FRST.txt Teil 5 Code:
2015-08-23 22:38 - 2014-10-29 04:29 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe
2015-08-23 22:38 - 2014-10-29 04:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\waitfor.exe
2015-08-23 22:38 - 2014-10-29 04:29 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\setspn.exe
2015-08-23 22:38 - 2014-10-29 04:29 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2015-08-23 22:38 - 2014-10-29 04:29 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\wshelper.dll
2015-08-23 22:38 - 2014-10-29 04:28 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\odbcad32.exe
2015-08-23 22:38 - 2014-10-29 04:27 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mmci.dll
2015-08-23 22:38 - 2014-10-29 04:27 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\serialui.dll
2015-08-23 22:38 - 2014-10-29 04:25 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\hwrreg.exe
2015-08-23 22:38 - 2014-10-29 04:25 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\fontview.exe
2015-08-23 22:38 - 2014-10-29 04:25 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\resmon.exe
2015-08-23 22:38 - 2014-10-29 04:25 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2015-08-23 22:38 - 2014-10-29 04:24 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.exe
2015-08-23 22:38 - 2014-10-29 04:24 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\LocationNotifications.exe
2015-08-23 22:38 - 2014-10-29 04:24 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\NcaApi.dll
2015-08-23 22:38 - 2014-10-29 04:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\pcwrun.exe
2015-08-23 22:38 - 2014-10-29 04:23 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerWizardElev.exe
2015-08-23 22:38 - 2014-10-29 04:23 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\montr_ci.dll
2015-08-23 22:38 - 2014-10-29 04:23 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\wowreg32.exe
2015-08-23 22:38 - 2014-10-29 04:22 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2015-08-23 22:38 - 2014-10-29 04:22 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\radarrs.dll
2015-08-23 22:38 - 2014-10-29 04:22 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\PNPXAssocPrx.dll
2015-08-23 22:38 - 2014-10-29 04:22 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-08-23 22:38 - 2014-10-29 04:22 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\ndproxystub.dll
2015-08-23 22:38 - 2014-10-29 04:22 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\dxgwdi.dll
2015-08-23 22:38 - 2014-10-29 04:20 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\ncpa.cpl
2015-08-23 22:38 - 2014-10-29 04:20 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe
2015-08-23 22:38 - 2014-10-29 04:20 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\WallpaperHost.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\control.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\DeviceProperties.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesRemote.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesProtection.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesPerformance.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesHardware.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesDataExecutionPrevention.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesComputerName.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesAdvanced.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingWizard.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Netplwiz.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Eap3Host.exe
2015-08-23 22:38 - 2014-10-29 04:19 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\DefaultDeviceManager.dll
2015-08-23 22:38 - 2014-10-29 04:18 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\SmartScreenSettings.exe
2015-08-23 22:38 - 2014-10-29 04:18 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\OptionalFeatures.exe
2015-08-23 22:38 - 2014-10-29 04:18 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Fondue.exe
2015-08-23 22:38 - 2014-10-29 04:18 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\MdRes.exe
2015-08-23 22:38 - 2014-10-29 04:18 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\DpiScaling.exe
2015-08-23 22:38 - 2014-10-29 04:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\RunLegacyCPLElevated.exe
2015-08-23 22:38 - 2014-10-29 04:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\ComputerDefaults.exe
2015-08-23 22:38 - 2014-10-29 04:17 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe
2015-08-23 22:38 - 2014-10-29 04:17 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-08-23 22:38 - 2014-10-29 04:17 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\FXSUNATD.exe
2015-08-23 22:38 - 2014-10-29 04:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\DDACLSys.dll
2015-08-23 22:38 - 2014-10-29 04:17 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RemoveDeviceElevated.dll
2015-08-23 22:38 - 2014-10-29 04:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\efsui.exe
2015-08-23 22:38 - 2014-10-29 04:09 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\bthudtask.exe
2015-08-23 22:38 - 2014-10-29 04:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\credwiz.exe
2015-08-23 22:38 - 2014-10-29 04:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-08-23 22:38 - 2014-10-29 04:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\gptext.dll
2015-08-23 22:38 - 2014-10-29 04:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2015-08-23 22:38 - 2014-10-29 04:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ktmw32.dll
2015-08-23 22:38 - 2014-10-29 04:03 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\txfw32.dll
2015-08-23 22:38 - 2014-10-29 04:03 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wship6.dll
2015-08-23 22:38 - 2014-10-29 04:03 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSHTCPIP.DLL
2015-08-23 22:38 - 2014-10-29 04:00 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OobeFldr.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miguiresource.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\tpmcompc.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciseq.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiatrace.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscat32.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browseui.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensApi.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\softpub.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacchooks.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nddeapi.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiwer.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssip32.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir50_32.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir41_32.ax
2015-08-23 22:38 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OskSupport.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir50_qcx.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir50_qc.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir41_qcx.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir41_qc.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir32_32.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\getuname.dll
2015-08-23 22:38 - 2014-10-29 04:00 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osuninst.dll
2015-08-23 22:38 - 2014-10-29 03:59 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lsmproxy.dll
2015-08-23 22:38 - 2014-10-29 03:59 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsock32.dll
2015-08-23 22:38 - 2014-10-29 03:59 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msidcrl40.dll
2015-08-23 22:38 - 2014-10-29 03:59 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\help.exe
2015-08-23 22:38 - 2014-10-29 03:59 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WlS0WndH.dll
2015-08-23 22:38 - 2014-10-29 03:59 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sas.dll
2015-08-23 22:38 - 2014-10-29 03:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XInput9_1_0.dll
2015-08-23 22:38 - 2014-10-29 03:59 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2015-08-23 22:38 - 2014-10-29 03:59 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxex.dll
2015-08-23 22:38 - 2014-10-29 03:58 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\telephon.cpl
2015-08-23 22:38 - 2014-10-29 03:58 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\colorcpl.exe
2015-08-23 22:38 - 2014-10-29 03:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.exe
2015-08-23 22:38 - 2014-10-29 03:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2015-08-23 22:38 - 2014-10-29 03:58 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzutil.exe
2015-08-23 22:38 - 2014-10-29 03:58 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cliconfg.exe
2015-08-23 22:38 - 2014-10-29 03:58 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll
2015-08-23 22:38 - 2014-10-29 03:58 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sort.exe
2015-08-23 22:38 - 2014-10-29 03:58 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\umdmxfrm.dll
2015-08-23 22:38 - 2014-10-29 03:58 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2015-08-23 22:38 - 2014-10-29 03:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2015-08-23 22:38 - 2014-10-29 03:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmdkey.exe
2015-08-23 22:38 - 2014-10-29 03:58 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll
2015-08-23 22:38 - 2014-10-29 03:58 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsbyuv.dll
2015-08-23 22:38 - 2014-10-29 03:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TapiUnattend.exe
2015-08-23 22:38 - 2014-10-29 03:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwinsat.dll
2015-08-23 22:38 - 2014-10-29 03:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com
2015-08-23 22:38 - 2014-10-29 03:58 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dvdplay.exe
2015-08-23 22:38 - 2014-10-29 03:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsied.dll
2015-08-23 22:38 - 2014-10-29 03:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomcnfg.exe
2015-08-23 22:38 - 2014-10-29 03:58 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapiperf.dll
2015-08-23 22:38 - 2014-10-29 03:58 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2015-08-23 22:38 - 2014-10-29 03:58 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TimeDateMUICallback.dll
2015-08-23 22:38 - 2014-10-29 03:58 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\acledit.dll
2015-08-23 22:38 - 2014-10-29 03:57 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmintf.dll
2015-08-23 22:38 - 2014-10-29 03:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpupdate.exe
2015-08-23 22:38 - 2014-10-29 03:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcmsetup.exe
2015-08-23 22:38 - 2014-10-29 03:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2015-08-23 22:38 - 2014-10-29 03:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DDOIProxy.dll
2015-08-23 22:38 - 2014-10-29 03:57 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usbperf.dll
2015-08-23 22:38 - 2014-10-29 03:57 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshirda.dll
2015-08-23 22:38 - 2014-10-29 03:57 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaPs.dll
2015-08-23 22:38 - 2014-10-29 03:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrnsave.scr
2015-08-23 22:38 - 2014-10-29 03:57 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spnet.dll
2015-08-23 22:38 - 2014-10-29 03:57 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcNs4.dll
2015-08-23 22:38 - 2014-10-29 03:56 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncInfrastructureps.dll
2015-08-23 22:38 - 2014-10-29 03:56 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSChannel.dll
2015-08-23 22:38 - 2014-10-29 03:56 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscproxystub.dll
2015-08-23 22:38 - 2014-10-29 03:56 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncHostps.dll
2015-08-23 22:38 - 2014-10-29 03:56 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmcodecdspps.dll
2015-08-23 22:38 - 2014-10-29 03:56 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcji32.dll
2015-08-23 22:38 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odtext32.dll
2015-08-23 22:38 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odpdx32.dll
2015-08-23 22:38 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odfox32.dll
2015-08-23 22:38 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oddbse32.dll
2015-08-23 22:38 - 2014-10-29 03:56 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odexl32.dll
2015-08-23 22:38 - 2014-10-29 03:55 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfime.ime
2015-08-23 22:38 - 2014-10-29 03:54 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secinit.exe
2015-08-23 22:38 - 2014-10-29 03:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VscMgrPS.dll
2015-08-23 22:38 - 2014-10-29 03:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ctfmon.exe
2015-08-23 22:38 - 2014-10-29 03:53 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\dpapimig.exe
2015-08-23 22:38 - 2014-10-29 03:53 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\verclsid.exe
2015-08-23 22:38 - 2014-10-29 03:53 - 00009728 _____ (Microsoft Corporation) C:\Windows\winhlp32.exe
2015-08-23 22:38 - 2014-10-29 03:52 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsicpl.exe
2015-08-23 22:38 - 2014-10-29 03:52 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msra.exe
2015-08-23 22:38 - 2014-10-29 03:52 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hdwwiz.exe
2015-08-23 22:38 - 2014-10-29 03:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winver.exe
2015-08-23 22:38 - 2014-10-29 03:52 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedt32.exe
2015-08-23 22:38 - 2014-10-29 03:52 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmdext.dll
2015-08-23 22:38 - 2014-10-29 03:52 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\write.exe
2015-08-23 22:38 - 2014-10-29 03:52 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TapiSysprep.dll
2015-08-23 22:38 - 2014-10-29 03:51 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndadmin.exe
2015-08-23 22:38 - 2014-10-29 03:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\runas.exe
2015-08-23 22:38 - 2014-10-29 03:51 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdial.exe
2015-08-23 22:38 - 2014-10-29 03:51 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasautou.exe
2015-08-23 22:38 - 2014-10-29 03:51 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LAPRXY.DLL
2015-08-23 22:38 - 2014-10-29 03:51 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InfDefaultInstall.exe
2015-08-23 22:38 - 2014-10-29 03:51 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systray.exe
2015-08-23 22:38 - 2014-10-29 03:49 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingProxy.dll
2015-08-23 22:38 - 2014-10-29 03:49 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wamregps.dll
2015-08-23 22:38 - 2014-10-29 03:48 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RmClient.exe
2015-08-23 22:38 - 2014-10-29 03:46 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcad32.exe
2015-08-23 22:38 - 2014-10-29 03:45 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resmon.exe
2015-08-23 22:38 - 2014-10-29 03:45 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2015-08-23 22:38 - 2014-10-29 03:44 - 00218112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountControlSettings.exe
2015-08-23 22:38 - 2014-10-29 03:44 - 00094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Narrator.exe
2015-08-23 22:38 - 2014-10-29 03:44 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationNotifications.exe
2015-08-23 22:38 - 2014-10-29 03:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wowreg32.exe
2015-08-23 22:38 - 2014-10-29 03:42 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.exe
2015-08-23 22:38 - 2014-10-29 03:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdmps.dll
2015-08-23 22:38 - 2014-10-29 03:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndproxystub.dll
2015-08-23 22:38 - 2014-10-29 03:40 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncpa.cpl
2015-08-23 22:38 - 2014-10-29 03:40 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingWizard.exe
2015-08-23 22:38 - 2014-10-29 03:40 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Netplwiz.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartScreenSettings.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\control.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Fondue.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceProperties.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesRemote.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesProtection.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesPerformance.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesHardware.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesDataExecutionPrevention.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesComputerName.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesAdvanced.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DpiScaling.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RunLegacyCPLElevated.exe
2015-08-23 22:38 - 2014-10-29 03:39 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ComputerDefaults.exe
2015-08-23 22:38 - 2014-10-29 03:38 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoveDeviceElevated.dll
2015-08-23 22:38 - 2014-10-29 03:34 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efsui.exe
2015-08-23 22:38 - 2014-10-29 03:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthudtask.exe
2015-08-23 22:38 - 2014-10-29 03:32 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-08-23 22:38 - 2014-10-29 03:29 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\dpapi.dll
2015-08-23 22:38 - 2014-10-29 03:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mprext.dll
2015-08-23 22:38 - 2014-10-29 03:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\dabapi.dll
2015-08-23 22:38 - 2014-10-29 03:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL
2015-08-23 22:38 - 2014-10-29 03:28 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\C_G18030.DLL
2015-08-23 22:38 - 2014-10-29 03:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\mprmsg.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\KdsCli.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\reg.exe
2015-08-23 22:38 - 2014-10-29 03:28 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\perfproc.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\icacls.exe
2015-08-23 22:38 - 2014-10-29 03:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\sdhcinst.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe
2015-08-23 22:38 - 2014-10-29 03:28 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\perfnet.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\fltLib.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\PATHPING.EXE
2015-08-23 22:38 - 2014-10-29 03:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\rasadhlp.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\mountvol.exe
2015-08-23 22:38 - 2014-10-29 03:28 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\wmsgapi.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\C_IS2022.DLL
2015-08-23 22:38 - 2014-10-29 03:28 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winrssrv.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\whhelper.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\fdBthProxy.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TCPSVCS.EXE
2015-08-23 22:38 - 2014-10-29 03:28 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msidle.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\TcpipSetup.dll
2015-08-23 22:38 - 2014-10-29 03:28 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\backgroundTaskHost.exe
2015-08-23 22:38 - 2014-10-29 03:28 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2015-08-23 22:38 - 2014-10-29 03:27 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2015-08-23 22:38 - 2014-10-29 03:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\esentprf.dll
2015-08-23 22:38 - 2014-10-29 03:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\setx.exe
2015-08-23 22:38 - 2014-10-29 03:27 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\lodctr.exe
2015-08-23 22:38 - 2014-10-29 03:27 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\unlodctr.exe
2015-08-23 22:38 - 2014-10-29 03:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\SecEdit.exe
2015-08-23 22:38 - 2014-10-29 03:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\perfdisk.dll
2015-08-23 22:38 - 2014-10-29 03:27 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\cacls.exe
2015-08-23 22:38 - 2014-10-29 03:27 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\fltMC.exe
2015-08-23 22:38 - 2014-10-29 03:27 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\fvecerts.dll
2015-08-23 22:38 - 2014-10-29 03:27 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\adhapi.dll
2015-08-23 22:38 - 2014-10-29 03:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-08-23 22:38 - 2014-10-29 03:27 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\PING.EXE
2015-08-23 22:38 - 2014-10-29 03:27 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2015-08-23 22:38 - 2014-10-29 03:27 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerClient.dll
2015-08-23 22:38 - 2014-10-29 03:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\TRACERT.EXE
2015-08-23 22:38 - 2014-10-29 03:27 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\finger.exe
2015-08-23 22:38 - 2014-10-29 03:27 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Register-CimProvider.exe
2015-08-23 22:38 - 2014-10-29 03:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\smphost.dll
2015-08-23 22:38 - 2014-10-29 03:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\HOSTNAME.EXE
2015-08-23 22:38 - 2014-10-29 03:27 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TetheringIeProvider.dll
2015-08-23 22:38 - 2014-10-29 03:26 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appsruprov.dll
2015-08-23 22:38 - 2014-10-29 03:26 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\pots.dll
2015-08-23 22:38 - 2014-10-29 03:26 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\VaultCmd.exe
2015-08-23 22:38 - 2014-10-29 03:26 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\MRINFO.EXE
2015-08-23 22:38 - 2014-10-29 03:26 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\ProximityRtapiPal.dll
2015-08-23 22:38 - 2014-10-29 03:26 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wpcsvc.dll
2015-08-23 22:38 - 2014-10-29 03:25 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\wininitext.dll
2015-08-23 22:38 - 2014-10-29 03:25 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\dnsext.dll
2015-08-23 22:38 - 2014-10-29 03:24 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\procinst.dll
2015-08-23 22:38 - 2014-10-29 03:23 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.ps.dll
2015-08-23 22:38 - 2014-10-29 03:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Background.ps.dll
2015-08-23 22:38 - 2014-10-29 03:23 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\AppxStreamingDataSourcePS.dll
2015-08-23 22:38 - 2014-10-29 03:22 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\TaskSchdPS.dll
2015-08-23 22:38 - 2014-10-29 03:21 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\perfctrs.dll
2015-08-23 22:38 - 2014-10-29 03:21 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ipconfig.exe
2015-08-23 22:38 - 2014-10-29 03:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2015-08-23 22:38 - 2014-10-29 03:21 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\CallButtons.ProxyStub.dll
2015-08-23 22:38 - 2014-10-29 03:21 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\ROUTE.EXE
2015-08-23 22:38 - 2014-10-29 03:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\defragproxy.dll
2015-08-23 22:38 - 2014-10-29 03:21 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\AuthHostProxy.dll
2015-08-23 22:38 - 2014-10-29 03:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\cfmifsproxy.dll
2015-08-23 22:38 - 2014-10-29 03:21 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dllhst3g.exe
2015-08-23 22:38 - 2014-10-29 03:20 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapimig.exe
2015-08-23 22:38 - 2014-10-29 03:20 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2015-08-23 22:38 - 2014-10-29 03:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\raschapext.dll
2015-08-23 22:38 - 2014-10-29 03:19 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\rastlsext.dll
2015-08-23 22:38 - 2014-10-29 03:16 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2015-08-23 22:38 - 2014-10-29 03:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll
2015-08-23 22:38 - 2014-10-29 03:14 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\nci.dll
2015-08-23 22:38 - 2014-10-29 03:12 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\wwaninst.dll
2015-08-23 22:38 - 2014-10-29 03:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\DsmUserTask.exe
2015-08-23 22:38 - 2014-10-29 03:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\winrs.exe
2015-08-23 22:38 - 2014-10-29 03:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprext.dll
2015-08-23 22:38 - 2014-10-29 03:06 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dabapi.dll
2015-08-23 22:38 - 2014-10-29 03:05 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_G18030.DLL
2015-08-23 22:38 - 2014-10-29 03:05 - 00113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprmsg.dll
2015-08-23 22:38 - 2014-10-29 03:05 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unlodctr.exe
2015-08-23 22:38 - 2014-10-29 03:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PATHPING.EXE
2015-08-23 22:38 - 2014-10-29 03:05 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mountvol.exe
2015-08-23 22:38 - 2014-10-29 03:05 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TRACERT.EXE
2015-08-23 22:38 - 2014-10-29 03:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemEventsBrokerClient.dll
2015-08-23 22:38 - 2014-10-29 03:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmsgapi.dll
2015-08-23 22:38 - 2014-10-29 03:05 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasadhlp.dll
2015-08-23 22:38 - 2014-10-29 03:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2015-08-23 22:38 - 2014-10-29 03:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\whhelper.dll
2015-08-23 22:38 - 2014-10-29 03:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_IS2022.DLL
2015-08-23 22:38 - 2014-10-29 03:05 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrssrv.dll
2015-08-23 22:38 - 2014-10-29 03:05 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdBthProxy.dll
2015-08-23 22:38 - 2014-10-29 03:05 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TCPSVCS.EXE
2015-08-23 22:38 - 2014-10-29 03:05 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msidle.dll
2015-08-23 22:38 - 2014-10-29 03:05 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe
2015-08-23 22:38 - 2014-10-29 03:05 - 00006144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2015-08-23 22:38 - 2014-10-29 03:04 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollCtrl.exe
2015-08-23 22:38 - 2014-10-29 03:04 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fltMC.exe
2015-08-23 22:38 - 2014-10-29 03:04 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Register-CimProvider.exe
2015-08-23 22:38 - 2014-10-29 03:04 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smphost.dll
2015-08-23 22:38 - 2014-10-29 03:04 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpcsvc.dll
2015-08-23 22:38 - 2014-10-29 03:03 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\LaunchTM.exe
2015-08-23 22:38 - 2014-10-29 03:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MRINFO.EXE
2015-08-23 22:38 - 2014-10-29 03:03 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityRtapiPal.dll
2015-08-23 22:38 - 2014-10-29 03:02 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininitext.dll
2015-08-23 22:38 - 2014-10-29 03:01 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TaskSchdPS.dll
2015-08-23 22:38 - 2014-10-29 03:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vss_ps.dll
2015-08-23 22:38 - 2014-10-29 03:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdProxy.dll
2015-08-23 22:38 - 2014-10-29 03:01 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.ps.dll
2015-08-23 22:38 - 2014-10-29 03:01 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.ps.dll
2015-08-23 22:38 - 2014-10-29 03:01 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Background.ps.dll
2015-08-23 22:38 - 2014-10-29 03:00 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2015-08-23 22:38 - 2014-10-29 03:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallButtons.ProxyStub.dll
2015-08-23 22:38 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfmifsproxy.dll
2015-08-23 22:38 - 2014-10-29 02:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Startupscan.dll
2015-08-23 22:38 - 2014-10-29 02:58 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\bootim.exe
2015-08-23 22:38 - 2014-10-29 02:55 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\CheckNetIsolation.exe
2015-08-23 22:38 - 2014-10-29 02:50 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchTM.exe
2015-08-23 22:38 - 2014-10-29 02:46 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Startupscan.dll
2015-08-23 22:37 - 2014-10-29 04:50 - 02628608 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2015-08-23 22:37 - 2014-10-29 04:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\DeviceUxRes.dll
2015-08-23 22:37 - 2014-10-29 04:49 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2015-08-23 22:37 - 2014-10-29 04:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Firewall.cpl
2015-08-23 22:37 - 2014-10-29 04:49 - 00004608 _____ (Microsoft Corporation) C:\Windows\system32\ws2help.dll
2015-08-23 22:37 - 2014-10-29 04:49 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\rnr20.dll
2015-08-23 22:37 - 2014-10-29 04:48 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys
2015-08-23 22:37 - 2014-10-29 04:48 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys
2015-08-23 22:37 - 2014-10-29 04:48 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-08-23 22:37 - 2014-10-29 04:47 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-08-23 22:37 - 2014-10-29 04:47 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys
2015-08-23 22:37 - 2014-10-29 04:47 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2015-08-23 22:37 - 2014-10-29 04:46 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2015-08-23 22:37 - 2014-10-29 04:46 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2015-08-23 22:37 - 2014-10-29 04:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiscap.sys
2015-08-23 22:37 - 2014-10-29 04:46 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2015-08-23 22:37 - 2014-10-29 04:45 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-08-23 22:37 - 2014-10-29 04:45 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Ndu.sys
2015-08-23 22:37 - 2014-10-29 04:45 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mslldp.sys
2015-08-23 22:37 - 2014-10-29 04:45 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-08-23 22:37 - 2014-10-29 04:45 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-08-23 22:37 - 2014-10-29 04:45 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-08-23 22:37 - 2014-10-29 04:45 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\normaliz.dll
2015-08-23 22:37 - 2014-10-29 04:05 - 02628608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons0009.dll
2015-08-23 22:37 - 2014-10-29 04:04 - 00638976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2015-08-23 22:37 - 2014-10-29 04:04 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceUxRes.dll
2015-08-23 22:37 - 2014-10-29 04:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2015-08-23 22:37 - 2014-10-29 04:04 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2help.dll
2015-08-23 22:37 - 2014-10-29 04:04 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rnr20.dll
2015-08-23 22:37 - 2014-10-29 04:03 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2015-08-23 22:37 - 2014-10-29 04:00 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-08-23 22:37 - 2014-10-29 04:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-08-23 22:37 - 2014-10-29 04:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-08-23 22:37 - 2014-10-29 04:00 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\normaliz.dll
2015-08-23 22:37 - 2014-10-29 04:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprop.dll
2015-08-23 22:37 - 2014-10-29 03:56 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pstorec.dll
2015-08-23 22:37 - 2014-10-29 03:06 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_ISCII.DLL
2015-08-23 21:52 - 2014-12-19 08:26 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-08-23 21:51 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-08-23 21:51 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-08-23 21:51 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-08-23 21:51 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-08-23 21:51 - 2015-03-20 04:40 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-08-23 21:51 - 2015-03-20 04:16 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-08-23 21:51 - 2014-10-29 04:43 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-08-23 21:51 - 2014-10-29 04:17 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-08-23 21:51 - 2014-10-29 03:58 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-08-23 21:51 - 2014-10-29 03:38 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-08-23 21:51 - 2014-10-29 03:26 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-08-23 21:51 - 2014-10-29 03:26 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-08-23 21:51 - 2014-10-29 03:04 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-08-23 21:51 - 2014-10-29 03:04 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-08-23 21:50 - 2015-07-29 16:37 - 01994752 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-23 21:50 - 2015-07-29 16:30 - 01381888 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-23 21:50 - 2015-07-24 20:57 - 04177408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-23 21:50 - 2015-07-14 05:22 - 02529880 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-23 21:50 - 2015-07-14 05:21 - 01901776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-08-23 21:50 - 2015-07-13 21:46 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-23 21:50 - 2015-07-13 21:45 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-23 21:50 - 2015-07-10 20:19 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-08-23 21:50 - 2015-07-10 19:42 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-23 21:50 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-08-23 21:50 - 2015-07-10 19:13 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-23 21:50 - 2015-07-10 18:47 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-08-23 21:50 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-23 21:50 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-23 21:50 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-23 21:50 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-08-23 21:50 - 2015-07-02 00:19 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-23 21:50 - 2015-07-02 00:16 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-23 21:50 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-23 21:50 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-08-23 21:50 - 2015-06-16 07:36 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-08-23 21:50 - 2015-06-16 07:36 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-08-23 21:50 - 2015-06-11 05:49 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-08-23 21:50 - 2015-06-10 18:13 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-08-23 21:50 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2015-08-23 21:50 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-08-23 21:50 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-08-23 21:50 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-08-23 21:50 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-08-23 21:50 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2015-08-23 21:50 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-08-23 21:50 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-08-23 21:50 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-08-23 21:50 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-08-23 21:50 - 2015-01-28 03:31 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-08-23 21:50 - 2015-01-28 03:11 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-08-23 21:50 - 2015-01-27 06:22 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-08-23 21:50 - 2015-01-27 04:11 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-08-23 21:50 - 2014-10-29 05:56 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-08-23 21:50 - 2014-10-29 04:48 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2015-08-23 21:50 - 2014-10-29 04:44 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-08-23 21:50 - 2014-10-29 04:37 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2015-08-23 21:50 - 2014-10-29 04:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-23 21:50 - 2014-10-29 03:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-08-23 21:50 - 2014-10-29 03:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-08-23 21:50 - 2014-10-29 03:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-08-23 21:50 - 2014-10-29 03:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-08-23 21:50 - 2014-10-29 03:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-08-23 21:50 - 2014-10-29 03:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-08-23 21:50 - 2014-10-29 03:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-08-23 21:50 - 2014-10-18 08:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2015-08-23 21:49 - 2015-07-29 16:23 - 01559552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-23 21:49 - 2015-07-24 20:57 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-23 21:49 - 2015-07-24 20:52 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-23 21:49 - 2015-07-24 19:27 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-08-23 21:49 - 2015-07-24 19:23 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-08-23 21:49 - 2015-05-07 18:47 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-08-23 21:49 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-08-23 21:49 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-08-23 21:49 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-08-23 21:49 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-08-23 21:49 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-08-23 21:49 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-08-23 21:49 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-08-23 21:49 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-08-23 21:49 - 2015-01-29 20:45 - 01763352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-08-23 21:49 - 2015-01-29 20:34 - 01488040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-08-23 21:49 - 2014-12-06 05:17 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-08-23 21:49 - 2014-12-06 03:41 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-08-23 21:49 - 2014-10-29 04:49 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-08-23 21:49 - 2014-10-29 04:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-08-23 21:49 - 2014-10-29 04:42 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-08-23 21:49 - 2014-10-29 04:04 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-08-23 21:49 - 2014-10-29 04:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-08-23 21:49 - 2014-10-29 04:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-08-23 21:49 - 2014-10-29 03:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-08-23 21:49 - 2014-10-29 03:19 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-08-23 21:49 - 2014-10-29 03:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-08-23 21:49 - 2014-10-29 02:59 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-08-23 21:49 - 2014-10-13 04:43 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-08-23 21:49 - 2014-10-13 04:43 - 00039744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2015-08-23 21:49 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-08-23 21:49 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-08-23 21:37 - 2015-08-23 21:37 - 00518229 _____ C:\ProgramData\1440358359.bdinstall.bin
2015-08-23 21:37 - 2015-08-23 21:37 - 00000385 _____ C:\Windows\system32\user_gensett.xml
2015-08-23 21:36 - 2015-08-23 21:42 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Bitdefender
2015-08-23 21:36 - 2015-08-23 21:36 - 00002224 _____ C:\Users\Public\Desktop\Bitdefender Internet Security 2015.lnk
2015-08-23 21:36 - 2015-08-23 21:36 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-08-23 21:36 - 2015-08-23 21:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2015-08-23 21:36 - 2015-08-23 21:36 - 00000000 ____D C:\ProgramData\BDLogging
2015-08-23 21:36 - 2015-05-29 09:50 - 01730304 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2015-08-23 21:36 - 2015-05-29 09:50 - 00271272 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
2015-08-23 21:36 - 2015-05-28 14:21 - 00747120 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2015-08-23 21:36 - 2015-05-28 13:37 - 01369288 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2015-08-23 21:36 - 2014-12-15 18:04 - 00098768 _____ (BitDefender LLC) C:\Windows\system32\Drivers\bdfndisf6.sys
2015-08-23 21:36 - 2013-09-08 20:04 - 00023568 _____ (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys
2015-08-23 21:36 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2015-08-23 21:32 - 2015-02-24 17:52 - 00160544 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2015-08-23 21:32 - 2014-10-15 17:14 - 00452040 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2015-08-23 21:27 - 2015-09-02 19:43 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-23 21:27 - 2015-08-23 21:27 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-23 21:27 - 2015-08-23 21:27 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Macromedia
2015-08-23 21:27 - 2015-08-23 21:27 - 00000000 ____D C:\Users\Michael\AppData\Local\Macromedia
2015-08-23 21:27 - 2015-07-05 12:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-08-23 21:26 - 2015-08-23 21:27 - 00000000 ____D C:\Users\Michael\AppData\Local\Adobe
2015-08-23 21:16 - 2015-08-23 21:17 - 00000000 ____D C:\Users\Michael\AppData\Roaming\DropboxOEM
2015-08-23 17:03 - 2015-08-23 17:03 - 00000424 _____ C:\Users\Michael\Desktop\Computer.lnk
2015-08-23 16:43 - 2015-08-23 16:43 - 00000000 ____D C:\Users\Michael\AppData\Roaming\freemkvtomp4converter
2015-08-23 16:43 - 2015-08-23 16:43 - 00000000 ____D C:\Users\Michael\AppData\Local\SkinSoft
2015-08-23 16:42 - 2015-08-23 16:42 - 13537481 _____ (Convert Audio Free) C:\Users\Michael\Documents\mpegtomp3_setup [1].exe
2015-08-23 16:37 - 2015-08-23 16:37 - 00000000 ____D C:\Program Files (x86)\mpegtomp3_setup
2015-08-23 16:35 - 2015-08-23 16:36 - 03175424 _____ C:\Users\Michael\Downloads\mpegtomp3_setup.msi
2015-08-23 16:33 - 2015-08-23 16:34 - 00075752 _____ C:\Users\Michael\Downloads\mpegtomp3_setup-54830814.exe
2015-08-23 16:21 - 2015-08-23 16:21 - 00000000 ____D C:\Users\Michael\dwhelper
2015-08-22 18:26 - 2015-08-22 18:26 - 00000000 ____D C:\Users\Michael\Tracing
2015-08-22 17:46 - 2015-08-27 22:24 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Skype
2015-08-22 17:46 - 2015-08-22 17:46 - 00002715 _____ C:\Users\Public\Desktop\Skype.lnk
2015-08-22 17:46 - 2015-08-22 17:46 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-22 17:46 - 2015-08-22 17:46 - 00000000 ____D C:\Users\Michael\AppData\Local\Skype
2015-08-22 17:46 - 2015-08-22 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-22 17:45 - 2015-08-22 17:46 - 00000000 ____D C:\ProgramData\Skype
2015-08-22 17:31 - 2015-08-22 17:32 - 01385504 _____ (Skype Technologies S.A.) C:\Users\Michael\Downloads\SkypeSetup.exe
2015-08-22 14:50 - 2015-08-22 14:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-08-22 14:42 - 2015-09-02 19:41 - 00000000 ___RD C:\Users\Michael\OneDrive
2015-08-22 12:59 - 2015-08-29 13:31 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2015-08-22 01:38 - 2015-08-22 01:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-22 01:38 - 2015-08-22 01:38 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-22 01:38 - 2015-08-22 01:38 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-22 01:32 - 2015-08-22 01:37 - 13155552 _____ (Microsoft Corporation) C:\Users\Michael\Downloads\Silverlight_x64.exe
2015-08-22 01:29 - 2015-08-22 01:29 - 00000000 ____D C:\Program Files\Bitdefender
2015-08-21 23:19 - 2015-08-23 21:37 - 00000000 ____D C:\ProgramData\Bitdefender
2015-08-21 22:52 - 2015-08-21 22:52 - 00000000 ____D C:\Users\Michael\AppData\Roaming\QuickScan
2015-08-21 21:50 - 2015-08-23 21:32 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2015-08-21 21:48 - 2015-08-21 21:49 - 02868496 _____ C:\Users\Michael\Downloads\bitdefender_isecurity.exe
2015-08-21 21:08 - 2015-09-01 21:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-21 21:08 - 2015-08-21 21:08 - 00001182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-21 21:08 - 2015-08-21 21:08 - 00001170 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-08-21 21:08 - 2015-08-21 21:08 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Mozilla
2015-08-21 21:08 - 2015-08-21 21:08 - 00000000 ____D C:\Users\Michael\AppData\Local\Mozilla
2015-08-21 20:48 - 2015-09-02 19:42 - 00003946 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{A6D9A073-9E62-4868-AD78-2BDF1642BCB8}
2015-08-21 20:48 - 2015-08-21 20:48 - 00000000 __SHD C:\Users\Michael\AppData\Local\EmieUserList
2015-08-21 20:48 - 2015-08-21 20:48 - 00000000 __SHD C:\Users\Michael\AppData\Local\EmieSiteList
2015-08-21 19:45 - 2015-09-01 23:06 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2750433844-3693978087-3334890758-1002
2015-08-21 19:43 - 2015-09-02 19:42 - 00000000 ____D C:\Users\Michael\Documents\Youcam
2015-08-21 19:43 - 2015-08-21 19:44 - 00000000 ____D C:\Users\Michael\Desktop\Lucky 7
2015-08-21 19:43 - 2015-08-21 19:43 - 00000000 ____D C:\Users\Michael\Desktop\Currensy - Cathedral
2015-08-21 19:43 - 2015-08-21 19:43 - 00000000 ____D C:\Users\Michael\Desktop\Compton
2015-08-21 19:43 - 2015-08-21 19:43 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Hewlett-Packard
2015-08-21 19:43 - 2015-08-21 19:43 - 00000000 ____D C:\Users\Michael\AppData\Local\CyberLink
2015-08-21 19:42 - 2015-08-21 19:42 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-08-21 19:42 - 2015-08-21 19:42 - 00000000 ____D C:\Users\Michael\AppData\Roaming\hpqlog
2015-08-21 19:41 - 2015-08-29 15:13 - 00000000 ____D C:\Users\Michael\AppData\Local\Hewlett-Packard
2015-08-21 19:41 - 2015-08-21 19:41 - 00000000 ____D C:\Users\Michael\AppData\Local\DropboxOEM
2015-08-21 19:40 - 2015-08-21 19:40 - 00001461 _____ C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-21 19:40 - 2015-08-21 19:40 - 00000186 _____ C:\Windows\insFileSpec
2015-08-21 19:40 - 2015-08-21 19:40 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Adobe
2015-08-21 19:40 - 2015-08-21 19:40 - 00000000 ____D C:\Users\Michael\AppData\Local\VirtualStore
2015-08-21 19:40 - 2015-03-03 21:03 - 00002249 _____ C:\Users\Public\Desktop\Snapfish Fotos.lnk
2015-08-21 19:39 - 2015-09-01 23:14 - 00000000 ____D C:\Users\Michael
2015-08-21 19:39 - 2015-09-01 23:04 - 01424746 _____ C:\Windows\WindowsUpdate.log
2015-08-21 19:39 - 2015-08-27 19:25 - 00000000 ____D C:\Users\Michael\AppData\Local\Packages
2015-08-21 19:39 - 2015-08-21 19:39 - 00000020 ___SH C:\Users\Michael\ntuser.ini
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\Vorlagen
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\Startmenü
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\Netzwerkumgebung
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\Lokale Einstellungen
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\Eigene Dateien
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\Druckumgebung
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\Documents\Eigene Musik
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\Documents\Eigene Bilder
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\AppData\Local\Verlauf
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\AppData\Local\Anwendungsdaten
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 _SHDL C:\Users\Michael\Anwendungsdaten
2015-08-21 19:39 - 2015-08-21 19:39 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Synaptics
2015-08-21 19:39 - 2014-11-01 17:07 - 00000000 ___RD C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-21 19:39 - 2014-11-01 16:31 - 00000000 ___RD C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-21 19:39 - 2014-11-01 08:32 - 00000000 ___HD C:\Users\Michael\Documents\hp.system.package.metadata
2015-08-21 19:39 - 2014-03-18 11:54 - 00000369 _____ C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-08-21 19:39 - 2014-03-18 11:54 - 00000369 _____ C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-08-21 19:39 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-21 19:39 - 2013-08-22 17:36 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Programme
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\ProgramData\Vorlagen
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\ProgramData\Startmenü
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\ProgramData\Dokumente
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2015-08-21 19:36 - 2015-08-21 19:36 - 00000000 _SHDL C:\Dokumente und Einstellungen
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-09-02 19:38 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-09-01 22:06 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-09-01 21:58 - 2014-11-01 15:57 - 00800954 _____ C:\Windows\system32\perfh007.dat
2015-09-01 21:58 - 2014-11-01 15:57 - 00174458 _____ C:\Windows\system32\perfc007.dat
2015-09-01 21:58 - 2014-03-18 11:53 - 01921090 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-01 21:54 - 2015-03-03 20:46 - 00434454 _____ C:\Windows\SysWOW64\rootpa.e2e
2015-09-01 21:53 - 2013-08-22 16:46 - 00031363 _____ C:\Windows\setupact.log
2015-09-01 21:53 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-01 21:52 - 2014-03-18 11:44 - 00025226 _____ C:\Windows\PFRO.log
2015-09-01 21:52 - 2013-08-22 16:44 - 00351456 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-31 20:21 - 2015-03-03 20:32 - 00038544 _____ C:\Windows\DPINST.LOG
2015-08-29 11:50 - 2014-04-03 01:51 - 00000000 ____D C:\Windows\Panther
2015-08-27 19:29 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppCompat
2015-08-27 19:15 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-08-26 22:12 - 2015-03-03 20:31 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2015-08-26 22:12 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-08-26 22:11 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-26 22:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sr-Latn-RS
2015-08-26 22:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2015-08-26 22:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\en-GB
2015-08-26 22:10 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-08-26 20:01 - 2013-08-22 17:37 - 00006055 _____ C:\Windows\DtcInstall.log
2015-08-25 21:58 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2015-08-25 21:57 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2015-08-25 21:57 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-08-25 21:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-08-25 21:56 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-25 21:56 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-25 21:56 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-25 21:56 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-25 21:56 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-25 21:56 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-25 21:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\MediaViewer
2015-08-25 21:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\FileManager
2015-08-25 21:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Camera
2015-08-25 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\sppui
2015-08-25 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\setup
2015-08-25 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2015-08-25 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\inetsrv
2015-08-25 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2015-08-25 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Portable Devices
2015-08-25 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-08-25 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2015-08-25 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-08-25 21:54 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-08-25 21:54 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-08-25 21:54 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\servicing
2015-08-25 21:52 - 2013-08-22 17:36 - 00000000 ___SD C:\Windows\system32\dsc
2015-08-25 21:52 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-08-25 21:52 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-08-25 21:52 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sppui
2015-08-25 21:52 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\setup
2015-08-25 21:52 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\migwiz
2015-08-25 21:52 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\inetsrv
2015-08-25 21:52 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Com
2015-08-25 21:52 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\IME
2015-08-25 21:52 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Sysprep
2015-08-25 21:52 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\oobe
2015-08-25 21:52 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Dism
2015-08-25 21:51 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\WindowsPowerShell
2015-08-25 21:51 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2015-08-25 21:51 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-08-25 21:51 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2015-08-25 21:50 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-25 21:50 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-25 21:50 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2015-08-25 21:50 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-08-25 21:50 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-25 21:50 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-08-25 19:42 - 2013-08-22 17:36 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-08-25 19:42 - 2013-08-22 17:36 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2015-08-25 19:07 - 2014-03-18 11:38 - 00000000 ____D C:\Program Files\Windows Journal
2015-08-23 02:36 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-08-23 02:34 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\restore
2015-08-22 12:59 - 2014-11-01 08:32 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-08-21 22:22 - 2015-03-03 21:04 - 00000000 ____D C:\Users\Public\CyberLink
2015-08-21 21:55 - 2015-03-03 21:07 - 00000000 ____D C:\ProgramData\McAfee
2015-08-21 20:57 - 2014-11-01 08:41 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-08-21 19:39 - 2014-04-05 01:45 - 00000000 ___HD C:\SYSTEM.SAV
2015-08-21 19:39 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-08-21 19:36 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows NT
2015-08-21 19:36 - 2013-08-22 15:36 - 00000000 __RHD C:\Users\Default
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-08-23 21:37 - 2015-08-23 21:37 - 0518229 _____ () C:\ProgramData\1440358359.bdinstall.bin
Einige Dateien in TEMP:
====================
C:\Users\Michael\AppData\Local\Temp\Extract.exe
C:\Users\Michael\AppData\Local\Temp\SP71716.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2014-04-03 00:59
==================== Ende von FRST.txt ============================
Addition.txt: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-08-2015
durchgeführt von Michael (2015-09-01 22:39:57)
Gestartet von C:\Users\Michael\Downloads
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2750433844-3693978087-3334890758-500 - Administrator - Disabled)
Gast (S-1-5-21-2750433844-3693978087-3334890758-501 - Limited - Disabled)
Michael (S-1-5-21-2750433844-3693978087-3334890758-1002 - Administrator - Enabled) => C:\Users\Michael
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{F0108B13-0407-7042-2A80-D4CFB4EC409A}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Bejeweled 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Bitdefender Internet Security 2015 (HKLM\...\Bitdefender) (Version: 19.1.0.115 - Bitdefender)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Build-a-lot (x32 Version: 3.0.2.59 - WildTangent) Hidden
Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Crazy Chicken Soccer (x32 Version: 2.2.0.110 - WildTangent) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.8.4420 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.3.5715 - CyberLink Corp.)
Cyberlink PhotoDirector (Version: 5.0.3.5715 - Ihr Firmenname) Hidden
CyberLink Power Media Player 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5.4505 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.8.4316 - CyberLink Corp.)
CyberLink PowerBackup 2.6 (HKLM-x32\...\InstallShield_{ADD5DB49-72CF-11D8-9D75-000129760D75}) (Version: 2.6.1.0903 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.2.3220 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.2.3220 - Ihr Firmenname) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.5.4502 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 0.9.0 - Dropbox, Inc.)
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.5.3 (HKLM-x32\...\{B1A0F908-1448-11E4-8684-00163E98E7D0}) (Version: 5.5.3.4236 - Evernote Corp.)
Farm Frenzy (x32 Version: 3.0.2.59 - WildTangent) Hidden
Foxit PhantomPDF (HKLM-x32\...\{89BF1D4D-1D62-451E-9496-B971BDE82720}) (Version: 6.0.33.715 - Foxit Corporation)
Governor of Poker 2 Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM-x32\...\{13133E99-B0D5-4143-B832-AAD55C62A41C}) (Version: 6.0.19.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{ADE2F6A7-E7BD-4955-BD66-30903B223DDF}) (Version: 2.20.41 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{6AAEDF97-4B93-4169-8FCA-FCB0378CED52}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7745.4851 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{904822F1-6C7D-4B91-B936-6A1C0810544C}) (Version: 7.7.34.34 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{F12B17AB-FCDA-4380-9D35-E3F871BF1093}) (Version: 1.2.6 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.54.2 - HTC)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
Jewel Match 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Mozilla Firefox 40.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 de)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
OEM Application Profile (HKLM-x32\...\{1D464EFF-EC8B-F225-2F74-F74143200DDF}) (Version: 1.00.0000 - Ihr Firmenname)
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden
Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
Ranch Rush 2 - Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 1.0.0.22 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29075 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7344 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.37 - REALTEK Semiconductor Corp.)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.1.7.13 - Synaptics Incorporated)
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
Virtual Families (x32 Version: 2.2.0.98 - WildTangent) Hidden
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games App für HP (x32 Version: 4.0.11.14 - WildTangent) Hidden
WildTangent-Spiele (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
23-08-2015 02:34:57 Windows Update
26-08-2015 21:27:22 Windows Update
29-08-2015 11:43:06 HPSF Applying updates
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {1C3C79A9-5C63-4A94-BD0E-B99B9D3FF9C4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPW10UpgradeReminder => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPW10UpgradeReminder.exe [2015-08-11] (Hewlett-Packard)
Task: {395C85FE-4356-40E0-94E5-A81D9E0ECFE5} - System32\Tasks\HPCeeScheduleForMichael => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {5130A073-CC88-4B36-94FE-7C4E42E1E42E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-08-21] (Hewlett-Packard Company)
Task: {6095FF2E-78B8-4755-AB87-3C82EB350D0E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-23] (Adobe Systems Incorporated)
Task: {65AAA0B9-61F6-42C4-94EC-C2C32166CBCE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {8907E042-2029-4A94-AE0D-4C452CD231E3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-31] (Hewlett-Packard)
Task: {A1D5B4F0-204A-4354-B46E-E623CFF80236} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-08-21] (Hewlett-Packard Company)
Task: {CC3ED092-AB8E-4276-AD8E-E72773D73717} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {CE9A2224-A89A-4FF0-BC75-25B36410643A} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2014-05-19] (Hewlett-Packard Development Company, L.P.)
Task: {D47F95CA-631D-48D7-AE87-A3A6BE61BA42} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2014-09-02] (CyberLink Corp.)
Task: {F789F2C6-4C66-422B-9E8D-767EBB267644} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-07-28] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\HPCeeScheduleForMichael.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-08-23 21:36 - 2015-04-22 16:55 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll
2015-08-23 21:36 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll
2015-08-23 21:36 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll
2015-08-27 19:21 - 2015-08-27 19:21 - 00875352 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00750_003\ashttpbr.mdl
2015-08-27 19:21 - 2015-08-27 19:21 - 00741952 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00750_003\ashttpdsp.mdl
2015-08-27 19:21 - 2015-08-27 19:21 - 02800952 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00750_003\ashttpph.mdl
2015-08-27 19:21 - 2015-08-27 19:21 - 01413024 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00750_003\ashttprbl.mdl
2014-09-07 00:34 - 2014-09-07 00:34 - 00140288 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
2014-09-07 00:32 - 2014-09-07 00:32 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2015-03-03 20:39 - 2014-07-04 12:24 - 00094936 ____N () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2015-03-03 21:15 - 2014-04-14 19:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-07-14 15:37 - 2015-07-14 15:37 - 00821240 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2015-07-14 15:35 - 2015-07-14 15:35 - 00030720 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2015-07-14 15:35 - 2015-07-14 15:35 - 00607016 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2015-07-14 15:36 - 2015-07-14 15:36 - 00059392 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2015-07-14 15:35 - 2015-07-14 15:35 - 00035864 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2015-07-14 15:36 - 2015-07-14 15:36 - 00079888 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2015-07-14 15:37 - 2015-07-14 15:37 - 00129016 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2015-07-14 15:39 - 2015-07-14 15:39 - 00223240 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2015-08-23 21:36 - 2015-04-22 16:53 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff\components\txmlutil.dll
2015-08-23 21:36 - 2015-05-12 15:48 - 00067808 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff\components\bdwtxff.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Michael\OneDrive:ms-properties
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2750433844-3693978087-3334890758-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Hewlett-Packard Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.0.1 - 192.168.0.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2750433844-3693978087-3334890758-1002\...\StartupApproved\Run: => "Skype"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{5875FF2A-C8C8-4916-99E3-8C9C9E8B43DB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{575B4251-F163-471B-9FF3-D7178D4BE9F8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9A7DF39E-5DB8-4C00-8584-545CBDBEFE54}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6E355C33-3A71-48F1-B110-314A69D0F9E7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{CD0D3BCE-A5DB-4493-A7F6-E5FD32C5BFEC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{7C5A91D8-C0DB-4E43-8DBA-2FAAA10C5BDA}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{4D4FFCB1-9581-4DDE-B685-0725768700CE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{7F2F0222-CC8C-4DBC-BC27-11300EB2C3A6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{6F68CE80-39C2-41FF-8092-B320CADBA4C3}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{537275F4-EE4E-4173-899A-A78A3E599FB9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{A825710B-224D-497C-A437-86376D7D6458}] => (Allow) C:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{4A10543C-17EC-44BB-B500-CC16707ACFAF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CFB3E8C7-B7AD-41D3-B3EA-CC770EE47D37}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{1DB57F08-E02A-41D3-96CC-C4C91A078131}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{356C1FFD-9F14-4501-BEDB-89CF718792A9}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{BD697D50-1FC4-4987-814B-54B30DD7D84E}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{9373D067-37E8-4E6C-BCCD-9BA7672CBBEC}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{BA09AEF7-2C8F-43CD-8D4E-27A7F65CFB2B}] => (Allow) C:\Users\Michael\AppData\Local\Temp\nsd4305.tmp\Installer-76060142.exe
FirewallRules: [{728A2584-8018-4054-B178-E4D346812F0B}] => (Allow) C:\Users\Michael\AppData\Local\Temp\nsd4305.tmp\Installer-76060142.exe
FirewallRules: [{B53714A6-6B18-4079-B20A-6AC5E3B64939}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/01/2015 07:46:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WSHost.exe, Version: 6.3.9600.17415, Zeitstempel: 0x545040f3
Name des fehlerhaften Moduls: WinStoreUI.dll, Version: 6.3.9600.17819, Zeitstempel: 0x554636a9
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000569d9
ID des fehlerhaften Prozesses: 0x20a0
Startzeit der fehlerhaften Anwendung: 0xWSHost.exe0
Pfad der fehlerhaften Anwendung: WSHost.exe1
Pfad des fehlerhaften Moduls: WSHost.exe2
Berichtskennung: WSHost.exe3
Vollständiger Name des fehlerhaften Pakets: WSHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WSHost.exe5
Error: (08/29/2015 05:30:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13890
Error: (08/29/2015 05:30:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13890
Error: (08/29/2015 05:30:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/29/2015 05:14:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WUDFHost.exe, Version: 6.3.9600.17415, Zeitstempel: 0x5450412e
Name des fehlerhaften Moduls: amdocl64.dll, Version: 10.0.1411.4, Zeitstempel: 0x540be062
Ausnahmecode: 0xc0000409
Fehleroffset: 0x0000000000c67d8f
ID des fehlerhaften Prozesses: 0x25e0
Startzeit der fehlerhaften Anwendung: 0xWUDFHost.exe0
Pfad der fehlerhaften Anwendung: WUDFHost.exe1
Pfad des fehlerhaften Moduls: WUDFHost.exe2
Berichtskennung: WUDFHost.exe3
Vollständiger Name des fehlerhaften Pakets: WUDFHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WUDFHost.exe5
Error: (08/25/2015 09:37:26 PM) (Source: Perflib) (EventID: 1017) (User: )
Description: ASP.NET_2.0.50727
Error: (08/25/2015 09:37:26 PM) (Source: Perflib) (EventID: 1021) (User: )
Description: ASP.NET_2.0.507278
Error: (08/23/2015 01:16:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WUDFHost.exe, Version: 6.3.9600.17195, Zeitstempel: 0x53895405
Name des fehlerhaften Moduls: amdocl64.dll, Version: 10.0.1411.4, Zeitstempel: 0x540be062
Ausnahmecode: 0xc0000409
Fehleroffset: 0x0000000000c67d8f
ID des fehlerhaften Prozesses: 0x1f90
Startzeit der fehlerhaften Anwendung: 0xWUDFHost.exe0
Pfad der fehlerhaften Anwendung: WUDFHost.exe1
Pfad des fehlerhaften Moduls: WUDFHost.exe2
Berichtskennung: WUDFHost.exe3
Vollständiger Name des fehlerhaften Pakets: WUDFHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WUDFHost.exe5
Error: (08/23/2015 02:36:53 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (08/23/2015 02:36:51 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "PDR.X,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "PDR.X,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Systemfehler:
=============
Error: (09/01/2015 09:52:12 PM) (Source: Microsoft-Windows-HAL) (EventID: 13) (User: NT-AUTORITÄT)
Description: Der Systemüberwachungszeitgeber wurde ausgelöst.
Error: (09/01/2015 09:53:22 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000007e (0xffffffffc0000005, 0xfffff800dd7bb1ab, 0xffffd00028d8d1b8, 0xffffd00028d8c9c0)C:\Windows\MEMORY.DMP090115-63812-01
Error: (09/01/2015 09:53:21 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 01.09.2015 um 21:43:13 unerwartet heruntergefahren.
Error: (08/27/2015 07:10:28 PM) (Source: Microsoft-Windows-HAL) (EventID: 13) (User: NT-AUTORITÄT)
Description: Der Systemüberwachungszeitgeber wurde ausgelöst.
Error: (08/26/2015 10:12:29 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%1062
Error: (08/26/2015 09:31:55 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Definitionsupdate für Windows Defender – KB2267602 (Definition 1.205.538.0)
Error: (08/26/2015 09:26:42 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070057 fehlgeschlagen: Microsoft.ZuneMusic
Error: (08/26/2015 09:26:42 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070057 fehlgeschlagen: Microsoft.ZuneMusic
Error: (08/26/2015 09:26:42 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070057 fehlgeschlagen: Microsoft.ZuneVideo
Error: (08/26/2015 07:57:13 PM) (Source: Microsoft-Windows-HAL) (EventID: 13) (User: NT-AUTORITÄT)
Description: Der Systemüberwachungszeitgeber wurde ausgelöst.
Microsoft Office:
=========================
Error: (09/01/2015 07:46:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WSHost.exe6.3.9600.17415545040f3WinStoreUI.dll6.3.9600.17819554636a9c000000500000000000569d920a001d0e4de22fe2615C:\Windows\WinStore\WSHost.exeC:\Windows\winstore\WinStoreUI.dll65e8fe38-50d1-11e5-8264-c48e8f09c210
Error: (08/29/2015 05:30:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13890
Error: (08/29/2015 05:30:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13890
Error: (08/29/2015 05:30:36 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/29/2015 05:14:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WUDFHost.exe6.3.9600.174155450412eamdocl64.dll10.0.1411.4540be062c00004090000000000c67d8f25e001d0e26d3dc80c2aC:\Windows\System32\WUDFHost.exeC:\Windows\System32\amdocl64.dll9800893b-4e60-11e5-8264-c48e8f09c210
Error: (08/25/2015 09:37:26 PM) (Source: Perflib) (EventID: 1017) (User: )
Description: ASP.NET_2.0.50727
Error: (08/25/2015 09:37:26 PM) (Source: Perflib) (EventID: 1021) (User: )
Description: ASP.NET_2.0.507278
Error: (08/23/2015 01:16:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WUDFHost.exe6.3.9600.1719553895405amdocl64.dll10.0.1411.4540be062c00004090000000000c67d8f1f9001d0dd951c1eae11C:\Windows\System32\WUDFHost.exeC:\Windows\System32\amdocl64.dll6a4a1a06-4988-11e5-8261-c48e8f09c210
Error: (08/23/2015 02:36:53 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: PDR.X,type="win32",version="1.0.0.0"c:\program files\cyberlink\photodirector\Kernel\CES\CES_CacheAgent.exe.Manifest
Error: (08/23/2015 02:36:51 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: PDR.X,type="win32",version="1.0.0.0"c:\program files\cyberlink\photodirector\Kernel\CES\CES_AudioCacheAgent.exe.Manifest
CodeIntegrity:
===================================
Date: 2015-09-01 20:06:36.592
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-01 20:06:35.967
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-01 20:06:35.108
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-01 20:06:34.446
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-01 20:06:33.852
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-01 20:06:33.290
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-01 20:06:32.712
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-01 20:06:32.040
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-01 20:06:31.446
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-01 20:06:30.790
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: AMD A8-6410 APU with AMD Radeon R5 Graphics
Prozentuale Nutzung des RAM: 30%
Installierter physikalischer RAM: 7103.5 MB
Verfügbarer physikalischer RAM: 4906.23 MB
Summe virtueller Speicher: 14271.5 MB
Verfügbarer virtueller Speicher: 11403.08 MB
==================== Laufwerke ================================
Drive c: (Windows) (Fixed) (Total:907.2 GB) (Free:849.87 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:23.29 GB) (Free:2.58 GB) NTFS ==>[System mit Startkomponenten (eingeholt von lesen Laufwerk)]
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 5FA938CD)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
So funktioniert es:
AdwCleaner auf deinen Desktop.
SecurityCheck und:
