| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: HostAppService.exe (Win 8, 64 bit)Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
23.06.2014, 20:11
| #8 |
 |  HostAppService.exe (Win 8, 64 bit) PART II von FRST: Code:
ATTFilter 2014-06-20 22:01 - 2013-12-10 09:35 - 00530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2014-06-20 22:01 - 2013-12-04 17:16 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2014-06-20 22:00 - 2014-02-22 18:59 - 00461176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-06-20 22:00 - 2014-02-22 18:59 - 00407536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-06-20 22:00 - 2014-02-22 18:59 - 00289752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2014-06-20 22:00 - 2014-02-22 18:59 - 00209160 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2014-06-20 22:00 - 2014-02-22 18:59 - 00139464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2014-06-20 22:00 - 2014-02-22 18:58 - 00036200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2014-06-20 22:00 - 2014-02-22 18:15 - 00531128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2014-06-20 22:00 - 2014-02-22 18:15 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\system32\powrprof.dll
2014-06-20 22:00 - 2014-02-22 18:15 - 00188464 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2014-06-20 22:00 - 2014-02-22 18:15 - 00071888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2014-06-20 22:00 - 2014-02-22 18:02 - 00170952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2014-06-20 22:00 - 2014-02-22 18:02 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2014-06-20 22:00 - 2014-02-22 18:02 - 00080048 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2014-06-20 22:00 - 2014-02-22 18:00 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-06-20 22:00 - 2014-02-22 18:00 - 00151384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-06-20 22:00 - 2014-02-22 18:00 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2014-06-20 22:00 - 2014-02-22 17:59 - 00027480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2014-06-20 22:00 - 2014-02-22 17:55 - 00162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2014-06-20 22:00 - 2014-02-22 17:55 - 00152848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2014-06-20 22:00 - 2014-02-22 17:55 - 00131168 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-06-20 22:00 - 2014-02-22 17:55 - 00105864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-06-20 22:00 - 2014-02-22 17:50 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2014-06-20 22:00 - 2014-02-22 17:50 - 00043408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2014-06-20 22:00 - 2014-02-22 17:50 - 00032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2014-06-20 22:00 - 2014-02-22 17:49 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-06-20 22:00 - 2014-02-22 17:49 - 00189784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2014-06-20 22:00 - 2014-02-22 17:49 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2014-06-20 22:00 - 2014-02-22 17:49 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2014-06-20 22:00 - 2014-02-22 17:48 - 00210736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVol.exe
2014-06-20 22:00 - 2014-02-22 17:44 - 00924504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2014-06-20 22:00 - 2014-02-22 17:43 - 00142576 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2014-06-20 22:00 - 2014-02-22 17:43 - 00094560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2014-06-20 22:00 - 2014-02-22 17:41 - 00372360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2014-06-20 22:00 - 2014-02-22 16:52 - 00251504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powrprof.dll
2014-06-20 22:00 - 2014-02-22 16:51 - 00140456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2014-06-20 22:00 - 2014-02-22 16:42 - 00410568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-06-20 22:00 - 2014-02-22 16:42 - 00369288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-06-20 22:00 - 2014-02-22 16:42 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2014-06-20 22:00 - 2014-02-22 16:42 - 00137344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2014-06-20 22:00 - 2014-02-22 16:41 - 00033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2014-06-20 22:00 - 2014-02-22 16:38 - 00506120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2014-06-20 22:00 - 2014-02-22 16:38 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-06-20 22:00 - 2014-02-22 16:25 - 00180240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVol.exe
2014-06-20 22:00 - 2014-02-22 16:18 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2014-06-20 22:00 - 2014-02-22 16:18 - 00041320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2014-06-20 22:00 - 2014-02-22 16:18 - 00029912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2014-06-20 22:00 - 2014-02-22 16:08 - 00079496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2014-06-20 22:00 - 2014-02-22 16:04 - 00317584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2014-06-20 22:00 - 2014-02-22 14:20 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-06-20 22:00 - 2014-02-22 14:20 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-06-20 22:00 - 2014-02-22 14:17 - 00902144 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2014-06-20 22:00 - 2014-02-22 14:17 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2014-06-20 22:00 - 2014-02-22 14:17 - 00874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2014-06-20 22:00 - 2014-02-22 14:17 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\f3ahvoas.dll
2014-06-20 22:00 - 2014-02-22 14:14 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2014-06-20 22:00 - 2014-02-22 14:14 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\watchdog.sys
2014-06-20 22:00 - 2014-02-22 14:14 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2014-06-20 22:00 - 2014-02-22 14:11 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2014-06-20 22:00 - 2014-02-22 14:09 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2014-06-20 22:00 - 2014-02-22 14:08 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2014-06-20 22:00 - 2014-02-22 14:07 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2014-06-20 22:00 - 2014-02-22 14:07 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\clrhost.dll
2014-06-20 22:00 - 2014-02-22 14:06 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-06-20 22:00 - 2014-02-22 14:04 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2014-06-20 22:00 - 2014-02-22 14:03 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2014-06-20 22:00 - 2014-02-22 14:03 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2014-06-20 22:00 - 2014-02-22 14:01 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2014-06-20 22:00 - 2014-02-22 14:00 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2014-06-20 22:00 - 2014-02-22 13:59 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2014-06-20 22:00 - 2014-02-22 13:57 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-06-20 22:00 - 2014-02-22 13:54 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2014-06-20 22:00 - 2014-02-22 13:50 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionQueue.dll
2014-06-20 22:00 - 2014-02-22 13:50 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe
2014-06-20 22:00 - 2014-02-22 13:47 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsdyn.dll
2014-06-20 22:00 - 2014-02-22 13:47 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2014-06-20 22:00 - 2014-02-22 13:47 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2014-06-20 22:00 - 2014-02-22 13:46 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-06-20 22:00 - 2014-02-22 13:46 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-06-20 22:00 - 2014-02-22 13:45 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2014-06-20 22:00 - 2014-02-22 13:45 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhevents.dll
2014-06-20 22:00 - 2014-02-22 13:42 - 00038680 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2014-06-20 22:00 - 2014-02-22 13:41 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PkgMgr.exe
2014-06-20 22:00 - 2014-02-22 13:37 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskpart.exe
2014-06-20 22:00 - 2014-02-22 13:34 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmdskmgr.dll
2014-06-20 22:00 - 2014-02-22 13:32 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2014-06-20 22:00 - 2014-02-22 13:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2014-06-20 22:00 - 2014-02-22 13:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2014-06-20 22:00 - 2014-02-22 13:25 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-06-20 22:00 - 2014-02-22 13:25 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2014-06-20 22:00 - 2014-02-22 13:24 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2014-06-20 22:00 - 2014-02-22 13:24 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2014-06-20 22:00 - 2014-02-22 13:24 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2014-06-20 22:00 - 2014-02-22 13:24 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SSShim.dll
2014-06-20 22:00 - 2014-02-22 13:22 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-06-20 22:00 - 2014-02-22 13:22 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-06-20 22:00 - 2014-02-22 13:17 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2014-06-20 22:00 - 2014-02-22 13:16 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2014-06-20 22:00 - 2014-02-22 13:16 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2014-06-20 22:00 - 2014-02-22 13:16 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2014-06-20 22:00 - 2014-02-22 13:16 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clrhost.dll
2014-06-20 22:00 - 2014-02-22 13:15 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2014-06-20 22:00 - 2014-02-22 13:14 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cleanmgr.exe
2014-06-20 22:00 - 2014-02-22 13:13 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2014-06-20 22:00 - 2014-02-22 13:11 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2014-06-20 22:00 - 2014-02-22 13:09 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2014-06-20 22:00 - 2014-02-22 13:08 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2014-06-20 22:00 - 2014-02-22 13:07 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\scavengeui.dll
2014-06-20 22:00 - 2014-02-22 13:05 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll
2014-06-20 22:00 - 2014-02-22 13:05 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2014-06-20 22:00 - 2014-02-22 13:05 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2014-06-20 22:00 - 2014-02-22 13:05 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentHost.dll
2014-06-20 22:00 - 2014-02-22 13:04 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfrgui.exe
2014-06-20 22:00 - 2014-02-22 13:02 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
2014-06-20 22:00 - 2014-02-22 13:02 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2014-06-20 22:00 - 2014-02-22 13:01 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-06-20 22:00 - 2014-02-22 13:01 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2014-06-20 22:00 - 2014-02-22 12:59 - 01283584 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2014-06-20 22:00 - 2014-02-22 12:59 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2014-06-20 22:00 - 2014-02-22 12:58 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2014-06-20 22:00 - 2014-02-22 12:58 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-06-20 22:00 - 2014-02-22 12:58 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAConn.dll
2014-06-20 22:00 - 2014-02-22 12:57 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2014-06-20 22:00 - 2014-02-22 12:57 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-06-20 22:00 - 2014-02-22 12:56 - 02862592 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2014-06-20 22:00 - 2014-02-22 12:56 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\srchadmin.dll
2014-06-20 22:00 - 2014-02-22 12:56 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2014-06-20 22:00 - 2014-02-22 12:55 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll
2014-06-20 22:00 - 2014-02-22 12:55 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrTasks.exe
2014-06-20 22:00 - 2014-02-22 12:53 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PkgMgr.exe
2014-06-20 22:00 - 2014-02-22 12:52 - 02288640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2014-06-20 22:00 - 2014-02-22 12:52 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2014-06-20 22:00 - 2014-02-22 12:51 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2014-06-20 22:00 - 2014-02-22 12:50 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskpart.exe
2014-06-20 22:00 - 2014-02-22 12:47 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskmgr.dll
2014-06-20 22:00 - 2014-02-22 12:47 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2014-06-20 22:00 - 2014-02-22 12:47 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-06-20 22:00 - 2014-02-22 12:46 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2014-06-20 22:00 - 2014-02-22 12:41 - 02566656 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2014-06-20 22:00 - 2014-02-22 12:41 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll
2014-06-20 22:00 - 2014-02-22 12:40 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-06-20 22:00 - 2014-02-22 12:39 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-06-20 22:00 - 2014-02-22 12:38 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-06-20 22:00 - 2014-02-22 12:36 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-06-20 22:00 - 2014-02-22 12:35 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2014-06-20 22:00 - 2014-02-22 12:34 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-06-20 22:00 - 2014-02-22 12:33 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2014-06-20 22:00 - 2014-02-22 12:32 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2014-06-20 22:00 - 2014-02-22 12:30 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cleanmgr.exe
2014-06-20 22:00 - 2014-02-22 12:28 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-06-20 22:00 - 2014-02-22 12:27 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2014-06-20 22:00 - 2014-02-22 12:25 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2014-06-20 22:00 - 2014-02-22 12:21 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dfrgui.exe
2014-06-20 22:00 - 2014-02-22 12:21 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
2014-06-20 22:00 - 2014-02-22 12:20 - 01152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2014-06-20 22:00 - 2014-02-22 12:18 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2014-06-20 22:00 - 2014-02-22 12:18 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-06-20 22:00 - 2014-02-22 12:17 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2014-06-20 22:00 - 2014-02-22 12:17 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2014-06-20 22:00 - 2014-02-22 12:16 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2014-06-20 22:00 - 2014-02-22 12:16 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srchadmin.dll
2014-06-20 22:00 - 2014-02-22 12:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2014-06-20 22:00 - 2014-02-22 12:15 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2014-06-20 22:00 - 2014-02-22 12:14 - 02811392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2014-06-20 22:00 - 2014-02-22 12:14 - 02165760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2014-06-20 22:00 - 2014-02-22 12:14 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2014-06-20 22:00 - 2014-02-22 12:13 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2014-06-20 22:00 - 2014-02-22 12:13 - 00557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2014-06-20 22:00 - 2014-02-22 12:13 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2014-06-20 22:00 - 2014-02-22 12:12 - 00797696 _____ (Microsoft Corporation) C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-06-20 22:00 - 2014-02-22 12:12 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2014-06-20 22:00 - 2014-02-22 12:09 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2014-06-20 22:00 - 2014-02-22 12:09 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2014-06-20 22:00 - 2014-02-22 12:09 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-20 22:00 - 2014-02-22 12:04 - 00935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2014-06-20 22:00 - 2014-02-22 12:04 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2014-06-20 22:00 - 2014-02-22 12:04 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netid.dll
2014-06-20 22:00 - 2014-02-22 12:03 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-06-20 22:00 - 2014-02-22 12:02 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2014-06-20 22:00 - 2014-02-22 12:01 - 01227776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2014-06-20 22:00 - 2014-02-22 12:00 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2014-06-20 22:00 - 2014-02-22 11:56 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2014-06-20 22:00 - 2014-02-22 11:54 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2014-06-20 22:00 - 2014-02-22 11:54 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-06-20 22:00 - 2014-02-22 11:54 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2014-06-20 22:00 - 2014-02-22 11:53 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-06-20 22:00 - 2014-02-22 11:52 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2014-06-20 22:00 - 2014-02-22 11:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2014-06-20 22:00 - 2014-02-22 11:49 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-06-20 22:00 - 2014-02-22 11:48 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2014-06-20 22:00 - 2014-02-22 11:48 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-06-20 22:00 - 2014-02-22 11:46 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2014-06-20 22:00 - 2014-02-22 11:45 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2014-06-20 22:00 - 2014-02-22 11:45 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2014-06-20 22:00 - 2014-02-22 11:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2014-06-20 22:00 - 2014-02-22 11:45 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2014-06-20 22:00 - 2014-02-22 11:44 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2014-06-20 22:00 - 2014-02-22 11:44 - 00182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\korwbrkr.dll
2014-06-20 22:00 - 2014-02-22 11:43 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2014-06-20 22:00 - 2014-02-22 11:43 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-06-20 22:00 - 2014-02-22 11:41 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2014-06-20 22:00 - 2014-02-22 11:40 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2014-06-20 22:00 - 2014-02-22 11:39 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2014-06-20 22:00 - 2014-02-22 11:37 - 00183808 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2014-06-20 22:00 - 2014-02-22 11:36 - 01392640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-06-20 22:00 - 2014-02-22 11:36 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2014-06-20 22:00 - 2014-02-22 11:36 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2014-06-20 22:00 - 2014-02-22 11:32 - 01162752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2014-06-20 22:00 - 2014-02-22 11:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2014-06-20 22:00 - 2014-02-22 11:29 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2014-06-20 22:00 - 2014-02-22 11:28 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2014-06-20 22:00 - 2014-02-22 11:28 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2014-06-20 22:00 - 2014-02-22 11:27 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-06-20 22:00 - 2014-02-22 11:26 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-06-20 22:00 - 2014-02-22 11:26 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2014-06-20 22:00 - 2014-02-22 11:25 - 00399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2014-06-20 22:00 - 2014-02-22 11:25 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-06-20 22:00 - 2014-02-22 11:25 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2014-06-20 22:00 - 2014-02-22 11:25 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbrand.dll
2014-06-20 22:00 - 2014-02-22 11:23 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2014-06-20 22:00 - 2014-02-22 11:22 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2014-06-20 22:00 - 2014-02-22 11:22 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2014-06-20 22:00 - 2014-02-22 11:19 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2014-06-20 22:00 - 2014-02-22 11:19 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-06-20 22:00 - 2014-02-22 11:18 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-06-20 22:00 - 2014-02-22 11:16 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxshared.dll
2014-06-20 22:00 - 2014-02-22 11:15 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2014-06-20 22:00 - 2014-02-22 11:12 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2014-06-20 22:00 - 2014-02-22 11:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2014-06-20 22:00 - 2014-02-22 11:09 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2014-06-20 22:00 - 2014-02-22 11:08 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-06-20 22:00 - 2014-02-22 11:07 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2014-06-20 22:00 - 2014-02-22 11:06 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-06-20 22:00 - 2014-02-22 11:06 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2014-06-20 22:00 - 2014-02-22 11:04 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\slpts.dll
2014-06-20 22:00 - 2014-02-22 11:02 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2014-06-20 22:00 - 2014-02-22 11:02 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2014-06-20 22:00 - 2014-02-22 11:02 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2014-06-20 22:00 - 2014-02-22 10:58 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-06-20 22:00 - 2014-02-22 10:55 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2014-06-20 22:00 - 2014-02-22 10:55 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-06-20 22:00 - 2014-02-22 10:55 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\energytask.dll
2014-06-20 22:00 - 2014-02-22 10:55 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slpts.dll
2014-06-20 22:00 - 2014-02-22 10:55 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2014-06-20 22:00 - 2014-02-22 10:54 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2014-06-20 22:00 - 2014-02-22 10:54 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2014-06-20 22:00 - 2014-02-22 10:54 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2014-06-20 22:00 - 2014-02-22 10:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2014-06-20 22:00 - 2014-02-22 10:54 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AepRoam.dll
2014-06-20 22:00 - 2014-02-22 10:52 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-06-20 22:00 - 2014-02-22 10:51 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2014-06-20 22:00 - 2014-02-22 10:49 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2014-06-20 22:00 - 2014-02-22 10:49 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-06-20 22:00 - 2014-02-22 10:48 - 01144320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2014-06-20 22:00 - 2014-02-22 10:48 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2014-06-20 22:00 - 2014-02-22 10:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2014-06-20 22:00 - 2014-02-22 10:48 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2014-06-20 22:00 - 2014-02-22 10:48 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2014-06-20 22:00 - 2014-02-22 10:47 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2014-06-20 22:00 - 2014-02-22 10:47 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2014-06-20 22:00 - 2014-02-22 10:47 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2014-06-20 22:00 - 2014-02-22 10:47 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AltTab.dll
2014-06-20 22:00 - 2014-02-22 10:46 - 03312128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2014-06-20 22:00 - 2014-02-22 10:45 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2014-06-20 22:00 - 2014-02-22 10:45 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-06-20 22:00 - 2014-02-22 10:45 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2014-06-20 22:00 - 2014-02-22 10:44 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2014-06-20 22:00 - 2014-02-22 10:44 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provsvc.dll
2014-06-20 22:00 - 2014-02-22 10:44 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2014-06-20 22:00 - 2014-02-22 10:44 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2014-06-20 22:00 - 2014-02-22 10:43 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2014-06-20 22:00 - 2014-02-22 10:43 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2014-06-20 22:00 - 2014-02-22 10:43 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2014-06-20 22:00 - 2014-02-22 10:43 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2014-06-20 22:00 - 2014-02-22 10:43 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-06-20 22:00 - 2014-02-22 10:42 - 00943104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2014-06-20 22:00 - 2014-02-22 10:42 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2014-06-20 22:00 - 2014-02-22 10:42 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2014-06-20 22:00 - 2014-02-22 10:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2014-06-20 22:00 - 2014-02-22 10:40 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2014-06-20 22:00 - 2014-02-22 10:39 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2014-06-20 22:00 - 2014-02-22 10:39 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provsvc.dll
2014-06-20 22:00 - 2014-02-22 10:38 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2014-06-20 22:00 - 2014-02-22 10:38 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-06-20 22:00 - 2014-02-22 10:36 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2014-06-20 22:00 - 2014-02-22 10:35 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2014-06-20 22:00 - 2014-02-22 10:33 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2014-06-20 22:00 - 2014-02-22 10:31 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2014-06-20 22:00 - 2014-02-22 10:31 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2014-06-20 22:00 - 2014-02-22 10:30 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2014-06-20 22:00 - 2014-02-22 10:29 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2014-06-20 22:00 - 2014-02-22 10:24 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2014-06-20 22:00 - 2014-02-22 10:22 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-06-20 22:00 - 2014-02-22 10:21 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2014-06-20 22:00 - 2014-02-22 10:20 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2014-06-20 22:00 - 2014-02-22 10:19 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2014-06-20 22:00 - 2014-02-22 10:17 - 00459264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2014-06-20 22:00 - 2014-02-22 10:17 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2014-06-20 22:00 - 2014-02-22 10:17 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2014-06-20 22:00 - 2014-02-22 09:54 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2014-06-20 22:00 - 2014-02-01 08:00 - 00002255 _____ () C:\WINDOWS\SysWOW64\WimBootCompress.ini
2014-06-20 22:00 - 2014-02-01 08:00 - 00002255 _____ () C:\WINDOWS\system32\WimBootCompress.ini
2014-06-20 22:00 - 2014-01-31 14:09 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2014-06-20 22:00 - 2014-01-31 11:55 - 03596800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2014-06-20 22:00 - 2014-01-31 11:35 - 03085824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2014-06-20 22:00 - 2014-01-31 11:19 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2014-06-20 22:00 - 2014-01-31 11:15 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2014-06-20 22:00 - 2014-01-31 11:10 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-06-20 22:00 - 2014-01-31 11:08 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2014-06-20 22:00 - 2014-01-31 11:04 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2014-06-20 22:00 - 2014-01-31 10:24 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2014-06-20 22:00 - 2014-01-31 10:18 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2014-06-20 22:00 - 2014-01-29 10:52 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2014-06-20 22:00 - 2014-01-29 10:40 - 00994136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2014-06-20 22:00 - 2014-01-29 02:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2014-06-20 22:00 - 2014-01-29 02:18 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2014-06-20 22:00 - 2014-01-29 02:17 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-06-20 22:00 - 2014-01-27 21:53 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2014-06-20 22:00 - 2014-01-27 21:48 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2014-06-20 22:00 - 2014-01-22 08:21 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2014-06-20 22:00 - 2014-01-22 07:50 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2014-06-20 22:00 - 2014-01-17 19:24 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2014-06-20 22:00 - 2014-01-17 19:04 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2014-06-20 22:00 - 2014-01-08 03:30 - 00745328 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-06-20 22:00 - 2014-01-08 02:33 - 00552632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-06-20 22:00 - 2014-01-07 09:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-06-20 22:00 - 2014-01-07 07:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-06-20 22:00 - 2013-12-04 20:41 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2014-06-20 22:00 - 2013-12-04 17:54 - 00660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-06-20 22:00 - 2013-12-04 16:19 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2014-06-20 22:00 - 2013-12-04 15:53 - 00473600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2014-06-20 22:00 - 2013-11-27 11:10 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2014-06-20 22:00 - 2013-11-27 10:56 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2014-06-20 22:00 - 2013-11-23 06:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-06-20 22:00 - 2013-11-23 06:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-06-20 22:00 - 2013-11-11 01:41 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2014-06-20 21:59 - 2014-02-22 14:17 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-06-20 21:59 - 2014-02-22 14:17 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-06-20 21:59 - 2014-02-22 14:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-06-20 21:59 - 2014-02-22 14:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-06-20 21:59 - 2014-02-22 14:08 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncui.dll
2014-06-20 21:59 - 2014-02-22 14:08 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2014-06-20 21:59 - 2014-02-22 14:08 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2014-06-20 21:59 - 2014-02-22 14:08 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2014-06-20 21:59 - 2014-02-22 14:00 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-06-20 21:59 - 2014-02-22 13:48 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ocsetapi.dll
2014-06-20 21:59 - 2014-02-22 13:39 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvcctl.dll
2014-06-20 21:59 - 2014-02-22 13:25 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\f3ahvoas.dll
2014-06-20 21:59 - 2014-02-22 13:25 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-06-20 21:59 - 2014-02-22 13:25 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-06-20 21:59 - 2014-02-22 13:24 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-06-20 21:59 - 2014-02-22 13:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-06-20 21:59 - 2014-02-22 13:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-06-20 21:59 - 2014-02-22 13:17 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-06-20 21:59 - 2014-02-22 13:16 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-06-20 21:59 - 2014-02-22 13:08 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2014-06-20 21:59 - 2014-02-22 13:07 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2014-06-20 21:59 - 2014-02-22 13:07 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2014-06-20 21:59 - 2014-02-22 12:59 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ocsetapi.dll
2014-06-20 21:59 - 2014-02-22 12:47 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2014-06-20 21:59 - 2014-02-22 12:35 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitagent.exe
2014-06-20 21:59 - 2014-02-22 12:27 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-06-20 21:59 - 2014-02-22 12:03 - 02544128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2014-06-20 21:59 - 2014-02-22 11:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2014-06-20 21:59 - 2014-02-22 11:54 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2014-06-20 21:59 - 2014-02-22 11:53 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-06-20 21:59 - 2014-02-22 11:51 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2014-06-20 21:59 - 2014-02-22 11:48 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2014-06-20 21:59 - 2014-02-22 11:27 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2014-06-20 21:59 - 2014-02-22 11:23 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2014-06-20 21:59 - 2014-02-22 11:19 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\korwbrkr.dll
2014-06-20 21:59 - 2014-02-22 10:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-06-20 21:59 - 2014-02-22 10:55 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2014-06-20 21:59 - 2014-02-22 10:48 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2014-06-20 21:59 - 2014-02-22 10:39 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2014-06-20 21:59 - 2014-02-22 10:22 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-06-20 21:59 - 2014-02-22 10:20 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2014-06-20 21:59 - 2014-02-22 06:43 - 00002440 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk
2014-06-20 21:59 - 2014-02-22 06:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-06-20 21:59 - 2014-02-22 06:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-06-20 21:59 - 2014-02-22 06:37 - 00000369 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-06-20 21:59 - 2014-02-22 06:37 - 00000369 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-06-20 21:59 - 2014-02-08 03:08 - 00100197 _____ () C:\WINDOWS\SysWOW64\RacRules.xml
2014-06-20 21:59 - 2014-02-08 03:08 - 00100197 _____ () C:\WINDOWS\system32\RacRules.xml
2014-06-20 21:59 - 2014-02-01 08:00 - 00011109 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-06-20 21:59 - 2014-02-01 08:00 - 00011109 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-06-20 21:59 - 2014-02-01 08:00 - 00007762 _____ () C:\WINDOWS\SysWOW64\connectedsearch-suggestions.searchconnector-ms
2014-06-20 21:59 - 2014-02-01 08:00 - 00007762 _____ () C:\WINDOWS\system32\connectedsearch-suggestions.searchconnector-ms
2014-06-20 21:59 - 2014-02-01 08:00 - 00007130 _____ () C:\WINDOWS\SysWOW64\connectedsearch-zeroinput.searchconnector-ms
2014-06-20 21:59 - 2014-02-01 08:00 - 00007130 _____ () C:\WINDOWS\system32\connectedsearch-zeroinput.searchconnector-ms
2014-06-20 21:59 - 2014-01-27 13:45 - 00050053 _____ () C:\WINDOWS\system32\srms.dat
2014-06-20 21:59 - 2013-11-27 11:47 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\finger.exe
2014-06-20 21:59 - 2013-11-27 11:20 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\finger.exe
2014-06-20 21:23 - 2014-06-20 21:23 - 00001182 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-20 21:23 - 2014-06-20 21:23 - 00001170 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Mozilla
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____D () C:\Users\Tony\AppData\Local\Mozilla
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-17 17:52 - 2013-10-23 13:29 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2014-06-17 17:52 - 2013-10-23 13:21 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2014-06-17 17:52 - 2013-10-23 13:13 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2014-06-17 17:52 - 2013-10-08 07:58 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2014-06-17 17:52 - 2013-10-08 07:09 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2014-06-17 17:52 - 2013-10-08 06:50 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2014-06-17 17:52 - 2013-10-08 06:50 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2014-06-17 17:52 - 2013-10-05 17:25 - 00057176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2014-06-17 17:52 - 2013-10-05 16:21 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2014-06-17 17:52 - 2013-10-05 14:05 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2014-06-17 17:52 - 2013-10-05 13:01 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2014-06-17 17:52 - 2013-10-05 11:36 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2014-06-17 17:52 - 2013-10-05 11:18 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2014-06-17 17:52 - 2013-10-05 10:56 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2014-06-17 17:52 - 2013-10-05 10:55 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2014-06-17 17:52 - 2013-10-05 10:40 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2014-06-17 17:52 - 2013-10-05 10:24 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2014-06-17 17:52 - 2013-10-05 10:21 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2014-06-17 17:52 - 2013-10-05 10:15 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2014-06-17 17:52 - 2013-10-05 09:43 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2014-06-17 17:52 - 2013-10-05 09:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2014-06-17 17:52 - 2013-09-17 11:06 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2014-06-17 17:52 - 2013-09-17 08:31 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2014-06-17 17:52 - 2013-09-14 16:00 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2014-06-17 17:52 - 2013-09-14 14:33 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2014-06-17 17:52 - 2013-09-14 12:05 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2014-06-17 17:52 - 2013-09-14 11:11 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2014-06-17 17:52 - 2013-09-13 10:22 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2014-06-17 17:52 - 2013-09-13 09:47 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2014-06-17 17:52 - 2013-09-12 10:45 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2014-06-17 17:52 - 2013-09-12 10:08 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2014-06-17 17:52 - 2013-09-12 10:02 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2014-06-17 17:52 - 2013-09-12 09:44 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2014-06-17 17:52 - 2013-09-12 09:37 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2014-06-17 17:52 - 2013-09-12 09:21 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2014-06-17 17:52 - 2013-09-12 09:16 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2014-06-17 17:52 - 2013-09-12 09:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2014-06-17 17:52 - 2013-09-10 06:52 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2014-06-17 17:50 - 2013-11-27 17:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-06-17 17:50 - 2013-11-27 17:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-06-17 17:50 - 2013-11-27 16:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-06-17 17:50 - 2013-11-27 15:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-06-17 17:50 - 2013-11-27 14:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-06-17 17:50 - 2013-11-27 12:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-06-17 17:50 - 2013-11-27 11:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-06-17 17:50 - 2013-11-27 11:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-06-17 17:50 - 2013-11-27 10:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-06-17 17:50 - 2013-11-25 01:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-06-17 17:50 - 2013-11-25 01:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-06-17 17:50 - 2013-11-23 09:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-06-17 17:50 - 2013-11-23 09:13 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-06-17 17:50 - 2013-11-23 06:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-06-17 17:50 - 2013-11-21 08:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-06-17 17:50 - 2013-11-15 16:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-06-17 17:50 - 2013-11-15 16:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-06-17 17:47 - 2013-11-11 04:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-06-17 17:47 - 2013-11-01 13:39 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-06-17 17:47 - 2013-10-26 03:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-06-17 17:45 - 2014-01-04 17:54 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-06-17 17:45 - 2014-01-04 17:08 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-06-17 17:45 - 2014-01-01 01:57 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-06-17 17:45 - 2013-12-31 01:34 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-06-17 17:45 - 2013-12-31 01:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-06-17 17:45 - 2013-12-27 10:57 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-06-17 17:45 - 2013-12-27 09:03 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-06-17 17:45 - 2013-12-21 09:21 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-06-17 17:45 - 2013-12-17 09:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-06-17 17:40 - 2014-02-06 12:00 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-06-17 17:40 - 2014-02-06 11:52 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-06-17 17:39 - 2014-02-22 14:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-06-17 17:39 - 2014-02-22 13:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-06-17 17:39 - 2014-02-06 13:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-06-17 17:39 - 2014-02-06 13:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-17 17:39 - 2014-02-06 13:07 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-06-17 17:39 - 2014-02-06 13:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-17 17:39 - 2014-02-06 12:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-06-17 17:39 - 2014-02-06 12:49 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-06-17 17:39 - 2014-02-06 12:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-06-17 17:39 - 2014-02-06 12:20 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-06-17 17:39 - 2014-02-06 12:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-06-17 17:39 - 2014-02-06 11:52 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-06-17 17:39 - 2014-02-06 11:47 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-06-17 17:39 - 2014-02-06 11:25 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-06-17 17:39 - 2013-10-19 10:53 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-06-17 17:39 - 2013-10-19 09:14 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-06-17 17:38 - 2014-01-07 07:00 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-06-17 17:38 - 2014-01-07 06:30 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-06-17 17:38 - 2013-12-21 16:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-06-17 17:38 - 2013-11-27 13:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-06-17 17:38 - 2013-11-21 08:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-06-17 17:38 - 2013-11-21 07:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-06-17 17:33 - 2014-01-27 21:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-06-17 17:33 - 2014-01-27 20:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-06-17 17:33 - 2014-01-27 20:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-06-17 17:33 - 2014-01-27 19:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-06-17 17:33 - 2014-01-27 19:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-06-17 17:33 - 2013-12-21 10:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-06-17 17:33 - 2013-10-16 17:58 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2014-06-17 17:33 - 2013-10-16 15:54 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2014-06-17 17:31 - 2014-06-17 17:31 - 00002018 _____ () C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2014-06-17 17:28 - 2014-06-17 17:28 - 00000000 ____D () C:\Users\Tony\AppData\Local\Intel_Corporation
2014-06-14 14:00 - 2013-09-23 13:49 - 00197704 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\HipShieldK.sys
2014-06-14 13:53 - 2014-06-22 22:13 - 00002171 _____ () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startmenü.lnk
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Programme
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-06-07 21:05 - 2013-12-11 18:40 - 00002092 _____ () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Update Search.lnk
2014-06-07 21:05 - 2013-12-11 18:40 - 00002092 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Update Search.lnk
2014-06-07 21:05 - 2013-12-11 18:40 - 00002092 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Update Search.lnk
2014-06-07 21:04 - 2014-06-14 13:53 - 00002375 _____ () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Godfather.lnk
2014-06-07 20:57 - 2014-06-20 21:26 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\LSC
2014-06-07 20:57 - 2014-06-07 20:58 - 00000000 ____D () C:\Users\Tony\AppData\Local\LSC
2014-06-07 20:57 - 2014-06-07 20:57 - 00000000 ____D () C:\Users\Tony\AppData\Local\Adobe
2014-06-07 20:57 - 2014-06-07 20:57 - 00000000 ____D () C:\Users\Public\Pokki
2014-06-07 20:56 - 2014-06-17 17:25 - 00002325 _____ () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-06-07 20:54 - 2014-06-23 14:04 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-176946842-1188970930-533504045-1001
2014-06-07 20:52 - 2014-06-20 22:36 - 00000000 ___RD () C:\Users\Tony\SkyDrive
2014-06-07 20:51 - 2014-06-07 20:51 - 00000000 ____D () C:\Users\Tony\AppData\Local\Power2Go
2014-06-07 20:50 - 2014-06-20 21:30 - 00000000 ____D () C:\Users\Tony\AppData\Local\Lenovo
2014-06-07 20:50 - 2014-06-07 20:50 - 00000000 ____D () C:\Users\Tony\AppData\Local\Absolute_Software
2014-06-07 20:49 - 2014-06-20 21:23 - 00003527 _____ () C:\Users\Tony\AppData\Roaming\AbsoluteReminder.xml
2014-06-07 20:49 - 2014-06-07 20:49 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Synaptics
2014-06-07 20:49 - 2014-06-07 20:49 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Lenovo
2014-06-07 20:48 - 2014-06-23 14:00 - 00000000 ____D () C:\Users\Tony\AppData\Local\Packages
2014-06-07 20:48 - 2014-06-23 13:50 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Nitro PDF
2014-06-07 20:48 - 2014-06-23 13:49 - 00053465 _____ () C:\Users\Tony\AppData\Local\BTServer.log
2014-06-07 20:48 - 2014-06-07 20:57 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Adobe
2014-06-07 20:48 - 2014-06-07 20:48 - 00001461 _____ () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-07 20:48 - 2014-06-07 20:48 - 00000193 _____ () C:\Users\Tony\AppData\Local\RegisteredPackageInformation.xml
2014-06-07 20:48 - 2014-06-07 20:48 - 00000020 ___SH () C:\Users\Tony\ntuser.ini
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Vorlagen
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Startmenü
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Netzwerkumgebung
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Lokale Einstellungen
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Eigene Dateien
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Druckumgebung
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Documents\Eigene Musik
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Documents\Eigene Bilder
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\AppData\Local\Verlauf
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\AppData\Local\Anwendungsdaten
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Anwendungsdaten
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 ____D () C:\Users\Tony\Documents\My Bluetooth
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 ____D () C:\Users\Tony\AppData\Local\VirtualStore
2014-06-07 20:47 - 2014-06-22 22:13 - 00000000 ____D () C:\Users\Tony\AppData\Local\Pokki
2014-06-07 20:47 - 2014-06-21 14:38 - 00000000 ____D () C:\Users\Tony
2014-06-07 20:47 - 2014-02-17 23:03 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Macromedia
2014-06-07 20:47 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-07 20:47 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-07 20:47 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-07 20:47 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
==================== One Month Modified Files and Folders =======
2014-06-23 14:06 - 2014-06-23 14:06 - 00017821 _____ () C:\Users\Tony\Desktop\FRST.txt
2014-06-23 14:06 - 2014-06-23 14:05 - 00000000 ____D () C:\FRST
2014-06-23 14:05 - 2014-06-23 14:05 - 02082816 _____ (Farbar) C:\Users\Tony\Desktop\FRST64.exe
2014-06-23 14:05 - 2014-02-17 22:28 - 01571966 _____ () C:\WINDOWS\WindowsUpdate.log
2014-06-23 14:04 - 2014-06-07 20:54 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-176946842-1188970930-533504045-1001
2014-06-23 14:02 - 2014-02-17 23:09 - 00000000 ____D () C:\ProgramData\Intel
2014-06-23 14:02 - 2014-02-17 22:31 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-06-23 14:00 - 2014-06-07 20:48 - 00000000 ____D () C:\Users\Tony\AppData\Local\Packages
2014-06-23 14:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-06-23 14:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-06-23 13:55 - 2014-06-21 08:16 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-06-23 13:53 - 2014-06-23 13:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-06-23 13:53 - 2014-02-17 23:14 - 00001871 _____ () C:\Users\Public\Desktop\McAfee LiveSafe – Internet Security.lnk
2014-06-23 13:50 - 2014-06-07 20:48 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Nitro PDF
2014-06-23 13:50 - 2014-02-17 23:04 - 661319680 ___SH () C:\WINDOWS\lenovo_fastboot.img
2014-06-23 13:49 - 2014-06-21 07:51 - 00000000 ___RD () C:\Users\Tony\OneDrive
2014-06-23 13:49 - 2014-06-07 20:48 - 00053465 _____ () C:\Users\Tony\AppData\Local\BTServer.log
2014-06-23 13:47 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-06-23 13:47 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-06-23 13:46 - 2014-06-23 13:46 - 00001113 _____ () C:\Users\Tony\Desktop\JRT.txt
2014-06-23 13:40 - 2014-06-23 13:40 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-06-23 13:40 - 2013-08-22 16:46 - 00025134 _____ () C:\WINDOWS\setupact.log
2014-06-23 13:37 - 2014-06-23 13:37 - 02347384 _____ (ESET) C:\Users\Tony\Desktop\esetsmartinstaller_deu.exe
2014-06-23 13:36 - 2014-06-23 13:36 - 01016261 _____ (Thisisu) C:\Users\Tony\Desktop\JRT.exe
2014-06-23 13:22 - 2014-06-22 23:38 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-06-22 23:59 - 2014-06-22 23:59 - 01062784 _____ () C:\Users\Tony\Desktop\PANDAAP14.exe
2014-06-22 23:39 - 2014-06-22 23:39 - 00001414 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-06-22 23:39 - 2014-06-22 23:39 - 00001402 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-06-22 23:39 - 2014-06-22 23:39 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking
2014-06-22 23:39 - 2014-06-22 23:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-06-22 23:39 - 2014-06-22 23:38 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-22 22:13 - 2014-06-14 13:53 - 00002171 _____ () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startmenü.lnk
2014-06-22 22:13 - 2014-06-07 20:47 - 00000000 ____D () C:\Users\Tony\AppData\Local\Pokki
2014-06-22 10:08 - 2014-02-18 07:21 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2014-06-22 10:08 - 2014-02-18 07:21 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2014-06-22 10:08 - 2013-10-07 20:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-21 21:39 - 2013-08-22 16:44 - 00344840 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-21 18:04 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-06-21 18:04 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-06-21 18:04 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-21 18:04 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-21 18:04 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-06-21 18:04 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-06-21 18:04 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-06-21 18:04 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-06-21 17:52 - 2013-08-22 17:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-06-21 17:34 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2014-06-21 17:33 - 2014-06-21 17:33 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2014-06-21 17:28 - 2014-06-21 17:28 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-06-21 14:38 - 2014-06-21 14:38 - 00000000 _____ () C:\Users\Tony\agent.log
2014-06-21 14:38 - 2014-06-07 20:47 - 00000000 ____D () C:\Users\Tony
2014-06-21 14:16 - 2014-06-21 14:16 - 00000000 _____ () C:\WINDOWS\SysWOW64\agent.log
2014-06-21 13:22 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-06-21 08:17 - 2014-06-21 08:17 - 00000000 ____D () C:\Users\Tony\AppData\Local\Macromedia
2014-06-21 08:16 - 2014-06-21 08:16 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-06-20 23:44 - 2014-06-20 23:44 - 00036283 _____ () C:\WINDOWS\SysWOW64\QuickControlService.dmp
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-RS
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sk-SK
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\setup
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\lv-LV
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\hr-HR
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\et-EE
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\en-GB
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Multimedia Platform
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2014-06-20 23:25 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Multimedia Platform
2014-06-20 23:25 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\oobe
2014-06-20 23:25 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-06-20 23:25 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-06-20 23:25 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\servicing
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\zh-HK
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\uk-UA
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\tr-TR
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\th-TH
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\SystemResetPlatform
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-CS
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sl-SI
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\ro-RO
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\migwiz
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\lt-LT
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\he-IL
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\bg-BG
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\ar-SA
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-06-20 23:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-06-20 23:24 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-06-20 22:36 - 2014-06-20 22:33 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-06-20 22:36 - 2014-06-07 20:52 - 00000000 ___RD () C:\Users\Tony\SkyDrive
2014-06-20 22:26 - 2014-06-20 22:24 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-06-20 22:26 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-06-20 22:24 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-06-20 21:47 - 2014-02-17 23:12 - 00000000 ____D () C:\ProgramData\McAfee
2014-06-20 21:30 - 2014-06-07 20:50 - 00000000 ____D () C:\Users\Tony\AppData\Local\Lenovo
2014-06-20 21:26 - 2014-06-07 20:57 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\LSC
2014-06-20 21:23 - 2014-06-20 21:23 - 00001182 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-20 21:23 - 2014-06-20 21:23 - 00001170 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Mozilla
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____D () C:\Users\Tony\AppData\Local\Mozilla
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-20 21:23 - 2014-06-20 21:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-20 21:23 - 2014-06-07 20:49 - 00003527 _____ () C:\Users\Tony\AppData\Roaming\AbsoluteReminder.xml
2014-06-20 20:53 - 2014-02-17 23:12 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-06-20 20:52 - 2013-10-07 20:23 - 00112898 _____ () C:\WINDOWS\PFRO.log
2014-06-17 17:54 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2014-06-17 17:31 - 2014-06-17 17:31 - 00002018 _____ () C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2014-06-17 17:31 - 2014-02-18 07:00 - 00000000 ____D () C:\ProgramData\Lenovo
2014-06-17 17:31 - 2014-02-17 23:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2014-06-17 17:31 - 2014-02-17 22:47 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Lenovo
2014-06-17 17:31 - 2014-02-17 22:32 - 00000000 ____D () C:\Program Files\Lenovo
2014-06-17 17:30 - 2014-02-17 22:46 - 00000000 ____D () C:\WINDOWS\Downloaded Installations
2014-06-17 17:28 - 2014-06-17 17:28 - 00000000 ____D () C:\Users\Tony\AppData\Local\Intel_Corporation
2014-06-17 17:25 - 2014-06-07 20:56 - 00002325 _____ () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-06-14 14:00 - 2014-02-17 23:12 - 00000000 ____D () C:\Program Files\Common Files\mcafee
2014-06-14 13:59 - 2013-08-22 17:36 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-06-14 13:53 - 2014-06-07 21:04 - 00002375 _____ () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Godfather.lnk
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Programme
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-06-08 03:38 - 2014-06-08 03:38 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-06-08 03:38 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows NT
2014-06-08 03:38 - 2013-08-22 15:36 - 00000000 __RHD () C:\Users\Default
2014-06-07 21:05 - 2014-02-17 23:04 - 00000000 ____D () C:\WINDOWS\System32\Tasks\TVT
2014-06-07 21:05 - 2014-02-17 22:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-06-07 21:05 - 2014-02-17 22:32 - 00000000 ____D () C:\Program Files (x86)\Lenovo
2014-06-07 20:58 - 2014-06-07 20:57 - 00000000 ____D () C:\Users\Tony\AppData\Local\LSC
2014-06-07 20:57 - 2014-06-07 20:57 - 00000000 ____D () C:\Users\Tony\AppData\Local\Adobe
2014-06-07 20:57 - 2014-06-07 20:57 - 00000000 ____D () C:\Users\Public\Pokki
2014-06-07 20:57 - 2014-06-07 20:48 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Adobe
2014-06-07 20:51 - 2014-06-07 20:51 - 00000000 ____D () C:\Users\Tony\AppData\Local\Power2Go
2014-06-07 20:50 - 2014-06-07 20:50 - 00000000 ____D () C:\Users\Tony\AppData\Local\Absolute_Software
2014-06-07 20:49 - 2014-06-07 20:49 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Synaptics
2014-06-07 20:49 - 2014-06-07 20:49 - 00000000 ____D () C:\Users\Tony\AppData\Roaming\Lenovo
2014-06-07 20:48 - 2014-06-07 20:48 - 00001461 _____ () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-07 20:48 - 2014-06-07 20:48 - 00000193 _____ () C:\Users\Tony\AppData\Local\RegisteredPackageInformation.xml
2014-06-07 20:48 - 2014-06-07 20:48 - 00000020 ___SH () C:\Users\Tony\ntuser.ini
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Vorlagen
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Startmenü
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Netzwerkumgebung
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Lokale Einstellungen
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Eigene Dateien
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Druckumgebung
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Documents\Eigene Musik
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Documents\Eigene Bilder
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\AppData\Local\Verlauf
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\AppData\Local\Anwendungsdaten
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 _SHDL () C:\Users\Tony\Anwendungsdaten
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 ____D () C:\Users\Tony\Documents\My Bluetooth
2014-06-07 20:48 - 2014-06-07 20:48 - 00000000 ____D () C:\Users\Tony\AppData\Local\VirtualStore
2014-06-07 20:48 - 2014-02-18 08:17 - 00075243 ____H () C:\WINDOWS\modules.log
2014-06-01 17:17 - 2014-06-20 22:24 - 95414520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-05-31 07:13 - 2013-08-22 17:38 - 00703992 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-05-31 07:13 - 2013-08-22 17:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-30 12:21 - 2014-06-21 17:31 - 23414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-05-30 11:45 - 2014-06-21 17:30 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-05-30 11:28 - 2014-06-21 17:30 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-05-30 11:20 - 2014-06-21 17:30 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-05-30 11:18 - 2014-06-21 17:31 - 17271296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-05-30 11:08 - 2014-06-21 17:31 - 05782528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-05-30 11:06 - 2014-06-21 17:31 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-05-30 10:46 - 2014-06-21 17:31 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-05-30 10:44 - 2014-06-21 17:31 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-05-30 10:43 - 2014-06-21 17:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-05-30 10:38 - 2014-06-21 17:30 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-05-30 10:35 - 2014-06-21 17:30 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-05-30 10:29 - 2014-06-21 17:30 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-05-30 10:27 - 2014-06-21 17:30 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-05-30 10:23 - 2014-06-21 17:30 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-05-30 10:16 - 2014-06-21 17:31 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-05-30 10:04 - 2014-06-21 17:31 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-05-30 10:02 - 2014-06-21 17:31 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-05-30 09:56 - 2014-06-21 17:31 - 04244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-05-30 09:56 - 2014-06-21 17:30 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-05-30 09:54 - 2014-06-21 17:30 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-05-30 09:49 - 2014-06-21 17:30 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-05-30 09:43 - 2014-06-21 17:31 - 13522944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-05-30 09:40 - 2014-06-21 17:30 - 11725312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-05-30 09:30 - 2014-06-21 17:30 - 01398272 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-05-30 09:21 - 2014-06-21 17:30 - 01790976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-05-30 09:15 - 2014-06-21 17:30 - 01143296 _____ () C:\WINDOWS\SysWOW64\urlmon.dll
2014-05-30 09:13 - 2014-06-21 17:30 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-05-30 09:13 - 2014-06-21 17:30 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-06-21 22:43
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-06-2014
Ran by Tony at 2014-06-23 14:09:11
Running from C:\Users\Tony\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
==================== Installed Programs ======================
PowerDVD Create 10 (x32 Version: 10.0.1.2704 - CyberLink Corp.) Hidden
Absolute Reminder (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 2.3.0.1 - Absolute Software)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 14.0.0.110 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Anzeige am Bildschirm (HKLM\...\OnScreenDisplay) (Version: 7.12.22 - )
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CyberLink Power2Go 7 (x32 Version: 7.0.0.4207 - CyberLink Corp.) Hidden
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.)
CyberLink PowerDVD 10 (x32 Version: 10.0.5630.52 - CyberLink Corp.) Hidden
CyberLink PowerProducer 5.5 (x32 Version: 5.5.3.5404 - CyberLink Corp.) Hidden
Dependency Package Update (Version: 1.6.25.00 - Lenovo Inc.) Hidden
Integrated Camera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 5.13.911.32 - Vimicro)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1013 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.13.1402 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3325 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.03 - )
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.25.00 - Lenovo Group Limited)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 1.0.5.0 - Lenovo)
Lenovo Patch Utility (x32 Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.03.13 - )
Lenovo QuickControl (HKLM-x32\...\{4855C42F-5197-4AAD-A50D-5066D2CC4647}) (Version: 1.10 - Lenovo Group Limited)
Lenovo Settings - Camera Audio (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 4.1.5.100 - Lenovo Corporation)
Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 1.3.0.7 - Lenovo Group Limited)
Lenovo Solution Center (HKLM\...\{2F45A217-E9C7-4984-B0AC-5BE31FF4712B}) (Version: 2.4.003.00 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.05.0009 - Lenovo)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0012.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo)
McAfee LiveSafe – Internet Security (HKLM-x32\...\MSC) (Version: 12.8.958 - McAfee, Inc.)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Nitro Pro 8 (HKLM\...\{84DAF9F1-513C-49F8-89D2-63CB3F4A7E39}) (Version: 8.5.7.1 - Nitro)
PowerDVD Create (HKLM-x32\...\InstallShield_{DE485075-8CD3-4A1E-9ABC-6412EBA44872}) (Version: 10.0 - CyberLink Corp.)
RapidBoot HDD Accelerator (HKLM-x32\...\Fastboot) (Version: 2.1.1.0 - Lenovo)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.787.787.111213 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.18.621.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7030 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0227 - REALTEK Semiconductor Corp.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.3.39 - Safer-Networking Ltd.)
Startmenü (HKCU\...\Pokki) (Version: 0.269.2.430 - Pokki)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.9.1 - Synaptics Incorporated)
ThinkPad OneLink Dock (HKLM-x32\...\{8E1CACF5-2493-4950-9AD5-189903FE57E7}) (Version: 1.08.22 - Lenovo)
WaveEditor (x32 Version: 1.0.1.4514 - CyberLink Corp.) Hidden
Windows-Treiberpaket - Intel Corporation (iaStorA) HDC (08/28/2013 12.8.2.1000) (HKLM\...\34C7B73F0B288D0C9E7115ECD88AC88F778BA095) (Version: 08/28/2013 12.8.2.1000 - Intel Corporation)
Windows-Treiberpaket - Lenovo 1.67.03.13 (08/27/2013 1.67.03.13) (HKLM\...\06FCBD562EA7843DCF8171AC0E58EC3257006F0D) (Version: 08/27/2013 1.67.03.13 - Lenovo)
==================== Restore Points =========================
17-06-2014 15:30:23 Installed Lenovo Solution Center.
20-06-2014 20:23:35 Windows Update
23-06-2014 12:01:07 Removed Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
==================== Hosts content: ==========================
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {06D67910-8C35-4A7E-BD6B-7AC412BF540B} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {0A483838-F358-4276-B258-8F551D6344DC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {1B3C9A31-E8EC-4DC5-86AF-ED0C633ADB9E} - System32\Tasks\StartPowerDVDService => C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe [2013-06-28] (CyberLink Corp.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {21D0AE44-178D-468E-AC36-C7AF6CA8744A} - System32\Tasks\TVT\LenovoWERMonitor => C:\Program Files (x86)\Common Files\lenovo\SUP\sup_wermonitor.exe [2014-01-21] (Microsoft)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B128784-8A5D-4D8E-8409-230F2E001018} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-05-06] (Lenovo)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {41A68743-A8E4-4BCB-895B-208C683DB449} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-08-30] (Realtek Semiconductor)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {5CD30D25-511F-4BE9-BD24-1EACF362DFA8} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-02-13] (Lenovo)
Task: {5EA07E18-D5CB-4A7F-B1BA-50041921A4DF} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {60325B98-9FCB-4608-875F-5CF3A6E30AF0} - System32\Tasks\CLMLSvc => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2013-03-06] (CyberLink)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7890BF08-D627-4D8D-AEE2-D0FC9FBB8B8E} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2014-02-21] ()
Task: {78A616EA-15E1-4124-A917-E1BD783F01B2} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {805732F5-7032-48EE-A59D-E748BB126D0E} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {86193B9F-FC96-4D60-A59E-9AF5A9C82A1E} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2013-09-06] (Lenovo)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8B9CE461-A6B3-4359-84A0-B8064D5D7D7A} - System32\Tasks\PMTask => C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9E6C5B4B-A474-4B28-87EA-EEC813C716EF} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A564F41F-5A5C-4DB7-AF83-0850AD8A1DEF} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {A77EC330-0093-4E68-9116-4CF5AFE1F9BE} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {BC9D3132-3720-49C3-901B-5CD8EA2670F2} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {C774C289-128A-4B99-B851-B22BEF6A0730} - System32\Tasks\AVFramework-TaskStartUserServer32-1S => C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe [2013-09-05] (Lenovo Corporation)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D213C1BF-541D-4548-872B-59EE0031E75A} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2014-05-21] ()
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DB1EE63D-646A-4DDD-9079-7C62EF132228} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {E8F1ADA4-1D27-4998-8805-9E9040F3F7E8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-06-01] (Microsoft Corporation)
Task: {EF8B1750-9495-4C56-83E7-9A4E65594570} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-05-06] (Lenovo)
Task: {FAC80B6D-6CD7-41A9-A952-5A850A5209FF} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-21] (Adobe Systems Incorporated)
Task: {FB1B3CE6-5F0E-4ACC-9AA8-CF7F943A8980} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-05-06] ()
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2014-02-17 22:38 - 2013-11-06 22:24 - 00066560 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2014-02-17 23:11 - 2013-09-04 08:42 - 00117248 ____N () C:\Program Files (x86)\ThinkPad\Utilities\GR\PWMRT64V.DLL
2014-05-06 15:24 - 2014-05-06 15:24 - 00148768 _____ () C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
2014-02-17 22:34 - 2013-09-17 22:00 - 00728064 ____N () C:\Program Files (x86)\Lenovo\onelinkpromgn.exe
2013-06-21 16:42 - 2013-06-21 16:42 - 00465912 _____ () C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
2013-06-21 16:42 - 2013-06-21 16:42 - 00014328 _____ () C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
2014-05-21 18:29 - 2014-05-21 18:29 - 00033536 _____ () C:\Program Files\Lenovo\iMController\AutoUpdate.exe
2014-05-21 18:29 - 2014-05-21 18:29 - 00021248 _____ () C:\Program Files\Lenovo\iMController\PluginCommunication.exe
2014-05-06 15:23 - 2014-05-06 15:23 - 01683336 _____ () C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCTaskService.exe
2014-05-06 15:23 - 2014-05-06 15:23 - 00025376 _____ () C:\Program Files\Lenovo\Lenovo Solution Center\App\Data.dll
2014-05-06 15:23 - 2014-05-06 15:23 - 00013600 _____ () C:\Program Files\Lenovo\Lenovo Solution Center\App\DataInterface.dll
2014-05-06 15:23 - 2014-05-06 15:23 - 00012664 _____ () C:\Program Files\Lenovo\Lenovo Solution Center\App\Aspect.dll
2014-05-06 15:23 - 2014-05-06 15:23 - 00081184 _____ () C:\Program Files\Lenovo\Lenovo Solution Center\App\DiskPartitionInterface.dll
2014-02-17 23:04 - 2014-02-17 23:04 - 00033520 ____N () C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBServiceps.dll
2014-06-22 23:38 - 2014-04-25 14:11 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-06-22 23:38 - 2014-04-25 14:11 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-06-22 23:38 - 2014-04-25 14:11 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-06-22 23:38 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-06-22 23:38 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-06-21 22:46 - 2014-06-21 22:46 - 00797696 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Networking\66db718389f1cd2503053c09b3de857f\Windows.Networking.ni.dll
2014-06-21 22:45 - 2014-06-21 22:45 - 01282048 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Devices\bf5509cf3a0d2e3afbd0c33e9153ecbd\Windows.Devices.ni.dll
2014-06-21 22:45 - 2014-06-21 22:45 - 00228864 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Foundation\cf021988965369c551bb0987fe019862\Windows.Foundation.ni.dll
2013-03-06 22:49 - 2013-03-06 22:49 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2013-03-06 22:52 - 2013-03-06 22:52 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-06-21 14:14 - 2013-07-03 10:40 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-06-20 21:23 - 2014-06-06 06:38 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Tony\OneDrive:ms-properties
AlternateDataStreams: C:\Users\Tony\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== EXE Association (whitelisted) =============
==================== MSCONFIG/TASK MANAGER disabled items =========
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/23/2014 02:07:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20498 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1034
Startzeit: 01cf8edb0b73598d
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: ff0741c8-face-11e3-826d-485ab697444e
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (06/23/2014 02:07:50 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LENOVIATHAN)
Description: Bei der Aktivierung der App „Microsoft.SkypeApp_kzf8qxf38zg5c!App“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (06/23/2014 02:03:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LENOVIATHAN)
Description: Bei der Aktivierung der App „Microsoft.SkypeApp_kzf8qxf38zg5c!App“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (06/23/2014 02:03:06 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LENOVIATHAN)
Description: Bei der Aktivierung der App „Microsoft.SkypeApp_kzf8qxf38zg5c!App“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (06/23/2014 01:59:44 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LENOVIATHAN)
Description: Bei der Aktivierung der App „Microsoft.SkypeApp_kzf8qxf38zg5c!App“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (06/23/2014 01:59:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: wwahost.exe, Version: 6.3.9600.17031, Zeitstempel: 0x53085904
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17055, Zeitstempel: 0x532943a3
Ausnahmecode: 0x00000004
Fehleroffset: 0x00011d4d
ID des fehlerhaften Prozesses: 0x16c8
Startzeit der fehlerhaften Anwendung: 0xwwahost.exe0
Pfad der fehlerhaften Anwendung: wwahost.exe1
Pfad des fehlerhaften Moduls: wwahost.exe2
Berichtskennung: wwahost.exe3
Vollständiger Name des fehlerhaften Pakets: wwahost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: wwahost.exe5
Error: (06/23/2014 01:58:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LENOVIATHAN)
Description: Bei der Aktivierung der App „eBayInc.eBay_1618n3s9xq8tw!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (06/23/2014 01:58:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: eBay.CoreApp.exe, Version: 1.5.0.2, Zeitstempel: 0x532b3706
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17055, Zeitstempel: 0x532943a3
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00011d4d
ID des fehlerhaften Prozesses: 0x14e8
Startzeit der fehlerhaften Anwendung: 0xeBay.CoreApp.exe0
Pfad der fehlerhaften Anwendung: eBay.CoreApp.exe1
Pfad des fehlerhaften Moduls: eBay.CoreApp.exe2
Berichtskennung: eBay.CoreApp.exe3
Vollständiger Name des fehlerhaften Pakets: eBay.CoreApp.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: eBay.CoreApp.exe5
Error: (06/23/2014 01:58:38 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: eBay.CoreApp.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.BadImageFormatException
Stapel:
bei System.StubHelpers.StubHelpers.GetWinRTFactoryObject(IntPtr)
bei Windows.UI.Xaml.Application.Start(Windows.UI.Xaml.ApplicationInitializationCallback)
bei eBay.CoreApp.Program.Main(System.String[])
Error: (06/23/2014 01:58:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm SDWelcome.exe, Version 2.3.39.130 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 16bc
Startzeit: 01cf8ed94a0d4f8f
Endzeit: 0
Anwendungspfad: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
Berichts-ID: 1c81340e-facd-11e3-826d-485ab697444e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
System errors:
=============
Error: (06/23/2014 01:58:39 PM) (Source: DCOM) (EventID: 10010) (User: LENOVIATHAN)
Description: App
Microsoft Office Sessions:
=========================
Error: (06/23/2014 02:07:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20498103401cf8edb0b73598d4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exeff0741c8-face-11e3-826d-485ab697444emicrosoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (06/23/2014 02:07:50 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LENOVIATHAN)
Description: Microsoft.SkypeApp_kzf8qxf38zg5c!App-2144927148
Error: (06/23/2014 02:03:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LENOVIATHAN)
Description: Microsoft.SkypeApp_kzf8qxf38zg5c!App-2144927148
Error: (06/23/2014 02:03:06 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LENOVIATHAN)
Description: Microsoft.SkypeApp_kzf8qxf38zg5c!App-2144927148
Error: (06/23/2014 01:59:44 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LENOVIATHAN)
Description: Microsoft.SkypeApp_kzf8qxf38zg5c!App-2147023170
Error: (06/23/2014 01:59:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wwahost.exe6.3.9600.1703153085904KERNELBASE.dll6.3.9600.17055532943a30000000400011d4d16c801cf8eda9e98f6e5C:\WINDOWS\syswow64\wwahost.exeC:\WINDOWS\SYSTEM32\KERNELBASE.dlldc66e407-facd-11e3-826d-485ab697444eMicrosoft.SkypeApp_2.8.0.1001_x86__kzf8qxf38zg5cApp
Error: (06/23/2014 01:58:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LENOVIATHAN)
Description: eBayInc.eBay_1618n3s9xq8tw!App-2144927141
Error: (06/23/2014 01:58:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: eBay.CoreApp.exe1.5.0.2532b3706KERNELBASE.dll6.3.9600.17055532943a3e043435200011d4d14e801cf8eda7751513fC:\Program Files\WindowsApps\eBayInc.eBay_1.5.2.16_neutral__1618n3s9xq8tw\eBay.CoreApp.exeC:\WINDOWS\SYSTEM32\KERNELBASE.dllb5b0adf2-facd-11e3-826d-485ab697444eeBayInc.eBay_1.5.2.16_neutral__1618n3s9xq8twApp
Error: (06/23/2014 01:58:38 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: eBay.CoreApp.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.BadImageFormatException
Stapel:
bei System.StubHelpers.StubHelpers.GetWinRTFactoryObject(IntPtr)
bei Windows.UI.Xaml.Application.Start(Windows.UI.Xaml.ApplicationInitializationCallback)
bei eBay.CoreApp.Program.Main(System.String[])
Error: (06/23/2014 01:58:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: SDWelcome.exe2.3.39.13016bc01cf8ed94a0d4f8f0C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe1c81340e-facd-11e3-826d-485ab697444e
==================== Memory info ===========================
Percentage of memory in use: 42%
Total physical RAM: 3993.97 MB
Available physical RAM: 2282.64 MB
Total Pagefile: 4697.97 MB
Available Pagefile: 2778.26 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:452.1 GB) (Free:421.54 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: B19227E2)
Partition: GPT Partition Type.
==================== End Of Log ============================
Vom Windows-Ressourcenschutz wurden beschädigte Dateien gefunden, und einige davon konnten nicht repariert werden. Weitere Informationen finden Sie in der Datei "CBS.log" unter windir\Logs\CBS\CBS.log", z.B. "C.\Windows\Logs\CBS\CBS.log". |
| Themen zu HostAppService.exe (Win 8, 64 bit) |
| .dll, 64 bit, angezeigt, bild, entweder, fehlermeldung, flash, gen, installiere, installieren, merkwürdige, programm, spiel, spybot, system, system32, ungültiges bild, versuch, versucht, videos, win, win 8, windows, youtube |
Baum-Darstellung