.BS Trojaner" ac=I fn="C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\2235ad4a-79dc8ad6"
sh=B22DA185631042DBC423256A2B9007D8AE2BC605 ft=0 fh=0000000000000000 vn="Variante von Java/Obfus.BS Trojaner" ac=I fn="C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\7b68f726-68f8a923"
sh=E33473A547B46503C4F7D8D6095F084570496E0F ft=1 fh=3cc725458bf86889 vn="Win32/BrowserCompanion evtl. unerwünschte Anwendung" ac=I fn="C:\Users\sam33321\AppData\Roaming\_BrowserCompanion\tcbhn.exe"
sh=95AFC9A6809932D48236DA38C40FFEF71D00F02F ft=0 fh=0000000000000000 vn="Variante von Win32/Systweak.L evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\4e796b0.msi"
sh=712DE87D51AAC46AB47A3EB212D4530BC4FB260C ft=1 fh=06652911dc11249b vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\sam33321\AppData\Local\Temp\DMR\dmr_72.exe"
Code:
Results of screen317's Security Check version 1.006 
  x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````
Windows Defender                   
McAfee Anti-Virus und Anti-Spyware 
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Java 8 Update 51 
 Adobe Flash Player        18.0.0.232 
 Mozilla Firefox (40.0.2)
 Mozilla Thunderbird (38.2.0)
````````Process Check: objlist.exe by Laurent```````` 
 virus-tools 2015_BVC 7_SecurityCheck.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````

sam33321 20.08.2015 16:35
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:20-08-2015
durchgeführt von sam33321 (Administrator) auf ACER-NOTEBOOK (20-08-2015 22:30:21)
Gestartet von C:\install\virus-tools\2015_BVC
Geladene Profile: sam33321 (Verfügbare Profile: sam33321 & Administrator & DefaultAppPool)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Greatis Software, LLC) C:\Program Files (x86)\BootRacer\BootRacerServ.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Mega System Technologies, Inc.) C:\Program Files (x86)\MegaTec\UPSilon 2000\RupsMon.exe
(Mega System Technologies, Inc.) C:\Program Files (x86)\MegaTec\UPSilon 2000\usbmate.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
() C:\Windows\PLFSetI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Mega System Technologies, Inc.) C:\Program Files (x86)\MegaTec\UPSilon 2000\Monw32.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.803.16240.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.12391.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
() C:\Program Files\WindowsApps\Microsoft.BingWeather_4.4.200.0_x86__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 9\Snagit32.exe
(TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 9\TscHelp.exe
(TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 9\SnagPriv.exe
(TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 9\SnagitEditor.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Farbar) C:\install\virus-tools\2015_BVC\1_FRST64.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [295936 2009-05-22] (Alps Electric Co., Ltd.)
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [206208 2010-05-05] ()
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935912 2015-08-09] (Synaptics Incorporated)
HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [641504 2015-07-21] (McAfee, Inc.)
HKLM-x32\...\Run: [Samsung PanelMgr] => C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe [688128 2011-07-06] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files (x86)\BootRacer\Bootrace.exe [3901200 2015-03-24] (Greatis Software)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53655680 2015-07-28] (Skype Technologies S.A.)
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-18] (Piriform Ltd)
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\RunOnce: [Uninstall C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\sam33321\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  Keine Datei
ShellIconOverlayIdentifiers: [IconOverlayEx] -> {E1773C0E-364D-4210-B831-72F5A359E88F} => C:\Users\sam33321\AppData\Local\IconOverlayEx.dll [2015-06-20] ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.ch/
SearchScopes: HKLM-x32 -> DefaultScope {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\Snagit 9\DLLx64\SnagitBHO64.dll [2009-04-29] (TechSmith Corporation)
BHO-x32: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\Snagit 9\SnagitBHO.dll [2009-04-29] (TechSmith Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-29] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-29] (Oracle Corporation)
Toolbar: HKLM-x32 - Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitIEAddin.dll [2009-04-29] (TechSmith Corporation)
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} hxxp://office.microsoft.com/_layouts/ClientBin/ieawsdc32.cab
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://qtinstall.apple.com/qtactivex/qtplugin.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://active.macromedia.com/flash2/cabs/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://iwork.css.ch/dana-cached/sc/JuniperSetupClient.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2015-07-21] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2015-07-21] (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3aa86cd7-caf4-45e2-9462-fd2cde3e2b9f}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default
FF SearchEngineOrder.1: Sichere Suche
FF SelectedSearchEngine: Sichere Suche
FF Homepage: hxxp://torrentz.eu/search?f=flac
FF Keyword.URL: hxxps://search.yahoo.com/search?fr=mcafee&type=B111CH0D20140928&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-07-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin-x32: @bittorrent.com/BitTorrentDNA -> C:\Program Files (x86)\DNA\plugins\npbtdna.dll [2010-11-01] (BitTorrent, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-29] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-07-21] ()
FF Plugin-x32: @mcafee.com/MVT -> C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll [2013-02-05] (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.)
FF SearchPlugin: C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\searchplugins\power-torrent-search.xml [2011-02-09]
FF SearchPlugin: C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\searchplugins\torrentz-search.xml [2011-01-07]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2015-03-15]
FF Extension: Torrent Finder Toolbar - C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\Extensions\TFToolbarX@torrent-finder.xpi [2012-01-09]
FF Extension: TorrentBar - C:\Users\sam33321\AppData\Roaming\Mozilla\Firefox\Profiles\jo1f8jnk.default\Extensions\{7b821b0e-b102-4f9b-b6e3-433ede1fe379}.xpi [2011-07-09]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-09-25]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2014-09-25]
FF HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-04-03]

Chrome:
=======
CHR Profile: C:\Users\sam33321\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 BootRacerServ; C:\Program Files (x86)\BootRacer\BootRacerServ.exe [65296 2014-04-30] (Greatis Software, LLC)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-07-22] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-07-22] (Microsoft Corporation)
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-11] (Microsoft Corporation)
R3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [155368 2015-04-29] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [782608 2015-07-21] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe [1694152 2015-07-23] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [639456 2015-07-17] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Datei ist nicht signiert]
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-06-29] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [373704 2015-07-06] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [254792 2015-06-29] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [368048 2015-07-21] (McAfee, Inc.)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-09] (Microsoft Corporation)
S4 NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [250368 2010-03-09] (NewTech Infosystems, Inc.) [Datei ist nicht signiert]
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 RetailDemo; C:\Windows\system32\RDXService.dll [996352 2015-08-11] (Microsoft Corporation)
R2 Rupsmon; C:\Program Files (x86)\MegaTec\UPSilon 2000\RupsMon.exe [245760 2013-04-15] (Mega System Technologies, Inc.) [Datei ist nicht signiert]
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-07-12] (Microsoft Corporation)
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-07-24] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-07-24] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 USBMate; C:\Program Files (x86)\MegaTec\UPSilon 2000\USBMate.exe [106555 2012-10-22] (Mega System Technologies, Inc.) [Datei ist nicht signiert]
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-30] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-09] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-09] (Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S5 3ware; C:\Windows\System32\drivers\3ware.sys [107360 2015-07-10] (LSI)
R5 ACPI; C:\Windows\System32\drivers\ACPI.sys [565088 2015-07-22] (Microsoft Corporation)
R5 acpiex; C:\Windows\System32\Drivers\acpiex.sys [127840 2015-07-10] (Microsoft Corporation)
S5 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [1135456 2015-07-10] (PMC-Sierra)
S5 agp440; C:\Windows\System32\drivers\agp440.sys [63328 2015-07-10] (Microsoft Corporation)
S5 amdsata; C:\Windows\System32\drivers\amdsata.sys [83296 2015-07-10] (Advanced Micro Devices)
S5 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259424 2015-07-10] (AMD Technologies Inc.)
S5 amdxata; C:\Windows\System32\drivers\amdxata.sys [26976 2015-07-10] (Advanced Micro Devices)
S5 arcsas; C:\Windows\System32\drivers\arcsas.sys [131936 2015-07-10] (PMC-Sierra, Inc.)
S5 atapi; C:\Windows\System32\drivers\atapi.sys [28512 2015-07-10] (Microsoft Corporation)
S5 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2015-07-10] (Broadcom Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [77536 2015-07-02] (McAfee, Inc.)
R5 CLFS; C:\Windows\System32\drivers\CLFS.sys [380768 2015-07-10] (Microsoft Corporation)
R5 CNG; C:\Windows\System32\Drivers\cng.sys [601344 2015-07-17] (Microsoft Corporation)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
R5 disk; C:\Windows\System32\drivers\disk.sys [101216 2015-07-10] (Microsoft Corporation)
S5 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
R5 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [88928 2015-07-10] (Microsoft Corporation)
S5 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [116576 2015-07-10] (Microsoft Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
R5 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [83808 2015-07-10] (Microsoft Corporation)
R5 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [368992 2015-07-10] (Microsoft Corporation)
U5 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [31072 2015-07-10] (Microsoft Corporation)
R5 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [633184 2015-07-10] (Microsoft Corporation)
S5 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [66912 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.)
S5 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64352 2015-07-10] (Hewlett-Packard Company)
S5 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [29024 2015-07-10] (Microsoft Corporation)
R5 iaStor; C:\Windows\System32\drivers\iaStor.sys [408600 2009-06-05] (Intel Corporation)
S5 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [673120 2015-07-10] (Intel Corporation)
S5 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412000 2015-07-10] (Intel Corporation)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
S5 intelide; C:\Windows\System32\drivers\intelide.sys [19296 2015-07-10] (Microsoft Corporation)
S5 intelpep; C:\Windows\System32\drivers\intelpep.sys [43872 2015-07-10] (Microsoft Corporation)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
S5 isapnp; C:\Windows\System32\drivers\isapnp.sys [22368 2015-07-10] (Microsoft Corporation)
R5 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [131424 2015-07-10] (Microsoft Corporation)
R5 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [158560 2015-07-10] (Microsoft Corporation)
S5 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [108896 2015-07-10] (LSI Corporation)
S5 LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [104800 2015-07-10] (LSI Corporation)
S5 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
S5 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82784 2015-07-10] (LSI Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R2 megabattery; C:\Windows\System32\drivers\megabatteryX64.sys [20608 2012-03-31] (Megatec System Co.)
S5 megasas; C:\Windows\System32\drivers\megasas.sys [59744 2015-07-10] (Avago Technologies)
S5 megasr; C:\Windows\System32\drivers\megasr.sys [575840 2015-07-10] (LSI Corporation, Inc.)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [412440 2015-07-02] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [347800 2015-07-02] (McAfee, Inc.)
S5 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [496888 2015-07-02] (McAfee, Inc.)
R5 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [875928 2015-07-02] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)
R5 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344704 2015-07-02] (McAfee, Inc.)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
R5 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [102752 2015-08-04] (Microsoft Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-09] (Microsoft Corporation)
R5 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [19296 2015-07-10] (Microsoft Corporation)
R5 Mup; C:\Windows\System32\Drivers\mup.sys [118624 2015-07-10] (Microsoft Corporation)
S5 mvumis; C:\Windows\System32\drivers\mvumis.sys [63840 2015-07-10] (Marvell Semiconductor, Inc.)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
R5 NDIS; C:\Windows\System32\drivers\ndis.sys [1168736 2015-07-19] (Microsoft Corporation)
S5 nvraid; C:\Windows\System32\drivers\nvraid.sys [150368 2015-07-10] (NVIDIA Corporation)
S5 nvstor; C:\Windows\System32\drivers\nvstor.sys [166240 2015-07-10] (NVIDIA Corporation)
S5 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [126304 2015-07-10] (Microsoft Corporation)
R5 partmgr; C:\Windows\System32\drivers\partmgr.sys [117088 2015-07-10] (Microsoft Corporation)
R5 pci; C:\Windows\System32\drivers\pci.sys [325984 2015-07-15] (Microsoft Corporation)
S5 pciide; C:\Windows\System32\drivers\pciide.sys [15712 2015-07-10] (Microsoft Corporation)
S5 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [118112 2015-07-10] (Microsoft Corporation)
R5 pcw; C:\Windows\System32\drivers\pcw.sys [51552 2015-07-10] (Microsoft Corporation)
R5 pdc; C:\Windows\System32\drivers\pdc.sys [98144 2015-07-10] (Microsoft Corporation)
S5 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58208 2015-07-10] (LSI Corporation)
S5 percsas3i; C:\Windows\System32\drivers\percsas3i.sys [58720 2015-07-10] (Avago Technologies)
R5 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [237392 2015-08-06] (Microsoft Corporation)
S5 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [109920 2015-07-10] (Microsoft Corporation)
S5 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44896 2015-07-10] (Silicon Integrated Systems Corp.)
S5 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81760 2015-07-10] (Silicon Integrated Systems)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-08-09] (Synaptics Incorporated)
R5 spaceport; C:\Windows\System32\drivers\spaceport.sys [474464 2015-07-10] (Microsoft Corporation)
R2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-07-29] (Samsung Electronics)
S5 stexstor; C:\Windows\System32\drivers\stexstor.sys [31072 2015-07-10] (Promise Technology, Inc.)
S5 storahci; C:\Windows\System32\drivers\storahci.sys [133984 2015-07-10] (Microsoft Corporation)
S5 storflt; C:\Windows\System32\drivers\vmstorfl.sys [45920 2015-07-10] (Microsoft Corporation)
S5 stornvme; C:\Windows\System32\drivers\stornvme.sys [80720 2015-08-11] (Microsoft Corporation)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
S5 storufs; C:\Windows\System32\drivers\storufs.sys [40288 2015-07-10] (Microsoft Corporation)
S5 storvsc; C:\Windows\System32\drivers\storvsc.sys [36192 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
R5 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2430816 2015-07-10] (Microsoft Corporation)
S5 uagp35; C:\Windows\System32\drivers\uagp35.sys [66400 2015-07-10] (Microsoft Corporation)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-07-14] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S5 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [66912 2015-07-10] (Microsoft Corporation)
R5 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [42848 2015-07-10] (Microsoft Corporation)
S5 vmbus; C:\Windows\System32\drivers\vmbus.sys [125792 2015-07-10] (Microsoft Corporation)
R5 volmgr; C:\Windows\System32\drivers\volmgr.sys [81248 2015-07-10] (Microsoft Corporation)
R5 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [370016 2015-07-10] (Microsoft Corporation)
R5 volsnap; C:\Windows\System32\drivers\volsnap.sys [378720 2015-07-10] (Microsoft Corporation)
S5 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [166752 2015-07-10] (VIA Technologies Inc.,Ltd)
S5 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305504 2015-07-10] (VIA Corporation)
R5 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [892224 2015-07-10] (Microsoft Corporation)
R5 WFPLWFS; C:\Windows\System32\drivers\wfplwfs.sys [153440 2015-07-10] (Microsoft Corporation)
R5 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
R5 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
R5 Wof; C:\Windows\System32\Drivers\Wof.sys [200528 2015-08-06] (Microsoft Corporation)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> Keine Datei

==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-20 21:21 - 2015-08-20 21:21 - 00016148 _____ C:\WINDOWS\system32\ACER-NOTEBOOK_sam33321_HistoryPrediction.bin
2015-08-20 13:24 - 2015-08-20 13:24 - 00000000 ____D C:\Program Files (x86)\ESET
2015-08-19 16:54 - 2015-08-19 16:54 - 00279880 _____ C:\WINDOWS\Minidump\081915-24484-01.dmp
2015-08-19 16:41 - 2015-08-19 16:42 - 00279880 _____ C:\WINDOWS\Minidump\081915-25750-01.dmp
2015-08-19 16:29 - 2015-08-19 16:54 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-19 16:29 - 2015-08-19 16:29 - 00279880 _____ C:\WINDOWS\Minidump\081915-25578-01.dmp
2015-08-19 16:17 - 2015-08-19 16:17 - 00000000 _____ C:\Users\sam33321\defogger_reenable
2015-08-19 16:02 - 2015-08-19 16:04 - 00045693 _____ C:\Users\sam33321\Downloads\Addition.txt
2015-08-19 15:58 - 2015-08-19 16:04 - 00134262 _____ C:\Users\sam33321\Downloads\FRST.txt
2015-08-19 15:57 - 2015-08-20 22:30 - 00000000 ____D C:\FRST
2015-08-19 15:57 - 2015-08-19 15:57 - 02173440 _____ (Farbar) C:\Users\sam33321\Downloads\FRST64.exe
2015-08-19 15:48 - 2015-08-20 08:36 - 00000000 ____D C:\AdwCleaner
2015-08-19 15:18 - 2015-08-19 15:18 - 01791580 _____ (Malwarebytes Corporation) C:\Users\sam33321\Downloads\JRT.exe
2015-08-19 07:11 - 2015-08-13 11:33 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-19 07:11 - 2015-08-13 11:23 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-19 07:11 - 2015-08-13 11:22 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 07:11 - 2015-08-13 11:20 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 07:11 - 2015-08-13 11:17 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-19 07:11 - 2015-08-13 11:07 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-08-19 07:11 - 2015-08-13 10:53 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-08-19 07:11 - 2015-08-11 17:04 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-19 07:11 - 2015-08-11 17:04 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-19 07:11 - 2015-08-11 17:04 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-19 07:11 - 2015-08-11 17:03 - 08021840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-19 07:11 - 2015-08-11 17:03 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-08-19 07:11 - 2015-08-11 17:02 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 07:11 - 2015-08-11 17:02 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 07:11 - 2015-08-11 17:02 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-08-19 07:11 - 2015-08-11 16:57 - 03622256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-19 07:11 - 2015-08-11 16:52 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-19 07:11 - 2015-08-11 16:50 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-19 07:11 - 2015-08-11 16:40 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-19 07:11 - 2015-08-11 16:40 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-19 07:11 - 2015-08-11 16:40 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-19 07:11 - 2015-08-11 16:38 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-08-19 07:11 - 2015-08-11 16:37 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-19 07:11 - 2015-08-11 16:31 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-08-19 07:11 - 2015-08-11 16:26 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-19 07:11 - 2015-08-11 16:23 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 07:11 - 2015-08-11 16:22 - 21875200 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-19 07:11 - 2015-08-11 16:21 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 07:11 - 2015-08-11 16:21 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 07:11 - 2015-08-11 16:20 - 02224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-19 07:11 - 2015-08-11 16:20 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 07:11 - 2015-08-11 16:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 07:11 - 2015-08-11 16:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 07:11 - 2015-08-11 16:16 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 07:11 - 2015-08-11 16:14 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 07:11 - 2015-08-11 16:13 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 07:11 - 2015-08-11 16:11 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-19 07:11 - 2015-08-11 16:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-19 07:11 - 2015-08-11 16:10 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 07:11 - 2015-08-11 16:10 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 07:11 - 2015-08-11 16:10 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 07:11 - 2015-08-11 16:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 07:11 - 2015-08-11 16:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 07:11 - 2015-08-11 16:08 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 07:11 - 2015-08-11 16:07 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-19 07:11 - 2015-08-11 16:07 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 07:11 - 2015-08-11 16:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 07:11 - 2015-08-11 16:06 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-19 07:11 - 2015-08-11 16:06 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 07:11 - 2015-08-11 16:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 07:11 - 2015-08-11 16:03 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-19 07:11 - 2015-08-11 16:02 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-19 07:11 - 2015-08-11 16:02 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-19 07:11 - 2015-08-11 16:02 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 07:11 - 2015-08-11 16:02 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-19 07:11 - 2015-08-11 16:01 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 07:11 - 2015-08-11 16:00 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 07:11 - 2015-08-11 16:00 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-19 07:11 - 2015-08-11 15:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-08-19 07:11 - 2015-08-11 15:58 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 07:11 - 2015-08-11 15:57 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-19 07:11 - 2015-08-11 15:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-08-19 07:11 - 2015-08-11 15:51 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-19 07:11 - 2015-08-11 15:51 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-19 07:11 - 2015-08-11 15:50 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-19 07:11 - 2015-08-11 15:50 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-19 07:11 - 2015-08-11 15:50 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 07:11 - 2015-08-11 15:49 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 07:11 - 2015-08-11 15:49 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 07:11 - 2015-08-11 15:48 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-08-19 07:11 - 2015-08-11 15:47 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-19 07:11 - 2015-08-11 15:45 - 18805760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-08-19 07:11 - 2015-08-11 15:45 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-19 07:11 - 2015-08-11 15:43 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-08-19 07:11 - 2015-08-11 15:42 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-19 07:11 - 2015-08-11 15:40 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-19 07:11 - 2015-08-11 15:40 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-19 07:11 - 2015-08-11 15:40 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-19 07:11 - 2015-08-11 15:39 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-08-19 07:11 - 2015-08-11 15:38 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-18 15:30 - 2015-08-18 15:30 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2015-08-18 15:30 - 2015-08-18 15:30 - 00000000 ____D C:\Users\DefaultAppPool
2015-08-18 15:30 - 2015-08-12 20:11 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-18 15:30 - 2015-08-08 23:40 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-18 15:30 - 2015-07-10 18:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-17 19:59 - 2015-08-17 19:59 - 05267299 _____ C:\Users\sam33321\Downloads\unhackme.zip.87wre0p.partial
2015-08-17 19:56 - 2015-08-20 10:03 - 00000000 ____D C:\ProgramData\BootRacer
2015-08-17 19:54 - 2015-08-20 10:03 - 00061440 ____H C:\Users\Public\Documents\bootracer.his
2015-08-17 19:51 - 2015-08-20 10:15 - 00039743 ____H C:\Users\Public\Documents\bootracer.log
2015-08-17 19:51 - 2015-08-20 10:03 - 00000448 ____H C:\Users\Public\Documents\bootracer.ini
2015-08-17 19:51 - 2015-08-20 10:01 - 00000000 ____D C:\Program Files (x86)\BootRacer
2015-08-17 19:51 - 2015-08-17 19:51 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BootRacer
2015-08-17 19:50 - 2015-08-17 19:50 - 04764468 _____ C:\Users\sam33321\Downloads\bootracer_free_ger.zip
2015-08-17 18:06 - 2015-08-17 19:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-17 17:54 - 2015-08-17 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2015-08-17 15:36 - 2015-08-17 15:36 - 00002878 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-08-17 15:36 - 2015-08-17 15:36 - 00000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-08-17 15:36 - 2015-08-17 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-17 15:36 - 2015-08-17 15:36 - 00000000 ____D C:\Program Files\CCleaner
2015-08-17 12:26 - 2015-08-17 12:26 - 00000000 ____D C:\WINDOWS\pss
2015-08-17 11:58 - 2015-08-17 11:58 - 00001598 _____ C:\Users\sam33321\Desktop\IE 11.lnk
2015-08-15 22:05 - 2015-08-15 22:05 - 00000126 ___RH C:\Users\sam33321\Downloads\Stinger.opt
2015-08-15 21:21 - 2015-08-15 21:27 - 00000813 _____ C:\Users\sam33321\Downloads\Stinger_15082015_212157.html
2015-08-15 21:20 - 2015-08-15 21:21 - 13240688 _____ (McAfee Inc) C:\Users\sam33321\Downloads\stinger64 (1).exe
2015-08-15 21:19 - 2015-08-15 21:20 - 13240688 _____ (McAfee Inc) C:\Users\sam33321\Downloads\stinger64.exe
2015-08-15 21:14 - 2015-08-15 23:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-08-15 13:23 - 2015-08-15 13:24 - 01012365 _____ C:\Users\sam33321\Downloads\html5player-new.js
2015-08-15 13:07 - 2015-08-15 13:07 - 00000000 ___RD C:\Users\sam33321\3D Objects
2015-08-15 13:01 - 2015-08-15 13:01 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-08-15 13:01 - 2015-08-15 13:01 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-08-15 13:00 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-08-15 13:00 - 2015-06-18 17:59 - 02862488 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-08-15 13:00 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-08-15 13:00 - 2015-06-17 19:47 - 02585816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2015-08-15 13:00 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-08-15 13:00 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-08-15 13:00 - 2015-06-11 19:40 - 03157796 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2015-08-15 13:00 - 2015-06-10 13:20 - 03129672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2015-08-15 13:00 - 2015-06-10 13:20 - 00728392 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-08-15 13:00 - 2015-06-09 11:17 - 05708736 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-08-15 13:00 - 2015-05-27 18:51 - 00349528 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-08-15 13:00 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-08-15 13:00 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-08-15 13:00 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-08-15 13:00 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-08-15 13:00 - 2015-05-11 18:53 - 12996528 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 01374640 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 01192368 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 01145264 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-08-15 13:00 - 2015-05-11 13:08 - 00980400 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-08-15 13:00 - 2015-04-27 16:09 - 00328816 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-08-15 13:00 - 2015-04-24 05:42 - 00858256 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2015-08-15 13:00 - 2015-04-24 05:42 - 00684176 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2015-08-15 13:00 - 2015-04-24 05:42 - 00435856 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2015-08-15 13:00 - 2015-04-24 05:41 - 00555664 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.DLL
2015-08-15 13:00 - 2015-04-13 16:25 - 03262184 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2015-08-15 13:00 - 2015-02-05 17:48 - 12834736 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-08-15 13:00 - 2015-02-05 17:48 - 02789808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 01413776 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00454288 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00369296 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2015-08-15 13:00 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2015-08-15 13:00 - 2015-01-23 18:16 - 00213432 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaemaxapo64.dll
2015-08-15 13:00 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-08-15 13:00 - 2014-12-11 08:10 - 01104040 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2015-08-15 13:00 - 2014-12-11 08:10 - 00943784 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2015-08-15 13:00 - 2014-12-11 08:10 - 00734376 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2015-08-15 13:00 - 2014-12-11 08:10 - 00250536 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2015-08-15 13:00 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-08-15 13:00 - 2014-10-24 10:12 - 05234952 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-08-15 13:00 - 2014-10-24 10:12 - 00995120 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-08-15 13:00 - 2014-08-14 19:16 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2015-08-15 13:00 - 2014-06-17 19:17 - 00856992 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2015-08-15 13:00 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-08-15 13:00 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-08-15 13:00 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2015-08-15 13:00 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-08-15 13:00 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-08-15 13:00 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-08-15 13:00 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-08-15 13:00 - 2013-07-23 15:39 - 14048512 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-08-15 13:00 - 2013-07-23 15:39 - 00922880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-08-15 13:00 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2015-08-15 13:00 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2015-08-15 13:00 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2015-08-15 13:00 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2015-08-15 13:00 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-08-15 13:00 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-08-15 13:00 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2015-08-15 13:00 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-08-15 13:00 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-08-15 13:00 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-08-15 13:00 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-08-15 13:00 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-08-15 13:00 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2015-08-15 13:00 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2015-08-15 13:00 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-08-15 13:00 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-08-15 13:00 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-08-15 13:00 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-08-15 13:00 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-08-15 12:59 - 2015-06-02 19:25 - 01576976 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2015-08-15 12:59 - 2015-05-27 18:51 - 02461016 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-08-15 12:59 - 2015-05-27 18:51 - 02393432 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-08-15 12:59 - 2015-05-27 18:51 - 00944984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-08-15 12:59 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 06242576 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 01933584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 00336144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-08-15 12:59 - 2014-11-04 13:42 - 00284944 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 07087448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 01939800 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 00315736 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-08-15 12:59 - 2014-09-24 11:31 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-08-15 12:59 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-08-15 12:59 - 2014-05-22 16:24 - 00096568 _____ C:\WINDOWS\system32\audioLibVc.dll
2015-08-15 12:59 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-08-15 12:59 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-08-15 12:59 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-08-15 12:59 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2015-08-15 12:59 - 2013-06-21 11:01 - 00109848 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-08-15 12:59 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-08-15 12:59 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-08-15 12:56 - 2015-05-27 17:38 - 02825944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2015-08-13 11:56 - 2015-08-13 11:56 - 00001379 _____ C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iexplore.lnk
2015-08-13 11:31 - 2015-08-13 11:32 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\DeutschTV
2015-08-12 20:07 - 2015-08-08 14:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-12 20:07 - 2015-08-08 14:19 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-08-12 20:07 - 2015-08-08 14:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-12 20:07 - 2015-08-08 13:48 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-08-12 20:07 - 2015-08-08 13:40 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-12 20:07 - 2015-08-08 13:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-12 20:07 - 2015-08-08 13:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-12 20:07 - 2015-08-08 13:15 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-08-12 20:07 - 2015-08-08 13:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-12 20:07 - 2015-08-06 10:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-12 20:07 - 2015-08-06 10:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-12 20:07 - 2015-08-06 09:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-12 20:07 - 2015-08-05 11:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-12 20:07 - 2015-08-05 11:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-12 20:07 - 2015-08-05 11:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-12 20:07 - 2015-08-05 10:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-12 20:07 - 2015-08-05 10:47 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-12 20:07 - 2015-08-05 10:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-12 20:07 - 2015-08-04 11:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-12 20:07 - 2015-08-04 11:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-12 20:07 - 2015-08-04 11:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-12 20:07 - 2015-08-04 10:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-12 20:07 - 2015-08-04 09:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-12 20:07 - 2015-08-04 09:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-12 20:07 - 2015-08-03 09:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-12 20:07 - 2015-08-03 09:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-12 20:07 - 2015-08-03 09:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-12 20:07 - 2015-08-03 09:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-12 20:07 - 2015-08-03 09:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-12 20:07 - 2015-08-03 09:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-12 20:07 - 2015-08-03 09:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-12 20:07 - 2015-08-03 09:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-12 20:07 - 2015-08-03 09:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-12 20:07 - 2015-08-03 09:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-12 20:07 - 2015-08-03 09:13 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-12 20:07 - 2015-08-03 09:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-12 20:07 - 2015-08-03 08:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-12 20:07 - 2015-08-03 08:50 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-12 20:07 - 2015-08-03 08:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-12 20:07 - 2015-08-03 08:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-12 20:07 - 2015-08-03 08:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-12 20:07 - 2015-08-03 08:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-12 20:07 - 2015-08-03 08:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-12 20:07 - 2015-08-03 08:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-12 20:07 - 2015-08-03 08:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-12 20:07 - 2015-08-03 08:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-12 20:07 - 2015-08-03 08:22 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-08-12 20:07 - 2015-08-03 08:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-12 20:07 - 2015-08-03 08:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-12 20:07 - 2015-08-03 08:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-12 20:07 - 2015-08-03 08:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-12 20:07 - 2015-08-03 08:18 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-12 20:07 - 2015-08-03 08:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-12 20:07 - 2015-08-03 08:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-12 20:07 - 2015-08-03 08:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-12 20:07 - 2015-08-03 08:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-12 20:07 - 2015-08-03 08:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-12 20:07 - 2015-08-03 08:14 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-12 20:07 - 2015-08-03 08:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-12 20:07 - 2015-08-03 08:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-12 20:07 - 2015-08-03 08:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-12 20:07 - 2015-08-03 08:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-12 20:07 - 2015-08-03 08:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-12 20:07 - 2015-08-03 08:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-12 20:07 - 2015-08-03 08:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-12 20:07 - 2015-08-03 08:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-12 20:07 - 2015-08-03 08:01 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-08-12 20:07 - 2015-08-03 07:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-12 18:18 - 2015-08-12 18:18 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-08-11 11:38 - 2015-08-11 11:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2015-08-10 12:25 - 2015-08-10 12:25 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-10 10:30 - 2015-08-10 10:30 - 00001179 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-09 15:12 - 2015-08-09 15:12 - 00000000 ____D C:\Users\sam33321\AppData\Local\Comms
2015-08-09 14:56 - 2015-08-09 14:56 - 00000000 ____D C:\Intel
2015-08-09 12:14 - 2015-08-09 12:16 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Acer Drivers Update Utility
2015-08-09 12:14 - 2015-06-20 17:14 - 01875456 ____R C:\Users\sam33321\AppData\Local\IconOverlayEx.dll
2015-08-09 12:07 - 2015-08-09 12:07 - 00000000 ____D C:\backup
2015-08-09 10:21 - 2015-08-08 22:38 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-09 10:21 - 2015-08-08 22:38 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-09 10:09 - 2015-07-30 13:21 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-09 10:09 - 2015-07-30 13:16 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-09 10:09 - 2015-07-30 13:05 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-09 10:09 - 2015-07-30 13:04 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-09 10:09 - 2015-07-30 11:25 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-09 10:09 - 2015-07-30 11:24 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-09 10:09 - 2015-07-30 11:21 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-09 10:09 - 2015-07-30 10:52 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-09 10:09 - 2015-07-30 10:49 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-09 10:09 - 2015-07-30 10:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-09 10:09 - 2015-07-30 10:15 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-09 10:09 - 2015-07-30 10:04 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-09 10:09 - 2015-07-26 12:16 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-09 10:09 - 2015-07-26 12:14 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-09 10:09 - 2015-07-26 12:14 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-09 10:09 - 2015-07-26 12:13 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-09 10:09 - 2015-07-26 11:28 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-09 10:09 - 2015-07-26 10:49 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-09 10:09 - 2015-07-26 10:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-09 10:09 - 2015-07-26 10:40 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-09 10:09 - 2015-07-26 10:39 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-09 10:09 - 2015-07-26 10:38 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-09 10:09 - 2015-07-26 10:30 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-09 10:09 - 2015-07-24 10:30 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-09 10:09 - 2015-07-24 09:40 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-09 10:09 - 2015-07-24 09:39 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-09 10:09 - 2015-07-24 09:25 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-09 10:09 - 2015-07-24 09:24 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-09 10:09 - 2015-07-24 09:24 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-09 10:09 - 2015-07-22 12:18 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-09 10:09 - 2015-07-22 12:02 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-09 10:09 - 2015-07-22 11:00 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-09 10:09 - 2015-07-22 11:00 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-09 10:09 - 2015-07-22 10:59 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-09 10:09 - 2015-07-22 10:55 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-09 10:09 - 2015-07-22 10:54 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-09 10:09 - 2015-07-22 10:53 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-09 10:09 - 2015-07-22 10:46 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-09 10:09 - 2015-07-22 10:13 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-08-09 10:09 - 2015-07-22 10:13 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-09 10:09 - 2015-07-22 10:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-09 10:09 - 2015-07-22 10:03 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-09 10:09 - 2015-07-19 11:04 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-09 10:09 - 2015-07-18 14:29 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-09 10:09 - 2015-07-18 10:59 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-09 10:09 - 2015-07-18 10:52 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-09 10:09 - 2015-07-17 09:31 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-09 10:09 - 2015-07-17 09:26 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-09 10:09 - 2015-07-17 08:53 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-09 10:09 - 2015-07-16 11:04 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-09 10:09 - 2015-07-16 10:47 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-09 10:09 - 2015-07-16 10:44 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-09 10:09 - 2015-07-16 10:43 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-09 10:09 - 2015-07-16 10:35 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-09 10:09 - 2015-07-16 10:29 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-09 10:09 - 2015-07-16 10:27 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-09 10:09 - 2015-07-15 10:21 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-09 10:09 - 2015-07-15 09:49 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-09 10:09 - 2015-07-15 09:41 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-09 10:09 - 2015-07-15 09:22 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-09 10:09 - 2015-07-15 08:47 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-09 10:09 - 2015-07-12 07:25 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-09 10:09 - 2015-07-12 07:18 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-09 10:09 - 2015-07-12 06:46 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-09 10:09 - 2015-07-11 08:17 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-09 10:09 - 2015-07-11 08:07 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-09 10:09 - 2015-07-11 08:04 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-09 10:09 - 2015-07-11 08:03 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-09 10:09 - 2015-07-11 07:57 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-09 10:09 - 2015-07-11 07:51 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-09 10:09 - 2015-07-11 07:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-09 10:09 - 2015-07-11 07:41 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-09 10:09 - 2015-07-11 07:40 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-09 10:09 - 2015-07-10 22:51 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-09 10:09 - 2015-07-10 22:00 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-09 10:09 - 2015-07-10 16:53 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-09 10:09 - 2015-07-10 16:31 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-09 10:08 - 2015-07-30 13:24 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-09 10:08 - 2015-07-30 13:23 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-09 10:08 - 2015-07-30 13:17 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-09 10:08 - 2015-07-30 13:17 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 13:15 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-09 10:08 - 2015-07-30 13:14 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-09 10:08 - 2015-07-30 13:09 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-09 10:08 - 2015-07-30 13:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-09 10:08 - 2015-07-30 13:05 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-09 10:08 - 2015-07-30 13:03 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-09 10:08 - 2015-07-30 12:24 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-09 10:08 - 2015-07-30 11:29 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-09 10:08 - 2015-07-30 11:26 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-09 10:08 - 2015-07-30 11:26 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-09 10:08 - 2015-07-30 11:25 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-09 10:08 - 2015-07-30 11:24 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-09 10:08 - 2015-07-30 11:24 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-09 10:08 - 2015-07-30 11:24 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-09 10:08 - 2015-07-30 11:22 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 11:22 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-09 10:08 - 2015-07-30 11:12 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-09 10:08 - 2015-07-30 11:12 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-09 10:08 - 2015-07-30 11:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-09 10:08 - 2015-07-30 11:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-09 10:08 - 2015-07-30 11:08 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-09 10:08 - 2015-07-30 11:08 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-09 10:08 - 2015-07-30 10:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-09 10:08 - 2015-07-30 10:52 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-09 10:08 - 2015-07-30 10:52 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-09 10:08 - 2015-07-30 10:46 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 10:46 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-09 10:08 - 2015-07-30 10:45 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-09 10:08 - 2015-07-30 10:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-09 10:08 - 2015-07-30 10:44 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-09 10:08 - 2015-07-30 10:44 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-09 10:08 - 2015-07-30 10:44 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-09 10:08 - 2015-07-30 10:44 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-09 10:08 - 2015-07-30 10:44 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-09 10:08 - 2015-07-30 10:42 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-09 10:08 - 2015-07-30 10:41 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-09 10:08 - 2015-07-30 10:41 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-09 10:08 - 2015-07-30 10:40 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-09 10:08 - 2015-07-30 10:38 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-09 10:08 - 2015-07-30 10:38 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-09 10:08 - 2015-07-30 10:34 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-09 10:08 - 2015-07-30 10:29 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-09 10:08 - 2015-07-30 10:07 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-09 10:08 - 2015-07-30 10:06 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-09 10:08 - 2015-07-30 10:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-09 10:08 - 2015-07-30 10:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-09 10:08 - 2015-07-30 10:04 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-09 10:08 - 2015-07-30 09:59 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-09 10:08 - 2015-07-30 09:58 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-09 10:08 - 2015-07-26 12:16 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-09 10:08 - 2015-07-26 12:06 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-09 10:08 - 2015-07-26 10:49 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-09 10:08 - 2015-07-26 10:47 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-09 10:08 - 2015-07-26 10:39 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-09 10:08 - 2015-07-26 10:35 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-09 10:08 - 2015-07-26 10:34 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-09 10:08 - 2015-07-26 10:30 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-09 10:08 - 2015-07-26 10:29 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-09 10:08 - 2015-07-24 10:18 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-09 10:08 - 2015-07-24 10:17 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-09 10:08 - 2015-07-24 10:17 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-09 10:08 - 2015-07-24 10:12 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-09 10:08 - 2015-07-24 09:55 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-09 10:08 - 2015-07-24 09:52 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-09 10:08 - 2015-07-24 09:46 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-09 10:08 - 2015-07-24 09:44 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-09 10:08 - 2015-07-24 09:34 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-09 10:08 - 2015-07-24 09:30 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-09 10:08 - 2015-07-24 09:29 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-09 10:08 - 2015-07-24 09:24 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-09 10:08 - 2015-07-24 09:24 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-09 10:08 - 2015-07-22 12:15 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-09 10:08 - 2015-07-22 11:13 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-09 10:08 - 2015-07-22 11:02 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-09 10:08 - 2015-07-22 11:00 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-09 10:08 - 2015-07-22 10:55 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-09 10:08 - 2015-07-22 10:21 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-09 10:08 - 2015-07-22 10:10 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-09 10:08 - 2015-07-22 10:09 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-09 10:08 - 2015-07-22 10:07 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-09 10:08 - 2015-07-22 09:50 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-09 10:08 - 2015-07-19 10:54 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-09 10:08 - 2015-07-19 10:23 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-09 10:08 - 2015-07-19 10:18 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-09 10:08 - 2015-07-19 10:02 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-09 10:08 - 2015-07-19 09:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-09 10:08 - 2015-07-18 15:47 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-09 10:08 - 2015-07-18 14:43 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-09 10:08 - 2015-07-18 14:37 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-09 10:08 - 2015-07-18 14:28 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-09 10:08 - 2015-07-18 14:28 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-08-09 10:08 - 2015-07-18 14:26 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-08-09 10:08 - 2015-07-18 12:17 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-09 10:08 - 2015-07-18 12:02 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-09 10:08 - 2015-07-18 11:06 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-09 10:08 - 2015-07-18 10:59 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-09 10:08 - 2015-07-18 10:50 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-09 10:08 - 2015-07-18 10:50 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-09 10:08 - 2015-07-18 10:49 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-09 10:08 - 2015-07-18 10:49 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-09 10:08 - 2015-07-18 10:49 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-09 10:08 - 2015-07-18 10:48 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-09 10:08 - 2015-07-18 10:48 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-09 10:08 - 2015-07-18 10:47 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-09 10:08 - 2015-07-17 11:23 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-09 10:08 - 2015-07-17 11:13 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-09 10:08 - 2015-07-17 11:12 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-09 10:08 - 2015-07-17 11:07 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-09 10:08 - 2015-07-17 09:39 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-09 10:08 - 2015-07-17 09:39 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-09 10:08 - 2015-07-17 09:36 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-09 10:08 - 2015-07-17 09:33 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-09 10:08 - 2015-07-17 09:33 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-09 10:08 - 2015-07-17 09:32 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-09 10:08 - 2015-07-17 09:26 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-09 10:08 - 2015-07-17 09:24 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-09 10:08 - 2015-07-17 09:19 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-09 10:08 - 2015-07-17 09:19 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-09 10:08 - 2015-07-17 09:18 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-09 10:08 - 2015-07-17 09:05 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-09 10:08 - 2015-07-17 09:05 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-09 10:08 - 2015-07-17 08:56 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-09 10:08 - 2015-07-17 08:51 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-09 10:08 - 2015-07-17 08:50 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-09 10:08 - 2015-07-17 08:44 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-09 10:08 - 2015-07-16 12:39 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-09 10:08 - 2015-07-16 11:09 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-09 10:08 - 2015-07-16 11:03 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-09 10:08 - 2015-07-16 11:01 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-09 10:08 - 2015-07-16 10:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-09 10:08 - 2015-07-16 10:45 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-09 10:08 - 2015-07-16 10:41 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-09 10:08 - 2015-07-16 10:40 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-09 10:08 - 2015-07-16 10:36 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-09 10:08 - 2015-07-16 10:33 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-09 10:08 - 2015-07-16 10:32 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-09 10:08 - 2015-07-16 10:19 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-09 10:08 - 2015-07-15 09:49 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-09 10:08 - 2015-07-15 09:16 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-09 10:08 - 2015-07-15 09:04 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-09 10:08 - 2015-07-15 08:57 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-09 10:08 - 2015-07-15 08:41 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-09 10:08 - 2015-07-15 08:37 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-09 10:08 - 2015-07-15 08:35 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-09 10:08 - 2015-07-15 08:27 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-09 10:08 - 2015-07-14 10:00 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-09 10:08 - 2015-07-14 09:37 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-09 10:08 - 2015-07-14 09:04 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-09 10:08 - 2015-07-14 08:51 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-09 10:08 - 2015-07-14 08:49 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-09 10:08 - 2015-07-14 08:38 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-09 10:08 - 2015-07-14 08:20 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-09 10:08 - 2015-07-13 07:01 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-09 10:08 - 2015-07-13 06:30 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-09 10:08 - 2015-07-12 07:38 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-09 10:08 - 2015-07-11 08:28 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-09 10:08 - 2015-07-11 08:05 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-09 10:08 - 2015-07-11 08:03 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-09 10:08 - 2015-07-11 08:02 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-09 10:08 - 2015-07-11 08:01 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-09 10:08 - 2015-07-11 07:42 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-09 10:08 - 2015-07-11 07:40 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-09 10:08 - 2015-07-11 07:40 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-09 10:08 - 2015-07-11 07:34 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-09 10:08 - 2015-07-10 22:47 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-09 10:08 - 2015-07-10 21:52 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-09 10:08 - 2015-07-10 17:59 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-09 10:08 - 2015-07-10 17:42 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-09 10:08 - 2015-07-10 17:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-09 10:08 - 2015-07-10 17:05 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-09 10:08 - 2015-07-10 16:35 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-09 10:08 - 2015-07-10 16:29 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-09 09:28 - 2015-08-20 19:25 - 00004180 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0E0083EF-5557-4714-8414-5E622512AE80}
2015-08-09 05:18 - 2015-08-09 00:05 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-09 05:14 - 2015-08-09 05:14 - 00000000 ____D C:\Windows.old
2015-08-09 05:13 - 2015-08-09 05:13 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\Program Files\MSBuild
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-09 05:10 - 2015-08-09 05:10 - 00000000 ____D C:\inetpub
2015-08-09 05:10 - 2015-08-08 23:42 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-09 05:09 - 2015-06-18 00:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-09 05:09 - 2015-06-18 00:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 05:09 - 2015-06-18 00:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-09 05:09 - 2015-05-30 03:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-09 05:09 - 2015-05-30 03:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 05:09 - 2015-05-30 03:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-09 00:28 - 2015-08-09 00:28 - 10627744 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-08-09 00:28 - 2015-08-09 00:28 - 06593816 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 04931384 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 04755784 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 04370016 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 01991936 _____ C:\WINDOWS\system32\iglhxa64.cpa
2015-08-09 00:28 - 2015-08-09 00:28 - 00982240 _____ C:\WINDOWS\SysWOW64\igkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00982240 _____ C:\WINDOWS\system32\igkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00439308 _____ C:\WINDOWS\SysWOW64\igcompkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00439308 _____ C:\WINDOWS\system32\igcompkrng500.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00208896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00206336 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00147456 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-08-09 00:28 - 2015-08-09 00:28 - 00092356 _____ C:\WINDOWS\SysWOW64\igfcg500m.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00092356 _____ C:\WINDOWS\system32\igfcg500m.bin
2015-08-09 00:28 - 2015-08-09 00:28 - 00060254 _____ C:\WINDOWS\system32\iglhxg64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00060226 _____ C:\WINDOWS\system32\iglhxc64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00060015 _____ C:\WINDOWS\system32\iglhxo64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00005424 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-08-09 00:28 - 2015-08-09 00:28 - 00001090 _____ C:\WINDOWS\system32\iglhxa64.vp
2015-08-09 00:27 - 2015-08-09 00:27 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-08-09 00:27 - 2015-08-09 00:27 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-08-09 00:27 - 2015-08-09 00:24 - 00033960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-08-09 00:26 - 2015-08-09 00:26 - 00000000 ____D C:\Program Files\Synaptics
2015-08-09 00:25 - 2015-08-09 00:25 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00755880 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00606376 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-08-09 00:25 - 2015-08-09 00:25 - 00410792 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00260264 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2015-08-09 00:25 - 2015-08-09 00:25 - 00246952 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo31.dll
2015-08-09 00:24 - 2015-08-09 00:24 - 00231456 _____ C:\WINDOWS\system32\pca-manta.bin
2015-08-09 00:24 - 2015-08-09 00:24 - 00033960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-08-09 00:24 - 2015-08-09 00:24 - 00033448 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-08-09 00:24 - 2015-08-09 00:24 - 00000092 _____ C:\WINDOWS\system32\calibration.bin
2015-08-09 00:19 - 2015-07-09 20:39 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-08-09 00:19 - 2015-07-09 20:36 - 06238720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons000c.dll
2015-08-09 00:19 - 2015-07-09 20:36 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-08-09 00:19 - 2015-07-09 20:36 - 02268160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000c.dll
2015-08-09 00:19 - 2015-07-09 20:28 - 06358016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-08-09 00:19 - 2015-07-09 20:26 - 02353152 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000c.dll
2015-08-09 00:19 - 2015-07-09 20:25 - 06238720 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons000c.dll
2015-08-09 00:19 - 2015-07-09 20:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-08-09 00:19 - 2015-07-09 20:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-08-09 00:17 - 2015-08-09 00:18 - 00000000 ___RD C:\Users\sam33321\OneDrive
2015-08-09 00:17 - 2015-08-09 00:18 - 00000000 ____D C:\Users\sam33321\AppData\Local\MicrosoftEdge
2015-08-09 00:12 - 2015-08-09 00:12 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-08-09 00:09 - 2015-08-09 00:09 - 00000000 ____D C:\Users\sam33321\AppData\Local\Publishers
2015-08-09 00:07 - 2015-08-09 00:07 - 00000000 ____D C:\Users\sam33321\AppData\Local\NetworkTiles
2015-08-09 00:05 - 2015-08-18 17:25 - 00000000 ____D C:\Users\sam33321\AppData\Local\Packages
2015-08-09 00:05 - 2015-08-09 00:05 - 00000020 ___SH C:\Users\sam33321\ntuser.ini
2015-08-09 00:05 - 2015-08-09 00:05 - 00000000 ____D C:\Users\sam33321\AppData\Local\TileDataLayer
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-08-08 23:59 - 2015-08-08 23:59 - 00000000 __SHD C:\Recovery
2015-08-08 23:47 - 2015-07-10 17:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-08 23:40 - 2015-08-08 23:40 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-08 23:40 - 2015-08-08 23:40 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-08-08 23:40 - 2015-08-08 23:40 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-08-08 23:33 - 2015-08-08 23:33 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-08-08 23:28 - 2015-08-19 22:52 - 00000000 ____D C:\Users\sam33321
2015-08-08 23:28 - 2015-08-08 23:50 - 00000000 ____D C:\Users\Administrator
2015-08-08 23:28 - 2015-08-08 23:29 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Vorlagen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Startmenü
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Netzwerkumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Lokale Einstellungen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Eigene Dateien
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Druckumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Documents\Eigene Musik
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Documents\Eigene Bilder
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\AppData\Local\Verlauf
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\AppData\Local\Anwendungsdaten
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\sam33321\Anwendungsdaten
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2015-08-08 23:28 - 2015-08-08 23:28 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 __RSD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-08 23:28 - 2015-07-10 18:04 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-08 23:26 - 2015-08-18 17:23 - 02085854 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-08 23:26 - 2015-08-08 23:27 - 00021209 _____ C:\WINDOWS\iis.log
2015-08-08 23:26 - 2015-08-08 23:26 - 01980268 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01007.Wdf
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____D C:\Program Files\LSI SoftModem
2015-08-08 23:24 - 2015-08-08 23:24 - 00000000 ____D C:\Program Files\Apoint2K
2015-08-08 23:23 - 2015-08-15 13:01 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-08 23:23 - 2015-08-08 23:23 - 00000000 ____D C:\Program Files\Realtek
2015-08-08 23:20 - 2015-08-08 23:21 - 00023385 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-08 23:19 - 2015-08-17 19:54 - 00011064 _____ C:\WINDOWS\PFRO.log
2015-08-08 22:46 - 2015-08-08 23:58 - 00007322 _____ C:\WINDOWS\comsetup.log
2015-08-08 22:28 - 2015-08-08 22:42 - 00000000 ___HD C:\$Windows.~BT
2015-08-03 09:22 - 2015-08-03 09:22 - 00000000 ____D C:\Users\sam33321\AppData\Local\GWX
2015-08-03 08:21 - 2015-05-26 00:00 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-08-03 08:20 - 2015-07-10 00:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-08-03 08:19 - 2015-01-09 10:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\powertracker.dll

sam33321 20.08.2015 16:37
Code:
==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-20 22:12 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-20 22:07 - 2015-07-10 19:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-20 22:04 - 2012-12-31 08:46 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-20 21:49 - 2013-10-14 13:44 - 00001110 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cec8a8d405f05d.job
2015-08-20 20:02 - 2013-10-26 07:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-08-20 13:24 - 2013-12-28 20:28 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Skype
2015-08-20 13:24 - 2011-01-14 13:32 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\FileZilla
2015-08-20 10:03 - 2014-06-17 16:12 - 00001106 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8a0c3832eee1.job
2015-08-20 10:01 - 2015-07-10 19:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-20 10:00 - 2015-07-10 16:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-20 09:26 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\rescache
2015-08-20 07:51 - 2014-12-21 14:06 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-20 07:03 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-19 17:59 - 2013-01-22 11:52 - 00001973 _____ C:\Users\sam33321\Desktop\links.txt
2015-08-19 16:53 - 2015-07-10 15:04 - 513436758 _____ C:\WINDOWS\MEMORY.DMP
2015-08-19 14:37 - 2014-06-05 21:26 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\GlobalTV
2015-08-19 13:15 - 2011-01-02 19:18 - 00000099 _____ C:\Users\Public\LMDebug.log
2015-08-19 08:41 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-19 08:41 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-19 07:52 - 2015-07-10 17:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-18 17:23 - 2015-07-10 23:34 - 00888476 _____ C:\WINDOWS\system32\perfh007.dat
2015-08-18 17:23 - 2015-07-10 23:34 - 00197074 _____ C:\WINDOWS\system32\perfc007.dat
2015-08-18 16:51 - 2013-12-06 18:57 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2015-08-18 06:42 - 2015-07-10 16:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-17 19:54 - 2012-05-21 12:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-17 19:51 - 2010-10-28 22:16 - 00000000 ____D C:\install
2015-08-17 18:10 - 2011-06-19 22:20 - 00002673 _____ C:\WINDOWS\wininit.ini
2015-08-17 18:08 - 2010-10-29 00:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-08-17 18:08 - 2010-04-13 03:06 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-17 17:54 - 2015-07-10 18:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-17 17:54 - 2010-04-13 03:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-08-17 17:42 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-17 17:42 - 2010-04-13 02:53 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-08-17 16:31 - 2010-10-28 23:59 - 00000000 ____D C:\Program Files\Microsoft Office
2015-08-17 15:47 - 2015-07-10 19:20 - 00387984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-17 15:14 - 2014-01-24 13:45 - 00000000 ____D C:\Users\sam33321\Documents\ML-1660_PrintDa
2015-08-17 15:13 - 2014-01-16 20:28 - 00000040 _____ C:\Autoconfig.ini
2015-08-17 14:49 - 2015-07-10 19:20 - 00030792 _____ C:\WINDOWS\setupact.log
2015-08-17 11:13 - 2010-12-06 17:30 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\vlc
2015-08-17 11:04 - 2010-11-01 18:32 - 00000000 ____D C:\bittorrent
2015-08-16 10:14 - 2014-06-05 21:24 - 00000000 ____D C:\Program Files (x86)\GlobalHDTV
2015-08-15 22:07 - 2014-07-26 08:59 - 00000000 ____D C:\TheraGate
2015-08-15 13:02 - 2010-05-05 07:24 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-08-14 07:14 - 2010-10-28 22:42 - 00000000 ____D C:\Program Files (x86)\McAfee
2015-08-13 13:07 - 2010-10-28 22:45 - 00000000 ____D C:\Programme
2015-08-13 12:56 - 2010-10-28 22:15 - 00000000 ____D C:\Program Files (x86)\Windows Live
2015-08-13 12:37 - 2011-04-30 19:55 - 00001224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-13 11:34 - 2010-12-07 18:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-12 20:11 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 20:11 - 2015-07-10 18:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 20:11 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-12 18:29 - 2013-07-27 08:58 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-12 18:21 - 2013-12-05 06:16 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-12 17:53 - 2012-12-31 08:46 - 00003858 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-11 11:42 - 2010-04-13 03:02 - 00000000 ____D C:\ProgramData\McAfee
2015-08-11 11:41 - 2010-10-28 22:42 - 00000000 ____D C:\Program Files\Common Files\McAfee
2015-08-10 17:05 - 2011-01-02 19:17 - 00000000 ____D C:\WINDOWS\Samsung
2015-08-10 17:04 - 2010-11-01 18:31 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\BitTorrent
2015-08-10 10:30 - 2014-12-21 14:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-10 10:30 - 2014-12-21 14:06 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-09 21:28 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-08-09 16:09 - 2011-05-19 17:30 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\ObviousIdea
2015-08-09 11:53 - 2015-01-12 11:18 - 00000468 _____ C:\WINDOWS\CLOSEAPP.INI
2015-08-09 11:42 - 2013-01-27 22:29 - 00000000 ____D C:\ProgramData\TuneUp Software
2015-08-09 11:41 - 2013-12-16 09:48 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2015-08-09 11:40 - 2011-02-04 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR ReadyNAS
2015-08-09 11:35 - 2012-01-17 09:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-08-09 11:35 - 2012-01-17 09:35 - 00000000 ____D C:\ProgramData\Freemake
2015-08-09 11:35 - 2012-01-17 09:35 - 00000000 ____D C:\Program Files (x86)\Freemake
2015-08-09 11:34 - 2013-06-21 08:01 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2015-08-09 11:34 - 2012-06-12 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-08-09 11:34 - 2012-06-12 15:53 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\DVDVideoSoft
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-09 10:15 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-09 10:15 - 2015-07-10 16:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-09 10:15 - 2015-07-10 16:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-09 05:18 - 2015-07-10 18:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-08-09 05:10 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-08-09 05:10 - 2015-07-10 18:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-08-09 05:10 - 2015-07-10 18:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-08-09 05:10 - 2015-07-10 18:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-08-09 05:10 - 2015-07-10 18:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-08-09 05:10 - 2015-07-10 18:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-08-09 05:10 - 2015-07-10 18:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-08-09 05:10 - 2015-07-10 18:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-08-09 05:10 - 2015-07-10 18:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-08-09 05:10 - 2015-07-10 18:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-08-09 05:10 - 2015-07-10 18:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-08-09 05:10 - 2015-07-10 18:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-08-09 03:49 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-09 00:19 - 2015-07-10 23:35 - 00000000 ____D C:\WINDOWS\OCR
2015-08-09 00:08 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-09 00:08 - 2015-07-10 18:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-09 00:03 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-08-08 23:59 - 2015-07-10 18:04 - 00000000 ____D C:\Program Files\Windows NT
2015-08-08 23:59 - 2015-07-10 16:05 - 00000000 __RHD C:\Users\Default
2015-08-08 23:58 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\Registration
2015-08-08 23:58 - 2013-12-04 21:13 - 00014259 _____ C:\WINDOWS\diagerr.xml
2015-08-08 23:58 - 2013-12-04 21:13 - 00013338 _____ C:\WINDOWS\diagwrn.xml
2015-08-08 23:57 - 2015-07-10 18:04 - 00000000 __RSD C:\WINDOWS\Media
2015-08-08 23:57 - 2015-07-10 18:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-08 23:57 - 2015-04-16 17:41 - 00003268 _____ C:\WINDOWS\System32\Tasks\{DC46145C-0CA8-429F-BB1A-8E47D6AD21E5}
2015-08-08 23:57 - 2014-12-26 08:42 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-08-08 23:57 - 2014-06-17 16:12 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf8a0c3832eee1
2015-08-08 23:57 - 2014-02-10 12:42 - 00003556 _____ C:\WINDOWS\System32\Tasks\{D508D905-006F-497D-B963-6270456B9E68}
2015-08-08 23:57 - 2013-12-05 01:08 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-08 23:57 - 2013-10-14 13:44 - 00004216 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1cec8a8d405f05d
2015-08-08 23:57 - 2013-02-27 12:02 - 00002956 _____ C:\WINDOWS\System32\Tasks\Core Temp Autostart sam33321
2015-08-08 23:57 - 2013-02-01 15:35 - 00003434 _____ C:\WINDOWS\System32\Tasks\4780
2015-08-08 23:57 - 2013-01-28 15:09 - 00003804 _____ C:\WINDOWS\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2015-08-08 23:56 - 2015-07-10 18:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-08-08 23:51 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-08 23:42 - 2015-07-10 23:46 - 00000000 ____D C:\WINDOWS\ShellNew
2015-08-08 23:42 - 2015-07-10 18:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-08 23:42 - 2015-03-13 10:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cutout
2015-08-08 23:42 - 2014-11-02 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Share Manager
2015-08-08 23:42 - 2014-10-23 13:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-08 23:42 - 2014-08-14 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeTV
2015-08-08 23:42 - 2014-07-30 14:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UPSilon 2000
2015-08-08 23:42 - 2014-06-05 21:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Global HDTV
2015-08-08 23:42 - 2014-03-10 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2015-08-08 23:42 - 2013-12-18 16:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2015-08-08 23:42 - 2013-12-16 09:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
2015-08-08 23:42 - 2013-09-30 11:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-08 23:42 - 2013-07-24 17:42 - 00000000 ____D C:\WINDOWS\de
2015-08-08 23:42 - 2013-07-24 17:41 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-08-08 23:42 - 2013-02-26 09:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2015-08-08 23:42 - 2013-01-26 10:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DirPrintOK
2015-08-08 23:42 - 2013-01-19 14:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2015-08-08 23:42 - 2011-06-19 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp Backup Tool
2015-08-08 23:42 - 2011-05-21 18:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exif Tag Remover
2015-08-08 23:42 - 2011-01-14 13:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-08-08 23:42 - 2011-01-02 19:17 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-08-08 23:42 - 2010-12-19 22:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\freac - free audio converter
2015-08-08 23:42 - 2010-12-07 18:11 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-08 23:42 - 2010-11-05 23:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Snagit 9
2015-08-08 23:42 - 2010-11-01 18:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitTorrent
2015-08-08 23:42 - 2010-05-05 07:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Arcade Deluxe
2015-08-08 23:42 - 2010-05-05 07:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager
2015-08-08 23:42 - 2010-04-13 03:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Backup Manager
2015-08-08 23:42 - 2010-04-13 03:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
2015-08-08 23:42 - 2010-04-13 03:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-08-08 23:42 - 2010-04-13 02:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
2015-08-08 23:40 - 2015-07-10 18:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-08 23:40 - 2009-07-14 10:20 - 00000000 ____D C:\Users\Default.migrated
2015-08-08 23:35 - 2015-07-10 23:34 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-08-08 23:35 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-08-08 23:35 - 2010-05-05 07:22 - 00000000 ____D C:\WINDOWS\SysWOW64\x64
2015-08-08 23:35 - 2010-05-05 07:22 - 00000000 ____D C:\WINDOWS\SysWOW64\Lang
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-08 23:34 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-08 23:34 - 2011-06-09 11:53 - 00000000 ____D C:\WINDOWS\system32\SPReview
2015-08-08 23:34 - 2011-06-09 11:53 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2015-08-08 23:33 - 2015-07-10 20:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\schemas
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-08-08 23:33 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\IME
2015-08-08 23:33 - 2014-09-18 12:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-08 23:33 - 2013-02-08 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\yaDIS
2015-08-08 23:33 - 2011-07-02 14:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MKVtoolnix
2015-08-08 23:33 - 2011-05-21 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karaoke for DirectX
2015-08-08 23:33 - 2011-05-19 17:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ObviousIdea
2015-08-08 23:33 - 2011-04-12 14:54 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-08-08 23:33 - 2010-11-20 13:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Medieval Software
2015-08-08 23:33 - 2010-11-13 19:54 - 00000000 __SHD C:\WINDOWS\system32\%APPDATA%
2015-08-08 23:33 - 2010-10-29 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF
2015-08-08 23:33 - 2010-10-28 23:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2005
2015-08-08 23:33 - 2010-04-13 03:04 - 00000000 ____D C:\Program Files (x86)\Acer
2015-08-08 23:33 - 2009-07-14 12:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-08-08 23:33 - 2009-07-14 12:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-08-08 23:31 - 2015-07-10 18:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-08 23:30 - 2009-07-14 10:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-08-08 23:26 - 2015-07-10 16:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-08 22:55 - 2013-12-05 02:39 - 01642611 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-08 22:35 - 2009-07-14 11:45 - 00030416 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-08 22:35 - 2009-07-14 11:45 - 00030416 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-08 21:45 - 2011-05-19 16:58 - 00000000 ____D C:\temp
2015-08-08 21:09 - 2014-08-14 22:12 - 00000000 ____D C:\Users\sam33321\AppData\Roaming\FreeTV
2015-08-08 16:47 - 2015-03-14 08:59 - 00000000 ____D C:\Users\sam33321\AppData\Local\CrashDumps
2015-08-06 09:04 - 2010-10-28 22:21 - 00000000 ____D C:\ProgramData\Skype
2015-07-29 10:53 - 2014-10-23 13:40 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-29 10:53 - 2013-12-06 18:43 - 00000000 ____D C:\ProgramData\Oracle
2015-07-29 10:51 - 2015-01-25 10:42 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-07-23 18:01 - 2010-10-28 22:20 - 00000000 ____D C:\Users\sam33321\AppData\Local\Microsoft Help
2015-07-21 11:05 - 2010-10-29 00:46 - 00000000 ____D C:\Users\sam33321\AppData\Local\CutePDF Writer

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2012-01-21 22:14 - 2012-01-21 22:14 - 0010606 _____ () C:\Users\sam33321\AppData\Roaming\Kommagetrennte Werte (Windows).CAL
2013-11-12 16:03 - 2013-11-12 16:03 - 0038412 _____ () C:\Users\sam33321\AppData\Roaming\Microsoft Excel 97-2003.ADR
2013-11-16 07:50 - 2015-04-19 09:44 - 0000479 _____ () C:\Users\sam33321\AppData\Roaming\Poladroid prefs.plist
2013-02-26 13:13 - 2013-12-09 08:34 - 1178624 _____ (CPUID) C:\Users\sam33321\AppData\Roaming\siw_sdk.dll
2010-05-03 22:54 - 2010-05-03 22:54 - 0007680 _____ () C:\Users\sam33321\AppData\Roaming\SpareLib.dll
2010-05-03 22:54 - 2010-05-03 22:54 - 0024576 _____ () C:\Users\sam33321\AppData\Roaming\WSM.exe
2014-02-23 21:40 - 2014-02-23 21:40 - 0000393 _____ () C:\Users\sam33321\AppData\Local\HamsterVideoConverterSettings.cfg
2015-08-09 12:14 - 2015-06-20 17:14 - 1875456 ____R () C:\Users\sam33321\AppData\Local\IconOverlayEx.dll
2014-04-05 09:41 - 2014-05-27 16:13 - 0003671 _____ () C:\Users\sam33321\AppData\Local\Images.fl
2015-05-15 09:40 - 2015-05-15 09:40 - 0004096 ____H () C:\Users\sam33321\AppData\Local\keyfile3.drm
2014-01-30 09:12 - 2014-01-30 09:12 - 0015722 _____ () C:\Users\sam33321\AppData\Local\recently-used.xbel
2013-12-28 21:23 - 2013-12-28 21:23 - 0007605 _____ () C:\Users\sam33321\AppData\Local\Resmon.ResmonCfg
2015-08-15 13:01 - 2015-08-15 13:01 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
ZeroAccess:
C:\Users\sam33321\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install

Einige Dateien in TEMP:
====================
C:\Users\sam33321\AppData\Local\Temp\i4jdel0.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-19 07:49

==================== Ende von Ergebnis ============================
@Schrauber: Ja das Problem besteht noch. Ich hoffe auf eine Lösung. Vielen Dank im voraus.

schrauber 21.08.2015 07:22
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
C:\install\Free FLV Converter\FreeFLVConverter75Setup.exe

C:\install\FreeYouTubeDownload\FreeYouTubeDownload.exe

C:\install\FreeYouTubeDownload\FreeYouTubeDownload_20140427.exe

C:\install\greenshot\Greenshot - CHIP-Installer.exe

C:\install\light_image_resizer\light_image_resizer4_setup.exe

C:\install\light_image_resizer\light_image_resizer4_setup_4.3.2.2b_linkular.exe

C:\install\tunatic\My Music Recognition - CHIP-Installer.exe

C:\install\winzip\wz170deupgstd.exe

C:\temp\iexplorer\Temporäre Internetdateien\Content.IE5\7YNDXCH7\ISO to USB - CHIP-Installer.exe

C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\47d4db80-1aaada3c

C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\47d4db80-64c211cb

C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\2235ad4a-79dc8ad6

C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\7b68f726-68f8a923

C:\Users\sam33321\AppData\Roaming\_BrowserCompanion\tcbhn.exe

C:\Windows\Installer\4e796b0.msi

C:\Windows.old\Users\sam33321\AppData\Local\Temp\DMR\dmr_72.exe
ZeroAccess:
C:\Users\sam33321\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.ch/
SearchScopes: HKLM-x32 -> DefaultScope {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Emptytemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.


sam33321 21.08.2015 09:30
Code:
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:20-08-2015
durchgeführt von sam33321 (2015-08-21 15:15:15) Run:1
Gestartet von C:\install\virus-tools\2015_BVC
Geladene Profile: sam33321 (Verfügbare Profile: sam33321 & Administrator & DefaultAppPool)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
C:\install\Free FLV Converter\FreeFLVConverter75Setup.exe

C:\install\FreeYouTubeDownload\FreeYouTubeDownload.exe

C:\install\FreeYouTubeDownload\FreeYouTubeDownload_20140427.exe

C:\install\greenshot\Greenshot - CHIP-Installer.exe

C:\install\light_image_resizer\light_image_resizer4_setup.exe

C:\install\light_image_resizer\light_image_resizer4_setup_4.3.2.2b_linkular.exe

C:\install\tunatic\My Music Recognition - CHIP-Installer.exe

C:\install\winzip\wz170deupgstd.exe

C:\temp\iexplorer\Temporäre Internetdateien\Content.IE5\7YNDXCH7\ISO to USB - CHIP-Installer.exe

C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\47d4db80-1aaada3c

C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\47d4db80-64c211cb

C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\2235ad4a-79dc8ad6

C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\7b68f726-68f8a923

C:\Users\sam33321\AppData\Roaming\_BrowserCompanion\tcbhn.exe

C:\Windows\Installer\4e796b0.msi

C:\Windows.old\Users\sam33321\AppData\Local\Temp\DMR\dmr_72.exe
ZeroAccess:
C:\Users\sam33321\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.ch/
SearchScopes: HKLM-x32 -> DefaultScope {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-2429274901-1692467857-2381098989-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Emptytemp:
       
*****************

C:\install\Free FLV Converter\FreeFLVConverter75Setup.exe => erfolgreich verschoben
C:\install\FreeYouTubeDownload\FreeYouTubeDownload.exe => erfolgreich verschoben
C:\install\FreeYouTubeDownload\FreeYouTubeDownload_20140427.exe => erfolgreich verschoben
C:\install\greenshot\Greenshot - CHIP-Installer.exe => erfolgreich verschoben
C:\install\light_image_resizer\light_image_resizer4_setup.exe => erfolgreich verschoben
C:\install\light_image_resizer\light_image_resizer4_setup_4.3.2.2b_linkular.exe => erfolgreich verschoben
C:\install\tunatic\My Music Recognition - CHIP-Installer.exe => erfolgreich verschoben
C:\install\winzip\wz170deupgstd.exe => erfolgreich verschoben
C:\temp\iexplorer\Temporäre Internetdateien\Content.IE5\7YNDXCH7\ISO to USB - CHIP-Installer.exe => erfolgreich verschoben
"C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\47d4db80-1aaada3c" => Datei/Ordner nicht gefunden.
"C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\47d4db80-64c211cb" => Datei/Ordner nicht gefunden.
"C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\2235ad4a-79dc8ad6" => Datei/Ordner nicht gefunden.
"C:\Users\sam33321\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\7b68f726-68f8a923" => Datei/Ordner nicht gefunden.
"C:\Users\sam33321\AppData\Roaming\_BrowserCompanion\tcbhn.exe" => Datei/Ordner nicht gefunden.
C:\Windows\Installer\4e796b0.msi => erfolgreich verschoben
"C:\Windows.old\Users\sam33321\AppData\Local\Temp\DMR\dmr_72.exe" => Datei/Ordner nicht gefunden.
ZeroAccess: => Fehler: Kein automatisierter Fix für diesen Eintrag gefunden.
"C:\Users\sam33321\AppData\Local\Google\Desktop\Install" => Datei/Ordner nicht gefunden.
ZeroAccess: => Fehler: Kein automatisierter Fix für diesen Eintrag gefunden.
C:\Program Files (x86)\Google\Desktop\Install => erfolgreich verschoben
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Wert erfolgreich wiederhergestellt
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Local Page => Wert erfolgreich entfernt
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Local Page => Wert erfolgreich entfernt
HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => Wert erfolgreich wiederhergestellt
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Wert erfolgreich wiederhergestellt
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}" => Schlüssel erfolgreich entfernt
HKCR\Wow6432Node\CLSID\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => Schlüssel nicht gefunden.
"HKU\S-1-5-21-2429274901-1692467857-2381098989-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Schlüssel nicht gefunden.
EmptyTemp: => 1.6 GB temporäre Dateien entfernt.


Das System musste neu gestartet werden..

==== Ende von Fixlog 15:18:54 ====
Aktueller Status:
Das Problem besteht immer noch.
IE und FF werden auf die Bing.vc Startseite gezwungen
Vielen Dank für weitere Hilfestellung.

schrauber 22.08.2015 09:45
Laut Logs is da aber nix. Merkwürdig.

BEide Browser mal bitte komplett zurücksetzen.

sam33321 22.08.2015 12:19
IE11 komplett zurückgesetzt inkl. persönliche Einstellungen löschen.
FF40.0.2 komplett restauriert.
Rechner ausgeschalten.
Rechner neu gestartet.

Fazit:
Das Problem besteht leider immer noch.
Beide Browser werden auf die blöde "Bing.vc"-Startseite gezwungen.

Vielen Dank für weitere Hilfen.


Alle Zeitangaben in WEZ +1. Es ist jetzt 23:13 Uhr.
Seite 1 von 4 1 23 Letzte »
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131