FRST 5 von 6
Code:
Alles auswählen Aufklappen ATTFilter
2015-04-16 19:57 - 2014-10-29 02:02 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2015-04-16 19:57 - 2014-10-29 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2015-04-16 19:57 - 2014-10-29 02:02 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2015-04-16 19:57 - 2014-10-29 02:02 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininitext.dll
2015-04-16 19:57 - 2014-10-29 02:01 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2015-04-16 19:57 - 2014-10-29 02:01 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TaskSchdPS.dll
2015-04-16 19:57 - 2014-10-29 02:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vss_ps.dll
2015-04-16 19:57 - 2014-10-29 02:01 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\slpts.dll
2015-04-16 19:57 - 2014-10-29 02:01 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguageProfileCallback.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngcredui.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfctrs.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Portable.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NETSTAT.EXE
2015-04-16 19:57 - 2014-10-29 02:00 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ipconfig.exe
2015-04-16 19:57 - 2014-10-29 02:00 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsjob.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxlegih.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BackgroundTransferHost.exe
2015-04-16 19:57 - 2014-10-29 02:00 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfmifs.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxdm.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elsTrans.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvps.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Display.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.SystemManufacturers.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\encapi.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\delegatorprovider.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi_passthru.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ROUTE.EXE
2015-04-16 19:57 - 2014-10-29 02:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.RemoteDesktop.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsExt.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommonPal.dll
2015-04-16 19:57 - 2014-10-29 02:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfmifsproxy.dll
2015-04-16 19:57 - 2014-10-29 01:59 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\dot3gpclnt.dll
2015-04-16 19:57 - 2014-10-29 01:59 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2015-04-16 19:57 - 2014-10-29 01:59 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2015-04-16 19:57 - 2014-10-29 01:59 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschapext.dll
2015-04-16 19:57 - 2014-10-29 01:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastlsext.dll
2015-04-16 19:57 - 2014-10-29 01:58 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2015-04-16 19:57 - 2014-10-29 01:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\PSModuleDiscoveryProvider.dll
2015-04-16 19:57 - 2014-10-29 01:58 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsdchngr.dll
2015-04-16 19:57 - 2014-10-29 01:58 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2015-04-16 19:57 - 2014-10-29 01:58 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\fdPHost.dll
2015-04-16 19:57 - 2014-10-29 01:58 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxshared.dll
2015-04-16 19:57 - 2014-10-29 01:57 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2015-04-16 19:57 - 2014-10-29 01:57 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\NcdAutoSetup.dll
2015-04-16 19:57 - 2014-10-29 01:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetmib1.dll
2015-04-16 19:57 - 2014-10-29 01:57 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2015-04-16 19:57 - 2014-10-29 01:57 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2015-04-16 19:57 - 2014-10-29 01:57 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\datusage.dll
2015-04-16 19:57 - 2014-10-29 01:57 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\ByteCodeGenerator.exe
2015-04-16 19:57 - 2014-10-29 01:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrshost.exe
2015-04-16 19:57 - 2014-10-29 01:57 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\energytask.dll
2015-04-16 19:57 - 2014-10-29 01:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2015-04-16 19:57 - 2014-10-29 01:56 - 00337920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certCredProvider.dll
2015-04-16 19:57 - 2014-10-29 01:56 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll
2015-04-16 19:57 - 2014-10-29 01:56 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xolehlp.dll
2015-04-16 19:57 - 2014-10-29 01:56 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nci.dll
2015-04-16 19:57 - 2014-10-29 01:55 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\CheckNetIsolation.exe
2015-04-16 19:57 - 2014-10-29 01:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\RdpSaProxy.exe
2015-04-16 19:57 - 2014-10-29 01:54 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\RdpSaUacHelper.exe
2015-04-16 19:57 - 2014-10-29 01:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\WSDPrintProxy.DLL
2015-04-16 19:57 - 2014-10-29 01:53 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2015-04-16 19:57 - 2014-10-29 01:53 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifmon.dll
2015-04-16 19:57 - 2014-10-29 01:52 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrs.exe
2015-04-16 19:57 - 2014-10-29 01:51 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndiscapCfg.dll
2015-04-16 19:57 - 2014-10-29 01:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollCtrl.exe
2015-04-16 19:57 - 2014-10-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2015-04-16 19:57 - 2014-10-29 01:48 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slpts.dll
2015-04-16 19:57 - 2014-10-29 01:47 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3gpclnt.dll
2015-04-16 19:57 - 2014-10-29 01:46 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2015-04-16 19:57 - 2014-10-29 01:46 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PSModuleDiscoveryProvider.dll
2015-04-16 19:57 - 2014-10-29 01:46 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ByteCodeGenerator.exe
2015-04-16 19:57 - 2014-10-29 01:46 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Startupscan.dll
2015-04-16 19:57 - 2014-10-29 01:45 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dataclen.dll
2015-04-16 19:57 - 2014-10-29 01:45 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2015-04-16 19:57 - 2014-10-29 01:44 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CheckNetIsolation.exe
2015-04-16 19:57 - 2014-10-29 01:44 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaUacHelper.exe
2015-04-16 19:57 - 2014-10-29 01:44 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaProxy.exe
2015-04-16 19:57 - 2014-10-29 01:43 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2015-04-16 19:57 - 2014-10-29 01:42 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncPolicy.dll
2015-04-16 19:57 - 2014-10-29 01:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncPolicy.dll
2015-04-16 19:57 - 2014-10-07 07:54 - 00324928 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-04-16 19:57 - 2014-10-07 07:54 - 00189248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2015-04-16 19:57 - 2014-10-07 07:54 - 00051008 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys
2015-04-16 19:57 - 2014-10-07 07:44 - 00069952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpci.sys
2015-04-16 19:57 - 2014-06-21 08:33 - 00212736 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2015-04-16 19:56 - 2014-10-29 04:54 - 05120000 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
2015-04-16 19:56 - 2014-10-29 04:54 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWWizFwk.dll
2015-04-16 19:56 - 2014-10-29 04:07 - 05120000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWSnapin.dll
2015-04-16 19:56 - 2014-10-29 04:07 - 00114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWWizFwk.dll
2015-04-16 19:56 - 2014-10-29 03:50 - 02628608 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2015-04-16 19:56 - 2014-10-29 03:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\DeviceUxRes.dll
2015-04-16 19:56 - 2014-10-29 03:49 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2015-04-16 19:56 - 2014-10-29 03:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Firewall.cpl
2015-04-16 19:56 - 2014-10-29 03:49 - 00004608 _____ (Microsoft Corporation) C:\Windows\system32\ws2help.dll
2015-04-16 19:56 - 2014-10-29 03:49 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\rnr20.dll
2015-04-16 19:56 - 2014-10-29 03:48 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-04-16 19:56 - 2014-10-29 03:48 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\ktmw32.dll
2015-04-16 19:56 - 2014-10-29 03:48 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys
2015-04-16 19:56 - 2014-10-29 03:48 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2015-04-16 19:56 - 2014-10-29 03:48 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\WSHTCPIP.DLL
2015-04-16 19:56 - 2014-10-29 03:48 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wship6.dll
2015-04-16 19:56 - 2014-10-29 03:48 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\txfw32.dll
2015-04-16 19:56 - 2014-10-29 03:48 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys
2015-04-16 19:56 - 2014-10-29 03:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\Locator.exe
2015-04-16 19:56 - 2014-10-29 03:48 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-04-16 19:56 - 2014-10-29 03:47 - 00098304 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-04-16 19:56 - 2014-10-29 03:47 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys
2015-04-16 19:56 - 2014-10-29 03:47 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys
2015-04-16 19:56 - 2014-10-29 03:47 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2015-04-16 19:56 - 2014-10-29 03:46 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-04-16 19:56 - 2014-10-29 03:46 - 00057856 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-04-16 19:56 - 2014-10-29 03:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiscap.sys
2015-04-16 19:56 - 2014-10-29 03:46 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys
2015-04-16 19:56 - 2014-10-29 03:46 - 00029696 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2015-04-16 19:56 - 2014-10-29 03:45 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\miguiresource.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-04-16 19:56 - 2014-10-29 03:45 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Ndu.sys
2015-04-16 19:56 - 2014-10-29 03:45 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\SortWindows6Compat.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mslldp.sys
2015-04-16 19:56 - 2014-10-29 03:45 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\SortWindows61.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mciwave.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\oleacchooks.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\AutoWorkplaceN.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\osuninst.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-04-16 19:56 - 2014-10-29 03:45 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-04-16 19:56 - 2014-10-29 03:45 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\normaliz.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\MSchedExe.exe
2015-04-16 19:56 - 2014-10-29 03:44 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\fthsvc.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\SortServer2003Compat.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\regini.exe
2015-04-16 19:56 - 2014-10-29 03:44 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\clb.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\msidcrl40.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\sas.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msiwer.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\mscat32.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\softpub.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\OskSupport.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\getuname.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\mtxex.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\mssip32.dll
2015-04-16 19:56 - 2014-10-29 03:44 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2015-04-16 19:56 - 2014-10-29 03:43 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\telephon.cpl
2015-04-16 19:56 - 2014-10-29 03:43 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2015-04-16 19:56 - 2014-10-29 03:43 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe
2015-04-16 19:56 - 2014-10-29 03:43 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\sort.exe
2015-04-16 19:56 - 2014-10-29 03:43 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-04-16 19:56 - 2014-10-29 03:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\hh.exe
2015-04-16 19:56 - 2014-10-29 03:43 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\cmdkey.exe
2015-04-16 19:56 - 2014-10-29 03:43 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2015-04-16 19:56 - 2014-10-29 03:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2015-04-16 19:56 - 2014-10-29 03:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\MUILanguageCleanup.dll
2015-04-16 19:56 - 2014-10-29 03:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\LangCleanupSysprepAction.dll
2015-04-16 19:56 - 2014-10-29 03:43 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\spwinsat.dll
2015-04-16 19:56 - 2014-10-29 03:43 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\dvdplay.exe
2015-04-16 19:56 - 2014-10-29 03:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\TimeDateMUICallback.dll
2015-04-16 19:56 - 2014-10-29 03:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iscsied.dll
2015-04-16 19:56 - 2014-10-29 03:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2015-04-16 19:56 - 2014-10-29 03:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\help.exe
2015-04-16 19:56 - 2014-10-29 03:43 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\spmpm.dll
2015-04-16 19:56 - 2014-10-29 03:43 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\acledit.dll
2015-04-16 19:56 - 2014-10-29 03:43 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2015-04-16 19:56 - 2014-10-29 03:42 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\colorcpl.exe
2015-04-16 19:56 - 2014-10-29 03:42 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\DDOIProxy.dll
2015-04-16 19:56 - 2014-10-29 03:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\syskey.exe
2015-04-16 19:56 - 2014-10-29 03:42 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\cliconfg.exe
2015-04-16 19:56 - 2014-10-29 03:42 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2015-04-16 19:56 - 2014-10-29 03:42 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2015-04-16 19:56 - 2014-10-29 03:42 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2015-04-16 19:56 - 2014-10-29 03:42 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\snmptrap.exe
2015-04-16 19:56 - 2014-10-29 03:42 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TapiUnattend.exe
2015-04-16 19:56 - 2014-10-29 03:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wshnetbs.dll
2015-04-16 19:56 - 2014-10-29 03:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\usbperf.dll
2015-04-16 19:56 - 2014-10-29 03:42 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe
2015-04-16 19:56 - 2014-10-29 03:42 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\dcomcnfg.exe
2015-04-16 19:56 - 2014-10-29 03:42 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\RpcNs4.dll
2015-04-16 19:56 - 2014-10-29 03:41 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2015-04-16 19:56 - 2014-10-29 03:41 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\mpnotify.exe
2015-04-16 19:56 - 2014-10-29 03:41 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\gpupdate.exe
2015-04-16 19:56 - 2014-10-29 03:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll
2015-04-16 19:56 - 2014-10-29 03:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\localui.dll
2015-04-16 19:56 - 2014-10-29 03:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-04-16 19:56 - 2014-10-29 03:41 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\tcmsetup.exe
2015-04-16 19:56 - 2014-10-29 03:41 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\mmcico.dll
2015-04-16 19:56 - 2014-10-29 03:41 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\panmap.dll
2015-04-16 19:56 - 2014-10-29 03:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\scrnsave.scr
2015-04-16 19:56 - 2014-10-29 03:41 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\spnet.dll
2015-04-16 19:56 - 2014-10-29 03:41 - 00010752 ____C (Microsoft Corporation) C:\Windows\system32\CIRCoInst.dll
2015-04-16 19:56 - 2014-10-29 03:41 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\shfolder.dll
2015-04-16 19:56 - 2014-10-29 03:41 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
2015-04-16 19:56 - 2014-10-29 03:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\sccls.dll
2015-04-16 19:56 - 2014-10-29 03:40 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\easinvoker.proxystub.dll
2015-04-16 19:56 - 2014-10-29 03:40 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\irclass.dll
2015-04-16 19:56 - 2014-10-29 03:40 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-04-16 19:56 - 2014-10-29 03:38 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\capisp.dll
2015-04-16 19:56 - 2014-10-29 03:38 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\pstorec.dll
2015-04-16 19:56 - 2014-10-29 03:38 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\msctfime.ime
2015-04-16 19:56 - 2014-10-29 03:37 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\secinit.exe
2015-04-16 19:56 - 2014-10-29 03:37 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\ctfmon.exe
2015-04-16 19:56 - 2014-10-29 03:36 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\extrac32.exe
2015-04-16 19:56 - 2014-10-29 03:36 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\rpcnsh.dll
2015-04-16 19:56 - 2014-10-29 03:36 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ktmutil.exe
2015-04-16 19:56 - 2014-10-29 03:36 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\acproxy.dll
2015-04-16 19:56 - 2014-10-29 03:35 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\PnPutil.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\iscsicpl.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\eventvwr.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\hdwwiz.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\winver.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\where.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\rdrleakdiag.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dialer.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\timeout.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\clip.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\cofire.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\rasdial.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\fsavailux.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TapiSysprep.dll
2015-04-16 19:56 - 2014-10-29 03:34 - 00011264 _____ (Microsoft Corporation) C:\Windows\write.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\write.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\regedt32.exe
2015-04-16 19:56 - 2014-10-29 03:34 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\systray.exe
2015-04-16 19:56 - 2014-10-29 03:33 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Apphlpdm.dll
2015-04-16 19:56 - 2014-10-29 03:33 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2015-04-16 19:56 - 2014-10-29 03:33 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\runas.exe
2015-04-16 19:56 - 2014-10-29 03:33 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\InfDefaultInstall.exe
2015-04-16 19:56 - 2014-10-29 03:31 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\wlaninst.dll
2015-04-16 19:56 - 2014-10-29 03:30 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\sigverif.exe
2015-04-16 19:56 - 2014-10-29 03:30 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\forfiles.exe
2015-04-16 19:56 - 2014-10-29 03:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\eventcreate.exe
2015-04-16 19:56 - 2014-10-29 03:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\choice.exe
2015-04-16 19:56 - 2014-10-29 03:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\RmClient.exe
2015-04-16 19:56 - 2014-10-29 03:29 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe
2015-04-16 19:56 - 2014-10-29 03:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\waitfor.exe
2015-04-16 19:56 - 2014-10-29 03:29 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\setspn.exe
2015-04-16 19:56 - 2014-10-29 03:28 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\odbcad32.exe
2015-04-16 19:56 - 2014-10-29 03:27 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mmci.dll
2015-04-16 19:56 - 2014-10-29 03:25 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\hwrreg.exe
2015-04-16 19:56 - 2014-10-29 03:25 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\fontview.exe
2015-04-16 19:56 - 2014-10-29 03:25 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\resmon.exe
2015-04-16 19:56 - 2014-10-29 03:25 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2015-04-16 19:56 - 2014-10-29 03:24 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\LocationNotifications.exe
2015-04-16 19:56 - 2014-10-29 03:23 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerWizardElev.exe
2015-04-16 19:56 - 2014-10-29 03:23 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\wowreg32.exe
2015-04-16 19:56 - 2014-10-29 03:22 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-04-16 19:56 - 2014-10-29 03:20 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe
2015-04-16 19:56 - 2014-10-29 03:20 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\WallpaperHost.exe
2015-04-16 19:56 - 2014-10-29 03:19 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\control.exe
2015-04-16 19:56 - 2014-10-29 03:19 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\DeviceProperties.exe
2015-04-16 19:56 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesRemote.exe
2015-04-16 19:56 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesProtection.exe
2015-04-16 19:56 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesPerformance.exe
2015-04-16 19:56 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesHardware.exe
2015-04-16 19:56 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesDataExecutionPrevention.exe
2015-04-16 19:56 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesComputerName.exe
2015-04-16 19:56 - 2014-10-29 03:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesAdvanced.exe
2015-04-16 19:56 - 2014-10-29 03:19 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Netplwiz.exe
2015-04-16 19:56 - 2014-10-29 03:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Eap3Host.exe
2015-04-16 19:56 - 2014-10-29 03:18 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\SmartScreenSettings.exe
2015-04-16 19:56 - 2014-10-29 03:18 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\OptionalFeatures.exe
2015-04-16 19:56 - 2014-10-29 03:18 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Fondue.exe
2015-04-16 19:56 - 2014-10-29 03:18 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\DpiScaling.exe
2015-04-16 19:56 - 2014-10-29 03:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\RunLegacyCPLElevated.exe
2015-04-16 19:56 - 2014-10-29 03:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\ComputerDefaults.exe
2015-04-16 19:56 - 2014-10-29 03:17 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\FXSUNATD.exe
2015-04-16 19:56 - 2014-10-29 03:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\DDACLSys.dll
2015-04-16 19:56 - 2014-10-29 03:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\efsui.exe
2015-04-16 19:56 - 2014-10-29 03:09 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\bthudtask.exe
2015-04-16 19:56 - 2014-10-29 03:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\credwiz.exe
2015-04-16 19:56 - 2014-10-29 03:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-04-16 19:56 - 2014-10-29 03:05 - 02628608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons0009.dll
2015-04-16 19:56 - 2014-10-29 03:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\gptext.dll
2015-04-16 19:56 - 2014-10-29 03:04 - 00638976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2015-04-16 19:56 - 2014-10-29 03:04 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceUxRes.dll
2015-04-16 19:56 - 2014-10-29 03:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2015-04-16 19:56 - 2014-10-29 03:04 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2help.dll
2015-04-16 19:56 - 2014-10-29 03:04 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rnr20.dll
2015-04-16 19:56 - 2014-10-29 03:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2015-04-16 19:56 - 2014-10-29 03:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ktmw32.dll
2015-04-16 19:56 - 2014-10-29 03:03 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\txfw32.dll
2015-04-16 19:56 - 2014-10-29 03:03 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wship6.dll
2015-04-16 19:56 - 2014-10-29 03:03 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSHTCPIP.DLL
2015-04-16 19:56 - 2014-10-29 03:03 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2015-04-16 19:56 - 2014-10-29 03:00 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OobeFldr.dll
2015-04-16 19:56 - 2014-10-29 03:00 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miguiresource.dll
2015-04-16 19:56 - 2014-10-29 03:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciseq.dll
2015-04-16 19:56 - 2014-10-29 03:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiwer.dll
2015-04-16 19:56 - 2014-10-29 03:00 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osuninst.dll
2015-04-16 19:56 - 2014-10-29 03:00 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-04-16 19:56 - 2014-10-29 03:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-04-16 19:56 - 2014-10-29 03:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-04-16 19:56 - 2014-10-29 03:00 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\normaliz.dll
2015-04-16 19:56 - 2014-10-29 03:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprop.dll
2015-04-16 19:56 - 2014-10-29 02:59 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msidcrl40.dll
2015-04-16 19:56 - 2014-10-29 02:59 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\help.exe
2015-04-16 19:56 - 2014-10-29 02:59 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2015-04-16 19:56 - 2014-10-29 02:58 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\colorcpl.exe
2015-04-16 19:56 - 2014-10-29 02:58 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzutil.exe
2015-04-16 19:56 - 2014-10-29 02:58 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cliconfg.exe
2015-04-16 19:56 - 2014-10-29 02:58 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll
2015-04-16 19:56 - 2014-10-29 02:58 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2015-04-16 19:56 - 2014-10-29 02:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmdkey.exe
2015-04-16 19:56 - 2014-10-29 02:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TapiUnattend.exe
2015-04-16 19:56 - 2014-10-29 02:58 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dvdplay.exe
2015-04-16 19:56 - 2014-10-29 02:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomcnfg.exe
2015-04-16 19:56 - 2014-10-29 02:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DDOIProxy.dll
2015-04-16 19:56 - 2014-10-29 02:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrnsave.scr
2015-04-16 19:56 - 2014-10-29 02:57 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcNs4.dll
2015-04-16 19:56 - 2014-10-29 02:56 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pstorec.dll
2015-04-16 19:56 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odtext32.dll
2015-04-16 19:56 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odpdx32.dll
2015-04-16 19:56 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odfox32.dll
2015-04-16 19:56 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oddbse32.dll
2015-04-16 19:56 - 2014-10-29 02:56 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odexl32.dll
2015-04-16 19:56 - 2014-10-29 02:55 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfime.ime
2015-04-16 19:56 - 2014-10-29 02:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ctfmon.exe
2015-04-16 19:56 - 2014-10-29 02:53 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\dpapimig.exe
2015-04-16 19:56 - 2014-10-29 02:53 - 00009728 _____ (Microsoft Corporation) C:\Windows\winhlp32.exe
2015-04-16 19:56 - 2014-10-29 02:52 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsicpl.exe
2015-04-16 19:56 - 2014-10-29 02:52 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msra.exe
2015-04-16 19:56 - 2014-10-29 02:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winver.exe
2015-04-16 19:56 - 2014-10-29 02:52 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedt32.exe
2015-04-16 19:56 - 2014-10-29 02:52 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\write.exe
2015-04-16 19:56 - 2014-10-29 02:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\runas.exe
2015-04-16 19:56 - 2014-10-29 02:51 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InfDefaultInstall.exe
2015-04-16 19:56 - 2014-10-29 02:51 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systray.exe
2015-04-16 19:56 - 2014-10-29 02:46 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcad32.exe
2015-04-16 19:56 - 2014-10-29 02:45 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resmon.exe
2015-04-16 19:56 - 2014-10-29 02:45 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2015-04-16 19:56 - 2014-10-29 02:44 - 00094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Narrator.exe
2015-04-16 19:56 - 2014-10-29 02:44 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationNotifications.exe
2015-04-16 19:56 - 2014-10-29 02:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wowreg32.exe
2015-04-16 19:56 - 2014-10-29 02:40 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Netplwiz.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartScreenSettings.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Fondue.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceProperties.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesRemote.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesProtection.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesPerformance.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesHardware.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesDataExecutionPrevention.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesComputerName.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesAdvanced.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DpiScaling.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RunLegacyCPLElevated.exe
2015-04-16 19:56 - 2014-10-29 02:39 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ComputerDefaults.exe
2015-04-16 19:56 - 2014-10-29 02:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthudtask.exe
2015-04-16 19:56 - 2014-10-29 02:32 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-04-16 19:56 - 2014-10-29 02:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mprext.dll
2015-04-16 19:56 - 2014-10-29 02:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\dabapi.dll
2015-04-16 19:56 - 2014-10-29 02:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL
2015-04-16 19:56 - 2014-10-29 02:28 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\C_G18030.DLL
2015-04-16 19:56 - 2014-10-29 02:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\mprmsg.dll
2015-04-16 19:56 - 2014-10-29 02:28 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\reg.exe
2015-04-16 19:56 - 2014-10-29 02:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\sdhcinst.dll
2015-04-16 19:56 - 2014-10-29 02:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\mountvol.exe
2015-04-16 19:56 - 2014-10-29 02:28 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\wmsgapi.dll
2015-04-16 19:56 - 2014-10-29 02:28 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\C_IS2022.DLL
2015-04-16 19:56 - 2014-10-29 02:28 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\whhelper.dll
2015-04-16 19:56 - 2014-10-29 02:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TCPSVCS.EXE
2015-04-16 19:56 - 2014-10-29 02:28 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\TcpipSetup.dll
2015-04-16 19:56 - 2014-10-29 02:28 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\backgroundTaskHost.exe
2015-04-16 19:56 - 2014-10-29 02:28 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2015-04-16 19:56 - 2014-10-29 02:27 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\lodctr.exe
2015-04-16 19:56 - 2014-10-29 02:27 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\unlodctr.exe
2015-04-16 19:56 - 2014-10-29 02:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\SecEdit.exe
2015-04-16 19:56 - 2014-10-29 02:27 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\cacls.exe
2015-04-16 19:56 - 2014-10-29 02:27 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\fltMC.exe
2015-04-16 19:56 - 2014-10-29 02:27 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\PING.EXE
2015-04-16 19:56 - 2014-10-29 02:27 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerClient.dll
2015-04-16 19:56 - 2014-10-29 02:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\TRACERT.EXE
2015-04-16 19:56 - 2014-10-29 02:27 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\finger.exe
2015-04-16 19:56 - 2014-10-29 02:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\HOSTNAME.EXE
2015-04-16 19:56 - 2014-10-29 02:27 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TetheringIeProvider.dll
2015-04-16 19:56 - 2014-10-29 02:26 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-04-16 19:56 - 2014-10-29 02:26 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-04-16 19:56 - 2014-10-29 02:26 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\VaultCmd.exe
2015-04-16 19:56 - 2014-10-29 02:26 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\MRINFO.EXE
2015-04-16 19:56 - 2014-10-29 02:26 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\ProximityRtapiPal.dll
2015-04-16 19:56 - 2014-10-29 02:26 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wpcsvc.dll
2015-04-16 19:56 - 2014-10-29 02:24 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\procinst.dll
2015-04-16 19:56 - 2014-10-29 02:23 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.ps.dll
2015-04-16 19:56 - 2014-10-29 02:23 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\AppxStreamingDataSourcePS.dll
2015-04-16 19:56 - 2014-10-29 02:21 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ipconfig.exe
2015-04-16 19:56 - 2014-10-29 02:21 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\CallButtons.ProxyStub.dll
2015-04-16 19:56 - 2014-10-29 02:21 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\ROUTE.EXE
2015-04-16 19:56 - 2014-10-29 02:21 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dllhst3g.exe
2015-04-16 19:56 - 2014-10-29 02:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\raschapext.dll
2015-04-16 19:56 - 2014-10-29 02:19 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\rastlsext.dll
2015-04-16 19:56 - 2014-10-29 02:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\DsmUserTask.exe
2015-04-16 19:56 - 2014-10-29 02:06 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_ISCII.DLL
2015-04-16 19:56 - 2014-10-29 02:06 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dabapi.dll
2015-04-16 19:56 - 2014-10-29 02:05 - 00113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprmsg.dll
2015-04-16 19:56 - 2014-10-29 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PATHPING.EXE
2015-04-16 19:56 - 2014-10-29 02:05 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TRACERT.EXE
2015-04-16 19:56 - 2014-10-29 02:05 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TCPSVCS.EXE
2015-04-16 19:56 - 2014-10-29 02:05 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe
2015-04-16 19:56 - 2014-10-29 02:05 - 00006144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2015-04-16 19:56 - 2014-10-29 02:04 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollCtrl.exe
2015-04-16 19:56 - 2014-10-29 02:04 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpcsvc.dll
2015-04-16 19:56 - 2014-10-29 02:03 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\LaunchTM.exe
2015-04-16 19:56 - 2014-10-29 02:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MRINFO.EXE
2015-04-16 19:56 - 2014-10-29 02:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdProxy.dll
2015-04-16 19:56 - 2014-10-29 02:01 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.ps.dll
2015-04-16 19:56 - 2014-10-29 02:01 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.ps.dll
2015-04-16 19:56 - 2014-10-29 02:01 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Background.ps.dll
2015-04-16 19:56 - 2014-10-29 02:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallButtons.ProxyStub.dll
2015-04-16 19:56 - 2014-10-29 01:58 - 00017408 _____ (Microsoft Corporation)
FRST 6 von 6
Code:
Alles auswählen Aufklappen ATTFilter
C:\Windows\system32\Startupscan.dll
2015-04-16 19:56 - 2014-10-29 01:58 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\bootim.exe
2015-04-16 19:56 - 2014-10-29 01:50 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchTM.exe
2015-04-16 19:56 - 2014-10-07 04:30 - 00026112 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys
2015-04-16 19:56 - 2014-10-07 04:29 - 00107520 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys
2015-04-16 19:56 - 2014-10-07 04:29 - 00032256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2015-04-16 19:56 - 2014-10-07 04:29 - 00030208 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2015-04-16 19:31 - 2015-02-07 00:09 - 00396419 _____ () C:\Windows\system32\ApnDatabase.xml
2015-04-16 19:31 - 2015-02-04 00:58 - 00264000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-04-16 19:31 - 2015-02-04 00:58 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-04-16 19:31 - 2015-02-04 00:58 - 00044024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-04-16 19:31 - 2015-02-03 00:53 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2015-04-16 19:31 - 2015-02-03 00:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2015-04-16 19:31 - 2015-01-27 04:44 - 00933888 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2015-04-16 19:31 - 2015-01-24 02:51 - 00816128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe
2015-04-16 19:31 - 2015-01-23 08:17 - 00723072 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2015-04-16 19:31 - 2015-01-23 06:02 - 00560392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2015-04-16 19:30 - 2015-03-06 03:53 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-16 19:30 - 2015-03-06 03:33 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-04-16 19:30 - 2015-02-26 00:26 - 04178944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-04-16 19:30 - 2015-02-20 04:03 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-04-16 19:30 - 2015-02-20 03:58 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-04-16 19:30 - 2015-02-20 03:20 - 00301056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-04-16 19:30 - 2015-02-20 03:15 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-04-16 19:30 - 2015-02-05 21:24 - 01113920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-04-16 19:30 - 2015-01-31 00:42 - 03097600 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-04-16 19:30 - 2015-01-31 00:29 - 02484224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-04-16 19:30 - 2015-01-30 04:01 - 00097792 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2015-04-16 19:30 - 2015-01-30 04:00 - 00167424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2015-04-16 19:30 - 2015-01-29 02:58 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2015-04-16 19:30 - 2015-01-29 02:29 - 00290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\photowiz.dll
2015-04-16 19:30 - 2015-01-29 02:04 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-04-16 19:30 - 2015-01-29 02:04 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-04-16 19:30 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-04-16 19:30 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-16 19:30 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-04-16 19:30 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-04-16 19:30 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-04-16 19:30 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-04-16 19:30 - 2014-12-13 22:28 - 00513488 _____ () C:\Windows\SysWOW64\locale.nls
2015-04-16 19:30 - 2014-12-13 22:28 - 00513488 _____ () C:\Windows\system32\locale.nls
2015-04-16 19:30 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-04-16 19:30 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-04-16 19:30 - 2014-10-31 05:50 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2015-04-16 19:30 - 2014-10-31 04:30 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2015-04-16 19:30 - 2014-10-31 04:23 - 00733696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2015-04-16 19:30 - 2014-10-31 04:22 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2015-04-16 19:30 - 2014-10-31 04:18 - 04840960 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2015-04-16 19:30 - 2014-10-31 04:09 - 01154048 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2015-04-16 19:30 - 2014-10-31 03:12 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2015-04-16 19:30 - 2014-10-29 03:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-16 19:30 - 2014-10-29 03:50 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-16 19:30 - 2014-10-29 03:49 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-04-16 19:30 - 2014-10-29 03:46 - 00081920 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2015-04-16 19:30 - 2014-10-29 03:46 - 00053248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2015-04-16 19:30 - 2014-10-29 03:45 - 01198080 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-04-16 19:30 - 2014-10-29 03:44 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-04-16 19:30 - 2014-10-29 03:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-04-16 19:30 - 2014-10-29 03:43 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\printui.exe
2015-04-16 19:30 - 2014-10-29 03:34 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2015-04-16 19:30 - 2014-10-29 03:06 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-04-16 19:30 - 2014-10-29 03:06 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-04-16 19:30 - 2014-10-29 03:04 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2015-04-16 19:30 - 2014-10-29 03:04 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-04-16 19:30 - 2014-10-29 03:03 - 00241152 ____C (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2015-04-16 19:30 - 2014-10-29 03:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-04-16 19:30 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-04-16 19:30 - 2014-10-29 02:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.exe
2015-04-16 19:30 - 2014-10-29 02:52 - 00289280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2015-04-16 19:30 - 2014-10-29 02:51 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-04-16 19:30 - 2014-10-29 02:45 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2015-04-16 19:30 - 2014-10-29 02:31 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-16 19:30 - 2014-10-29 02:28 - 00055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2015-04-16 19:30 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2015-04-16 19:30 - 2014-10-29 02:27 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2015-04-16 19:30 - 2014-10-29 02:20 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-04-16 19:30 - 2014-10-29 02:15 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2015-04-16 19:30 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2015-04-16 19:30 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2015-04-16 19:30 - 2014-10-29 01:55 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2015-04-16 19:30 - 2014-10-29 01:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2015-04-16 19:30 - 2014-10-29 01:41 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2015-04-16 19:30 - 2014-10-29 01:35 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2015-04-16 19:27 - 2015-02-21 02:16 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-16 19:27 - 2015-02-21 01:41 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-16 19:27 - 2015-02-21 01:27 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-16 19:27 - 2015-02-21 01:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-04-16 19:27 - 2015-02-21 01:25 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-16 19:27 - 2015-02-21 00:58 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-16 19:27 - 2015-02-21 00:32 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-16 19:27 - 2015-02-20 03:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-16 19:27 - 2015-02-20 03:48 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-16 19:27 - 2015-02-20 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-16 19:27 - 2015-02-20 03:35 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-04-16 19:27 - 2015-02-20 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-16 19:27 - 2015-02-20 03:32 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-16 19:27 - 2015-02-20 03:09 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-16 19:27 - 2015-02-20 03:07 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-04-16 19:27 - 2015-02-20 03:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-04-16 19:27 - 2015-02-20 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-16 19:27 - 2015-02-20 03:03 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-16 19:27 - 2015-02-20 02:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-04-16 19:27 - 2015-02-20 02:56 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-04-16 19:27 - 2015-02-20 02:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-04-16 19:27 - 2015-02-20 02:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-16 19:27 - 2015-02-20 02:49 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-16 19:27 - 2015-02-20 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-16 19:27 - 2015-02-20 02:43 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-16 19:27 - 2015-02-20 02:30 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-16 19:27 - 2015-02-20 02:30 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-04-16 19:27 - 2015-02-20 02:29 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-04-16 19:27 - 2015-02-20 02:28 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-16 19:27 - 2015-02-20 02:26 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-04-16 19:27 - 2015-02-20 02:24 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-16 19:27 - 2015-02-20 02:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-16 19:27 - 2015-02-20 02:16 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-16 19:27 - 2015-02-20 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-16 19:27 - 2015-02-20 02:01 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-16 19:27 - 2015-02-20 01:57 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-16 19:27 - 2015-02-20 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-04-16 19:27 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-16 19:27 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-16 19:27 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-16 19:27 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-04-16 19:26 - 2015-01-31 00:20 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-04-16 19:26 - 2015-01-29 19:45 - 01763352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-04-16 19:26 - 2015-01-29 19:34 - 01488040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-04-16 19:26 - 2015-01-28 16:41 - 07472960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-16 19:26 - 2015-01-28 16:41 - 01733440 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-16 19:26 - 2015-01-28 16:41 - 01498360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-16 19:26 - 2015-01-28 03:24 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\StorageContextHandler.dll
2015-04-16 19:26 - 2015-01-28 02:47 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorageContextHandler.dll
2015-04-16 19:26 - 2015-01-27 05:22 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-04-16 19:26 - 2015-01-27 03:11 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-04-16 19:26 - 2014-10-29 04:56 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-04-16 19:26 - 2014-10-29 03:37 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2015-04-16 19:26 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-16 19:26 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-16 19:26 - 2014-10-29 02:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-04-16 19:26 - 2014-10-29 02:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-04-16 19:26 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-04-16 19:26 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-04-16 19:26 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-04-16 19:26 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-04-16 19:25 - 2015-02-06 02:28 - 02257408 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-04-16 19:25 - 2015-02-06 02:08 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-04-16 19:25 - 2015-01-29 02:11 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-04-16 19:25 - 2015-01-29 02:00 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-04-16 19:25 - 2015-01-29 01:59 - 02773504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-04-16 19:25 - 2015-01-29 01:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-04-16 19:25 - 2015-01-29 01:50 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-04-16 19:25 - 2015-01-29 01:49 - 02459136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-04-16 19:25 - 2014-10-29 03:34 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WSCollect.exe
2015-04-16 19:25 - 2014-10-29 03:34 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe
2015-04-16 19:25 - 2014-10-29 02:13 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-04-16 19:25 - 2014-10-29 01:55 - 00223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-04-16 19:24 - 2015-02-04 00:38 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-16 19:24 - 2015-02-04 00:08 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-16 19:24 - 2015-02-04 00:08 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-16 19:24 - 2015-02-03 01:03 - 03551744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2015-04-16 19:24 - 2015-02-03 01:02 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2015-04-16 19:24 - 2015-02-03 00:11 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-16 19:24 - 2015-02-03 00:11 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-16 19:24 - 2015-02-03 00:11 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-16 19:24 - 2015-01-30 03:03 - 01488896 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-04-16 19:24 - 2015-01-30 03:03 - 01464832 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-04-16 19:24 - 2015-01-30 03:02 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2015-04-16 19:24 - 2015-01-30 02:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2015-04-16 19:24 - 2015-01-30 02:42 - 01204224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2015-04-16 19:24 - 2015-01-30 02:40 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2015-04-16 19:24 - 2015-01-30 02:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2015-04-16 19:24 - 2015-01-30 02:29 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atlthunk.dll
2015-04-16 19:24 - 2015-01-30 02:24 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2015-04-16 19:24 - 2015-01-30 02:24 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2015-04-16 19:24 - 2015-01-30 02:16 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2015-04-16 19:24 - 2015-01-30 02:08 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2015-04-16 19:24 - 2015-01-30 02:06 - 00278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2015-04-16 19:24 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-04-16 19:24 - 2014-10-29 02:28 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\atlthunk.dll
2015-04-16 19:24 - 2014-10-29 02:19 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\eappprxy.dll
2015-04-16 19:24 - 2014-10-29 01:59 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappprxy.dll
2015-04-16 19:01 - 2015-03-27 19:26 - 00005140 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for KATHRIN-Kathrin Kathrin
2015-04-16 18:50 - 2015-02-12 18:40 - 22291584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-04-16 18:50 - 2015-02-12 18:34 - 19731824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-04-16 18:50 - 2014-12-11 06:36 - 00046456 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentServer.exe
2015-04-16 18:49 - 2015-02-08 00:57 - 01090048 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2015-04-16 18:49 - 2015-02-08 00:49 - 00791040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2015-04-16 18:49 - 2015-01-28 02:31 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-04-16 18:49 - 2015-01-28 02:11 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-04-16 18:49 - 2015-01-28 00:47 - 02501368 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-04-16 18:48 - 2015-01-28 00:41 - 02207488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-04-16 18:48 - 2015-01-21 06:54 - 01384712 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-04-16 18:48 - 2015-01-21 06:15 - 01123848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-04-16 16:37 - 2015-04-16 16:37 - 00000180 _____ () C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-04-16 14:41 - 2015-04-16 14:41 - 00000000 __SHD () C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2015-04-15 18:06 - 2015-04-16 20:10 - 00000000 ____D () C:\Windows\system32\appraiser
2015-03-28 15:55 - 2015-03-28 15:56 - 00020049 _____ () C:\Users\Kathrin\Downloads\FRST.txt
2015-03-28 15:55 - 2015-03-28 15:55 - 00000000 ____D () C:\FRST
2015-03-28 15:54 - 2015-03-28 15:54 - 02095616 _____ (Farbar) C:\Users\Kathrin\Downloads\FRST64.exe
2015-03-28 15:52 - 2015-03-28 15:52 - 00000476 _____ () C:\Users\Kathrin\Desktop\defogger_disable.log
2015-03-28 15:52 - 2015-03-28 15:52 - 00000000 _____ () C:\Users\Kathrin\defogger_reenable
2015-03-28 15:51 - 2015-03-28 15:52 - 00050477 _____ () C:\Users\Kathrin\Downloads\Defogger.exe
2015-03-28 12:11 - 2015-03-28 12:11 - 00000000 ____D () C:\Users\Kathrin\Documents\Bluetooth Folder
2015-03-28 11:32 - 2015-03-28 11:32 - 00000000 ____D () C:\Program Files\Adblock Plus for IE
2015-03-28 11:21 - 2015-03-28 11:21 - 01203488 _____ () C:\Users\Kathrin\Downloads\adblockplusie-1.3 - CHIP-Installer.exe
2015-03-27 08:26 - 2015-03-27 08:26 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\PDFCreator
2015-03-27 08:07 - 2015-03-27 08:07 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-03-27 08:07 - 2015-03-27 08:07 - 00002041 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2015-03-27 08:07 - 2015-03-27 08:07 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-03-27 08:05 - 2015-03-27 08:09 - 00000000 ____D () C:\ProgramData\Adobe
2015-03-27 07:28 - 2015-03-27 07:28 - 00000000 ____D () C:\ProgramData\PDF Architect 3
2015-03-27 07:27 - 2015-03-27 07:40 - 00000000 ____D () C:\Program Files\PDFCreator
2015-03-27 07:27 - 2015-03-27 07:27 - 00115592 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2015-03-27 07:27 - 2015-03-27 07:27 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\pdfforge
2015-03-27 07:27 - 2015-03-27 07:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2015-03-26 20:07 - 2015-03-26 20:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-03-26 20:06 - 2015-03-26 20:06 - 00000000 ____D () C:\Windows\PCHEALTH
2015-03-26 20:06 - 2015-03-26 20:06 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2015-03-26 20:04 - 2015-03-26 20:07 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-26 20:04 - 2015-03-26 20:04 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\Microsoft Help
2015-03-26 20:04 - 2015-03-26 20:04 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-03-24 13:40 - 2015-03-24 13:40 - 00000032 _____ () C:\ProgramData\Temp.log
2015-03-24 11:23 - 2015-03-24 13:10 - 00000000 ____D () C:\AdwCleaner
2015-03-23 09:30 - 2015-03-23 09:30 - 00000344 _____ () C:\Windows\Tasks\0215avUpdateInfo.job
2015-03-23 09:30 - 2015-03-23 09:30 - 00000000 ____D () C:\ProgramData\Avg_Update_0215av
2015-03-23 08:22 - 2015-03-23 08:22 - 00003076 _____ () C:\Windows\System32\Tasks\{9E8CC986-1B48-45ED-8F9B-956DA456AFB0}
2015-03-22 11:49 - 2015-03-22 11:49 - 00000000 ____D () C:\Program Files (x86)\3ebe2987-45d6-414c-9921-cf7b02c45b74
2015-03-22 10:56 - 2015-03-22 10:56 - 00003766 _____ () C:\Windows\System32\Tasks\keepup
2015-03-22 10:56 - 2015-03-22 10:56 - 00003242 _____ () C:\Windows\System32\Tasks\DriverMgr
2015-03-22 10:55 - 2015-03-22 10:56 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\jellylam
2015-03-22 10:55 - 2015-03-22 10:55 - 00000078 _____ () C:\Windows\SysWOW64\sn.txt
2015-03-22 10:55 - 2015-03-22 10:55 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\WinKit
2015-03-22 10:55 - 2015-03-22 10:55 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\pdfie
2015-03-20 20:10 - 2015-03-20 20:10 - 00000000 ____D () C:\Program Files (x86)\c77274fd-5ddb-42bf-9ca8-8606a2bfb793
2015-03-20 20:09 - 2015-03-22 12:42 - 00000000 ____D () C:\Program Files (x86)\GoHDV20.03
2015-03-20 20:08 - 2015-03-20 20:08 - 00000000 ____D () C:\Program Files (x86)\14e7685b-aaad-4a2d-96a9-53551be82085
2015-03-20 20:06 - 2015-03-20 20:06 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\PDFConvert
2015-03-20 20:03 - 2015-03-20 20:03 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\AFD2A09F-1426881810-164E-AE20-54A050B08B90
2015-03-20 19:59 - 2015-03-20 19:59 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\AFD2A09F-1426877952-164E-AE20-54A050B08B90
2015-03-20 19:57 - 2015-03-20 20:08 - 00000000 ____D () C:\Program Files (x86)\5d071829-374b-47fa-9818-78a767783ac9
2015-03-20 19:57 - 2015-03-20 19:58 - 00000000 ____D () C:\Program Files (x86)\9780e95a-ce1c-4e4c-b0cb-41c0930778c8
2015-03-20 19:55 - 2015-03-22 11:52 - 00000000 ____D () C:\Program Files\Common Files\Goobzo
2015-03-20 19:55 - 2015-03-20 21:14 - 00000000 ____D () C:\ProgramData\dUboYlu
2015-03-20 19:54 - 2015-03-20 19:54 - 00000080 _____ () C:\Users\Kathrin\AppData\Local\recently-fix.db
2015-03-20 19:54 - 2015-03-20 19:54 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\CrashRpt
2015-03-20 19:53 - 2015-03-24 14:04 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\K611BHP
2015-03-20 19:53 - 2015-03-24 14:04 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\gxAYW31
2015-03-20 19:53 - 2015-03-20 21:25 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\YXnJp66
2015-03-20 19:53 - 2015-03-20 19:53 - 00003244 _____ () C:\Windows\System32\Tasks\MvehS8ive1t8gli
2015-03-20 19:53 - 2015-03-20 19:53 - 00003242 _____ () C:\Windows\System32\Tasks\bi4p25c2pzLecp9
2015-03-20 19:53 - 2015-03-20 19:53 - 00000000 ____D () C:\ProgramData\atjs
2015-03-20 19:51 - 2015-03-24 13:12 - 00000000 ____D () C:\Program Files\shopperz
2015-03-20 19:51 - 2015-03-20 19:51 - 00035320 _____ () C:\Windows\system32\Drivers\bsdriver.sys
2015-03-20 19:51 - 2015-01-06 12:38 - 00060376 _____ (Cherimoya Ltd) C:\Windows\system32\Drivers\cherimoya.sys
2015-03-20 19:40 - 2015-03-21 16:37 - 00000000 ____D () C:\Program Files (x86)\decodit
2015-03-20 19:40 - 2015-03-20 19:40 - 00000000 ____D () C:\ProgramData\{a48b877b-6b4c-3561-a48b-b877b6b41ded}
2015-03-20 19:38 - 2015-03-24 13:57 - 00000000 ____D () C:\ProgramData\{250f7470-3935-76be-250f-f7470393d1c0}
2015-03-20 19:25 - 2015-03-28 10:41 - 00000375 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-03-20 19:03 - 2015-03-20 19:03 - 00000000 ____D () C:\ProgramData\e314b8475a214ebc973cc42fbf8c6edf
2015-03-20 19:02 - 2015-03-20 19:02 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webTinstMKTN_01009.Wdf
2015-03-20 19:01 - 2015-03-20 19:01 - 00028440 _____ () C:\Windows\system32\Drivers\tammgF119.sys
2015-03-20 19:01 - 2015-03-20 19:01 - 00027928 _____ () C:\Windows\system32\Drivers\tammgR119.sys
2015-03-20 19:01 - 2015-03-20 19:01 - 00000000 ____D () C:\ProgramData\bobyzoom
2015-03-20 18:43 - 2015-03-24 13:57 - 00000000 ____D () C:\ProgramData\{7093484e-348e-32c8-7093-3484e3482138}
2015-03-20 18:43 - 2015-03-24 13:57 - 00000000 ____D () C:\ProgramData\{04c7e315-9608-a616-04c7-7e3159608c56}
2015-03-20 18:42 - 2015-03-24 13:57 - 00000000 ____D () C:\ProgramData\{98766e32-3753-7220-9876-66e32375b8c8}
2015-03-20 18:36 - 2015-03-20 18:42 - 00000000 ____D () C:\ProgramData\{09549767-48fa-2196-0954-4976748f5d9d}
2015-03-20 18:34 - 2015-03-20 19:50 - 00000000 ____D () C:\Program Files (x86)\KMSPico 10.0.6
2015-03-20 10:54 - 2015-03-20 10:54 - 00001452 _____ () C:\Users\Public\Desktop\Free Audio Converter.lnk
2015-03-20 09:56 - 2015-03-27 07:28 - 00000000 ____D () C:\Users\Kathrin\Documents\Dirk Dokumente
2015-03-20 07:17 - 2015-03-24 11:11 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-03-20 07:11 - 2015-03-20 19:58 - 00000000 ____D () C:\Program Files (x86)\8947fbb4-494d-4120-a680-9dc4a931a40f
2015-03-19 14:59 - 2015-03-19 14:59 - 00016327 _____ () C:\Users\Kathrin\Documents\Sparkasse Leipzig 10.03.2015.odt
2015-03-19 09:38 - 2015-03-27 07:28 - 00000000 ____D () C:\Users\Kathrin\Documents\Lena Dokumente
2015-03-19 09:32 - 2015-03-19 09:33 - 00000000 ____D () C:\Users\Kathrin\Documents\Handbücher
2015-03-19 07:43 - 2015-03-19 07:43 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\OpenOffice
2015-03-19 07:42 - 2015-03-19 07:42 - 00001132 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk
2015-03-19 07:42 - 2015-03-19 07:42 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-03-19 07:41 - 2015-03-19 07:41 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2015-03-18 07:15 - 2015-03-18 07:15 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219240488-490141483-2103266266-1001Core.job
2015-03-18 07:15 - 2015-03-18 07:15 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2015-03-17 19:39 - 2015-03-17 19:39 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\CyberLink
2015-03-17 19:39 - 2015-03-17 19:39 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\Power2Go
2015-03-17 07:47 - 2015-03-17 07:47 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\Macromedia
2015-03-17 07:43 - 2015-03-17 07:44 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\Mozilla
2015-03-17 07:43 - 2015-03-17 07:43 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\Mozilla
2015-03-17 07:43 - 2015-03-17 07:43 - 00000000 ____D () C:\ProgramData\Mozilla
2015-03-17 07:14 - 2015-03-17 07:16 - 00000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2015-03-17 07:12 - 2015-03-24 13:42 - 00000000 ____D () C:\ProgramData\CLSK
2015-03-17 07:12 - 2015-03-17 19:39 - 00000000 ____D () C:\ProgramData\CyberLink
2015-03-17 07:12 - 2015-03-17 07:14 - 00000000 ____D () C:\ProgramData\Temp
2015-03-17 07:12 - 2015-03-17 07:13 - 00000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2015-03-16 19:32 - 2015-03-16 19:32 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\dlg
2015-03-16 16:43 - 2015-03-27 09:08 - 00000000 ____D () C:\Users\Kathrin\Documents\Bewerbungen
2015-03-16 16:42 - 2015-03-26 10:33 - 00122368 ___SH () C:\Users\Kathrin\Downloads\Thumbs.db
2015-03-16 16:41 - 2015-03-27 08:11 - 00000000 ____D () C:\Users\Kathrin\Documents\Programme
2015-03-16 16:23 - 2015-03-16 16:23 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\QuickScan
2015-03-16 16:16 - 2015-03-16 16:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-03-16 16:15 - 2015-03-16 16:15 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-03-16 16:13 - 2015-03-16 16:14 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\SpeedMon
2015-03-16 16:13 - 2015-03-16 16:14 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedMon
2015-03-09 22:30 - 2015-03-09 22:30 - 00005487 _____ () C:\Users\Kathrin\AppData\Roaming\RTQFZORV
2015-03-09 22:30 - 2015-03-09 22:30 - 00005487 _____ () C:\Users\Kathrin\AppData\Roaming\LMME
2015-02-26 10:13 - 2015-03-04 22:24 - 00792032 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-26 10:13 - 2015-03-04 22:24 - 00178144 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-26 05:21 - 2014-12-03 00:09 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-02-26 05:20 - 2014-11-10 03:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupStatusProvider.dll
2015-02-26 05:20 - 2014-11-10 02:51 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceSetupStatusProvider.dll
2015-02-26 05:20 - 2014-10-31 00:39 - 01970432 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-02-26 05:20 - 2014-10-31 00:38 - 01612992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-02-26 00:07 - 2014-11-22 03:49 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-02-26 00:07 - 2014-11-22 03:06 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-17 13:17 - 2014-10-05 08:21 - 00003934 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{78F658B6-EBDA-42AC-BE87-612CF0809958}
2015-04-16 20:10 - 2014-10-07 18:39 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-16 20:10 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\WinStore
2015-04-16 20:10 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-04-16 20:10 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-04-16 19:54 - 2014-10-06 13:57 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-16 19:02 - 2015-01-11 03:14 - 00003772 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-16 18:48 - 2014-11-29 20:38 - 00000999 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2015-04-16 18:48 - 2014-11-29 20:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-04-16 14:42 - 2014-11-29 20:38 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\TuneUp Software
2015-04-15 21:16 - 2015-01-11 02:50 - 00000000 ____D () C:\ProgramData\{90f0b829-5399-9a24-90f0-0b829539e0a5}
2015-04-15 21:16 - 2015-01-11 02:42 - 00000000 ____D () C:\ProgramData\{52252aba-4178-1e35-5225-52aba417aae9}
2015-04-15 19:50 - 2014-08-14 17:34 - 00000000 ____D () C:\ProgramData\McAfee
2015-04-15 19:48 - 2013-08-22 16:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-04-15 19:27 - 2014-10-05 08:26 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\Skype
2015-04-15 18:06 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppCompat
2015-03-28 15:52 - 2014-10-05 08:16 - 00000000 ____D () C:\Users\Kathrin
2015-03-28 15:29 - 2014-08-14 17:12 - 01256881 _____ () C:\Windows\WindowsUpdate.log
2015-03-28 15:28 - 2014-11-29 20:34 - 00000000 ____D () C:\ProgramData\MFAData
2015-03-28 15:24 - 2014-10-05 08:17 - 00000081 _____ () C:\Users\Kathrin\AppData\Roaming\sp_data.sys
2015-03-28 15:23 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2015-03-28 12:02 - 2015-01-11 03:14 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-28 11:06 - 2014-05-16 00:45 - 00765582 _____ () C:\Windows\system32\perfh007.dat
2015-03-28 11:06 - 2014-05-16 00:45 - 00159366 _____ () C:\Windows\system32\perfc007.dat
2015-03-28 11:06 - 2014-03-18 16:26 - 01776918 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-28 10:44 - 2014-12-01 00:23 - 01850880 ___SH () C:\Users\Kathrin\Documents\Thumbs.db
2015-03-28 10:39 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-27 16:10 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-03-27 10:54 - 2014-10-05 08:22 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2219240488-490141483-2103266266-1001
2015-03-27 09:09 - 2014-03-18 09:16 - 00038780 _____ () C:\Windows\PFRO.log
2015-03-27 08:09 - 2014-10-05 08:16 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\Adobe
2015-03-27 08:08 - 2015-01-11 03:13 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\Adobe
2015-03-27 07:28 - 2014-10-10 10:48 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\CrashDumps
2015-03-26 21:16 - 2015-02-25 23:24 - 00145408 ___SH () C:\Users\Kathrin\Desktop\Thumbs.db
2015-03-26 20:25 - 2013-08-22 15:44 - 00512384 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-26 20:06 - 2014-05-15 16:53 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-03-26 20:05 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-03-25 10:15 - 2013-08-22 15:46 - 00037491 _____ () C:\Windows\setupact.log
2015-03-24 13:53 - 2015-01-11 10:14 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-03-24 13:43 - 2014-08-14 17:13 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-03-24 13:35 - 2014-10-05 08:26 - 00000000 ____D () C:\ProgramData\Skype
2015-03-24 13:34 - 2014-12-01 06:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-03-24 13:34 - 2014-12-01 06:53 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2015-03-24 13:34 - 2014-12-01 06:52 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\DVDVideoSoft
2015-03-24 13:29 - 2014-11-30 21:36 - 00000000 ____D () C:\Program Files (x86)\Google
2015-03-24 13:28 - 2014-11-30 21:35 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\Google
2015-03-23 15:37 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-03-23 10:45 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\LiveKernelReports
2015-03-22 11:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\System
2015-03-22 11:49 - 2014-12-01 06:54 - 00000000 ____D () C:\Program Files (x86)\1und1Softwareaktualisierung
2015-03-22 11:28 - 2014-12-01 06:59 - 00000000 ____D () C:\Users\Kathrin\AppData\Roaming\Opera Software
2015-03-22 11:28 - 2014-12-01 06:59 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\Opera Software
2015-03-22 11:28 - 2014-12-01 06:57 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-03-22 11:24 - 2014-10-05 08:16 - 00001452 _____ () C:\Users\Kathrin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-03-22 11:04 - 2015-01-11 10:22 - 00003098 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2219240488-490141483-2103266266-1001
2015-03-22 11:04 - 2014-10-05 08:19 - 00000000 __RDO () C:\Users\Kathrin\OneDrive
2015-03-22 10:55 - 2014-10-07 18:45 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2015-03-20 19:02 - 2013-08-22 16:36 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-03-20 19:02 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2015-03-20 10:55 - 2014-12-01 06:55 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2015-03-20 10:55 - 2014-12-01 06:55 - 00000000 ____D () C:\ProgramData\TuneUp Software
2015-03-20 10:54 - 2014-12-01 06:55 - 00001259 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2015-03-19 08:32 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2015-03-18 18:53 - 2013-08-22 16:37 - 00004167 _____ () C:\Windows\DtcInstall.log
2015-03-18 18:47 - 2014-03-18 16:10 - 00000000 ____D () C:\Program Files\Windows Journal
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ToastData
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\sppui
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\setup
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\Com
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-03-18 18:47 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Multimedia Platform
2015-03-18 18:47 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2015-03-18 18:47 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-03-18 18:47 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\servicing
2015-03-18 18:45 - 2013-08-22 16:36 - 00000000 ___SD () C:\Windows\system32\dsc
2015-03-18 18:45 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2015-03-18 18:45 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2015-03-18 18:45 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\SystemResetPlatform
2015-03-18 18:45 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sppui
2015-03-18 18:45 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\setup
2015-03-18 18:45 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\migwiz
2015-03-18 18:45 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\Com
2015-03-18 18:45 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\IME
2015-03-18 18:45 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\Sysprep
2015-03-18 18:45 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\oobe
2015-03-18 18:45 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\Dism
2015-03-18 18:44 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\WindowsPowerShell
2015-03-18 18:44 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2015-03-18 18:44 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-03-18 18:44 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Multimedia Platform
2015-03-18 15:30 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-03-18 15:28 - 2013-08-22 16:36 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-03-18 15:28 - 2013-08-22 16:36 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2015-03-18 07:15 - 2014-12-01 01:24 - 00001124 _____ () C:\Users\Public\Desktop\Picasa 3.lnk
2015-03-18 06:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\MediaViewer
2015-03-18 06:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\FileManager
2015-03-18 06:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\Camera
2015-03-17 07:14 - 2014-10-05 08:16 - 00000000 ____D () C:\Users\Kathrin\AppData\Local\Packages
2015-03-17 07:14 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-03-01 20:52 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-RS
2015-03-01 20:52 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2015-02-26 20:14 - 2014-10-06 13:57 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-26 10:10 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
==================== Files in the root of some directories =======
2015-03-09 22:30 - 2015-03-09 22:30 - 0005487 _____ () C:\Users\Kathrin\AppData\Roaming\LMME
2015-03-09 22:30 - 2015-03-09 22:30 - 0005487 _____ () C:\Users\Kathrin\AppData\Roaming\RTQFZORV
2014-10-05 08:17 - 2015-03-28 15:24 - 0000081 _____ () C:\Users\Kathrin\AppData\Roaming\sp_data.sys
2014-10-05 09:25 - 2014-11-29 20:25 - 0000131 _____ () C:\Users\Kathrin\AppData\Roaming\WB.CFG
2014-10-10 10:25 - 2014-10-10 10:25 - 0000001 _____ () C:\Users\Kathrin\AppData\Local\DSI.DAT
2015-03-20 19:54 - 2015-03-20 19:54 - 0000080 _____ () C:\Users\Kathrin\AppData\Local\recently-fix.db
2014-08-14 17:21 - 2014-08-14 17:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-15 16:58 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2014-05-15 16:58 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2014-05-15 16:58 - 2012-09-07 12:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS
2015-03-24 13:40 - 2015-03-24 13:40 - 0000032 _____ () C:\ProgramData\Temp.log
2015-03-17 07:14 - 2015-03-17 07:16 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2015-03-17 07:12 - 2015-03-17 07:13 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
Files to move or delete:
====================
C:\ProgramData\SetStretch.exe
C:\ProgramData\SetStretch.VBS
Some content of TEMP:
====================
C:\Users\Kathrin\AppData\Local\Temp\4754A20B-48BD-0A59-3FE0-3CDF5D1052F8.dll
C:\Users\Kathrin\AppData\Local\Temp\9391.exe
C:\Users\Kathrin\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\Kathrin\AppData\Local\Temp\default-search.DLL
C:\Users\Kathrin\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Kathrin\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Kathrin\AppData\Local\Temp\KMSPico10.0.9__8173_il41857.exe
C:\Users\Kathrin\AppData\Local\Temp\KMSPicoCloseAll.exe
C:\Users\Kathrin\AppData\Local\Temp\MyPCBACKbuidAmonetize.exe
C:\Users\Kathrin\AppData\Local\Temp\Quarantine.exe
C:\Users\Kathrin\AppData\Local\Temp\ResetDevice.exe
C:\Users\Kathrin\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Kathrin\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\Kathrin\AppData\Local\Temp\SpOrder.dll
C:\Users\Kathrin\AppData\Local\Temp\sqlite3.dll
C:\Users\Kathrin\AppData\Local\Temp\System.Data.SQLite.dll
C:\Users\Kathrin\AppData\Local\Temp\tu17p84.exe
C:\Users\Kathrin\AppData\Local\Temp\vcredist_x64.exe
C:\Users\Kathrin\AppData\Local\Temp\webde_onlinespeicher_setup_a201412.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-03-21 06:45
==================== End Of Log ============================
03.04.2015, 10:57
Baum-Darstellung