|
Log-Analyse und Auswertung: Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsamWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
29.05.2015, 16:28 | #1 |
| Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Hallo, ich hoffe sehr, dass ich hier Hilfe bei der Lösung meines Problems bekomme. Ich habe kürzlich die folgenden zwei Programme im Netz heruntergeladen und auf meinem PC installiert: - Hotspot Shield und - File Shredder 2.5 Nach Installation wurde der PC sehr langsam, und ich habe seitdem einen großen Hotspot Shield-Banner in jedem Webbrowser. Ich wollte nun nacheinander jedes der Programme deinstallieren, was jeweils dazu führte, dass nach Deinstallation mein Computer keine WLAN-Verbindung mehr aufbaute und mir als Grund des Fehlers von Windows angezeigt wurde, ich hätte einen Hardware-Fehler (WLAN/Netzwerk-Karte etc. sei kaputt). Ich muste demzufolge jeweils immer eine Systemwiederherstellung machen, um überhaupt wieder eine Internetverbindung zu haben. Beide Programme sind also nach den Systemwiederherstellungen noch auf meinem PC installiert und lassen sich nicht wirklich deinstallieren (denn nach Deinstallation ist ja meine Internetverbindung weg), wobei das Programm File Shredder zwar in der Programmliste der Systemsteuerung angezeigt wird, geht man aber auf Deinstallieren, kommt eine Fehlermeldung, das Programm könne nicht deinstalliert werden weil nicht mehr vorhanden (den genauen Wortlaut der Fehlermeldung weiss ich nicht mehr genau). Und nach dieser Aktion, sobald ich also in der Systemsteuerung bei File Shredder auf Deinstallieren klicke und die Fehlermeldung erscheint, funktioniert die WLAN-Verbindung nicht mehr und ich muss wieder eine Systemwiederherstellung machen, um Internet zu haben. Ich nutze Kaspersky, das zeigt mir nach dem Scan an, mein Computer sei clean und frei von Bedrohungen. Ich würde mich freuen, wenn Ihr mir helfen könntet. PS: Ich habe alle Logfiles eingefügt, nur defogger hat mir keine Textdatei geliefert. Danke und viele Grüße, Juli Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-05-2015 01 Ran by Juliane8 (administrator) on JULIANE on 29-05-2015 16:11:04 Running from C:\Users\Juliane8\Downloads Loaded Profiles: Juliane8 (Available Profiles: Juliane8 & UpdatusUser & Eike & Administrateur) Platform: Windows 8 (X64) OS Language: Français (France) Internet Explorer Version 10 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe (Broadcom Corp.) C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe (Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe (Dritek System INC.) C:\Windows\RfBtnSvc64.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe (AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\HSSCP.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe (Dritek System Inc.) C:\Program Files (x86)\RadioController\RfBtnHelper.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\af_proxy_cmd.exe (CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.17280_none_6224eed751126779\TiWorker.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Users\Juliane8\Downloads\Defogger.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2873744 2012-11-20] (ELAN Microelectronics Corp.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor) HKLM-x32\...\Run: [LManager] => [X] HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2013-06-26] (Dritek System Inc.) HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2994880 2012-08-15] (Symantec Corporation) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [245872 2013-02-21] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [201576 2013-02-21] (NVIDIA Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) AutoConfigURL: [S-1-5-21-2694262190-2736747673-2123131371-1002] => hxxp://127.0.0.1:895/proxy.js HKU\S-1-5-21-2694262190-2736747673-2123131371-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://uk.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://uk.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} SearchScopes: HKU\S-1-5-21-2694262190-2736747673-2123131371-1002 -> DefaultScope {39077373-6179-4F07-B929-EAC3232937CB} URL = SearchScopes: HKU\S-1-5-21-2694262190-2736747673-2123131371-1002 -> {39077373-6179-4F07-B929-EAC3232937CB} URL = SearchScopes: HKU\S-1-5-21-2694262190-2736747673-2123131371-1002 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://uk.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-05-23] (Microsoft Corporation) BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-05-23] (Microsoft Corporation) BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-05-23] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\Juliane8\AppData\Roaming\Mozilla\Firefox\Profiles\i29giw1a.default FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation) FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-05-23] () FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-05-23] () FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-05-23] () FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-05-23] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-23] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-23] (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] () FF user.js: detected! => C:\Users\Juliane8\AppData\Roaming\Mozilla\Firefox\Profiles\i29giw1a.default\user.js [2015-05-24] FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-05-23] FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-05-23] FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-05-23] FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: No Name - C:\Program Files\McAfee\MSK [2013-05-23] Chrome: ======= CHR Profile: C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Kaspersky Protection) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-05-23] CHR Extension: (Bookmark Manager) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-23] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-24] CHR Extension: (Google Wallet) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-23] CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [193400 2014-12-23] (Kaspersky Lab ZAO) R2 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-20] (Broadcom Corp.) [File not signed] R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-19] (Acer Incorporated) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2736824 2015-04-07] (Microsoft Corporation) R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated) R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100752 2012-11-20] (ELAN Microelectronics Corp.) R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [1169704 2015-05-19] (AnchorFree Inc.) S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [96688 2015-05-19] () R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [589608 2015-05-19] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation) R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3943104 2012-08-15] (Symantec Corporation) R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2013-06-26] (Dritek System INC.) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation) S2 0027331432385754mcinstcleanup; C:\Users\Juliane8\AppData\Local\Temp\002733~1.EXE -cleanup -nolog [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [5139968 2012-06-02] (Broadcom Corporation) R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation) R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [238288 2013-01-14] (Kaspersky Lab UK Ltd) R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2015-05-19] (AnchorFree Inc.) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [468576 2014-03-31] (Kaspersky Lab ZAO) R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [56008 2015-05-23] (Kaspersky Lab ZAO) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab) R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [151240 2014-11-28] (Kaspersky Lab ZAO) R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [247496 2014-10-22] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [824008 2015-05-23] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30920 2014-10-10] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [31432 2014-10-30] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [69320 2014-11-20] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [77000 2014-11-22] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [181960 2014-11-10] (Kaspersky Lab ZAO) R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-06-26] (Dritek System Inc.) R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2015-05-19] (Anchorfree Inc.) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-05-29 16:11 - 2015-05-29 16:11 - 00380416 _____ () C:\Users\Juliane8\Downloads\uwfk0wd2.exe 2015-05-29 16:11 - 2015-05-29 16:11 - 00016726 _____ () C:\Users\Juliane8\Downloads\FRST.txt 2015-05-29 16:10 - 2015-05-29 16:11 - 00000000 ____D () C:\FRST 2015-05-29 16:10 - 2015-05-29 16:10 - 02108928 _____ (Farbar) C:\Users\Juliane8\Downloads\FRST64.exe 2015-05-29 16:08 - 2015-05-29 16:08 - 00050477 _____ () C:\Users\Juliane8\Downloads\Defogger.exe 2015-05-29 16:08 - 2015-05-29 16:08 - 00000478 _____ () C:\Users\Juliane8\Downloads\defogger_disable.log 2015-05-29 16:08 - 2015-05-29 16:08 - 00000000 _____ () C:\Users\Juliane8\defogger_reenable 2015-05-29 15:47 - 2015-05-29 15:48 - 00430608 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2015-05-29 12:29 - 2015-05-29 12:29 - 00000000 ____D () C:\ProgramData\hsswpr 2015-05-29 12:27 - 2015-05-29 12:27 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group 2015-05-29 11:13 - 2014-01-31 02:06 - 00599040 ____N (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll 2015-05-29 11:13 - 2013-06-01 11:25 - 00067584 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll 2015-05-29 11:13 - 2013-06-01 11:21 - 00729600 ____N (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2015-05-29 11:13 - 2013-06-01 11:21 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll 2015-05-29 11:13 - 2013-06-01 11:20 - 02219520 ____N (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2015-05-29 11:12 - 2015-01-24 08:42 - 00325632 ____N (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2015-05-29 11:12 - 2013-08-30 07:20 - 01173504 ____N (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-05-29 11:09 - 2014-08-01 01:40 - 01287680 ____N (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2015-05-29 11:09 - 2013-06-19 00:38 - 00160256 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll 2015-05-29 11:09 - 2013-06-19 00:38 - 00125440 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll 2015-05-29 11:08 - 2013-08-30 07:19 - 00626688 ____N (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2015-05-29 11:08 - 2013-08-30 07:18 - 00374784 ____N (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2015-05-29 11:06 - 2014-06-28 08:56 - 00117248 ____N (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll 2015-05-29 11:06 - 2014-06-18 01:23 - 02238464 ____N (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2015-05-29 11:05 - 2013-08-10 07:21 - 00128512 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll 2015-05-29 10:58 - 2014-07-17 00:59 - 00305664 ____N (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll 2015-05-29 10:58 - 2014-07-17 00:59 - 00035840 ____N (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll 2015-05-29 10:58 - 2014-06-28 08:57 - 01341952 ____N (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2015-05-29 10:58 - 2014-06-28 04:23 - 01126400 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2015-05-29 10:48 - 2013-10-31 07:56 - 00915968 ____N (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2015-05-29 10:48 - 2013-10-31 07:56 - 00758784 ____N (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll 2015-05-29 10:48 - 2013-08-27 07:19 - 00104448 ____N (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll 2015-05-29 10:43 - 2014-03-01 11:47 - 01258496 ____N (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2015-05-29 10:43 - 2014-03-01 08:59 - 00974848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2015-05-28 21:18 - 2015-05-29 09:37 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy 2015-05-28 21:18 - 2015-05-28 21:18 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking 2015-05-28 21:17 - 2015-05-29 10:28 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2 2015-05-27 13:38 - 2015-05-27 13:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\Hotspot Shield 2015-05-27 09:08 - 2015-05-27 09:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-05-26 20:56 - 2015-05-26 23:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5 2015-05-26 20:56 - 2015-05-26 20:56 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\GlarySoft 2015-05-26 20:56 - 2015-05-26 20:56 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\DiskDefrag 2015-05-26 20:55 - 2015-05-26 23:12 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5 2015-05-26 20:30 - 2015-05-29 10:32 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-05-26 20:30 - 2015-05-26 20:30 - 00000000 ____D () C:\ProgramData\Malwarebytes 2015-05-26 08:57 - 2015-05-26 12:17 - 00000000 ____D () C:\Program Files (x86)\PDF24 2015-05-26 08:57 - 2015-05-26 08:57 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\PDF24 2015-05-26 08:26 - 2015-05-26 08:26 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\clear.fi 2015-05-26 08:16 - 2015-05-26 08:16 - 00000108 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc 2015-05-26 08:15 - 2015-05-26 08:15 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (4).pptx 2015-05-26 08:12 - 2015-05-26 08:44 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\MemoQ 2015-05-26 08:12 - 2015-05-26 08:43 - 00000000 ____D () C:\ProgramData\MemoQ 2015-05-26 08:12 - 2015-05-26 08:12 - 00000000 ____D () C:\Program Files (x86)\Kilgray 2015-05-25 23:57 - 2015-05-25 23:57 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (3).pptx 2015-05-25 23:57 - 2015-05-25 23:57 - 00012960 _____ () C:\Users\Juliane8\Downloads\source (2).zip 2015-05-25 23:43 - 2015-05-25 23:43 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (2).pptx 2015-05-25 23:40 - 2015-05-25 23:40 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (1).pptx 2015-05-25 09:49 - 2015-05-25 09:49 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\SDL 2015-05-25 09:49 - 2015-05-25 09:49 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\SDL 2015-05-25 09:47 - 2015-05-26 12:13 - 00000000 ____D () C:\ProgramData\SafeNet Sentinel 2015-05-25 09:46 - 2015-05-25 09:48 - 00000000 ____D () C:\ProgramData\SDL 2015-05-25 09:45 - 2015-05-26 12:13 - 00000000 ____D () C:\ProgramData\Package Cache 2015-05-25 09:30 - 2015-05-25 09:30 - 00000000 ____D () C:\Program Files\Common Files\Little Registry Cleaner 2015-05-25 09:29 - 2015-05-29 15:45 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\OpenCandy 2015-05-25 09:29 - 2015-05-26 12:30 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Little Registry Cleaner 2015-05-25 09:29 - 2015-05-26 12:30 - 00000000 ____D () C:\Program Files (x86)\Little Registry Cleaner 2015-05-25 09:28 - 2015-05-25 09:28 - 05885520 _____ (Little Apps) C:\Users\Juliane8\Downloads\Little_Registry_Cleaner_07_07_2013.exe 2015-05-25 09:23 - 2015-05-29 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Shredder 2015-05-25 09:23 - 2015-05-29 15:44 - 00000000 ____D () C:\Program Files\File Shredder 2015-05-25 09:23 - 2015-05-25 09:23 - 00000851 _____ () C:\Users\Juliane8\Desktop\File Shredder.lnk 2015-05-25 09:22 - 2015-05-25 09:23 - 02317839 _____ (PowTools ) C:\Users\Juliane8\Downloads\file_shredder_setup.exe 2015-05-25 09:17 - 2015-05-25 09:21 - 338565749 _____ () C:\Users\Juliane8\Downloads\SDLTradosStudio2014TrialDE (1).exe 2015-05-25 09:14 - 2015-05-25 09:14 - 00001128 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk 2015-05-25 09:10 - 2015-05-29 15:45 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Hotspot Shield 2015-05-25 09:10 - 2015-05-29 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield 2015-05-25 09:10 - 2015-05-29 15:44 - 00000000 ____D () C:\Program Files (x86)\Hotspot Shield 2015-05-25 09:10 - 2015-05-29 15:38 - 00000000 ____D () C:\ProgramData\Hotspot Shield 2015-05-25 09:10 - 2015-05-25 09:10 - 09975680 _____ () C:\Users\Juliane8\Downloads\HSS-4.15.2-install-plain-701-plain.exe 2015-05-25 09:10 - 2015-05-19 03:06 - 00044744 _____ (AnchorFree Inc.) C:\WINDOWS\system32\Drivers\hssdrv6.sys 2015-05-24 13:55 - 2015-05-24 13:55 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel 2015-05-24 13:55 - 2015-05-24 13:55 - 00000000 ____D () C:\WINDOWS\system32\appraiser 2015-05-24 10:35 - 2014-10-09 06:00 - 01519104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll 2015-05-24 10:35 - 2014-10-09 06:00 - 01484288 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe 2015-05-24 10:35 - 2014-10-09 06:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll 2015-05-24 10:35 - 2014-10-09 05:59 - 01195520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll 2015-05-24 10:35 - 2014-10-09 05:59 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll 2015-05-23 17:29 - 2015-05-23 17:29 - 00002338 _____ () C:\Users\Juliane8\Desktop\Safe Money.lnk 2015-05-23 17:17 - 2015-05-23 17:17 - 00002136 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk 2015-05-23 17:17 - 2015-05-23 17:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2015-05-23 17:17 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll 2015-05-23 17:16 - 2015-05-29 16:03 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2015-05-23 17:16 - 2015-05-23 17:16 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab 2015-05-23 17:16 - 2014-10-22 21:13 - 00247496 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klhk.sys 2015-05-23 16:53 - 2015-05-23 16:57 - 00000000 ____D () C:\WINDOWS\system32\MRT 2015-05-23 16:53 - 2015-04-30 10:07 - 140425016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-05-23 16:25 - 2015-01-09 08:43 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2015-05-23 16:25 - 2015-01-09 07:03 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2015-05-23 16:25 - 2015-01-09 01:52 - 00478296 _____ () C:\WINDOWS\SysWOW64\locale.nls 2015-05-23 16:25 - 2015-01-09 01:52 - 00478296 _____ () C:\WINDOWS\system32\locale.nls 2015-05-23 16:20 - 2015-04-30 15:07 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-05-23 16:20 - 2015-04-30 15:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-05-23 15:48 - 2014-06-11 00:44 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2015-05-23 15:48 - 2014-06-11 00:43 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-05-23 15:35 - 2014-11-15 08:06 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2015-05-23 15:35 - 2014-11-15 07:13 - 03286016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 01623552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe 2015-05-23 15:35 - 2014-11-15 07:12 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll 2015-05-23 15:35 - 2014-11-15 05:54 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe 2015-05-23 15:35 - 2014-11-15 05:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2015-05-23 15:35 - 2014-11-15 05:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll 2015-05-23 15:35 - 2014-11-15 05:53 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2015-05-23 15:35 - 2013-10-19 07:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll 2015-05-23 15:35 - 2013-10-19 06:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll 2015-05-23 15:35 - 2013-07-06 02:15 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2015-05-23 15:35 - 2013-07-04 04:13 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2015-05-23 15:34 - 2014-11-05 08:40 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2015-05-23 15:34 - 2014-11-05 08:39 - 01024512 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2015-05-23 15:34 - 2014-10-29 16:21 - 00499008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2015-05-23 15:34 - 2014-08-28 08:01 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll 2015-05-23 15:33 - 2015-03-23 07:19 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-05-23 15:33 - 2015-03-23 00:04 - 01111552 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2015-05-23 15:33 - 2014-12-03 03:48 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2015-05-23 15:33 - 2014-06-18 01:27 - 01440256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe 2015-05-23 15:33 - 2014-06-18 01:24 - 01557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe 2015-05-23 15:33 - 2014-06-05 03:12 - 00678600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll 2015-05-23 15:33 - 2014-06-04 01:12 - 00536776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll 2015-05-23 15:32 - 2014-12-11 08:51 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe 2015-05-23 15:31 - 2015-04-13 07:32 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2015-05-23 15:31 - 2015-03-17 09:00 - 06971712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-05-23 15:31 - 2015-03-17 08:52 - 01822696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2015-05-23 15:31 - 2015-03-17 06:45 - 01409496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2015-05-23 15:30 - 2015-02-20 15:59 - 00046080 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-05-23 15:30 - 2015-02-20 13:56 - 00366592 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-05-23 15:30 - 2015-02-20 10:10 - 00035328 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-05-23 15:30 - 2015-02-20 09:24 - 00304128 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-05-23 15:30 - 2015-01-31 15:48 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys 2015-05-23 15:30 - 2015-01-31 07:55 - 00275712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys 2015-05-23 15:30 - 2014-02-06 01:41 - 01257984 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32(171).dll 2015-05-23 15:29 - 2014-09-13 08:24 - 02233152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2015-05-23 15:29 - 2014-09-03 04:48 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll 2015-05-23 15:29 - 2014-09-03 04:22 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll 2015-05-23 15:29 - 2014-08-29 06:17 - 02043392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2015-05-23 15:29 - 2014-08-29 06:17 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll 2015-05-23 15:29 - 2014-08-29 06:04 - 02837504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2015-05-23 15:29 - 2014-08-29 06:04 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2015-05-23 15:29 - 2014-08-28 08:04 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll 2015-05-23 15:29 - 2014-08-28 08:04 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSTIFF.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXST30.dll 2015-05-23 15:29 - 2014-07-24 15:12 - 00328512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys 2015-05-23 15:29 - 2014-02-06 01:19 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32(184).dll 2015-05-23 15:27 - 2015-02-24 09:58 - 00861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2015-05-23 15:27 - 2014-10-09 05:59 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2015-05-23 15:27 - 2014-10-09 05:59 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2015-05-23 15:27 - 2014-10-09 05:58 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2015-05-23 15:27 - 2014-09-22 07:38 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2015-05-23 15:27 - 2014-09-22 05:56 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2015-05-23 15:27 - 2013-07-06 00:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys 2015-05-23 15:27 - 2013-07-06 00:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys 2015-05-23 15:27 - 2013-07-02 00:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys 2015-05-23 15:27 - 2013-06-29 05:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys 2015-05-23 15:27 - 2013-06-29 05:07 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2015-05-23 15:27 - 2013-06-22 07:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys 2015-05-23 15:27 - 2013-06-22 07:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys 2015-05-23 15:26 - 2015-04-13 07:30 - 01839616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2015-05-23 15:26 - 2015-04-13 07:30 - 01280512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2015-05-23 15:26 - 2015-04-13 06:05 - 01416192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2015-05-23 15:26 - 2015-04-13 05:25 - 04063744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-05-23 15:26 - 2015-01-29 10:05 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2015-05-23 15:26 - 2015-01-29 08:19 - 01339392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2015-05-23 15:26 - 2013-03-02 12:57 - 00332520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2015-05-23 15:26 - 2013-03-02 12:57 - 00077544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys 2015-05-23 15:26 - 2013-03-02 12:45 - 00194792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2015-05-23 15:26 - 2013-03-02 12:45 - 00148712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys 2015-05-23 15:26 - 2013-03-02 12:45 - 00125160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2015-05-23 15:26 - 2013-03-02 10:23 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2015-05-23 15:26 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2015-05-23 15:26 - 2013-03-02 10:23 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2015-05-23 15:26 - 2013-03-02 10:23 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncInfo.dll 2015-05-23 15:26 - 2013-03-02 10:22 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2015-05-23 15:26 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll 2015-05-23 15:26 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll 2015-05-23 15:26 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl 2015-05-23 15:26 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 01161728 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 01149952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL 2015-05-23 15:26 - 2013-03-02 04:44 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo(177).dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll 2015-05-23 15:26 - 2013-03-02 04:43 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl 2015-05-23 15:26 - 2013-03-02 04:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys 2015-05-23 15:26 - 2013-03-01 06:56 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys 2015-05-23 15:20 - 2014-07-24 05:33 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll 2015-05-23 15:20 - 2014-07-24 05:33 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll 2015-05-23 15:20 - 2014-07-07 07:53 - 01125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe 2015-05-23 15:20 - 2014-07-07 07:52 - 00724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll 2015-05-23 15:20 - 2014-07-07 07:52 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll 2015-05-23 15:20 - 2014-07-07 07:51 - 05982208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2015-05-23 15:20 - 2014-07-07 06:01 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe 2015-05-23 15:20 - 2014-07-07 06:01 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll 2015-05-23 15:20 - 2014-07-07 06:00 - 05095424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2015-05-23 15:20 - 2014-07-07 05:59 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aaclient.dll 2015-05-23 15:19 - 2015-03-14 10:07 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2015-05-23 15:19 - 2015-03-14 08:33 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2015-05-23 15:19 - 2015-03-04 09:29 - 00361280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2015-05-23 15:19 - 2015-03-04 08:39 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll 2015-05-23 15:19 - 2015-03-04 06:52 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll 2015-05-23 15:19 - 2014-12-08 08:48 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll 2015-05-23 15:19 - 2014-12-08 07:04 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll 2015-05-23 15:19 - 2014-10-11 09:45 - 10115072 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2015-05-23 15:19 - 2014-10-11 09:44 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2015-05-23 15:19 - 2014-10-11 09:44 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll 2015-05-23 15:19 - 2014-10-11 09:43 - 02307072 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2015-05-23 15:19 - 2014-10-11 07:58 - 08858624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2015-05-23 15:19 - 2014-10-11 07:57 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2015-05-23 15:19 - 2014-10-11 07:57 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll 2015-05-23 15:19 - 2014-10-11 07:56 - 02037760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2015-05-23 15:19 - 2014-06-13 01:34 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2015-05-23 15:19 - 2014-06-13 01:29 - 02146304 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2015-05-23 15:19 - 2013-04-24 01:13 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe 2015-05-23 15:19 - 2013-04-24 01:12 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll 2015-05-23 15:19 - 2013-04-24 00:56 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe 2015-05-23 15:19 - 2013-04-24 00:55 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 14374400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 13771776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 02864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 01763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-05-23 15:15 - 2015-04-21 15:53 - 02237440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-05-23 15:15 - 2015-04-21 15:53 - 01409536 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 19291136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 15414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 03959296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 02656768 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-05-23 15:15 - 2015-02-23 12:51 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll 2015-05-23 15:15 - 2014-06-03 00:33 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2015-05-23 15:14 - 2015-04-21 16:32 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2015-05-23 15:14 - 2015-04-21 15:53 - 00601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2015-05-23 15:14 - 2015-04-21 15:52 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2015-05-23 15:14 - 2015-04-18 04:37 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec 2015-05-23 15:14 - 2015-04-18 04:34 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec 2015-05-23 15:14 - 2015-02-23 12:52 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2015-05-23 15:14 - 2015-02-23 12:51 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll 2015-05-23 15:14 - 2015-02-23 12:51 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll 2015-05-23 15:14 - 2015-02-23 11:17 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2015-05-23 15:14 - 2015-02-23 11:15 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll 2015-05-23 15:14 - 2015-02-21 07:31 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll 2015-05-23 15:14 - 2015-02-21 07:09 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2015-05-23 15:14 - 2015-02-21 07:07 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll 2015-05-23 15:14 - 2015-02-21 05:00 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll 2015-05-23 15:14 - 2014-12-06 09:52 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2015-05-23 15:14 - 2014-12-06 09:52 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2015-05-23 15:14 - 2014-12-06 09:52 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll 2015-05-23 15:14 - 2014-12-06 08:09 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll 2015-05-23 15:12 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll 2015-05-23 15:12 - 2013-03-02 04:44 - 01011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2015-05-23 15:11 - 2014-03-11 02:41 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll 2015-05-23 15:11 - 2014-03-11 02:41 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dimsroam.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll 2015-05-23 15:11 - 2014-03-10 05:05 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2015-05-23 15:10 - 2014-12-06 09:53 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2015-05-23 15:10 - 2014-12-06 09:53 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe 2015-05-23 15:10 - 2014-12-06 09:51 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2015-05-23 15:10 - 2014-12-06 09:51 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll 2015-05-23 15:10 - 2014-12-06 09:50 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-05-23 15:10 - 2014-12-06 08:10 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2015-05-23 15:10 - 2014-12-06 08:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe 2015-05-23 15:10 - 2014-12-06 08:09 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2015-05-23 15:10 - 2014-11-26 08:43 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2015-05-23 15:10 - 2014-11-26 06:50 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2015-05-23 15:10 - 2014-10-03 03:21 - 00522728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2015-05-23 15:10 - 2014-10-03 00:29 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2015-05-23 15:10 - 2013-07-09 08:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2015-05-23 15:10 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2015-05-23 15:10 - 2013-07-01 03:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys 2015-05-23 15:10 - 2013-07-01 03:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys 2015-05-23 15:10 - 2013-07-01 03:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys 2015-05-23 15:10 - 2013-07-01 03:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys 2015-05-23 15:10 - 2013-06-29 05:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys 2015-05-23 15:10 - 2013-06-29 05:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys 2015-05-23 15:09 - 2014-07-16 01:03 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2015-05-23 15:09 - 2014-07-12 04:36 - 01023488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2015-05-23 15:09 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe 2015-05-23 15:09 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll 2015-05-23 15:09 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe 2015-05-23 15:09 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll 2015-05-23 15:09 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe 2015-05-23 15:09 - 2013-05-04 09:34 - 00284416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2015-05-23 15:09 - 2013-05-04 08:59 - 13644288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-05-23 15:09 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe 2015-05-23 15:09 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm(180).dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\muifontsetup.dll 2015-05-23 15:09 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2015-05-23 15:09 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe 2015-05-23 15:09 - 2013-05-04 06:57 - 10788864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\muifontsetup.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll 2015-05-23 15:09 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2015-05-23 15:09 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs 2015-05-23 15:09 - 2013-05-04 06:48 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys 2015-05-23 15:09 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2015-05-23 15:09 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs 2015-05-23 15:09 - 2013-03-02 04:45 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe 2015-05-23 15:09 - 2013-03-02 04:45 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe 2015-05-23 15:08 - 2013-12-05 01:43 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll 2015-05-23 15:08 - 2013-12-05 01:37 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll 2015-05-23 15:08 - 2013-03-06 08:31 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll 2015-05-23 15:08 - 2013-03-06 07:03 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll 2015-05-23 15:07 - 2013-05-04 08:59 - 02842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL 2015-05-23 15:07 - 2013-05-04 06:57 - 02620928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL 2015-05-23 15:04 - 2013-07-02 03:41 - 00447320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2015-05-23 15:04 - 2013-07-02 03:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2015-05-23 15:04 - 2013-07-02 03:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS 2015-05-23 15:04 - 2013-04-09 07:14 - 01455880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2015-05-23 15:04 - 2013-04-09 06:51 - 14267904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2015-05-23 15:04 - 2013-04-09 06:51 - 03552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2015-05-23 15:04 - 2013-04-09 06:50 - 02107904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2015-05-23 15:04 - 2013-04-09 06:49 - 01444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll 2015-05-23 15:04 - 2013-04-08 23:52 - 11878912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2015-05-23 15:04 - 2013-04-08 23:51 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2015-05-23 15:04 - 2013-04-08 23:51 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2015-05-23 15:03 - 2015-03-04 08:41 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe 2015-05-23 15:03 - 2015-03-04 08:39 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll 2015-05-23 15:03 - 2015-03-04 08:39 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll 2015-05-23 15:03 - 2015-03-04 06:53 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe 2015-05-23 15:03 - 2015-03-04 06:52 - 00676864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll 2015-05-23 15:03 - 2013-04-09 07:33 - 00489576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-05-23 15:03 - 2013-04-09 07:33 - 00446792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2015-05-23 15:03 - 2013-04-09 07:33 - 00253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2015-05-23 15:03 - 2013-04-09 07:20 - 00306952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_10ec.dll 2015-05-23 15:03 - 2013-04-09 07:20 - 00086280 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll 2015-05-23 15:03 - 2013-04-09 07:18 - 00077960 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdvm.dll 2015-05-23 15:03 - 2013-04-09 06:52 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2015-05-23 15:03 - 2013-04-09 06:52 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2015-05-23 15:03 - 2013-04-09 06:52 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2015-05-23 15:03 - 2013-04-09 06:52 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2015-05-23 15:03 - 2013-04-09 06:52 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe 2015-05-23 15:03 - 2013-04-09 06:51 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll 2015-05-23 15:03 - 2013-04-09 06:51 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll 2015-05-23 15:03 - 2013-04-09 06:51 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2015-05-23 15:03 - 2013-04-09 06:51 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll 2015-05-23 15:03 - 2013-04-09 06:51 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe 2015-05-23 15:03 - 2013-04-09 06:51 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 01285632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc(176).dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00745984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenuineCenter.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fmifs.dll 2015-05-23 15:03 - 2013-04-09 04:34 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys 2015-05-23 15:03 - 2013-04-09 04:33 - 00623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2015-05-23 15:03 - 2013-04-09 04:33 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys 2015-05-23 15:03 - 2013-04-09 04:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys 2015-05-23 15:03 - 2013-04-09 04:31 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2015-05-23 15:03 - 2013-04-09 04:31 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys 2015-05-23 15:03 - 2013-04-09 01:44 - 00123880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll 2015-05-23 15:03 - 2013-04-09 01:37 - 00426024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2015-05-23 15:03 - 2013-04-09 01:37 - 00324368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-05-23 15:03 - 2013-04-08 23:52 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2015-05-23 15:03 - 2013-04-08 23:52 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll 2015-05-23 15:03 - 2013-04-08 23:52 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2015-05-23 15:03 - 2013-04-08 23:52 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2015-05-23 15:03 - 2013-04-08 23:52 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe 2015-05-23 15:03 - 2013-04-08 23:51 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fmifs.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll 2015-05-23 15:03 - 2013-04-05 01:30 - 00503080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2015-05-23 15:03 - 2013-03-30 20:16 - 01403784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2015-05-23 15:03 - 2013-03-30 20:16 - 01267424 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2015-05-23 15:03 - 2013-03-29 00:09 - 01217328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2015-05-23 15:03 - 2013-03-29 00:09 - 01093880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2015-05-23 15:03 - 2013-03-16 00:05 - 00298456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll 2015-05-23 15:03 - 2013-03-16 00:05 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll 2015-05-23 15:03 - 2013-03-02 12:39 - 00069864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2015-05-23 15:02 - 2015-03-14 02:55 - 00410017 _____ () C:\WINDOWS\system32\ApnDatabase.xml 2015-05-23 15:02 - 2015-02-18 09:39 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2015-05-23 15:02 - 2015-02-18 09:38 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll 2015-05-23 15:02 - 2015-01-24 08:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll 2015-05-23 15:02 - 2015-01-24 07:00 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll 2015-05-23 15:02 - 2014-11-08 13:22 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll 2015-05-23 15:02 - 2014-11-08 08:57 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll 2015-05-23 15:02 - 2014-06-20 01:35 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2015-05-23 15:02 - 2014-06-20 00:24 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2015-05-23 15:02 - 2014-06-05 19:56 - 00112984 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe 2015-05-23 15:02 - 2014-05-30 00:24 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2015-05-23 15:02 - 2014-01-13 01:30 - 02238976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp(166).dll 2015-05-23 15:02 - 2014-01-13 01:30 - 02032640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2015-05-23 15:02 - 2013-11-20 02:15 - 03842560 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2015-05-23 15:02 - 2013-11-20 01:57 - 03288576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2015-05-23 15:02 - 2013-03-06 08:29 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll 2015-05-23 15:02 - 2012-11-10 06:23 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2015-05-23 15:02 - 2012-11-10 06:22 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDWebAI.dll 2015-05-23 15:02 - 2012-11-10 06:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmHostAI.dll 2015-05-23 15:02 - 2012-11-10 06:20 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appserverai.dll 2015-05-23 15:01 - 2015-03-12 07:31 - 02048000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll 2015-05-23 15:01 - 2015-03-12 07:31 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll 2015-05-23 15:01 - 2015-03-12 05:52 - 01933312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll 2015-05-23 15:01 - 2015-02-17 08:54 - 19777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-05-23 15:01 - 2015-02-17 07:13 - 17561600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-05-23 15:01 - 2015-01-24 06:31 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2015-05-23 15:01 - 2014-10-11 09:44 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2015-05-23 15:01 - 2014-06-06 16:06 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2015-05-23 15:01 - 2014-06-06 12:17 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll 2015-05-23 15:01 - 2013-10-10 11:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe 2015-05-23 15:01 - 2013-10-10 11:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll 2015-05-23 15:01 - 2013-10-10 11:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll 2015-05-23 15:01 - 2013-10-10 11:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx 2015-05-23 15:01 - 2013-10-10 11:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe 2015-05-23 15:01 - 2013-10-10 11:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll 2015-05-23 15:01 - 2013-10-10 11:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll 2015-05-23 15:01 - 2013-09-28 05:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys 2015-05-23 15:01 - 2013-07-13 08:18 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll 2015-05-23 15:01 - 2013-07-13 08:16 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll 2015-05-23 15:01 - 2013-07-13 08:15 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll 2015-05-23 15:01 - 2013-07-13 08:15 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll 2015-05-23 15:01 - 2013-07-13 06:24 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll 2015-05-23 15:01 - 2013-07-13 06:23 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll 2015-05-23 15:01 - 2013-07-13 06:23 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll 2015-05-23 15:01 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdlg.dll 2015-05-23 15:01 - 2013-04-03 01:12 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll 2015-05-23 15:01 - 2013-03-02 11:59 - 00411880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2015-05-23 15:00 - 2015-05-02 08:28 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys 2015-05-23 15:00 - 2015-05-02 05:59 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2015-05-23 15:00 - 2015-05-02 05:36 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2015-05-23 15:00 - 2015-04-14 00:09 - 00570248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2015-05-23 15:00 - 2015-03-06 09:39 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2015-05-23 15:00 - 2015-03-06 07:48 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2015-05-23 15:00 - 2015-01-15 13:44 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll 2015-05-23 15:00 - 2015-01-15 13:43 - 01282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-05-23 15:00 - 2015-01-15 12:00 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll 2015-05-23 15:00 - 2015-01-15 11:38 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll 2015-05-23 15:00 - 2015-01-15 11:09 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll 2015-05-23 15:00 - 2014-12-19 06:35 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys 2015-05-23 15:00 - 2014-12-18 10:51 - 00096576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys 2015-05-23 15:00 - 2014-12-18 08:52 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2015-05-23 15:00 - 2014-12-18 08:51 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2015-05-23 15:00 - 2014-12-18 08:50 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL 2015-05-23 15:00 - 2014-12-18 08:20 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2015-05-23 15:00 - 2014-09-25 01:29 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll 2015-05-23 15:00 - 2014-09-25 01:01 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll 2015-05-23 15:00 - 2014-03-11 02:39 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe 2015-05-23 15:00 - 2014-03-11 02:38 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll 2015-05-23 15:00 - 2014-03-11 02:38 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll 2015-05-23 15:00 - 2014-03-10 03:27 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll 2015-05-23 15:00 - 2013-08-23 09:22 - 02062848 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2015-05-23 15:00 - 2013-08-23 03:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2015-05-23 15:00 - 2013-06-10 21:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL 2015-05-23 15:00 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL 2015-05-23 14:59 - 2014-11-08 13:21 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2015-05-23 14:59 - 2014-11-08 08:56 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2015-05-23 14:59 - 2014-10-11 10:35 - 00171840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2015-05-23 14:59 - 2014-10-11 07:41 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll 2015-05-23 14:59 - 2014-10-11 07:05 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll 2015-05-23 14:59 - 2014-08-22 01:56 - 01418752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll 2015-05-23 14:59 - 2014-08-22 01:27 - 01845760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2015-05-23 14:59 - 2014-05-30 01:02 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll 2015-05-23 14:59 - 2014-04-12 11:10 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-05-23 14:59 - 2014-04-12 11:09 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll 2015-05-23 14:59 - 2014-04-12 11:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll 2015-05-23 14:59 - 2014-04-12 11:08 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2015-05-23 14:59 - 2014-04-12 11:07 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll 2015-05-23 14:59 - 2014-04-12 09:23 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2015-05-23 14:59 - 2014-04-12 09:23 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll 2015-05-23 14:59 - 2014-04-12 09:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll 2015-05-23 14:59 - 2014-04-12 09:22 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll 2015-05-23 14:59 - 2014-04-12 08:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\workerdd.dll 2015-05-23 14:59 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2015-05-23 14:59 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2015-05-23 14:58 - 2014-10-23 14:47 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll 2015-05-23 14:58 - 2014-10-23 13:04 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll 2015-05-23 14:57 - 2015-04-06 07:36 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll 2015-05-23 14:57 - 2015-04-06 06:08 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll 2015-05-23 14:57 - 2014-12-19 08:48 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll 2015-05-23 14:57 - 2014-10-30 09:20 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2015-05-23 14:57 - 2014-10-30 07:22 - 01569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2015-05-23 14:57 - 2013-11-01 07:38 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll 2015-05-23 14:57 - 2013-11-01 05:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll 2015-05-23 14:52 - 2015-05-23 17:43 - 00000000 ____D () C:\Windows.old 2015-05-23 14:52 - 2015-05-23 14:52 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff 2015-05-23 14:49 - 2015-05-23 14:49 - 00002179 _____ () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2015-05-23 14:49 - 2015-05-23 14:49 - 00002152 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2015-05-23 14:49 - 2015-05-23 14:49 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive 2015-05-23 14:48 - 2015-05-23 14:48 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive 2015-05-23 14:39 - 2015-05-29 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-05-23 14:39 - 2015-05-23 14:40 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Mozilla 2015-05-23 14:39 - 2015-05-23 14:40 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Mozilla 2015-05-23 14:39 - 2015-05-23 14:39 - 00002263 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-05-23 14:39 - 2015-05-23 14:39 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-05-23 14:39 - 2015-05-23 14:39 - 00001155 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-05-23 14:39 - 2015-05-23 14:39 - 00000000 ____D () C:\ProgramData\Mozilla 2015-05-23 14:39 - 2015-05-23 14:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2015-05-23 14:38 - 2015-05-29 15:55 - 00001092 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-23 14:38 - 2015-05-29 15:50 - 00001088 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-23 14:38 - 2015-05-23 14:45 - 00004064 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-05-23 14:38 - 2015-05-23 14:45 - 00003828 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-05-23 14:38 - 2015-05-23 14:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2015-05-23 14:38 - 2015-05-23 14:39 - 00000000 ____D () C:\Program Files (x86)\Google 2015-05-23 14:37 - 2015-05-29 09:31 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Deployment 2015-05-23 14:37 - 2015-05-23 14:39 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Google 2015-05-23 14:37 - 2015-05-23 14:37 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Apps\2.0 2015-05-23 14:35 - 2015-05-23 14:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2015-05-23 14:34 - 2015-05-23 17:36 - 00000000 ____D () C:\Program Files\Microsoft Office 15 2015-05-23 14:32 - 2015-05-23 14:32 - 00000000 ____D () C:\$WINDOWS.~BT 2015-05-23 14:30 - 2013-08-16 07:21 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll 2015-05-23 14:30 - 2013-08-16 07:21 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2015-05-23 14:30 - 2013-08-16 00:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll 2015-05-23 14:28 - 2015-05-23 14:40 - 196612224 _____ (Kaspersky Lab) C:\Users\Juliane8\Downloads\kis15.0.2.361en.exe 2015-05-23 14:14 - 2015-05-29 15:55 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2694262190-2736747673-2123131371-1002 2015-05-23 14:05 - 2015-05-23 14:05 - 00001454 _____ () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-05-23 14:05 - 2015-05-23 14:05 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD 2015-05-23 14:05 - 2015-05-23 14:05 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\lm 2015-05-23 14:05 - 2015-05-23 14:05 - 00000000 ____D () C:\ProgramData\OEM_YAHOO 2015-05-23 14:02 - 2015-05-23 14:02 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Macromedia 2015-05-23 14:02 - 2015-05-23 14:02 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Adobe 2015-05-23 14:00 - 2015-05-23 14:00 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\VirtualStore 2015-05-23 13:59 - 2015-05-29 15:38 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Packages 2015-05-23 13:59 - 2015-05-23 13:59 - 00000020 ___SH () C:\Users\Juliane8\ntuser.ini 2015-05-23 13:57 - 2015-05-23 13:57 - 00000020 ___SH () C:\Users\UpdatusUser.000\ntuser.ini 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Voisinage réseau 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Voisinage d'impression 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Modèles 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Menu Démarrer 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Documents\Mes vidéos 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Documents\Mes images 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Documents\Ma musique 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historique 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Modèles 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Menu Démarrer 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Bureau 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Program Files\Fichiers communs 2015-05-23 13:55 - 2015-05-29 16:08 - 00000000 ____D () C:\Users\Juliane8 2015-05-23 13:55 - 2015-05-29 15:47 - 00000000 ____D () C:\Users\UpdatusUser.000 2015-05-23 13:55 - 2015-05-29 15:47 - 00000000 ____D () C:\Users\Eike 2015-05-23 13:55 - 2015-05-23 13:56 - 00036198 _____ () C:\WINDOWS\diagwrn.xml 2015-05-23 13:55 - 2015-05-23 13:56 - 00036198 _____ () C:\WINDOWS\diagerr.xml 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Voisinage réseau 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Voisinage d'impression 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Modèles 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Menu Démarrer 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Documents\Mes vidéos 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Documents\Mes images 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Documents\Ma musique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\AppData\Local\Historique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Voisinage réseau 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Voisinage d'impression 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Modèles 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Menu Démarrer 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Documents\Mes vidéos 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Documents\Mes images 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Documents\Ma musique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\AppData\Local\Historique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Voisinage réseau 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Voisinage d'impression 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Modèles 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Menu Démarrer 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Documents\Mes vidéos 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Documents\Mes images 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Documents\Ma musique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\AppData\Local\Historique 2015-05-23 13:55 - 2013-04-21 11:38 - 00000000 ___RD () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-23 13:55 - 2013-04-21 11:38 - 00000000 ___RD () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-23 13:55 - 2013-04-21 11:38 - 00000000 ___RD () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ____D () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ____D () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-05-23 13:29 - 2015-05-23 15:42 - 00000000 ___HD () C:\$SysReset 2015-05-23 13:10 - 2015-05-23 13:10 - 00000000 ____D () C:\AX6HPBC85FMOVZ38WNG7D5E3STJ8KLU5IQRY21 2015-05-21 13:01 - 2015-05-21 13:01 - 04818760 _____ (AVG Technologies) C:\Users\Juliane8\Downloads\avg_free_stb_all_5863p1_177.exe 2015-05-21 12:50 - 2015-05-21 12:50 - 01190704 _____ () C:\Users\Juliane8\Downloads\Adware-Removal-Tool-v3.6.exe 2015-05-21 11:45 - 2015-05-21 11:45 - 00880208 _____ (Google Inc.) C:\Users\Juliane8\Downloads\ChromeSetup.exe 2015-05-19 11:36 - 2015-05-19 11:36 - 00005351 _____ () C:\Users\Juliane8\Downloads\SOURCE (1).zip 2015-05-19 03:08 - 2015-05-19 03:08 - 00042184 _____ (Anchorfree Inc.) C:\WINDOWS\system32\Drivers\taphss6.sys 2015-05-15 17:45 - 2015-05-15 17:45 - 00015754 _____ () C:\Users\Juliane8\Downloads\English_to_Native_-_140515_15-5-15_08-38-10.xlsx 2015-05-13 15:53 - 2015-05-13 15:53 - 00014855 _____ () C:\Users\Juliane8\Downloads\LS-to-translate-language_DE.txt 2015-05-12 19:44 - 2015-05-12 19:45 - 00001533 _____ () C:\Users\Juliane8\Downloads\emmajolie-com_20150512T174459Z_ExternalLinks_LinkingDomains.csv 2015-05-08 15:03 - 2015-05-08 15:03 - 00005210 _____ () C:\Users\Juliane8\Downloads\Lantus SoloStar_IPat_DE_appr_21.05.2014_clean_corr.docx_fr-FR_de-DE QA.sdlproj 2015-05-06 19:09 - 2015-05-06 19:09 - 00006855 _____ () C:\Users\Juliane8\Downloads\Source.zip 2015-05-06 09:42 - 2015-05-06 09:42 - 00019686 _____ () C:\Users\Juliane8\Downloads\French emailing text_de-DE-201555-16h31m12s.zip 2015-05-01 19:32 - 2015-05-01 19:32 - 15058264 _____ () C:\Users\Juliane8\Downloads\Glary_Utilities_v5.24.0.43.exe ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-05-29 16:11 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp 2015-05-29 16:05 - 2013-09-20 12:27 - 00000000 ____D () C:\Users\Juliane8\Desktop\Agencies 2015-05-29 16:00 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\sru 2015-05-29 15:55 - 2013-06-26 22:13 - 01709965 _____ () C:\WINDOWS\WindowsUpdate.log 2015-05-29 15:48 - 2012-07-26 09:22 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2015-05-29 15:47 - 2013-06-26 22:24 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-29 15:47 - 2013-06-26 22:24 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-29 15:47 - 2013-06-26 22:24 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ____D () C:\Users\Administrator 2015-05-29 15:47 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\WinStore 2015-05-29 15:47 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates 2015-05-29 15:47 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions 2015-05-29 15:47 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\oobe 2015-05-29 15:47 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\AdvancedInstallers 2015-05-29 15:46 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\spp 2015-05-29 15:45 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\rescache 2015-05-29 15:42 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\registration 2015-05-29 15:41 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\Sysprep 2015-05-29 15:39 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\AppCompat 2015-05-29 15:38 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2015-05-29 10:13 - 2013-05-23 06:13 - 00034810 _____ () C:\WINDOWS\PFRO.log 2015-05-26 21:07 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\NDF 2015-05-25 09:13 - 2013-06-27 07:58 - 00800978 _____ () C:\WINDOWS\system32\perfh00C.dat 2015-05-25 09:13 - 2013-06-27 07:58 - 00155650 _____ () C:\WINDOWS\system32\perfc00C.dat 2015-05-25 09:13 - 2012-07-26 09:28 - 01793362 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Defender 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2015-05-24 13:53 - 2012-07-26 10:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 17:45 - 2014-12-13 18:21 - 00824008 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys 2015-05-23 17:45 - 2014-08-19 12:31 - 00056008 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\kldisk.sys 2015-05-23 17:17 - 2012-07-26 07:26 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2015-05-23 17:16 - 2012-07-26 10:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP 2015-05-23 17:06 - 2012-07-26 07:37 - 00000000 ____D () C:\WINDOWS\servicing 2015-05-23 17:04 - 2013-05-23 06:45 - 00000000 ____D () C:\Program Files\Common Files\mcafee 2015-05-23 17:02 - 2012-07-26 10:12 - 00000000 ___RD () C:\WINDOWS\ToastData 2015-05-23 17:01 - 2012-07-26 09:52 - 00000000 ____D () C:\Program Files\Windows Journal 2015-05-23 17:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Photo Viewer 2015-05-23 17:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer 2015-05-23 17:00 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism 2015-05-23 17:00 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\Dism 2015-05-23 15:44 - 2014-11-21 22:58 - 00000000 ___HD () C:\kleaner.tmp 2015-05-23 15:39 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent 2015-05-23 14:58 - 2013-05-23 06:45 - 00000000 ____D () C:\Program Files\mcafee 2015-05-23 14:52 - 2012-07-26 10:13 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template 2015-05-23 14:49 - 2013-11-19 19:56 - 00000000 __RDO () C:\Users\Juliane8\SkyDrive 2015-05-23 14:15 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\restore 2015-05-23 14:14 - 2013-05-23 06:45 - 00000000 ____D () C:\ProgramData\McAfee 2015-05-23 14:05 - 2013-05-23 07:00 - 00000000 ___HD () C:\OEM 2015-05-23 13:59 - 2012-07-26 10:12 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel 2015-05-23 13:58 - 2013-05-23 07:12 - 00000000 ___DC () C:\WINDOWS\Panther 2015-05-23 13:57 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows NT 2015-05-23 13:57 - 2012-07-26 07:37 - 00000000 __RHD () C:\Users\Default 2015-05-23 13:56 - 2012-07-26 10:12 - 00000000 __RHD () C:\Users\Public\Libraries 2015-05-23 13:56 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\Recovery 2015-05-23 13:56 - 2012-07-26 09:21 - 00035807 _____ () C:\WINDOWS\setupact.log 2015-05-23 13:23 - 2014-11-30 19:30 - 00000000 __RDO () C:\Users\Juliane8\OneDrive 2015-05-14 19:00 - 2013-09-22 16:35 - 00000000 ____D () C:\Users\Juliane8\Documents\Mes projets memoQ 2015-05-05 19:49 - 2012-07-26 10:14 - 00792032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-05-05 19:49 - 2012-07-26 10:14 - 00177632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl ==================== Files in the root of some directories ======= 2015-05-26 08:16 - 2015-05-26 08:16 - 0000108 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc Some files in TEMP: ==================== C:\Users\Juliane8\AppData\Local\Temp\OfficeSetup.exe C:\Users\Juliane8\AppData\Local\Temp\SetupO365HomePremRetail.x86.fr-FR_O365HomePremRetail_NG7XM-PX32P-JXJHG-734P2-DC8F4_act_1_.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2013-05-23 06:13 ==================== End of log ============================ |
29.05.2015, 16:29 | #2 |
| Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsamCode:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-05-2015 01 Ran by Juliane8 at 2015-05-29 16:12:50 Running from C:\Users\Juliane8\Downloads Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrateur (S-1-5-21-2694262190-2736747673-2123131371-500 - Administrator - Disabled) => C:\Users\Administrator Eike (S-1-5-21-2694262190-2736747673-2123131371-1004 - Limited - Enabled) => C:\Users\Eike Invité (S-1-5-21-2694262190-2736747673-2123131371-501 - Limited - Disabled) Juliane8 (S-1-5-21-2694262190-2736747673-2123131371-1002 - Administrator - Enabled) => C:\Users\Juliane8 UpdatusUser (S-1-5-21-2694262190-2736747673-2123131371-1003 - Limited - Enabled) => C:\Users\UpdatusUser.000 ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3013 - Acer Incorporated) Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3016 - Acer Incorporated) AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.01.2008 - Acer Incorporated) AcerCloud Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.2021 - Acer Incorporated) Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden Broadcom Card Reader Driver Installer (HKLM\...\{F0A7DF2F-0BE0-470F-B137-D7A19F977189}) (Version: 15.4.7.1 - Broadcom Corporation) clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.02.2012 - Acer Incorporated) clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.02.2016 - Acer Incorporated) clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3729_45993 - CyberLink Corp.) Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden Dritek Radio Controller (HKLM-x32\...\RadioController) (Version: 2.02.2001.0803 - Dritek System Inc.) ETDWare PS/2-X64 11.6.16.003_WHQL (HKLM\...\Elantech) (Version: 11.6.16.003 - ELAN Microelectronic Corp.) File Shredder 2.5 (HKLM\...\File Shredder_is1) (Version: - Pow Tools) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.65 - Google Inc.) Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden Hotspot Shield 4.15.2 (HKLM-x32\...\HotspotShield) (Version: 4.15.2 - AnchorFree Inc.) Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3006 - Acer Incorporated) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{02FECEE0-16B2-43DB-BC3B-C844477FC142}) (Version: 15.0.2.361 - Kaspersky Lab) Kaspersky Internet Security (x32 Version: 15.0.2.361 - Kaspersky Lab) Hidden Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.10 - Acer Inc.) Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3010 - Acer Incorporated) Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 15.0.4719.1002 - Microsoft Corporation) Microsoft SkyDrive (HKU\S-1-5-21-2694262190-2736747673-2123131371-1002\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mises à jour NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation) Mozilla Firefox 38.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 en-US)) (Version: 38.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla) Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{4CA8F973-6377-4ABF-9ED5-CC2323B3C000}) (Version: 12.5.00500 - Nero AG) Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.2.3.51r2 - Symantec Corporation) Norton Online Backup ARA (x32 Version: 4.1.0.14 - Symantec Corporation) Hidden NVIDIA Logiciel système PhysX 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Pilote graphique 311.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.30 - NVIDIA Corporation) Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4719.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4719.1002 - Microsoft Corporation) Hidden Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2008 - Acer) Panneau de configuration NVIDIA 311.30 (Version: 311.30 - NVIDIA Corporation) Hidden Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.39 - Qualcomm Atheros) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB) Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Visual Studio 2005 Tools pour Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation) WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2694262190-2736747673-2123131371-1002_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Juliane8\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2694262190-2736747673-2123131371-1002_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Juliane8\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2694262190-2736747673-2123131371-1002_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Juliane8\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2694262190-2736747673-2123131371-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Juliane8\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation) ==================== Restore Points ========================= 25-05-2015 09:29:12 I 25-05-2015 11:06:52 Opération de restauration 28-05-2015 11:57:18 Windows Update 29-05-2015 10:16:47 Opération de restauration ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {05213698-A30E-4087-A857-31B7B60B5F25} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-03-13] () Task: {09DDAA8B-4142-450F-AE83-D1EFA39CE0F5} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2013-02-08] (CyberLink) Task: {20850515-6079-456E-AB44-DCEBB8D45EF1} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] () Task: {268459C8-CDCE-4106-90F4-5AD2D5892368} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-23] (Google Inc.) Task: {499ED97F-773E-449D-AEF6-55CB82C3745D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-23] (Google Inc.) Task: {598DEE87-10AB-4F02-B5D0-24C0C7781E0E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation) Task: {94CF1870-79A7-4019-B3E9-BF981D313B9C} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated) Task: {BDBA157E-1474-40EE-8EF1-01B737FFBEBD} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-05-23] (Microsoft Corporation) Task: {C7CA44A5-BCB0-4E08-AF54-7AA3A78B8448} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-01-23] (Acer Incorporated) Task: {CA20525C-7A7D-45DB-93B0-F69FD0709454} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation) Task: {DE726F30-0424-4012-8C1A-6AC80A047698} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-04-30] (Microsoft Corporation) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-05-23 17:30 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll 2015-05-19 03:01 - 2015-05-19 03:01 - 00589608 _____ () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe 2013-06-26 22:47 - 2013-02-20 22:58 - 00111176 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll 2013-05-23 07:06 - 2012-10-23 20:37 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2015-05-29 16:08 - 2015-05-29 16:08 - 00050477 _____ () C:\Users\Juliane8\Downloads\Defogger.exe 2015-05-19 03:00 - 2015-05-19 03:00 - 01749288 _____ () C:\Program Files (x86)\Hotspot Shield\bin\af_proxy.dll 2015-05-19 03:15 - 2015-05-19 03:15 - 00616232 _____ () C:\Program Files (x86)\Hotspot Shield\bin\HssRep.4.15.2.dll 2015-05-16 00:33 - 2015-05-16 00:33 - 00280143 _____ () C:\Program Files (x86)\Hotspot Shield\bin\libidn-11.dll 2009-03-27 22:02 - 2009-03-27 22:02 - 01554920 _____ () C:\Program Files (x86)\Hotspot Shield\bin\libeay32.dll 2009-03-27 22:02 - 2009-03-27 22:02 - 00332254 _____ () C:\Program Files (x86)\Hotspot Shield\bin\libssl32.dll 2013-06-26 22:47 - 2013-02-20 22:58 - 00089672 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll 2015-05-23 14:39 - 2015-05-13 18:48 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.65\libglesv2.dll 2015-05-23 14:39 - 2015-05-13 18:48 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.65\libegl.dll 2013-06-26 22:18 - 2012-06-25 19:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2015-05-23 14:39 - 2015-05-13 18:48 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.65\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Windows:nlsPreferences AlternateDataStreams: C:\ProgramData\Temp:CB0AACC9 AlternateDataStreams: C:\Users\Juliane8\OneDrive:ms-properties AlternateDataStreams: C:\Users\Juliane8\SkyDrive:ms-properties ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2694262190-2736747673-2123131371-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{130FB22A-38D4-411C-8FD7-0B3B450D1A34}] => (Allow) C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe FirewallRules: [{0BB1CA98-4961-491D-8FBF-26E95B998E69}] => (Allow) C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe FirewallRules: [{7186EDF5-6E49-4C88-BCBC-5B315B0B4DD1}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe FirewallRules: [{3AA37487-1F1B-461E-8EBF-8E226E7CD58A}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe FirewallRules: [{36B64D3C-515C-4178-AAFF-03B0AFD6439F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{98DBE77C-1A95-457F-BFF9-2A64D4B129A6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{B76CF9D0-4B0E-44C5-B741-559CE51973A9}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{2FE7DD13-CF18-4642-974E-CBA2556F5ADB}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{058F0283-7108-4438-9F0D-F096EF9D5478}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{2EE04186-4198-4A3D-BB25-3822617D7296}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{E4945FFA-BE61-4876-8ADF-4D7BE684D1CB}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe FirewallRules: [{008A9927-183B-4957-B3CE-66EEB4F40F4A}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe FirewallRules: [{F5F49BEB-AC6C-40B1-B4B7-A76EE046ADD0}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe FirewallRules: [{CF357B7D-5D0D-44CB-9761-4B6261E7316C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe FirewallRules: [{76578392-B79E-419F-BD6A-E0C1CF6CA419}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe FirewallRules: [{14E7BA72-116B-4AFA-A19B-BEF978002F8B}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\MusicPlayer.exe FirewallRules: [{7EB202AD-A698-4CE4-B060-22FADDD1950C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Movie\PlayMovie.exe FirewallRules: [{67F72EAF-E01D-4F8E-B33E-051FF4A556F0}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe FirewallRules: [{10734441-0A0B-4A70-A01A-B66916F8333F}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe FirewallRules: [{0825196F-5CBA-46C1-82A1-460B4C103C0E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe FirewallRules: [{B310115C-5823-42B7-BF8D-B21AA3030F67}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe FirewallRules: [{D50B82F4-A8DB-4959-9B1C-10BF878BB012}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe FirewallRules: [{BA38B49F-F12A-42BB-A8EC-FAE928A1B78E}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe FirewallRules: [{072A1100-449A-4AA7-A49E-6BE46C0C2414}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe FirewallRules: [{AABB2131-57C1-4984-A67F-05737AF49A0F}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe FirewallRules: [{7CBB4C5B-89D8-4D79-967A-AF0F74E99C95}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe FirewallRules: [{4FAA6E20-DF66-44AA-93C2-CA53506E4498}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe FirewallRules: [{4005A593-F255-46D6-8247-99B2675295B0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{9923E8B5-FDA1-48EB-9736-F3F1B9182F03}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{1CC987A4-A6DA-4F17-A82D-1BBCBC464092}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{538C1C80-AC59-4BC2-9AC0-3A673DE8167C}] => (Allow) C:\Users\Juliane8\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe FirewallRules: [{FE045095-C1F0-4AE6-8C1A-4486002C17C2}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (05/29/2015 03:58:37 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -2143485933 Error: (05/29/2015 03:58:37 PM) (Source: Microsoft Office 15) (EventID: 2011) (User: ) Description: Office Subscription licensing exception: Error Code: 0x5; CorrelationId: {2A8E626D-70C9-4935-9386-DB86F54B53C4} Error: (05/29/2015 03:49:24 PM) (Source: System Restore) (EventID: 8210) (User: ) Description: Une erreur non spécifiée s’est produite au cours de la restauration du système*: (I). Informations supplémentaires*: 0xc0000022. Error: (05/29/2015 03:34:44 PM) (Source: System Restore) (EventID: 8210) (User: ) Description: Une erreur non spécifiée s’est produite au cours de la restauration du système*: (I). Informations supplémentaires*: 0xc0000022. Error: (05/29/2015 00:57:46 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -2143485933 Error: (05/29/2015 00:57:46 PM) (Source: Microsoft Office 15) (EventID: 2011) (User: ) Description: Office Subscription licensing exception: Error Code: 0x5; CorrelationId: {60F7E76F-C2EA-4C10-8E66-F46A8DBE09E2} Error: (05/29/2015 00:29:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante af_proxy_cmd_rep.exe, version : 4.15.2.9140, horodatage : 0x555a8b31 Nom du module défaillant : af_proxy.dll, version : 6.2.9200.17313, horodatage : 0x5507a23b Code d’exception : 0xc0000135 Décalage d’erreur : 0x00078d22 ID du processus défaillant : 0x160c Heure de début de l’application défaillante : 0xaf_proxy_cmd_rep.exe0 Chemin d’accès de l’application défaillante : af_proxy_cmd_rep.exe1 Chemin d’accès du module défaillant: af_proxy_cmd_rep.exe2 ID de rapport : af_proxy_cmd_rep.exe3 Nom complet du package défaillant*: af_proxy_cmd_rep.exe4 ID de l’application relative au package défaillant*: af_proxy_cmd_rep.exe5 Error: (05/29/2015 10:43:23 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -2143485933 Error: (05/29/2015 10:43:23 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: ) Description: Office Subscription licensing exception: Error Code: 0x5; CorrelationId: {EACD470B-2152-4548-8551-ECE7914EADD7} Error: (05/29/2015 10:12:31 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante af_proxy_cmd_rep.exe, version : 4.15.2.9140, horodatage : 0x555a8b31 Nom du module défaillant : af_proxy.dll, version : 6.2.9200.17313, horodatage : 0x5507a23b Code d’exception : 0xc0000135 Décalage d’erreur : 0x00078d22 ID du processus défaillant : 0x440 Heure de début de l’application défaillante : 0xaf_proxy_cmd_rep.exe0 Chemin d’accès de l’application défaillante : af_proxy_cmd_rep.exe1 Chemin d’accès du module défaillant: af_proxy_cmd_rep.exe2 ID de rapport : af_proxy_cmd_rep.exe3 Nom complet du package défaillant*: af_proxy_cmd_rep.exe4 ID de l’application relative au package défaillant*: af_proxy_cmd_rep.exe5 System errors: ============= Error: (05/29/2015 00:29:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Hotspot Shield Monitoring Service s’est terminé de façon inattendue pour la 1ème fois. Error: (05/29/2015 00:29:06 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Hotspot Shield Service s’est terminé de façon inattendue pour la 1ème fois. Error: (05/29/2015 10:12:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Hotspot Shield Monitoring Service s’est terminé de façon inattendue pour la 1ème fois. Error: (05/29/2015 10:12:16 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Hotspot Shield Service s’est terminé de façon inattendue pour la 1ème fois. Error: (05/27/2015 01:36:58 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Le service Windows Update ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture. Error: (05/26/2015 09:00:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Hotspot Shield Monitoring Service s’est terminé de façon inattendue pour la 1ème fois. Error: (05/26/2015 09:00:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Hotspot Shield Service s’est terminé de façon inattendue pour la 1ème fois. Error: (05/26/2015 00:10:51 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Le service Windows Update ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture. Error: (05/26/2015 11:53:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Hotspot Shield Monitoring Service s’est terminé de façon inattendue pour la 1ème fois. Error: (05/26/2015 11:53:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Hotspot Shield Service s’est terminé de façon inattendue pour la 1ème fois. Microsoft Office: ========================= Error: (05/29/2015 03:58:37 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -2143485933 Error: (05/29/2015 03:58:37 PM) (Source: Microsoft Office 15) (EventID: 2011) (User: ) Description: Office Subscription licensing exception: Error Code: 0x5; CorrelationId: {2A8E626D-70C9-4935-9386-DB86F54B53C4} Error: (05/29/2015 03:49:24 PM) (Source: System Restore) (EventID: 8210) (User: ) Description: I0xc0000022 Error: (05/29/2015 03:34:44 PM) (Source: System Restore) (EventID: 8210) (User: ) Description: I0xc0000022 Error: (05/29/2015 00:57:46 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -2143485933 Error: (05/29/2015 00:57:46 PM) (Source: Microsoft Office 15) (EventID: 2011) (User: ) Description: Office Subscription licensing exception: Error Code: 0x5; CorrelationId: {60F7E76F-C2EA-4C10-8E66-F46A8DBE09E2} Error: (05/29/2015 00:29:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: af_proxy_cmd_rep.exe4.15.2.9140555a8b31af_proxy.dll6.2.9200.173135507a23bc000013500078d22160c01d099fa4dedb506C:\Users\Juliane8\AppData\Roaming\Hotspot Shield\report\af_proxy_cmd_rep.exeaf_proxy.dll8bd37bd5-05ed-11e5-be79-208984c4943b Error: (05/29/2015 10:43:23 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -2143485933 Error: (05/29/2015 10:43:23 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: ) Description: Office Subscription licensing exception: Error Code: 0x5; CorrelationId: {EACD470B-2152-4548-8551-ECE7914EADD7} Error: (05/29/2015 10:12:31 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: af_proxy_cmd_rep.exe4.15.2.9140555a8b31af_proxy.dll6.2.9200.173135507a23bc000013500078d2244001d099e734dfb4f5C:\Users\Juliane8\AppData\Roaming\Hotspot Shield\report\af_proxy_cmd_rep.exeaf_proxy.dll7356eba9-05da-11e5-be7b-208984c4943b ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz Percentage of memory in use: 52% Total physical RAM: 5959.27 MB Available physical RAM: 2859.84 MB Total Pagefile: 10055.27 MB Available Pagefile: 7036.96 MB Total Virtual: 8192 MB Available Virtual: 8191.78 MB ==================== Drives ================================ Drive c: (Acer) (Fixed) (Total:914.41 GB) (Free:838.75 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 754FC15A) Partition: GPT Partition Type. ==================== End of log ============================ |
29.05.2015, 16:37 | #3 |
| Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Gmer-Datei
__________________ |
30.05.2015, 12:09 | #4 |
/// the machine /// TB-Ausbilder | Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam hi, Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
30.05.2015, 12:47 | #5 |
| Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Danke dass Du Dich um mein Problem kümmerst. Hier die Combofix-Daten, Kaspersky hat während Combofix gearbeitet hat rumgemeckert, ich habe es vorher wohl nicht ordnungsgemäß deaktiviert, jetzt kann ich es zumindest nicht mehr aktivieren Code:
ATTFilter ComboFix 15-05-28.01 - Juliane8 30/05/2015 13:31:36.1.4 - x64 Microsoft Windows 8 6.2.9200.0.1252.33.1036.18.5959.4030 [GMT 2:00] Lancé depuis: c:\users\Juliane8\Downloads\ComboFix.exe AV: Kaspersky Internet Security *Disabled/Updated* {179979E8-273D-D14E-0543-2861940E4886} AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security *Disabled* {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD} SP: Kaspersky Internet Security *Disabled/Updated* {ACF8980C-0107-DEC0-3FF3-1313EF89023B} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ADS - WINDOWS: deleted 192 bytes in 1 streams. . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Juliane8\AppData\Local\assembly\tmp c:\windows\security\logs\scecomp.log . . ((((((((((((((((((((((((((((( Fichiers créés du 2015-04-28 au 2015-05-30 )))))))))))))))))))))))))))))))))))) . . 2015-05-30 11:23 . 2015-05-30 11:23 -------- d-----w- c:\programdata\Kaspersky Lab Setup Files 2015-05-29 18:50 . 2015-05-30 07:00 -------- d-----w- c:\windows\ServiceProfiles\LocalService\winhttp 2015-05-29 15:31 . 2015-05-29 15:31 -------- d-----w- c:\program files (x86)\7-Zip 2015-05-29 14:10 . 2015-05-29 14:14 -------- d-----w- C:\FRST 2015-05-29 10:29 . 2015-05-29 10:29 -------- d-----w- c:\programdata\hsswpr 2015-05-29 10:27 . 2015-05-29 10:27 -------- d-----w- c:\program files (x86)\VS Revo Group 2015-05-29 09:13 . 2014-01-31 00:06 599040 ------w- c:\windows\system32\WSDApi.dll 2015-05-29 09:13 . 2013-06-01 09:20 2219520 ------w- c:\windows\system32\dwmcore.dll 2015-05-29 09:13 . 2013-06-01 09:21 729600 ------w- c:\windows\system32\samsrv.dll 2015-05-29 09:13 . 2013-06-01 09:21 106496 ------w- c:\windows\system32\samlib.dll 2015-05-29 09:13 . 2013-06-01 09:25 67584 ------w- c:\windows\SysWow64\samlib.dll 2015-05-29 09:12 . 2015-01-24 06:42 325632 ------w- c:\windows\system32\ubpm.dll 2015-05-29 09:12 . 2013-08-30 05:20 1173504 ------w- c:\windows\system32\UIAutomationCore.dll 2015-05-29 09:09 . 2014-07-31 23:40 1287680 ------w- c:\windows\system32\schedsvc.dll 2015-05-29 09:09 . 2013-06-18 22:38 160256 ------w- c:\windows\SysWow64\winmmbase.dll 2015-05-29 09:09 . 2013-06-18 22:38 125440 ------w- c:\windows\SysWow64\winmm.dll 2015-05-29 09:08 . 2013-08-30 05:18 374784 ------w- c:\windows\system32\clusapi.dll 2015-05-29 09:08 . 2013-08-30 05:19 626688 ------w- c:\windows\system32\resutils.dll 2015-05-29 09:06 . 2014-06-17 23:23 2238464 ------w- c:\windows\system32\d3d10warp.dll 2015-05-29 09:06 . 2014-06-28 06:56 117248 ------w- c:\windows\system32\dwmapi.dll 2015-05-29 09:05 . 2013-08-10 05:21 128512 ------w- c:\windows\system32\SettingSyncInfo.dll 2015-05-29 08:58 . 2014-06-28 06:57 1341952 ------w- c:\windows\system32\user32.dll 2015-05-29 08:58 . 2014-07-16 22:59 305664 ------w- c:\windows\system32\srvsvc.dll 2015-05-29 08:58 . 2014-06-28 02:23 1126400 ------w- c:\windows\SysWow64\user32.dll 2015-05-29 08:58 . 2014-07-16 22:59 35840 ------w- c:\windows\system32\sscore.dll 2015-05-29 08:48 . 2013-10-31 05:56 915968 ------w- c:\windows\system32\MPSSVC.dll 2015-05-29 08:48 . 2013-10-31 05:56 758784 ------w- c:\windows\system32\FirewallAPI.dll 2015-05-29 08:48 . 2013-08-27 05:19 104448 ------w- c:\windows\system32\davclnt.dll 2015-05-29 08:43 . 2014-03-01 09:47 1258496 ------w- c:\windows\system32\kernel32.dll 2015-05-28 19:18 . 2015-05-29 07:37 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2015-05-28 19:17 . 2015-05-29 08:28 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2 2015-05-27 11:38 . 2015-05-27 11:38 -------- d-----w- c:\windows\SysWow64\Hotspot Shield 2015-05-26 18:55 . 2015-05-26 21:12 -------- d-----w- c:\program files (x86)\Glary Utilities 5 2015-05-26 18:30 . 2015-05-29 08:32 -------- d-----w- c:\program files (x86)\ Malwarebytes Anti-Malware 2015-05-26 18:30 . 2015-05-26 18:30 -------- d-----w- c:\programdata\Malwarebytes 2015-05-26 06:57 . 2015-05-26 10:17 -------- d-----w- c:\program files (x86)\PDF24 2015-05-26 06:12 . 2015-05-26 06:43 -------- d-----w- c:\programdata\MemoQ 2015-05-26 06:12 . 2015-05-26 06:12 -------- d-----w- c:\program files (x86)\Kilgray 2015-05-25 07:47 . 2015-05-26 10:13 -------- d-----w- c:\programdata\SafeNet Sentinel 2015-05-25 07:46 . 2015-05-25 07:48 -------- d-----w- c:\programdata\SDL 2015-05-25 07:45 . 2015-05-26 10:13 -------- d-----w- c:\programdata\Package Cache 2015-05-25 07:30 . 2015-05-25 07:30 -------- d-----w- c:\program files\Common Files\Little Registry Cleaner 2015-05-25 07:29 . 2015-05-26 10:30 -------- d-----w- c:\program files (x86)\Little Registry Cleaner 2015-05-25 07:23 . 2015-05-29 13:44 -------- d-----w- c:\program files\File Shredder 2015-05-25 07:10 . 2015-05-29 13:38 -------- d-----w- c:\programdata\Hotspot Shield 2015-05-25 07:10 . 2015-05-19 01:06 44744 ----a-w- c:\windows\system32\drivers\hssdrv6.sys 2015-05-25 07:10 . 2015-05-29 13:44 -------- d-----w- c:\program files (x86)\Hotspot Shield 2015-05-24 11:55 . 2015-05-24 11:55 -------- d-s---w- c:\windows\system32\CompatTel 2015-05-24 11:55 . 2015-05-24 11:55 -------- d-----w- c:\windows\system32\appraiser 2015-05-24 08:39 . 2015-05-24 08:39 269992 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10248.bin 2015-05-24 08:35 . 2014-10-09 04:00 1484288 ----a-w- c:\windows\system32\VSSVC.exe 2015-05-24 08:35 . 2014-10-09 04:00 69632 ----a-w- c:\windows\system32\vsstrace.dll 2015-05-24 08:35 . 2014-10-09 04:00 1519104 ----a-w- c:\windows\system32\vssapi.dll 2015-05-24 08:35 . 2014-10-09 03:59 52224 ----a-w- c:\windows\SysWow64\vsstrace.dll 2015-05-24 08:35 . 2014-10-09 03:59 1195520 ----a-w- c:\windows\SysWow64\vssapi.dll 2015-05-24 07:54 . 2015-05-24 07:54 50784 ----a-w- c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin 2015-05-24 07:54 . 2015-05-24 07:54 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin 2015-05-23 15:17 . 2013-05-06 06:13 110176 ----a-w- c:\windows\system32\klfphc.dll 2015-05-23 15:16 . 2015-05-30 11:26 -------- d-----w- c:\programdata\Kaspersky Lab 2015-05-23 15:16 . 2015-05-23 15:16 -------- d-----w- c:\program files (x86)\Kaspersky Lab 2015-05-23 15:16 . 2014-10-22 19:13 247496 ----a-w- c:\windows\system32\drivers\klhk.sys 2015-05-23 14:53 . 2015-05-23 14:57 -------- d-----w- c:\windows\system32\MRT 2015-05-23 14:25 . 2015-01-09 06:43 951808 ----a-w- c:\windows\system32\Windows.Globalization.dll 2015-05-23 14:25 . 2015-01-09 05:03 601088 ----a-w- c:\windows\SysWow64\Windows.Globalization.dll 2015-05-23 14:20 . 2015-04-30 13:07 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-05-23 14:20 . 2015-04-30 13:07 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll 2015-05-23 13:48 . 2014-06-10 22:44 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe 2015-05-23 13:48 . 2014-06-10 22:43 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe 2015-05-23 13:34 . 2014-11-05 06:39 1024512 ----a-w- c:\windows\system32\localspl.dll 2015-05-23 13:34 . 2014-10-29 14:21 499008 ----a-w- c:\windows\system32\drivers\vhdmp.sys 2015-05-23 13:34 . 2014-11-05 06:40 733184 ----a-w- c:\windows\system32\win32spl.dll 2015-05-23 13:34 . 2014-08-28 06:01 17920 ----a-w- c:\windows\system32\wuaext.dll 2015-05-23 13:32 . 2014-12-11 06:51 62976 ----a-w- c:\windows\system32\TSWbPrxy.exe 2015-05-23 13:31 . 2015-04-13 05:32 417280 ----a-w- c:\windows\system32\services.exe 2015-05-23 13:31 . 2015-03-17 07:00 6971712 ----a-w- c:\windows\system32\ntoskrnl.exe 2015-05-23 13:31 . 2015-03-17 06:52 1822696 ----a-w- c:\windows\system32\ntdll.dll 2015-05-23 13:31 . 2015-03-17 04:45 1409496 ----a-w- c:\windows\SysWow64\ntdll.dll 2015-05-23 13:29 . 2014-02-05 23:19 974848 ----a-w- c:\windows\SysWow64\kernel32(184).dll 2015-05-23 13:27 . 2015-02-24 07:58 861696 ----a-w- c:\windows\system32\drivers\http.sys 2015-05-23 13:27 . 2013-06-22 05:45 785624 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2015-05-23 13:27 . 2013-06-22 05:45 54488 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2015-05-23 13:27 . 2013-07-05 22:02 99328 ----a-w- c:\windows\system32\drivers\usbcir.sys 2015-05-23 13:27 . 2013-07-05 22:01 210560 ----a-w- c:\windows\system32\drivers\usbvideo.sys 2015-05-23 13:27 . 2014-10-09 03:59 623616 ----a-w- c:\windows\system32\dnsapi.dll 2015-05-23 13:27 . 2014-09-22 05:38 673792 ----a-w- c:\windows\system32\mfmpeg2srcsnk.dll 2015-05-23 13:27 . 2014-10-09 03:59 212992 ----a-w- c:\windows\system32\dnsrslvr.dll 2015-05-23 13:27 . 2014-09-22 03:56 513536 ----a-w- c:\windows\SysWow64\mfmpeg2srcsnk.dll 2015-05-23 13:27 . 2013-07-01 22:14 25600 ----a-w- c:\windows\system32\drivers\usbprint.sys 2015-05-23 13:27 . 2013-06-29 03:08 32768 ----a-w- c:\windows\system32\drivers\hidparse.sys 2015-05-23 13:27 . 2013-06-29 03:07 83968 ----a-w- c:\windows\system32\drivers\hidclass.sys 2015-05-23 13:20 . 2014-07-07 05:51 5982208 ----a-w- c:\windows\system32\mstscax.dll 2015-05-23 13:20 . 2014-07-07 05:52 724992 ----a-w- c:\windows\system32\termsrv.dll 2015-05-23 13:20 . 2014-07-07 04:00 5095424 ----a-w- c:\windows\SysWow64\mstscax.dll 2015-05-23 13:20 . 2014-07-07 05:53 1125376 ----a-w- c:\windows\system32\mstsc.exe 2015-05-23 13:20 . 2014-07-07 05:52 300544 ----a-w- c:\windows\system32\winsta.dll 2015-05-23 13:20 . 2014-07-07 04:01 1049600 ----a-w- c:\windows\SysWow64\mstsc.exe 2015-05-23 13:20 . 2014-07-07 04:01 233472 ----a-w- c:\windows\SysWow64\winsta.dll 2015-05-23 13:20 . 2014-07-07 03:59 269312 ----a-w- c:\windows\SysWow64\aaclient.dll 2015-05-23 13:20 . 2014-07-24 03:33 869544 ----a-w- c:\windows\system32\msvcr120_clr0400.dll 2015-05-23 13:20 . 2014-07-24 03:33 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll 2015-05-23 13:15 . 2013-04-10 22:35 2035200 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkObj.dll 2015-05-23 13:14 . 2015-04-21 14:33 524288 ----a-w- c:\windows\SysWow64\vbscript.dll 2015-05-23 13:12 . 2013-03-02 08:23 375808 ----a-w- c:\windows\SysWow64\ReAgent.dll 2015-05-23 13:12 . 2013-03-02 02:44 1011200 ----a-w- c:\windows\system32\reseteng.dll 2015-05-23 13:11 . 2014-03-11 00:38 982016 ----a-w- c:\windows\system32\KernelBase.dll 2015-05-23 13:11 . 2014-03-11 00:38 684032 ----a-w- c:\windows\system32\objsel.dll 2015-05-23 13:11 . 2014-03-11 00:41 559104 ----a-w- c:\windows\SysWow64\objsel.dll 2015-05-23 13:11 . 2014-03-11 00:38 179712 ----a-w- c:\windows\system32\dpapisrv.dll 2015-05-23 13:11 . 2014-03-10 03:05 668160 ----a-w- c:\windows\SysWow64\KernelBase.dll 2015-05-23 13:11 . 2014-03-11 00:41 38400 ----a-w- c:\windows\SysWow64\dimsroam.dll 2015-05-23 13:11 . 2014-03-11 00:38 45056 ----a-w- c:\windows\system32\dimsroam.dll 2015-05-23 13:09 . 2013-05-04 06:59 13644288 ----a-w- c:\windows\system32\Windows.UI.Xaml.dll 2015-05-23 13:08 . 2013-03-06 06:31 222208 ----a-w- c:\windows\system32\shdocvw.dll 2015-05-23 13:08 . 2013-12-04 23:43 583680 ----a-w- c:\windows\system32\msdrm.dll 2015-05-23 13:08 . 2013-12-04 23:37 451072 ----a-w- c:\windows\SysWow64\msdrm.dll 2015-05-23 13:07 . 2013-05-04 06:59 2842112 ----a-w- c:\windows\system32\WMVDECOD.DLL 2015-05-23 13:07 . 2013-05-04 04:57 2620928 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL 2015-05-23 13:04 . 2013-07-02 01:41 447320 ----a-w- c:\windows\system32\drivers\USBHUB3.SYS 2015-05-23 13:04 . 2013-07-02 01:41 337752 ----a-w- c:\windows\system32\drivers\USBXHCI.SYS 2015-05-23 13:04 . 2013-07-02 01:41 213336 ----a-w- c:\windows\system32\drivers\UCX01000.SYS 2015-05-23 13:04 . 2013-04-09 04:51 3552768 ----a-w- c:\windows\system32\tquery.dll 2015-05-23 13:04 . 2013-04-09 04:51 14267904 ----a-w- c:\windows\system32\wmp.dll 2015-05-23 13:04 . 2013-04-09 04:50 2107904 ----a-w- c:\windows\system32\mssrch.dll 2015-05-23 13:04 . 2013-04-08 21:51 2767360 ----a-w- c:\windows\SysWow64\tquery.dll 2015-05-23 13:04 . 2013-04-08 21:51 1593344 ----a-w- c:\windows\SysWow64\mssrch.dll . . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2015-05-23 15:45 . 2014-12-13 16:21 824008 ----a-w- c:\windows\system32\drivers\klif.sys 2015-05-23 15:45 . 2014-08-19 10:31 56008 ----a-w- c:\windows\system32\drivers\kldisk.sys 2015-05-23 15:29 . 2012-07-26 08:13 23776 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2015-05-05 17:49 . 2012-07-26 08:14 792032 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2015-05-05 17:49 . 2012-07-26 08:14 177632 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2015-03-04 06:39 . 2015-05-23 13:03 276992 ----a-w- c:\windows\apppatch\apppatch64\AcGenral.dll 2015-03-04 06:39 . 2015-05-23 13:03 39936 ----a-w- c:\windows\apppatch\apppatch64\acspecfc.dll 2015-03-04 04:52 . 2015-05-23 13:03 429056 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2015-03-04 04:52 . 2015-05-23 13:03 2362368 ----a-w- c:\windows\apppatch\AcGenral.dll . . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1] @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}" [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}] 2015-05-23 12:48 220632 ----a-w- c:\users\Juliane8\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2] @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}" [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}] 2015-05-23 12:48 220632 ----a-w- c:\users\Juliane8\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3] @="{BBACC218-34EA-4666-9D7A-C78F2274A524}" [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}] 2015-05-23 12:48 220632 ----a-w- c:\users\Juliane8\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "RadioController"="c:\program files (x86)\RadioController\RfBtnHelper.exe" [2013-06-26 111216] "Norton Online Backup"="c:\program files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [2012-08-15 2994880] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "EnableUIADesktopToggle"= 0 (0x0) "EnableCursorSuppression"= 1 (0x1) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLinkedConnections"= 1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) "AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc] @="" . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus] "DisableMonitoring"=dword:00000001 . 3;4 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x] R0 klelam;klelam;c:\windows\system32\DRIVERS\klelam.sys;c:\windows\SYSNATIVE\DRIVERS\klelam.sys [x] R2 0027331432385754mcinstcleanup;McAfee Application Installer Cleanup (0027331432385754);c:\users\Juliane8\AppData\Local\Temp\002733~1.EXE;c:\users\Juliane8\AppData\Local\Temp\002733~1.EXE [x] R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x] S0 cm_km_w;Kaspersky Lab Crypto Module (FDE PDK);c:\windows\system32\DRIVERS\cm_km_w.sys;c:\windows\SYSNATIVE\DRIVERS\cm_km_w.sys [x] S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x] S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x] S1 ccSet_NARA;NARA Settings Manager;c:\windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NARAx64\0401000.00E\ccSetx64.sys [x] S1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\DRIVERS\hssdrv6.sys;c:\windows\SYSNATIVE\DRIVERS\hssdrv6.sys [x] S1 klhk;klhk;c:\windows\system32\DRIVERS\klhk.sys;c:\windows\SYSNATIVE\DRIVERS\klhk.sys [x] S1 klpd;klpd;c:\windows\system32\DRIVERS\klpd.sys;c:\windows\SYSNATIVE\DRIVERS\klpd.sys [x] S1 klwfp;klwfp;c:\windows\system32\DRIVERS\klwfp.sys;c:\windows\SYSNATIVE\DRIVERS\klwfp.sys [x] S1 Klwtp;Klwtp;c:\windows\system32\DRIVERS\klwtp.sys;c:\windows\SYSNATIVE\DRIVERS\klwtp.sys [x] S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x] S2 AVP15.0.2;Kaspersky Anti-Virus Service 15.0.2;c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe;c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [x] S2 BrcmCardReader;Broadcom Card Reader Service;c:\program files\Broadcom\MemoryCard\BrcmCardReader.exe;c:\program files\Broadcom\MemoryCard\BrcmCardReader.exe [x] S2 CCDMonitorService;CCDMonitorService;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [x] S2 ClickToRunSvc;Service Démarrer en clic Microsoft Office;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [x] S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x] S2 ETDService;Elan Service;c:\program files\Elantech\ETDService.exe;c:\program files\Elantech\ETDService.exe [x] S2 hshld;Hotspot Shield Service;c:\program files (x86)\Hotspot Shield\bin\cmw_srv.exe;c:\program files (x86)\Hotspot Shield\bin\cmw_srv.exe [x] S2 HssWd;Hotspot Shield Monitoring Service;c:\program files (x86)\Hotspot Shield\bin\hsswd.exe -product hss;c:\program files (x86)\Hotspot Shield\bin\hsswd.exe -product hss [x] S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x] S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x] S2 kldisk;kldisk;c:\windows\system32\DRIVERS\kldisk.sys;c:\windows\SYSNATIVE\DRIVERS\kldisk.sys [x] S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x] S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x] S2 RfButtonDriverService;Dritek RF Button Command Service;c:\windows\RfBtnSvc64.exe;c:\windows\RfBtnSvc64.exe [x] S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x] S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\System32\drivers\b57xdbd.sys;c:\windows\SYSNATIVE\drivers\b57xdbd.sys [x] S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\System32\drivers\b57xdmp.sys;c:\windows\SYSNATIVE\drivers\b57xdmp.sys [x] S3 bScsiMSa;bScsiMSa;c:\windows\System32\drivers\bScsiMSa.sys;c:\windows\SYSNATIVE\drivers\bScsiMSa.sys [x] S3 bScsiSDa;bScsiSDa;c:\windows\System32\drivers\bScsiSDa.sys;c:\windows\SYSNATIVE\drivers\bScsiSDa.sys [x] S3 ePowerSvc;ePower Service;c:\program files\Acer\Acer Power Management\ePowerSvc.exe;c:\program files\Acer\Acer Power Management\ePowerSvc.exe [x] S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x] S3 IntcDAud;Son Intel(R) pour écrans;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x] S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x] S3 klflt;Kaspersky Lab Kernel DLL;c:\windows\system32\DRIVERS\klflt.sys;c:\windows\SYSNATIVE\DRIVERS\klflt.sys [x] S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x] S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x] S3 Ps2Kb2Hid;PS/2 Keyboard to HID Driver;c:\windows\System32\drivers\aPs2Kb2Hid.sys;c:\windows\SYSNATIVE\drivers\aPs2Kb2Hid.sys [x] S3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2015-05-29 18:51 986440 ----a-w- c:\program files (x86)\Google\Chrome\Application\43.0.2357.81\Installer\chrmstp.exe . Contenu du dossier 'Tâches planifiées' . 2015-05-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-23 12:38] . 2015-05-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-23 12:38] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1] @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}" [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}] 2015-05-23 12:48 244696 ----a-w- c:\users\Juliane8\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2] @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}" [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}] 2015-05-23 12:48 244696 ----a-w- c:\users\Juliane8\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3] @="{BBACC218-34EA-4666-9D7A-C78F2274A524}" [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}] 2015-05-23 12:48 244696 ----a-w- c:\users\Juliane8\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)] @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}" [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}] 2015-05-23 15:34 2334936 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)] @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}" [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}] 2015-05-23 15:34 2334936 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)] @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}" [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}] 2015-05-23 15:34 2334936 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-10-23 171040] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-10-23 399392] "Persistence"="c:\windows\system32\igfxpers.exe" [2012-10-23 441888] "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-06-11 12503184] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=c:\windows\System32\nvinitx.dll . ------- Examen supplémentaire ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://google.com/ mLocal Page = c:\windows\SysWOW64\blank.htm IE: E&xport to Microsoft Excel - c:\program files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\program files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 IE: {{5547CE1F-74E9-41E5-9CBF-5211ECC37341} - {BB7DC12B-C59D-4138-AD28-BBB65DE62A3B} - c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\Juliane8\AppData\Roaming\Mozilla\Firefox\Profiles\i29giw1a.default\ FF - user.js: plugin.state.npcontentblocker - 2 FF - user.js: plugin.state.nponlinebanking - 2 FF - user.js: plugin.state.npvkplugin - 2 . - - - - ORPHELINS SUPPRIMES - - - - . Toolbar-Locked - (no file) Wow6432Node-HKLM-Run-LManager - (no file) Toolbar-Locked - (no file) HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe . . . --------------------- CLES DE REGISTRE BLOQUEES --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B9A09F18-45AB-4F09-A117-A4ADDA8FA8C8}] @Denied: (A) (Everyone) "Solution"="{36eb6792-3a29-43b3-8cd0-f67d266fb426}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane\0] "Key"="ActionsPane" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) @SACL=(02 0000) . Heure de fin: 2015-05-30 13:41:49 ComboFix-quarantined-files.txt 2015-05-30 11:41 . Avant-CF: 896*553*254*912 octets libres Après-CF: 896*417*120*256 octets libres . - - End Of File - - BCB2A4F6A5EE057DE7DF79CE7672FBDB |
31.05.2015, 05:41 | #6 |
/// the machine /// TB-Ausbilder | Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Downloade Dir bitte Malwarebytes Anti-Malware
Downloade Dir bitte AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ --> Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam |
31.05.2015, 10:36 | #7 |
| Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Hallo, hier die Dateien: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 31/05/2015 Suchlauf-Zeit: 09:02:16 Logdatei: mbam.txt Administrator: Ja Version: 2.01.6.1022 Malware Datenbank: v2015.05.30.06 Rootkit Datenbank: v2015.05.24.01 Lizenz: Testversion Malware Schutz: Aktiviert Bösartiger Webseiten Schutz: Aktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 8 CPU: x64 Dateisystem: NTFS Benutzer: Juliane8 Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 517729 Verstrichene Zeit: 25 Min, 1 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (Keine schädliche Elemente gefunden) Module: 0 (Keine schädliche Elemente gefunden) Registrierungsschlüssel: 0 (Keine schädliche Elemente gefunden) Registrierungswerte: 0 (Keine schädliche Elemente gefunden) Registrierungsdaten: 0 (Keine schädliche Elemente gefunden) Ordner: 2 PUP.Optional.OpenCandy, C:\Users\Juliane8\AppData\Roaming\OpenCandy, In Quarantäne, [d2a7c1823e4c67cf5b248bdec340d828], PUP.Optional.OpenCandy, C:\Users\Juliane8\AppData\Roaming\OpenCandy\E4B8E40D65814806AB5EEF0E174A88B4, In Quarantäne, [d2a7c1823e4c67cf5b248bdec340d828], Dateien: 3 PUP.Optional.OpenCandy, C:\Users\Juliane8\Downloads\Little_Registry_Cleaner_07_07_2013.exe, In Quarantäne, [a8d12b18eb9f360031f84cbc20e6e51b], PUP.Optional.OpenCandy, C:\Users\Juliane8\AppData\Roaming\OpenCandy\E4B8E40D65814806AB5EEF0E174A88B4\dh.exe, In Quarantäne, [d2a7c1823e4c67cf5b248bdec340d828], PUP.Optional.OpenCandy, C:\Users\Juliane8\AppData\Roaming\OpenCandy\E4B8E40D65814806AB5EEF0E174A88B4\setup.exe, In Quarantäne, [d2a7c1823e4c67cf5b248bdec340d828], Physische Sektoren: 0 (Keine schädliche Elemente gefunden) (end) Code:
ATTFilter # AdwCleaner v4.205 - Rapport créé le 31/05/2015 à 10:18:03 # Mis à jour le 21/05/2015 par Xplode # Base de données : 2015-05-25.3 [Serveur] # Système d'exploitation : Windows 8 (x64) # Nom d'utilisateur : Juliane8 - JULIANE # Exécuté depuis : C:\Users\Juliane8\Downloads\AdwCleaner_4.205.exe # Option : Nettoyer ***** [ Services ] ***** [#] Service Supprimé : hshld [#] Service Supprimé : 0027331432385754mcinstcleanup ***** [ Fichiers / Dossiers ] ***** Dossier Supprimé : C:\Users\Juliane8\AppData\LocalLow\SimplyTech Fichier Supprimé : C:\Users\Juliane8\AppData\Roaming\Mozilla\Firefox\Profiles\i29giw1a.default\user.js Fichier Supprimé : C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.movshare.net_0.localstorage Fichier Supprimé : C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.movshare.net_0.localstorage-journal ***** [ Tâches planifiées ] ***** ***** [ Raccourcis ] ***** ***** [ Registre ] ***** Clé Supprimée : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C} Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C} ***** [ Navigateurs ] ***** -\\ Internet Explorer v10.0.9200.17267 -\\ Mozilla Firefox v38.0.1 (x86 en-US) -\\ Google Chrome v43.0.2357.81 [C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms} ************************* AdwCleaner[R0].txt - [2206 octets] - [31/05/2015 10:16:47] AdwCleaner[S0].txt - [1808 octets] - [31/05/2015 10:18:03] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1868 octets] ########## Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.8.5 (05.30.2015:1) OS: Windows 8 x64 Ran by Juliane8 on 31/05/2015 at 10:45:53,19 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Tasks ~~~ Registry Values ~~~ Registry Keys ~~~ Files Successfully deleted: [File] C:\users\public\desktop\hotspot shield.lnk ~~~ Folders ~~~ Chrome [C:\Users\Juliane8\appdata\local\Google\Chrome\User Data\Default\Preferences] - default search provider reset [C:\Users\Juliane8\appdata\local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted: [C:\Users\Juliane8\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset [C:\Users\Juliane8\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted: [] ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 31/05/2015 at 10:49:06,40 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2015 Ran by Juliane8 (administrator) on JULIANE on 31-05-2015 10:52:26 Running from C:\Users\Juliane8\Downloads Loaded Profiles: Juliane8 (Available Profiles: Juliane8 & UpdatusUser & Eike & Administrateur) Platform: Windows 8 (X64) OS Language: Français (France) Internet Explorer Version 10 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Dritek System INC.) C:\Windows\RfBtnSvc64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\plugin-nm-server.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Farbar) C:\Users\Juliane8\Downloads\FRST64 (1).exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2873744 2012-11-20] (ELAN Microelectronics Corp.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor) HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2013-06-26] (Dritek System Inc.) HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2994880 2012-08-15] (Symantec Corporation) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [245872 2013-02-21] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [201576 2013-02-21] (NVIDIA Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-2694262190-2736747673-2123131371-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION AutoConfigURL: [S-1-5-21-2694262190-2736747673-2123131371-1002] => hxxp://127.0.0.1:895/proxy.js HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-2694262190-2736747673-2123131371-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2694262190-2736747673-2123131371-1002 -> {39077373-6179-4F07-B929-EAC3232937CB} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-05-23] (Microsoft Corporation) BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-05-23] (Microsoft Corporation) BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-05-23] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\Juliane8\AppData\Roaming\Mozilla\Firefox\Profiles\i29giw1a.default FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation) FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-05-30] () FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-05-30] () FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-05-30] () FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-05-23] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-23] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-23] (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] () FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-05-30] FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-05-30] FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-05-30] FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: No Name - C:\Program Files\McAfee\MSK [2013-05-23] Chrome: ======= CHR Profile: C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Kaspersky Protection) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-05-30] CHR Extension: (Bookmark Manager) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-23] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-24] CHR Extension: (Google Wallet) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-23] CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [193400 2014-12-23] (Kaspersky Lab ZAO) S2 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-20] (Broadcom Corp.) [File not signed] S2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-19] (Acer Incorporated) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2736824 2015-04-07] (Microsoft Corporation) S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated) S2 ETDService; C:\Program Files\Elantech\ETDService.exe [100752 2012-11-20] (ELAN Microelectronics Corp.) S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [96688 2015-05-19] () S2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [589608 2015-05-19] () S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation) S2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation) S2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3943104 2012-08-15] (Symantec Corporation) R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2013-06-26] (Dritek System INC.) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2013-04-21] (Microsoft Corporation) S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [5139968 2012-06-02] (Broadcom Corporation) R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation) R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [238288 2013-01-14] (Kaspersky Lab UK Ltd) R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2015-05-19] (AnchorFree Inc.) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [468576 2014-03-31] (Kaspersky Lab ZAO) R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [56008 2015-05-18] (Kaspersky Lab ZAO) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab) R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [151240 2014-11-28] (Kaspersky Lab ZAO) R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [247496 2014-10-22] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [824008 2015-05-18] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30920 2014-10-10] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [31432 2014-10-30] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [69320 2014-11-20] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [77000 2014-11-22] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [181960 2014-11-10] (Kaspersky Lab ZAO) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [136408 2015-05-31] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation) R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-06-26] (Dritek System Inc.) R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2015-05-19] (Anchorfree Inc.) S3 catchme; \??\C:\ComboFix\catchme.sys [X] U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-05-31 10:52 - 2015-05-31 10:52 - 02108928 _____ (Farbar) C:\Users\Juliane8\Downloads\FRST64 (1).exe 2015-05-31 10:49 - 2015-05-31 10:49 - 00001135 _____ () C:\Users\Juliane8\Desktop\JRT.txt 2015-05-31 10:45 - 2015-05-31 10:45 - 02947635 _____ (Thisisu) C:\Users\Juliane8\Downloads\JRT.exe 2015-05-31 10:45 - 2015-05-31 10:45 - 00000207 _____ () C:\WINDOWS\tweaking.com-regbackup-JULIANE-Windows-8-(64-bit).dat 2015-05-31 10:45 - 2015-05-31 10:45 - 00000000 ____D () C:\RegBackup 2015-05-31 10:20 - 2015-05-31 10:20 - 00001957 _____ () C:\Users\Juliane8\Desktop\AdwCleaner[S0].txt 2015-05-31 10:16 - 2015-05-31 10:18 - 00000000 ____D () C:\AdwCleaner 2015-05-31 10:16 - 2015-05-31 10:16 - 02222592 _____ () C:\Users\Juliane8\Downloads\AdwCleaner_4.205.exe 2015-05-31 09:40 - 2015-05-31 09:40 - 00000000 ____D () C:\WINDOWS\system32\AutoUpdateLicense 2015-05-31 09:33 - 2015-05-31 09:33 - 00001869 _____ () C:\Users\Juliane8\Desktop\mbam.txt 2015-05-31 09:28 - 2015-05-31 09:29 - 00430608 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2015-05-31 09:02 - 2015-05-31 10:20 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-05-31 09:02 - 2015-05-31 09:02 - 00001110 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-05-31 09:02 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-05-31 09:02 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-05-31 09:02 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2015-05-31 09:01 - 2015-05-31 09:01 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Juliane8\Downloads\mbam-setup-2.1.6.1022.exe 2015-05-30 16:45 - 2015-05-30 16:45 - 00002338 _____ () C:\Users\Juliane8\Desktop\Safe Money.lnk 2015-05-30 16:44 - 2015-05-30 16:44 - 00002136 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk 2015-05-30 16:44 - 2015-05-30 16:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2015-05-30 16:44 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll 2015-05-30 16:43 - 2015-05-31 10:45 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2015-05-30 16:43 - 2015-05-30 16:43 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab 2015-05-30 16:43 - 2015-05-18 22:16 - 00824008 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys 2015-05-30 16:43 - 2014-11-28 18:19 - 00151240 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys 2015-05-30 16:43 - 2014-10-22 21:13 - 00247496 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klhk.sys 2015-05-30 16:31 - 2015-03-03 15:17 - 00295552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2015-05-30 16:20 - 2015-05-30 16:29 - 202676480 _____ (Kaspersky Lab) C:\Users\Juliane8\Downloads\kis15.0.1.415en.exe 2015-05-30 13:41 - 2015-05-30 13:41 - 00027053 _____ () C:\ComboFix.txt 2015-05-30 13:29 - 2011-06-26 08:45 - 00256000 _____ () C:\WINDOWS\PEV.exe 2015-05-30 13:29 - 2010-11-07 19:20 - 00208896 _____ () C:\WINDOWS\MBR.exe 2015-05-30 13:29 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00098816 _____ () C:\WINDOWS\sed.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00080412 _____ () C:\WINDOWS\grep.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00068096 _____ () C:\WINDOWS\zip.exe 2015-05-30 13:28 - 2015-05-30 13:28 - 05628678 ____R (Swearware) C:\Users\Juliane8\Downloads\ComboFix.exe 2015-05-30 13:28 - 2015-05-30 13:28 - 00001488 _____ () C:\Users\Juliane8\Desktop\ComboFix - Raccourci.lnk 2015-05-30 13:23 - 2015-05-30 16:44 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files 2015-05-30 13:21 - 2015-05-30 13:22 - 180322520 _____ (Kaspersky Lab) C:\Users\Juliane8\Downloads\kis15.0.2.361en (1).exe 2015-05-30 13:16 - 2015-05-30 13:41 - 00000000 ____D () C:\Qoobox 2015-05-30 13:15 - 2015-05-30 13:39 - 00000000 ____D () C:\WINDOWS\erdnt 2015-05-30 11:53 - 2015-03-04 09:26 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AutoUpdate.exe 2015-05-30 11:53 - 2015-03-04 09:26 - 00467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe 2015-05-30 11:53 - 2015-03-04 09:26 - 00011105 _____ () C:\WINDOWS\system32\AutoconfigV2.cab 2015-05-30 11:53 - 2015-03-04 08:41 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll 2015-05-30 11:53 - 2015-03-04 08:41 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-05-30 11:53 - 2015-03-04 06:53 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll 2015-05-30 11:53 - 2015-03-04 06:53 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-05-30 11:53 - 2014-10-22 03:01 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2015-05-30 11:53 - 2014-10-22 03:00 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll 2015-05-30 09:37 - 2014-07-16 00:51 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys 2015-05-29 17:32 - 2015-05-29 17:32 - 00009210 _____ () C:\Users\Juliane8\Desktop\gmer.zip 2015-05-29 17:31 - 2015-05-29 17:31 - 01182149 _____ () C:\Users\Juliane8\Downloads\7z936.exe 2015-05-29 17:31 - 2015-05-29 17:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2015-05-29 17:31 - 2015-05-29 17:31 - 00000000 ____D () C:\Program Files (x86)\7-Zip 2015-05-29 16:55 - 2015-05-29 16:55 - 00160518 _____ () C:\Users\Juliane8\Desktop\gmer.log 2015-05-29 16:51 - 2015-05-29 16:51 - 00380416 _____ () C:\Users\Juliane8\Downloads\g6wq61hd.exe 2015-05-29 16:26 - 2014-02-04 01:56 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2015-05-29 16:26 - 2014-02-04 01:56 - 00278872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys 2015-05-29 16:26 - 2014-01-31 02:48 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll 2015-05-29 16:26 - 2014-01-31 02:06 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll 2015-05-29 16:26 - 2014-01-27 05:39 - 01939288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2015-05-29 16:26 - 2014-01-16 01:42 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys 2015-05-29 16:26 - 2014-01-03 01:35 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll 2015-05-29 16:26 - 2014-01-03 01:32 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll 2015-05-29 16:25 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2015-05-29 16:25 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2015-05-29 16:25 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll 2015-05-29 16:25 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2015-05-29 16:25 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2015-05-29 16:25 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll 2015-05-29 16:25 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2015-05-29 16:25 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe 2015-05-29 16:25 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll 2015-05-29 16:25 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe 2015-05-29 16:25 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2015-05-29 16:25 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll 2015-05-29 16:25 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2015-05-29 16:25 - 2013-06-01 11:20 - 01527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-05-29 16:25 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2015-05-29 16:25 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll 2015-05-29 16:25 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll 2015-05-29 16:25 - 2013-06-01 05:08 - 00037632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys 2015-05-29 16:24 - 2014-07-12 06:41 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRUM.DLL 2015-05-29 16:24 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDYAK.DLL 2015-05-29 16:24 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTAT.DLL 2015-05-29 16:24 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU1.DLL 2015-05-29 16:24 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU.DLL 2015-05-29 16:24 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDBASH.DLL 2015-05-29 16:24 - 2014-07-12 06:16 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRUM.DLL 2015-05-29 16:24 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDYAK.DLL 2015-05-29 16:24 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTAT.DLL 2015-05-29 16:24 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU1.DLL 2015-05-29 16:24 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU.DLL 2015-05-29 16:24 - 2014-07-12 06:15 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDBASH.DLL 2015-05-29 16:24 - 2014-07-09 00:33 - 00181248 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe 2015-05-29 16:24 - 2014-07-09 00:32 - 01539584 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll 2015-05-29 16:24 - 2014-07-09 00:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll 2015-05-29 16:24 - 2014-07-09 00:30 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll 2015-05-29 16:24 - 2014-07-07 07:52 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-05-29 16:24 - 2014-07-07 07:52 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-05-29 16:24 - 2014-07-04 12:52 - 00328000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys 2015-05-29 16:24 - 2014-06-28 09:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll 2015-05-29 16:24 - 2014-06-28 08:56 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll 2015-05-29 16:24 - 2014-06-18 01:27 - 02032640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2015-05-29 16:24 - 2014-06-18 01:23 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2015-05-29 16:24 - 2014-06-11 16:47 - 02842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL 2015-05-29 16:24 - 2014-06-11 06:40 - 02620928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL 2015-05-29 16:24 - 2014-06-11 00:44 - 01403896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2015-05-29 16:24 - 2014-02-04 12:57 - 01271664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2015-05-29 16:24 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2015-05-29 16:24 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2015-05-29 16:24 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2015-05-29 16:23 - 2015-03-12 07:31 - 01688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2015-05-29 16:23 - 2015-01-24 08:42 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2015-05-29 16:23 - 2015-01-24 07:00 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll 2015-05-29 16:23 - 2014-08-01 01:40 - 01287680 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2015-05-29 16:23 - 2014-06-13 03:57 - 01453400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2015-05-29 16:23 - 2014-06-13 03:55 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2015-05-29 16:23 - 2013-08-16 07:41 - 00058200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys 2015-05-29 16:23 - 2013-08-16 07:39 - 02371728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll 2015-05-29 16:23 - 2013-08-16 07:22 - 04917760 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2015-05-29 16:23 - 2013-08-16 07:21 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2015-05-29 16:23 - 2013-08-16 07:21 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2015-05-29 16:23 - 2013-08-16 07:21 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll 2015-05-29 16:23 - 2013-08-16 07:21 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll 2015-05-29 16:23 - 2013-08-16 07:21 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll 2015-05-29 16:23 - 2013-08-16 07:21 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll 2015-05-29 16:23 - 2013-08-16 00:43 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll 2015-05-29 16:23 - 2013-08-16 00:43 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll 2015-05-29 16:23 - 2013-08-16 00:43 - 00083968 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll 2015-05-29 16:23 - 2013-08-16 00:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll 2015-05-29 16:23 - 2013-08-16 00:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll 2015-05-29 16:23 - 2013-07-03 02:10 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2015-05-29 16:22 - 2014-09-03 04:48 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll 2015-05-29 16:22 - 2014-09-03 04:21 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll 2015-05-29 16:22 - 2013-07-09 10:04 - 00120144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys 2015-05-29 16:22 - 2013-07-09 05:57 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll 2015-05-29 16:22 - 2013-07-09 00:46 - 00543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2015-05-29 16:22 - 2013-07-09 00:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2015-05-29 16:22 - 2013-07-09 00:46 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanadvui.dll 2015-05-29 16:22 - 2013-07-09 00:45 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll 2015-05-29 16:22 - 2013-07-03 02:23 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll 2015-05-29 16:22 - 2013-07-03 02:22 - 02839552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2015-05-29 16:22 - 2013-07-03 02:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2015-05-29 16:22 - 2013-07-01 00:30 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\openfiles.exe 2015-05-29 16:22 - 2013-07-01 00:29 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe 2015-05-29 16:22 - 2013-06-29 08:15 - 00195416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2015-05-29 16:22 - 2013-06-29 08:15 - 00125784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2015-05-29 16:22 - 2013-06-26 05:01 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys 2015-05-29 16:22 - 2013-06-26 04:59 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys 2015-05-29 16:22 - 2013-06-25 00:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-05-29 16:22 - 2013-06-19 07:36 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll 2015-05-29 16:22 - 2013-06-19 07:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll 2015-05-29 16:22 - 2013-06-19 00:38 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll 2015-05-29 16:22 - 2013-06-19 00:38 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll 2015-05-29 16:22 - 2013-06-12 01:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll 2015-05-29 16:22 - 2013-06-12 01:26 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll 2015-05-29 16:22 - 2013-06-06 10:03 - 00119040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS 2015-05-29 16:21 - 2014-04-30 00:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe 2015-05-29 16:21 - 2014-04-30 00:32 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe 2015-05-29 16:21 - 2014-03-25 01:42 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe 2015-05-29 16:21 - 2014-03-25 00:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe 2015-05-29 16:21 - 2014-01-31 02:48 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2015-05-29 16:20 - 2013-10-05 08:10 - 00285016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2015-05-29 16:20 - 2013-08-30 07:43 - 00061784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys 2015-05-29 16:20 - 2013-08-30 07:20 - 01173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-05-29 16:20 - 2013-08-30 07:19 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2015-05-29 16:20 - 2013-08-30 07:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2015-05-29 16:20 - 2013-08-30 01:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-05-29 16:20 - 2013-08-30 01:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll 2015-05-29 16:20 - 2013-08-30 01:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2015-05-29 16:20 - 2013-08-21 08:39 - 00465240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2015-05-29 16:20 - 2013-08-10 08:30 - 00151896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys 2015-05-29 16:20 - 2013-07-25 01:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-05-29 16:20 - 2013-07-25 01:07 - 13661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-05-29 16:15 - 2015-05-29 16:15 - 00028983 _____ () C:\Users\Juliane8\Desktop\Addition.txt 2015-05-29 16:14 - 2015-05-29 16:14 - 00099382 _____ () C:\Users\Juliane8\Desktop\FRST.txt 2015-05-29 16:12 - 2015-05-29 16:14 - 00028983 _____ () C:\Users\Juliane8\Downloads\Addition.txt 2015-05-29 16:11 - 2015-05-31 10:52 - 00015127 _____ () C:\Users\Juliane8\Downloads\FRST.txt 2015-05-29 16:11 - 2015-05-29 16:11 - 00380416 _____ () C:\Users\Juliane8\Downloads\uwfk0wd2.exe 2015-05-29 16:10 - 2015-05-31 10:52 - 00000000 ____D () C:\FRST 2015-05-29 16:10 - 2015-05-29 16:10 - 02108928 _____ (Farbar) C:\Users\Juliane8\Downloads\FRST64.exe 2015-05-29 16:08 - 2015-05-29 16:08 - 00050477 _____ () C:\Users\Juliane8\Downloads\Defogger.exe 2015-05-29 16:08 - 2015-05-29 16:08 - 00000478 _____ () C:\Users\Juliane8\Downloads\defogger_disable.log 2015-05-29 16:08 - 2015-05-29 16:08 - 00000000 _____ () C:\Users\Juliane8\defogger_reenable 2015-05-29 16:04 - 2014-07-24 15:50 - 00447296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2015-05-29 16:04 - 2014-07-17 01:28 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll 2015-05-29 16:04 - 2014-07-17 00:59 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll 2015-05-29 16:04 - 2014-07-17 00:59 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll 2015-05-29 16:04 - 2014-07-12 08:45 - 01549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll 2015-05-29 16:04 - 2014-07-12 06:36 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2015-05-29 16:04 - 2014-07-12 06:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2015-05-29 16:04 - 2014-07-12 06:34 - 00404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2015-05-29 16:04 - 2014-07-12 06:34 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2015-05-29 16:04 - 2014-06-28 08:57 - 01341952 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2015-05-29 16:04 - 2014-06-28 04:23 - 01126400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2015-05-29 16:04 - 2013-10-31 07:56 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2015-05-29 16:04 - 2013-10-31 07:56 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll 2015-05-29 16:04 - 2013-10-31 06:01 - 00550400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll 2015-05-29 16:04 - 2013-10-31 05:42 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys 2015-05-29 16:04 - 2013-10-13 22:49 - 00100696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys 2015-05-29 16:04 - 2013-08-27 07:21 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll 2015-05-29 16:04 - 2013-08-27 07:19 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll 2015-05-29 16:04 - 2013-08-27 00:29 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll 2015-05-29 16:04 - 2013-08-27 00:28 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll 2015-05-29 16:04 - 2013-08-10 07:21 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2015-05-29 16:04 - 2013-08-10 07:21 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll 2015-05-29 16:04 - 2013-08-10 05:58 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2015-05-29 16:04 - 2013-08-03 08:40 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll 2015-05-29 16:04 - 2013-08-03 08:40 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll 2015-05-29 16:04 - 2013-08-03 08:40 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx 2015-05-29 16:04 - 2013-08-03 07:14 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx 2015-05-29 16:04 - 2013-08-03 07:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll 2015-05-29 16:04 - 2013-08-03 07:13 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll 2015-05-29 16:04 - 2013-08-02 08:28 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll 2015-05-29 16:04 - 2013-08-02 07:08 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll 2015-05-29 16:04 - 2013-07-25 01:10 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll 2015-05-29 16:04 - 2013-07-25 01:06 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll 2015-05-29 16:02 - 2014-05-29 06:04 - 00094552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys 2015-05-29 16:02 - 2014-03-01 11:47 - 01258496 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2015-05-29 16:02 - 2014-03-01 11:47 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll 2015-05-29 16:02 - 2014-03-01 10:07 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll 2015-05-29 16:02 - 2014-03-01 08:59 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2015-05-29 16:02 - 2014-02-15 06:15 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys 2015-05-29 16:02 - 2013-11-26 01:17 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2015-05-29 12:29 - 2015-05-29 12:29 - 00000000 ____D () C:\ProgramData\hsswpr 2015-05-29 12:27 - 2015-05-29 12:27 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group 2015-05-28 21:18 - 2015-05-29 09:37 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy 2015-05-28 21:18 - 2015-05-28 21:18 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking 2015-05-28 21:17 - 2015-05-29 10:28 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2 2015-05-27 13:38 - 2015-05-27 13:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\Hotspot Shield 2015-05-27 09:08 - 2015-05-31 09:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-05-26 20:56 - 2015-05-26 23:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5 2015-05-26 20:56 - 2015-05-26 20:56 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\GlarySoft 2015-05-26 20:56 - 2015-05-26 20:56 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\DiskDefrag 2015-05-26 20:55 - 2015-05-26 23:12 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5 2015-05-26 20:30 - 2015-05-31 09:02 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-05-26 20:30 - 2015-05-26 20:30 - 00000000 ____D () C:\ProgramData\Malwarebytes 2015-05-26 08:57 - 2015-05-26 12:17 - 00000000 ____D () C:\Program Files (x86)\PDF24 2015-05-26 08:57 - 2015-05-26 08:57 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\PDF24 2015-05-26 08:26 - 2015-05-26 08:26 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\clear.fi 2015-05-26 08:16 - 2015-05-26 08:16 - 00000108 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc 2015-05-26 08:15 - 2015-05-26 08:15 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (4).pptx 2015-05-26 08:12 - 2015-05-26 08:44 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\MemoQ 2015-05-26 08:12 - 2015-05-26 08:43 - 00000000 ____D () C:\ProgramData\MemoQ 2015-05-26 08:12 - 2015-05-26 08:12 - 00000000 ____D () C:\Program Files (x86)\Kilgray 2015-05-25 23:57 - 2015-05-25 23:57 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (3).pptx 2015-05-25 23:57 - 2015-05-25 23:57 - 00012960 _____ () C:\Users\Juliane8\Downloads\source (2).zip 2015-05-25 23:43 - 2015-05-25 23:43 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (2).pptx 2015-05-25 23:40 - 2015-05-25 23:40 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (1).pptx 2015-05-25 09:49 - 2015-05-25 09:49 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\SDL 2015-05-25 09:49 - 2015-05-25 09:49 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\SDL 2015-05-25 09:47 - 2015-05-26 12:13 - 00000000 ____D () C:\ProgramData\SafeNet Sentinel 2015-05-25 09:46 - 2015-05-25 09:48 - 00000000 ____D () C:\ProgramData\SDL 2015-05-25 09:45 - 2015-05-26 12:13 - 00000000 ____D () C:\ProgramData\Package Cache 2015-05-25 09:30 - 2015-05-25 09:30 - 00000000 ____D () C:\Program Files\Common Files\Little Registry Cleaner 2015-05-25 09:29 - 2015-05-26 12:30 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Little Registry Cleaner 2015-05-25 09:29 - 2015-05-26 12:30 - 00000000 ____D () C:\Program Files (x86)\Little Registry Cleaner 2015-05-25 09:23 - 2015-05-29 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Shredder 2015-05-25 09:23 - 2015-05-29 15:44 - 00000000 ____D () C:\Program Files\File Shredder 2015-05-25 09:23 - 2015-05-25 09:23 - 00000851 _____ () C:\Users\Juliane8\Desktop\File Shredder.lnk 2015-05-25 09:22 - 2015-05-25 09:23 - 02317839 _____ (PowTools ) C:\Users\Juliane8\Downloads\file_shredder_setup.exe 2015-05-25 09:17 - 2015-05-25 09:21 - 338565749 _____ () C:\Users\Juliane8\Downloads\SDLTradosStudio2014TrialDE (1).exe 2015-05-25 09:10 - 2015-05-29 15:45 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Hotspot Shield 2015-05-25 09:10 - 2015-05-29 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield 2015-05-25 09:10 - 2015-05-29 15:44 - 00000000 ____D () C:\Program Files (x86)\Hotspot Shield 2015-05-25 09:10 - 2015-05-29 15:38 - 00000000 ____D () C:\ProgramData\Hotspot Shield 2015-05-25 09:10 - 2015-05-25 09:10 - 09975680 _____ () C:\Users\Juliane8\Downloads\HSS-4.15.2-install-plain-701-plain.exe 2015-05-25 09:10 - 2015-05-19 03:06 - 00044744 _____ (AnchorFree Inc.) C:\WINDOWS\system32\Drivers\hssdrv6.sys 2015-05-24 13:55 - 2015-05-24 13:55 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel 2015-05-24 13:55 - 2015-05-24 13:55 - 00000000 ____D () C:\WINDOWS\system32\appraiser 2015-05-24 10:35 - 2014-10-09 06:00 - 01519104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll 2015-05-24 10:35 - 2014-10-09 06:00 - 01484288 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe 2015-05-24 10:35 - 2014-10-09 06:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll 2015-05-24 10:35 - 2014-10-09 05:59 - 01195520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll 2015-05-24 10:35 - 2014-10-09 05:59 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll 2015-05-23 16:53 - 2015-05-23 16:57 - 00000000 ____D () C:\WINDOWS\system32\MRT 2015-05-23 16:53 - 2015-04-30 10:07 - 140425016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-05-23 16:25 - 2015-01-09 08:43 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2015-05-23 16:25 - 2015-01-09 07:03 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2015-05-23 16:25 - 2015-01-09 01:52 - 00478296 _____ () C:\WINDOWS\SysWOW64\locale.nls 2015-05-23 16:25 - 2015-01-09 01:52 - 00478296 _____ () C:\WINDOWS\system32\locale.nls 2015-05-23 16:20 - 2015-04-30 15:07 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-05-23 16:20 - 2015-04-30 15:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-05-23 15:48 - 2014-06-11 00:44 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2015-05-23 15:48 - 2014-06-11 00:43 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-05-23 15:35 - 2014-11-15 08:06 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2015-05-23 15:35 - 2014-11-15 07:13 - 03286016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 01623552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe 2015-05-23 15:35 - 2014-11-15 07:12 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll 2015-05-23 15:35 - 2014-11-15 05:54 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe 2015-05-23 15:35 - 2014-11-15 05:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2015-05-23 15:35 - 2014-11-15 05:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll 2015-05-23 15:35 - 2014-11-15 05:53 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2015-05-23 15:35 - 2013-10-19 07:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll 2015-05-23 15:35 - 2013-10-19 06:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll 2015-05-23 15:35 - 2013-07-06 02:15 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2015-05-23 15:35 - 2013-07-04 04:13 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2015-05-23 15:34 - 2014-11-05 08:40 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2015-05-23 15:34 - 2014-11-05 08:39 - 01024512 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2015-05-23 15:34 - 2014-10-29 16:21 - 00499008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2015-05-23 15:34 - 2014-08-28 08:01 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll 2015-05-23 15:33 - 2015-03-23 07:19 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-05-23 15:33 - 2015-03-23 00:04 - 01111552 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2015-05-23 15:33 - 2014-12-03 03:48 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2015-05-23 15:33 - 2014-06-18 01:27 - 01440256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe 2015-05-23 15:33 - 2014-06-18 01:24 - 01557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe 2015-05-23 15:33 - 2014-06-05 03:12 - 00678600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll 2015-05-23 15:33 - 2014-06-04 01:12 - 00536776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll 2015-05-23 15:32 - 2014-12-11 08:51 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe 2015-05-23 15:31 - 2015-04-13 07:32 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2015-05-23 15:31 - 2015-03-17 09:00 - 06971712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-05-23 15:31 - 2015-03-17 08:52 - 01822696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2015-05-23 15:31 - 2015-03-17 06:45 - 01409496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2015-05-23 15:30 - 2015-02-20 15:59 - 00046080 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-05-23 15:30 - 2015-02-20 13:56 - 00366592 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-05-23 15:30 - 2015-02-20 10:10 - 00035328 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-05-23 15:30 - 2015-02-20 09:24 - 00304128 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-05-23 15:30 - 2015-01-31 15:48 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys 2015-05-23 15:30 - 2015-01-31 07:55 - 00275712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys 2015-05-23 15:30 - 2014-02-06 01:41 - 01257984 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32(171).dll 2015-05-23 15:29 - 2014-09-13 08:24 - 02233152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2015-05-23 15:29 - 2014-09-03 04:48 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll 2015-05-23 15:29 - 2014-09-03 04:22 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll 2015-05-23 15:29 - 2014-08-29 06:17 - 02043392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2015-05-23 15:29 - 2014-08-29 06:17 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll 2015-05-23 15:29 - 2014-08-29 06:04 - 02837504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2015-05-23 15:29 - 2014-08-29 06:04 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2015-05-23 15:29 - 2014-08-28 08:04 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll 2015-05-23 15:29 - 2014-08-28 08:04 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSTIFF.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXST30.dll 2015-05-23 15:29 - 2014-07-24 15:12 - 00328512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys 2015-05-23 15:29 - 2014-02-06 01:19 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32(184).dll 2015-05-23 15:27 - 2015-02-24 09:58 - 00861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2015-05-23 15:27 - 2014-10-09 05:59 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2015-05-23 15:27 - 2014-10-09 05:59 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2015-05-23 15:27 - 2014-10-09 05:58 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2015-05-23 15:27 - 2014-09-22 07:38 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2015-05-23 15:27 - 2014-09-22 05:56 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2015-05-23 15:27 - 2013-07-06 00:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys 2015-05-23 15:27 - 2013-07-06 00:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys 2015-05-23 15:27 - 2013-07-02 00:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys 2015-05-23 15:27 - 2013-06-29 05:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys 2015-05-23 15:27 - 2013-06-22 07:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys 2015-05-23 15:27 - 2013-06-22 07:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys 2015-05-23 15:26 - 2015-04-13 07:30 - 01839616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2015-05-23 15:26 - 2015-04-13 07:30 - 01280512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2015-05-23 15:26 - 2015-04-13 06:05 - 01416192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2015-05-23 15:26 - 2015-04-13 05:25 - 04063744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-05-23 15:26 - 2015-01-29 10:05 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2015-05-23 15:26 - 2015-01-29 08:19 - 01339392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2015-05-23 15:26 - 2013-03-02 12:57 - 00077544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys 2015-05-23 15:26 - 2013-03-02 10:23 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2015-05-23 15:26 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2015-05-23 15:26 - 2013-03-02 10:23 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncInfo.dll 2015-05-23 15:26 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll 2015-05-23 15:26 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll 2015-05-23 15:26 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl 2015-05-23 15:26 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 01149952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL 2015-05-23 15:26 - 2013-03-02 04:44 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo(177).dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll 2015-05-23 15:26 - 2013-03-02 04:43 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl 2015-05-23 15:26 - 2013-03-02 04:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys 2015-05-23 15:26 - 2013-03-01 06:56 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys 2015-05-23 15:20 - 2014-07-24 05:33 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll 2015-05-23 15:20 - 2014-07-24 05:33 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll 2015-05-23 15:20 - 2014-07-07 07:53 - 01125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe 2015-05-23 15:20 - 2014-07-07 07:52 - 00724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll 2015-05-23 15:20 - 2014-07-07 07:52 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll 2015-05-23 15:20 - 2014-07-07 07:51 - 05982208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2015-05-23 15:20 - 2014-07-07 06:01 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe 2015-05-23 15:20 - 2014-07-07 06:01 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll 2015-05-23 15:20 - 2014-07-07 06:00 - 05095424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2015-05-23 15:20 - 2014-07-07 05:59 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aaclient.dll 2015-05-23 15:19 - 2015-03-14 10:07 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2015-05-23 15:19 - 2015-03-14 08:33 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2015-05-23 15:19 - 2015-03-04 09:29 - 00361280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2015-05-23 15:19 - 2015-03-04 08:39 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll 2015-05-23 15:19 - 2015-03-04 06:52 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll 2015-05-23 15:19 - 2014-12-08 08:48 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll 2015-05-23 15:19 - 2014-12-08 07:04 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll 2015-05-23 15:19 - 2014-10-11 09:45 - 10115072 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2015-05-23 15:19 - 2014-10-11 09:44 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2015-05-23 15:19 - 2014-10-11 09:44 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll 2015-05-23 15:19 - 2014-10-11 09:43 - 02307072 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2015-05-23 15:19 - 2014-10-11 07:58 - 08858624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2015-05-23 15:19 - 2014-10-11 07:57 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2015-05-23 15:19 - 2014-10-11 07:57 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll 2015-05-23 15:19 - 2014-10-11 07:56 - 02037760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2015-05-23 15:19 - 2014-06-13 01:34 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2015-05-23 15:19 - 2014-06-13 01:29 - 02146304 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2015-05-23 15:19 - 2013-04-24 01:13 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe 2015-05-23 15:19 - 2013-04-24 01:12 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll 2015-05-23 15:19 - 2013-04-24 00:56 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe 2015-05-23 15:19 - 2013-04-24 00:55 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 14374400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 13771776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 02864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 01763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-05-23 15:15 - 2015-04-21 15:53 - 02237440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-05-23 15:15 - 2015-04-21 15:53 - 01409536 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 19291136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 15414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 03959296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 02656768 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-05-23 15:15 - 2015-02-23 12:51 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll 2015-05-23 15:15 - 2014-06-03 00:33 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2015-05-23 15:14 - 2015-04-21 16:32 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2015-05-23 15:14 - 2015-04-21 15:53 - 00601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2015-05-23 15:14 - 2015-04-21 15:52 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2015-05-23 15:14 - 2015-04-18 04:37 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec 2015-05-23 15:14 - 2015-04-18 04:34 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec 2015-05-23 15:14 - 2015-02-23 12:52 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2015-05-23 15:14 - 2015-02-23 12:51 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll 2015-05-23 15:14 - 2015-02-23 12:51 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll 2015-05-23 15:14 - 2015-02-23 11:17 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2015-05-23 15:14 - 2015-02-23 11:15 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll 2015-05-23 15:14 - 2015-02-21 07:31 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll 2015-05-23 15:14 - 2015-02-21 07:09 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2015-05-23 15:14 - 2015-02-21 07:07 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll 2015-05-23 15:14 - 2015-02-21 05:00 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll 2015-05-23 15:14 - 2014-12-06 09:52 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2015-05-23 15:14 - 2014-12-06 09:52 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2015-05-23 15:14 - 2014-12-06 09:52 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll 2015-05-23 15:14 - 2014-12-06 08:09 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll 2015-05-23 15:12 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll 2015-05-23 15:12 - 2013-03-02 04:44 - 01011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2015-05-23 15:11 - 2014-03-11 02:41 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll 2015-05-23 15:11 - 2014-03-11 02:41 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dimsroam.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll 2015-05-23 15:11 - 2014-03-10 05:05 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2015-05-23 15:10 - 2014-12-06 09:53 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2015-05-23 15:10 - 2014-12-06 09:53 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe 2015-05-23 15:10 - 2014-12-06 09:51 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2015-05-23 15:10 - 2014-12-06 09:51 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll 2015-05-23 15:10 - 2014-12-06 09:50 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-05-23 15:10 - 2014-12-06 08:10 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2015-05-23 15:10 - 2014-12-06 08:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe 2015-05-23 15:10 - 2014-12-06 08:09 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2015-05-23 15:10 - 2014-11-26 08:43 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2015-05-23 15:10 - 2014-11-26 06:50 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2015-05-23 15:10 - 2014-10-03 03:21 - 00522728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2015-05-23 15:10 - 2014-10-03 00:29 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2015-05-23 15:10 - 2013-07-09 08:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2015-05-23 15:10 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2015-05-23 15:10 - 2013-07-01 03:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys 2015-05-23 15:10 - 2013-07-01 03:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys 2015-05-23 15:10 - 2013-07-01 03:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys 2015-05-23 15:10 - 2013-07-01 03:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys 2015-05-23 15:10 - 2013-06-29 05:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys 2015-05-23 15:10 - 2013-06-29 05:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys 2015-05-23 15:09 - 2014-07-16 01:03 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2015-05-23 15:09 - 2014-07-12 04:36 - 01023488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2015-05-23 15:09 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe 2015-05-23 15:09 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll 2015-05-23 15:09 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe 2015-05-23 15:09 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll 2015-05-23 15:09 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe 2015-05-23 15:09 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe 2015-05-23 15:09 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm(180).dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\muifontsetup.dll 2015-05-23 15:09 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2015-05-23 15:09 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe 2015-05-23 15:09 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\muifontsetup.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll 2015-05-23 15:09 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2015-05-23 15:09 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs 2015-05-23 15:09 - 2013-05-04 06:48 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys 2015-05-23 15:09 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2015-05-23 15:09 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs 2015-05-23 15:09 - 2013-03-02 04:45 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe 2015-05-23 15:09 - 2013-03-02 04:45 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe 2015-05-23 15:08 - 2013-12-05 01:43 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll 2015-05-23 15:08 - 2013-12-05 01:37 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll 2015-05-23 15:04 - 2013-07-02 03:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2015-05-23 15:04 - 2013-07-02 03:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS 2015-05-23 15:04 - 2013-04-09 06:51 - 14267904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2015-05-23 15:04 - 2013-04-09 06:51 - 03552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2015-05-23 15:04 - 2013-04-09 06:50 - 02107904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2015-05-23 15:04 - 2013-04-09 06:49 - 01444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll 2015-05-23 15:04 - 2013-04-08 23:52 - 11878912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2015-05-23 15:04 - 2013-04-08 23:51 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2015-05-23 15:04 - 2013-04-08 23:51 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2015-05-23 15:03 - 2015-03-04 08:41 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe 2015-05-23 15:03 - 2015-03-04 08:39 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll 2015-05-23 15:03 - 2015-03-04 08:39 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll 2015-05-23 15:03 - 2015-03-04 06:53 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe 2015-05-23 15:03 - 2015-03-04 06:52 - 00676864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll 2015-05-23 15:03 - 2013-04-09 07:33 - 00489576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-05-23 15:03 - 2013-04-09 07:33 - 00446792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2015-05-23 15:03 - 2013-04-09 07:33 - 00253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2015-05-23 15:03 - 2013-04-09 07:20 - 00306952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_10ec.dll 2015-05-23 15:03 - 2013-04-09 07:20 - 00086280 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll 2015-05-23 15:03 - 2013-04-09 07:18 - 00077960 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdvm.dll 2015-05-23 15:03 - 2013-04-09 06:52 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2015-05-23 15:03 - 2013-04-09 06:52 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2015-05-23 15:03 - 2013-04-09 06:52 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2015-05-23 15:03 - 2013-04-09 06:52 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2015-05-23 15:03 - 2013-04-09 06:51 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll 2015-05-23 15:03 - 2013-04-09 06:51 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2015-05-23 15:03 - 2013-04-09 06:51 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe 2015-05-23 15:03 - 2013-04-09 06:51 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 01285632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc(176).dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00745984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenuineCenter.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fmifs.dll 2015-05-23 15:03 - 2013-04-09 04:34 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys 2015-05-23 15:03 - 2013-04-09 04:33 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys 2015-05-23 15:03 - 2013-04-09 04:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys 2015-05-23 15:03 - 2013-04-09 04:31 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys 2015-05-23 15:03 - 2013-04-09 01:44 - 00123880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll 2015-05-23 15:03 - 2013-04-09 01:37 - 00426024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2015-05-23 15:03 - 2013-04-09 01:37 - 00324368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-05-23 15:03 - 2013-04-08 23:52 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2015-05-23 15:03 - 2013-04-08 23:52 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2015-05-23 15:03 - 2013-04-08 23:52 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2015-05-23 15:03 - 2013-04-08 23:51 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fmifs.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll 2015-05-23 15:03 - 2013-04-05 01:30 - 00503080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2015-05-23 15:03 - 2013-03-16 00:05 - 00298456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll 2015-05-23 15:03 - 2013-03-16 00:05 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll 2015-05-23 15:03 - 2013-03-02 12:39 - 00069864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2015-05-23 15:02 - 2015-03-14 02:55 - 00410017 _____ () C:\WINDOWS\system32\ApnDatabase.xml 2015-05-23 15:02 - 2015-02-18 09:39 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2015-05-23 15:02 - 2015-02-18 09:38 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll 2015-05-23 15:02 - 2015-01-24 08:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll 2015-05-23 15:02 - 2015-01-24 07:00 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll 2015-05-23 15:02 - 2014-11-08 13:22 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll 2015-05-23 15:02 - 2014-11-08 08:57 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll 2015-05-23 15:02 - 2014-06-20 01:35 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2015-05-23 15:02 - 2014-06-20 00:24 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2015-05-23 15:02 - 2014-06-05 19:56 - 00112984 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe 2015-05-23 15:02 - 2014-05-30 00:24 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2015-05-23 15:02 - 2014-01-13 01:30 - 02238976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp(166).dll 2015-05-23 15:02 - 2013-11-20 02:15 - 03842560 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2015-05-23 15:02 - 2013-11-20 01:57 - 03288576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2015-05-23 15:02 - 2013-03-06 08:29 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll 2015-05-23 15:02 - 2012-11-10 06:23 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2015-05-23 15:02 - 2012-11-10 06:22 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDWebAI.dll 2015-05-23 15:02 - 2012-11-10 06:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmHostAI.dll 2015-05-23 15:02 - 2012-11-10 06:20 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appserverai.dll 2015-05-23 15:01 - 2015-03-12 07:31 - 02048000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll 2015-05-23 15:01 - 2015-03-12 07:31 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll 2015-05-23 15:01 - 2015-03-12 05:52 - 01933312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll 2015-05-23 15:01 - 2015-02-17 08:54 - 19777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-05-23 15:01 - 2015-02-17 07:13 - 17561600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-05-23 15:01 - 2015-01-24 06:31 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2015-05-23 15:01 - 2014-10-11 09:44 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2015-05-23 15:01 - 2014-06-06 16:06 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2015-05-23 15:01 - 2014-06-06 12:17 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll 2015-05-23 15:01 - 2013-10-10 11:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe 2015-05-23 15:01 - 2013-10-10 11:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll 2015-05-23 15:01 - 2013-10-10 11:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll 2015-05-23 15:01 - 2013-10-10 11:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx 2015-05-23 15:01 - 2013-10-10 11:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe 2015-05-23 15:01 - 2013-10-10 11:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll 2015-05-23 15:01 - 2013-10-10 11:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll 2015-05-23 15:01 - 2013-09-28 05:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys 2015-05-23 15:01 - 2013-07-13 08:18 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll 2015-05-23 15:01 - 2013-07-13 08:16 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll 2015-05-23 15:01 - 2013-07-13 08:15 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll 2015-05-23 15:01 - 2013-07-13 08:15 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll 2015-05-23 15:01 - 2013-07-13 06:24 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll 2015-05-23 15:01 - 2013-07-13 06:23 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll 2015-05-23 15:01 - 2013-07-13 06:23 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll 2015-05-23 15:01 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdlg.dll 2015-05-23 15:01 - 2013-04-03 01:12 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll 2015-05-23 15:01 - 2013-03-02 11:59 - 00411880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2015-05-23 15:00 - 2015-05-02 08:28 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys 2015-05-23 15:00 - 2015-05-02 05:59 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2015-05-23 15:00 - 2015-05-02 05:36 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2015-05-23 15:00 - 2015-04-14 00:09 - 00570248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2015-05-23 15:00 - 2015-03-06 09:39 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2015-05-23 15:00 - 2015-03-06 07:48 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2015-05-23 15:00 - 2015-01-15 13:44 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll 2015-05-23 15:00 - 2015-01-15 13:43 - 01282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-05-23 15:00 - 2015-01-15 12:00 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll 2015-05-23 15:00 - 2015-01-15 11:38 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll 2015-05-23 15:00 - 2015-01-15 11:09 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll 2015-05-23 15:00 - 2014-12-19 06:35 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys 2015-05-23 15:00 - 2014-12-18 10:51 - 00096576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys 2015-05-23 15:00 - 2014-12-18 08:52 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2015-05-23 15:00 - 2014-12-18 08:51 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2015-05-23 15:00 - 2014-12-18 08:50 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL 2015-05-23 15:00 - 2014-12-18 08:20 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2015-05-23 15:00 - 2014-09-25 01:29 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll 2015-05-23 15:00 - 2014-09-25 01:01 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll 2015-05-23 15:00 - 2014-03-11 02:39 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe 2015-05-23 15:00 - 2014-03-11 02:38 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll 2015-05-23 15:00 - 2014-03-11 02:38 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll 2015-05-23 15:00 - 2014-03-10 03:27 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll 2015-05-23 15:00 - 2013-08-23 09:22 - 02062848 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2015-05-23 15:00 - 2013-08-23 03:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2015-05-23 15:00 - 2013-06-10 21:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL 2015-05-23 15:00 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL 2015-05-23 14:59 - 2014-11-08 13:21 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2015-05-23 14:59 - 2014-11-08 08:56 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2015-05-23 14:59 - 2014-10-11 10:35 - 00171840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2015-05-23 14:59 - 2014-10-11 07:41 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll 2015-05-23 14:59 - 2014-10-11 07:05 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll 2015-05-23 14:59 - 2014-08-22 01:56 - 01418752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll 2015-05-23 14:59 - 2014-08-22 01:27 - 01845760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2015-05-23 14:59 - 2014-05-30 01:02 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll 2015-05-23 14:59 - 2014-04-12 11:10 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-05-23 14:59 - 2014-04-12 11:09 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll 2015-05-23 14:59 - 2014-04-12 11:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll 2015-05-23 14:59 - 2014-04-12 11:08 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2015-05-23 14:59 - 2014-04-12 11:07 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll 2015-05-23 14:59 - 2014-04-12 09:23 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2015-05-23 14:59 - 2014-04-12 09:23 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll 2015-05-23 14:59 - 2014-04-12 09:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll 2015-05-23 14:59 - 2014-04-12 09:22 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll 2015-05-23 14:59 - 2014-04-12 08:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\workerdd.dll 2015-05-23 14:59 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2015-05-23 14:59 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2015-05-23 14:58 - 2014-10-23 14:47 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll 2015-05-23 14:58 - 2014-10-23 13:04 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll 2015-05-23 14:57 - 2015-04-06 07:36 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll 2015-05-23 14:57 - 2015-04-06 06:08 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll 2015-05-23 14:57 - 2014-12-19 08:48 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll 2015-05-23 14:57 - 2014-10-30 09:20 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2015-05-23 14:57 - 2014-10-30 07:22 - 01569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2015-05-23 14:57 - 2013-11-01 07:38 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll 2015-05-23 14:57 - 2013-11-01 05:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll 2015-05-23 14:52 - 2015-05-23 17:43 - 00000000 ____D () C:\Windows.old 2015-05-23 14:52 - 2015-05-23 14:52 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff 2015-05-23 14:49 - 2015-05-23 14:49 - 00002179 _____ () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2015-05-23 14:49 - 2015-05-23 14:49 - 00002152 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2015-05-23 14:49 - 2015-05-23 14:49 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive 2015-05-23 14:48 - 2015-05-23 14:48 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive 2015-05-23 14:39 - 2015-05-29 20:52 - 00002187 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-05-23 14:39 - 2015-05-29 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-05-23 14:39 - 2015-05-23 14:40 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Mozilla 2015-05-23 14:39 - 2015-05-23 14:40 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Mozilla 2015-05-23 14:39 - 2015-05-23 14:39 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-05-23 14:39 - 2015-05-23 14:39 - 00001155 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-05-23 14:39 - 2015-05-23 14:39 - 00000000 ____D () C:\ProgramData\Mozilla 2015-05-23 14:39 - 2015-05-23 14:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2015-05-23 14:38 - 2015-05-31 10:50 - 00001092 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-23 14:38 - 2015-05-31 10:20 - 00001088 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-23 14:38 - 2015-05-23 14:45 - 00004064 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-05-23 14:38 - 2015-05-23 14:45 - 00003828 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-05-23 14:38 - 2015-05-23 14:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2015-05-23 14:38 - 2015-05-23 14:39 - 00000000 ____D () C:\Program Files (x86)\Google 2015-05-23 14:37 - 2015-05-30 18:43 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Deployment 2015-05-23 14:37 - 2015-05-30 18:43 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Apps\2.0 2015-05-23 14:37 - 2015-05-23 14:39 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Google 2015-05-23 14:35 - 2015-05-23 14:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2015-05-23 14:34 - 2015-05-23 17:36 - 00000000 ____D () C:\Program Files\Microsoft Office 15 2015-05-23 14:32 - 2015-05-23 14:32 - 00000000 ____D () C:\$WINDOWS.~BT 2015-05-23 14:30 - 2013-08-16 07:21 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll 2015-05-23 14:30 - 2013-08-16 07:21 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2015-05-23 14:30 - 2013-08-16 00:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll 2015-05-23 14:28 - 2015-05-23 14:40 - 196612224 _____ (Kaspersky Lab) C:\Users\Juliane8\Downloads\kis15.0.2.361en.exe 2015-05-23 14:14 - 2015-05-30 19:59 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2694262190-2736747673-2123131371-1002 2015-05-23 14:05 - 2015-05-23 14:05 - 00001454 _____ () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-05-23 14:05 - 2015-05-23 14:05 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD 2015-05-23 14:05 - 2015-05-23 14:05 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\lm 2015-05-23 14:05 - 2015-05-23 14:05 - 00000000 ____D () C:\ProgramData\OEM_YAHOO 2015-05-23 14:02 - 2015-05-23 14:02 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Macromedia 2015-05-23 14:02 - 2015-05-23 14:02 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Adobe 2015-05-23 14:00 - 2015-05-23 14:00 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\VirtualStore 2015-05-23 13:59 - 2015-05-29 15:38 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Packages 2015-05-23 13:59 - 2015-05-23 13:59 - 00000020 ___SH () C:\Users\Juliane8\ntuser.ini 2015-05-23 13:57 - 2015-05-23 13:57 - 00000020 ___SH () C:\Users\UpdatusUser.000\ntuser.ini 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Voisinage réseau 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Voisinage d'impression 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Modèles 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Menu Démarrer 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Documents\Mes vidéos 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Documents\Mes images 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Documents\Ma musique 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historique 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Modèles 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Menu Démarrer 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Bureau 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Program Files\Fichiers communs 2015-05-23 13:55 - 2015-05-29 16:08 - 00000000 ____D () C:\Users\Juliane8 2015-05-23 13:55 - 2015-05-29 15:47 - 00000000 ____D () C:\Users\UpdatusUser.000 2015-05-23 13:55 - 2015-05-29 15:47 - 00000000 ____D () C:\Users\Eike 2015-05-23 13:55 - 2015-05-23 13:56 - 00036198 _____ () C:\WINDOWS\diagwrn.xml 2015-05-23 13:55 - 2015-05-23 13:56 - 00036198 _____ () C:\WINDOWS\diagerr.xml 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Voisinage réseau 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Voisinage d'impression 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Modèles 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Menu Démarrer 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Documents\Mes vidéos 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Documents\Mes images 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Documents\Ma musique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\AppData\Local\Historique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Voisinage réseau 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Voisinage d'impression 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Modèles 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Menu Démarrer 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Documents\Mes vidéos 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Documents\Mes images 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Documents\Ma musique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\AppData\Local\Historique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Voisinage réseau 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Voisinage d'impression 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Modèles 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Menu Démarrer 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Documents\Mes vidéos 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Documents\Mes images 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Documents\Ma musique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\AppData\Local\Historique 2015-05-23 13:55 - 2013-04-21 11:38 - 00000000 ___RD () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-23 13:55 - 2013-04-21 11:38 - 00000000 ___RD () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-23 13:55 - 2013-04-21 11:38 - 00000000 ___RD () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ____D () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ____D () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-05-23 13:29 - 2015-05-23 15:42 - 00000000 ____D () C:\$SysReset 2015-05-23 13:10 - 2015-05-23 13:10 - 00000000 ____D () C:\AX6HPBC85FMOVZ38WNG7D5E3STJ8KLU5IQRY21 2015-05-21 13:01 - 2015-05-21 13:01 - 04818760 _____ (AVG Technologies) C:\Users\Juliane8\Downloads\avg_free_stb_all_5863p1_177.exe 2015-05-21 12:50 - 2015-05-21 12:50 - 01190704 _____ () C:\Users\Juliane8\Downloads\Adware-Removal-Tool-v3.6.exe 2015-05-21 11:45 - 2015-05-21 11:45 - 00880208 _____ (Google Inc.) C:\Users\Juliane8\Downloads\ChromeSetup.exe 2015-05-19 11:36 - 2015-05-19 11:36 - 00005351 _____ () C:\Users\Juliane8\Downloads\SOURCE (1).zip 2015-05-19 03:08 - 2015-05-19 03:08 - 00042184 _____ (Anchorfree Inc.) C:\WINDOWS\system32\Drivers\taphss6.sys 2015-05-18 22:16 - 2015-05-18 22:16 - 00056008 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\kldisk.sys 2015-05-15 17:45 - 2015-05-15 17:45 - 00015754 _____ () C:\Users\Juliane8\Downloads\English_to_Native_-_140515_15-5-15_08-38-10.xlsx 2015-05-13 15:53 - 2015-05-13 15:53 - 00014855 _____ () C:\Users\Juliane8\Downloads\LS-to-translate-language_DE.txt 2015-05-12 19:44 - 2015-05-12 19:45 - 00001533 _____ () C:\Users\Juliane8\Downloads\emmajolie-com_20150512T174459Z_ExternalLinks_LinkingDomains.csv 2015-05-08 15:03 - 2015-05-08 15:03 - 00005210 _____ () C:\Users\Juliane8\Downloads\Lantus SoloStar_IPat_DE_appr_21.05.2014_clean_corr.docx_fr-FR_de-DE QA.sdlproj 2015-05-06 19:09 - 2015-05-06 19:09 - 00006855 _____ () C:\Users\Juliane8\Downloads\Source.zip 2015-05-06 09:42 - 2015-05-06 09:42 - 00019686 _____ () C:\Users\Juliane8\Downloads\French emailing text_de-DE-201555-16h31m12s.zip 2015-05-01 19:32 - 2015-05-01 19:32 - 15058264 _____ () C:\Users\Juliane8\Downloads\Glary_Utilities_v5.24.0.43.exe ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-05-31 10:33 - 2013-06-26 22:13 - 01557657 _____ () C:\WINDOWS\WindowsUpdate.log 2015-05-31 10:19 - 2012-07-26 09:22 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2015-05-31 10:18 - 2013-05-23 06:13 - 00038428 _____ () C:\WINDOWS\PFRO.log 2015-05-31 10:02 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\sru 2015-05-31 09:55 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\rescache 2015-05-31 09:40 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\WinStore 2015-05-31 09:40 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp 2015-05-31 09:36 - 2013-06-27 07:58 - 00800978 _____ () C:\WINDOWS\system32\perfh00C.dat 2015-05-31 09:36 - 2013-06-27 07:58 - 00155650 _____ () C:\WINDOWS\system32\perfc00C.dat 2015-05-31 09:36 - 2012-07-26 09:28 - 01793362 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2015-05-31 09:28 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\Resources 2015-05-31 09:28 - 2012-07-26 07:26 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI 2015-05-30 16:44 - 2012-07-26 07:26 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2015-05-30 16:43 - 2012-07-26 10:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP 2015-05-30 16:36 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates 2015-05-30 16:36 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions 2015-05-30 16:36 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2015-05-30 16:36 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\oobe 2015-05-30 16:36 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\AdvancedInstallers 2015-05-30 13:38 - 2012-07-26 07:26 - 00000215 _____ () C:\WINDOWS\system.ini 2015-05-30 13:35 - 2013-05-23 06:50 - 00000000 ____D () C:\ProgramData\Temp 2015-05-29 16:05 - 2013-09-20 12:27 - 00000000 ____D () C:\Users\Juliane8\Desktop\Agencies 2015-05-29 15:47 - 2013-06-26 22:24 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-29 15:47 - 2013-06-26 22:24 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-29 15:47 - 2013-06-26 22:24 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ____D () C:\Users\Administrator 2015-05-29 15:46 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\spp 2015-05-29 15:42 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\registration 2015-05-29 15:41 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\Sysprep 2015-05-29 15:39 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\AppCompat 2015-05-26 21:07 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\NDF 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Defender 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2015-05-24 13:53 - 2012-07-26 10:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 17:06 - 2012-07-26 07:37 - 00000000 ____D () C:\WINDOWS\servicing 2015-05-23 17:04 - 2013-05-23 06:45 - 00000000 ____D () C:\Program Files\Common Files\mcafee 2015-05-23 17:02 - 2012-07-26 10:12 - 00000000 ___RD () C:\WINDOWS\ToastData 2015-05-23 17:01 - 2012-07-26 09:52 - 00000000 ____D () C:\Program Files\Windows Journal 2015-05-23 17:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Photo Viewer 2015-05-23 17:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer 2015-05-23 17:00 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism 2015-05-23 17:00 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\Dism 2015-05-23 15:44 - 2014-11-21 22:58 - 00000000 ____D () C:\kleaner.tmp 2015-05-23 15:39 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent 2015-05-23 14:58 - 2013-05-23 06:45 - 00000000 ____D () C:\Program Files\mcafee 2015-05-23 14:52 - 2012-07-26 10:13 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template 2015-05-23 14:49 - 2013-11-19 19:56 - 00000000 __RDO () C:\Users\Juliane8\SkyDrive 2015-05-23 14:15 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\restore 2015-05-23 14:14 - 2013-05-23 06:45 - 00000000 ____D () C:\ProgramData\McAfee 2015-05-23 14:05 - 2013-05-23 07:00 - 00000000 ____D () C:\OEM 2015-05-23 13:59 - 2012-07-26 10:12 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel 2015-05-23 13:58 - 2013-05-23 07:12 - 00000000 ___DC () C:\WINDOWS\Panther 2015-05-23 13:57 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows NT 2015-05-23 13:57 - 2012-07-26 07:37 - 00000000 __RHD () C:\Users\Default 2015-05-23 13:56 - 2012-07-26 10:12 - 00000000 __RHD () C:\Users\Public\Libraries 2015-05-23 13:56 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\Recovery 2015-05-23 13:56 - 2012-07-26 09:21 - 00035807 _____ () C:\WINDOWS\setupact.log 2015-05-23 13:23 - 2014-11-30 19:30 - 00000000 __RDO () C:\Users\Juliane8\OneDrive 2015-05-14 19:00 - 2013-09-22 16:35 - 00000000 ____D () C:\Users\Juliane8\Documents\Mes projets memoQ 2015-05-05 19:49 - 2012-07-26 10:14 - 00792032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-05-05 19:49 - 2012-07-26 10:14 - 00177632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl ==================== Files in the root of some directories ======= 2015-05-26 08:16 - 2015-05-26 08:16 - 0000108 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc Some files in TEMP: ==================== C:\Users\Juliane8\AppData\Local\temp\Quarantine.exe C:\Users\Juliane8\AppData\Local\temp\sqlite3.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2013-05-23 06:13 ==================== End of log ============================ |
31.05.2015, 14:43 | #8 |
/// the machine /// TB-Ausbilder | Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsamESET Online Scanner
Downloade Dir bitte SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
31.05.2015, 18:04 | #9 |
| Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Hallo schrauber, danke, die Banner sind weg und der Computer läuft schneller! LG Juli Hier die Daten: Code:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.7623 # api_version=3.0.2 # EOSSerial=3587f0d98e60f94fb0e2848056f70766 # engine=24107 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2015-05-31 04:49:09 # local_time=2015-05-31 06:49:09 ) # country="United Kingdom" # lang=1031 # osver=6.2.9200 NT # compatibility_mode_1='Kaspersky Internet Security' # compatibility_mode=1302 16777213 100 100 30579 60669779 0 0 # compatibility_mode_1='' # compatibility_mode=5893 16776574 100 94 94642 10410845 0 0 # scanned=518995 # found=1 # cleaned=0 # scan_time=6324 sh=728D952AC1492F8331E2ED29921D5DDB8658697A ft=0 fh=0000000000000000 vn="Win32/Toolbar.TNT2.I evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Juliane8\Desktop\Old Firefox Data\q9wjg3hy.default\extensions\fftoolbar2014@etech.com\chrome\content\toolbar.js" Code:
ATTFilter Results of screen317's Security Check version 1.002 x64 (UAC is enabled) Internet Explorer 10 Out of date! ``````````````Antivirus/Firewall Check:`````````````` Kaspersky Internet Security Windows Defender Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Mozilla Firefox (38.0.1) Google Chrome (43.0.2357.65) Google Chrome (43.0.2357.81) ````````Process Check: objlist.exe by Laurent```````` Kaspersky Lab Kaspersky Internet Security 15.0.2 avp.exe Kaspersky Lab Kaspersky Internet Security 15.0.2 avpui.exe Kaspersky Lab Kaspersky Internet Security 15.0.2 plugin-nm-server.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log`````````````````````` Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2015 Ran by Juliane8 (administrator) on JULIANE on 31-05-2015 19:00:00 Running from C:\Users\Juliane8\Downloads Loaded Profiles: Juliane8 (Available Profiles: Juliane8 & UpdatusUser & Eike & Administrateur) Platform: Windows 8 (X64) OS Language: Français (France) Internet Explorer Version 10 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Dritek System INC.) C:\Windows\RfBtnSvc64.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\plugin-nm-server.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Farbar) C:\Users\Juliane8\Downloads\FRST64 (2).exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2873744 2012-11-20] (ELAN Microelectronics Corp.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor) HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2013-06-26] (Dritek System Inc.) HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2994880 2012-08-15] (Symantec Corporation) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [245872 2013-02-21] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [201576 2013-02-21] (NVIDIA Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-2694262190-2736747673-2123131371-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION AutoConfigURL: [S-1-5-21-2694262190-2736747673-2123131371-1002] => hxxp://127.0.0.1:895/proxy.js HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-2694262190-2736747673-2123131371-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2694262190-2736747673-2123131371-1002 -> {39077373-6179-4F07-B929-EAC3232937CB} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-05-23] (Microsoft Corporation) BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-05-23] (Microsoft Corporation) BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-05-23] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\Juliane8\AppData\Roaming\Mozilla\Firefox\Profiles\i29giw1a.default FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation) FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-05-30] () FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-05-30] () FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-05-30] () FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-05-23] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-23] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-23] (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] () FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-05-30] FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-05-30] FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-05-30] FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: No Name - C:\Program Files\McAfee\MSK [2013-05-23] Chrome: ======= CHR Profile: C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Kaspersky Protection) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-05-30] CHR Extension: (Bookmark Manager) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-23] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-24] CHR Extension: (Google Wallet) - C:\Users\Juliane8\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-23] CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [193400 2014-12-23] (Kaspersky Lab ZAO) S2 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-20] (Broadcom Corp.) [File not signed] S2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-19] (Acer Incorporated) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2736824 2015-04-07] (Microsoft Corporation) S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated) S2 ETDService; C:\Program Files\Elantech\ETDService.exe [100752 2012-11-20] (ELAN Microelectronics Corp.) S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [96688 2015-05-19] () S2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [589608 2015-05-19] () S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation) S2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation) S2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3943104 2012-08-15] (Symantec Corporation) R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2013-06-26] (Dritek System INC.) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2013-04-21] (Microsoft Corporation) S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [5139968 2012-06-02] (Broadcom Corporation) R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation) R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [238288 2013-01-14] (Kaspersky Lab UK Ltd) R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2015-05-19] (AnchorFree Inc.) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [468576 2014-03-31] (Kaspersky Lab ZAO) R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [56008 2015-05-18] (Kaspersky Lab ZAO) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab) R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [151240 2014-11-28] (Kaspersky Lab ZAO) R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [247496 2014-10-22] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [824008 2015-05-18] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30920 2014-10-10] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [31432 2014-10-30] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [69320 2014-11-20] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [77000 2014-11-22] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [181960 2014-11-10] (Kaspersky Lab ZAO) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [136408 2015-05-31] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation) R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-06-26] (Dritek System Inc.) R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2015-05-19] (Anchorfree Inc.) S3 catchme; \??\C:\ComboFix\catchme.sys [X] U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-05-31 18:59 - 2015-05-31 18:59 - 02108928 _____ (Farbar) C:\Users\Juliane8\Downloads\FRST64 (2).exe 2015-05-31 18:58 - 2015-05-31 18:58 - 00000915 _____ () C:\Users\Juliane8\Desktop\checkup.txt 2015-05-31 18:56 - 2015-05-31 18:56 - 00852639 _____ () C:\Users\Juliane8\Downloads\SecurityCheck.exe 2015-05-31 10:53 - 2015-05-31 10:53 - 00114525 _____ () C:\Users\Juliane8\Desktop\FRST1.txt 2015-05-31 10:52 - 2015-05-31 10:52 - 02108928 _____ (Farbar) C:\Users\Juliane8\Downloads\FRST64 (1).exe 2015-05-31 10:49 - 2015-05-31 10:49 - 00001135 _____ () C:\Users\Juliane8\Desktop\JRT.txt 2015-05-31 10:45 - 2015-05-31 10:45 - 02947635 _____ (Thisisu) C:\Users\Juliane8\Downloads\JRT.exe 2015-05-31 10:45 - 2015-05-31 10:45 - 00000207 _____ () C:\WINDOWS\tweaking.com-regbackup-JULIANE-Windows-8-(64-bit).dat 2015-05-31 10:45 - 2015-05-31 10:45 - 00000000 ____D () C:\RegBackup 2015-05-31 10:20 - 2015-05-31 10:20 - 00001957 _____ () C:\Users\Juliane8\Desktop\AdwCleaner[S0].txt 2015-05-31 10:16 - 2015-05-31 10:18 - 00000000 ____D () C:\AdwCleaner 2015-05-31 10:16 - 2015-05-31 10:16 - 02222592 _____ () C:\Users\Juliane8\Downloads\AdwCleaner_4.205.exe 2015-05-31 09:40 - 2015-05-31 09:40 - 00000000 ____D () C:\WINDOWS\system32\AutoUpdateLicense 2015-05-31 09:33 - 2015-05-31 09:33 - 00001869 _____ () C:\Users\Juliane8\Desktop\mbam.txt 2015-05-31 09:28 - 2015-05-31 09:29 - 00430608 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2015-05-31 09:02 - 2015-05-31 10:20 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-05-31 09:02 - 2015-05-31 09:02 - 00001110 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-05-31 09:02 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-05-31 09:02 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-05-31 09:02 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2015-05-31 09:01 - 2015-05-31 09:01 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Juliane8\Downloads\mbam-setup-2.1.6.1022.exe 2015-05-30 16:45 - 2015-05-30 16:45 - 00002338 _____ () C:\Users\Juliane8\Desktop\Safe Money.lnk 2015-05-30 16:44 - 2015-05-30 16:44 - 00002136 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk 2015-05-30 16:44 - 2015-05-30 16:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2015-05-30 16:44 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll 2015-05-30 16:43 - 2015-05-31 18:55 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2015-05-30 16:43 - 2015-05-30 16:43 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab 2015-05-30 16:43 - 2015-05-18 22:16 - 00824008 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys 2015-05-30 16:43 - 2014-11-28 18:19 - 00151240 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys 2015-05-30 16:43 - 2014-10-22 21:13 - 00247496 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klhk.sys 2015-05-30 16:31 - 2015-03-03 15:17 - 00295552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2015-05-30 16:20 - 2015-05-30 16:29 - 202676480 _____ (Kaspersky Lab) C:\Users\Juliane8\Downloads\kis15.0.1.415en.exe 2015-05-30 13:41 - 2015-05-30 13:41 - 00027053 _____ () C:\ComboFix.txt 2015-05-30 13:29 - 2011-06-26 08:45 - 00256000 _____ () C:\WINDOWS\PEV.exe 2015-05-30 13:29 - 2010-11-07 19:20 - 00208896 _____ () C:\WINDOWS\MBR.exe 2015-05-30 13:29 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00098816 _____ () C:\WINDOWS\sed.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00080412 _____ () C:\WINDOWS\grep.exe 2015-05-30 13:29 - 2000-08-31 02:00 - 00068096 _____ () C:\WINDOWS\zip.exe 2015-05-30 13:28 - 2015-05-30 13:28 - 05628678 ____R (Swearware) C:\Users\Juliane8\Downloads\ComboFix.exe 2015-05-30 13:28 - 2015-05-30 13:28 - 00001488 _____ () C:\Users\Juliane8\Desktop\ComboFix - Raccourci.lnk 2015-05-30 13:23 - 2015-05-30 16:44 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files 2015-05-30 13:21 - 2015-05-30 13:22 - 180322520 _____ (Kaspersky Lab) C:\Users\Juliane8\Downloads\kis15.0.2.361en (1).exe 2015-05-30 13:16 - 2015-05-30 13:41 - 00000000 ____D () C:\Qoobox 2015-05-30 13:15 - 2015-05-30 13:39 - 00000000 ____D () C:\WINDOWS\erdnt 2015-05-30 11:53 - 2015-03-04 09:26 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AutoUpdate.exe 2015-05-30 11:53 - 2015-03-04 09:26 - 00467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe 2015-05-30 11:53 - 2015-03-04 09:26 - 00011105 _____ () C:\WINDOWS\system32\AutoconfigV2.cab 2015-05-30 11:53 - 2015-03-04 08:41 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll 2015-05-30 11:53 - 2015-03-04 08:41 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-05-30 11:53 - 2015-03-04 06:53 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll 2015-05-30 11:53 - 2015-03-04 06:53 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-05-30 11:53 - 2014-10-22 03:01 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2015-05-30 11:53 - 2014-10-22 03:00 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll 2015-05-30 09:37 - 2014-07-16 00:51 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys 2015-05-29 17:32 - 2015-05-29 17:32 - 00009210 _____ () C:\Users\Juliane8\Desktop\gmer.zip 2015-05-29 17:31 - 2015-05-29 17:31 - 01182149 _____ () C:\Users\Juliane8\Downloads\7z936.exe 2015-05-29 17:31 - 2015-05-29 17:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2015-05-29 17:31 - 2015-05-29 17:31 - 00000000 ____D () C:\Program Files (x86)\7-Zip 2015-05-29 16:55 - 2015-05-29 16:55 - 00160518 _____ () C:\Users\Juliane8\Desktop\gmer.log 2015-05-29 16:51 - 2015-05-29 16:51 - 00380416 _____ () C:\Users\Juliane8\Downloads\g6wq61hd.exe 2015-05-29 16:26 - 2014-02-04 01:56 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2015-05-29 16:26 - 2014-02-04 01:56 - 00278872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys 2015-05-29 16:26 - 2014-01-31 02:48 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll 2015-05-29 16:26 - 2014-01-31 02:06 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll 2015-05-29 16:26 - 2014-01-27 05:39 - 01939288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2015-05-29 16:26 - 2014-01-16 01:42 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys 2015-05-29 16:26 - 2014-01-03 01:35 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll 2015-05-29 16:26 - 2014-01-03 01:32 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll 2015-05-29 16:25 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2015-05-29 16:25 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2015-05-29 16:25 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll 2015-05-29 16:25 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2015-05-29 16:25 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2015-05-29 16:25 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll 2015-05-29 16:25 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2015-05-29 16:25 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe 2015-05-29 16:25 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll 2015-05-29 16:25 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe 2015-05-29 16:25 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2015-05-29 16:25 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll 2015-05-29 16:25 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2015-05-29 16:25 - 2013-06-01 11:20 - 01527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-05-29 16:25 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2015-05-29 16:25 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll 2015-05-29 16:25 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll 2015-05-29 16:25 - 2013-06-01 05:08 - 00037632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys 2015-05-29 16:24 - 2014-07-12 06:41 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRUM.DLL 2015-05-29 16:24 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDYAK.DLL 2015-05-29 16:24 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTAT.DLL 2015-05-29 16:24 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU1.DLL 2015-05-29 16:24 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU.DLL 2015-05-29 16:24 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDBASH.DLL 2015-05-29 16:24 - 2014-07-12 06:16 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRUM.DLL 2015-05-29 16:24 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDYAK.DLL 2015-05-29 16:24 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTAT.DLL 2015-05-29 16:24 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU1.DLL 2015-05-29 16:24 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU.DLL 2015-05-29 16:24 - 2014-07-12 06:15 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDBASH.DLL 2015-05-29 16:24 - 2014-07-09 00:33 - 00181248 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe 2015-05-29 16:24 - 2014-07-09 00:32 - 01539584 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll 2015-05-29 16:24 - 2014-07-09 00:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll 2015-05-29 16:24 - 2014-07-09 00:30 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll 2015-05-29 16:24 - 2014-07-07 07:52 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-05-29 16:24 - 2014-07-07 07:52 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-05-29 16:24 - 2014-07-04 12:52 - 00328000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys 2015-05-29 16:24 - 2014-06-28 09:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll 2015-05-29 16:24 - 2014-06-28 08:56 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll 2015-05-29 16:24 - 2014-06-18 01:27 - 02032640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2015-05-29 16:24 - 2014-06-18 01:23 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2015-05-29 16:24 - 2014-06-11 16:47 - 02842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL 2015-05-29 16:24 - 2014-06-11 06:40 - 02620928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL 2015-05-29 16:24 - 2014-06-11 00:44 - 01403896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2015-05-29 16:24 - 2014-02-04 12:57 - 01271664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2015-05-29 16:24 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2015-05-29 16:24 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2015-05-29 16:24 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2015-05-29 16:23 - 2015-03-12 07:31 - 01688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2015-05-29 16:23 - 2015-01-24 08:42 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2015-05-29 16:23 - 2015-01-24 07:00 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll 2015-05-29 16:23 - 2014-08-01 01:40 - 01287680 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2015-05-29 16:23 - 2014-06-13 03:57 - 01453400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2015-05-29 16:23 - 2014-06-13 03:55 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2015-05-29 16:23 - 2013-08-16 07:41 - 00058200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys 2015-05-29 16:23 - 2013-08-16 07:39 - 02371728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll 2015-05-29 16:23 - 2013-08-16 07:22 - 04917760 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2015-05-29 16:23 - 2013-08-16 07:21 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2015-05-29 16:23 - 2013-08-16 07:21 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2015-05-29 16:23 - 2013-08-16 07:21 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll 2015-05-29 16:23 - 2013-08-16 07:21 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll 2015-05-29 16:23 - 2013-08-16 07:21 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll 2015-05-29 16:23 - 2013-08-16 07:21 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll 2015-05-29 16:23 - 2013-08-16 00:43 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll 2015-05-29 16:23 - 2013-08-16 00:43 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll 2015-05-29 16:23 - 2013-08-16 00:43 - 00083968 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll 2015-05-29 16:23 - 2013-08-16 00:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll 2015-05-29 16:23 - 2013-08-16 00:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll 2015-05-29 16:23 - 2013-07-03 02:10 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2015-05-29 16:22 - 2014-09-03 04:48 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll 2015-05-29 16:22 - 2014-09-03 04:21 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll 2015-05-29 16:22 - 2013-07-09 10:04 - 00120144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys 2015-05-29 16:22 - 2013-07-09 05:57 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll 2015-05-29 16:22 - 2013-07-09 00:46 - 00543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2015-05-29 16:22 - 2013-07-09 00:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2015-05-29 16:22 - 2013-07-09 00:46 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanadvui.dll 2015-05-29 16:22 - 2013-07-09 00:45 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll 2015-05-29 16:22 - 2013-07-03 02:23 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll 2015-05-29 16:22 - 2013-07-03 02:22 - 02839552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2015-05-29 16:22 - 2013-07-03 02:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2015-05-29 16:22 - 2013-07-01 00:30 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\openfiles.exe 2015-05-29 16:22 - 2013-07-01 00:29 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe 2015-05-29 16:22 - 2013-06-29 08:15 - 00195416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2015-05-29 16:22 - 2013-06-29 08:15 - 00125784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2015-05-29 16:22 - 2013-06-26 05:01 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys 2015-05-29 16:22 - 2013-06-26 04:59 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys 2015-05-29 16:22 - 2013-06-25 00:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-05-29 16:22 - 2013-06-19 07:36 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll 2015-05-29 16:22 - 2013-06-19 07:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll 2015-05-29 16:22 - 2013-06-19 00:38 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll 2015-05-29 16:22 - 2013-06-19 00:38 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll 2015-05-29 16:22 - 2013-06-12 01:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll 2015-05-29 16:22 - 2013-06-12 01:26 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll 2015-05-29 16:22 - 2013-06-06 10:03 - 00119040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS 2015-05-29 16:21 - 2014-04-30 00:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe 2015-05-29 16:21 - 2014-04-30 00:32 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe 2015-05-29 16:21 - 2014-03-25 01:42 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe 2015-05-29 16:21 - 2014-03-25 00:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe 2015-05-29 16:21 - 2014-01-31 02:48 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2015-05-29 16:20 - 2013-10-05 08:10 - 00285016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2015-05-29 16:20 - 2013-08-30 07:43 - 00061784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys 2015-05-29 16:20 - 2013-08-30 07:20 - 01173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-05-29 16:20 - 2013-08-30 07:19 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2015-05-29 16:20 - 2013-08-30 07:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2015-05-29 16:20 - 2013-08-30 01:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-05-29 16:20 - 2013-08-30 01:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll 2015-05-29 16:20 - 2013-08-30 01:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2015-05-29 16:20 - 2013-08-21 08:39 - 00465240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2015-05-29 16:20 - 2013-08-10 08:30 - 00151896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys 2015-05-29 16:20 - 2013-07-25 01:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-05-29 16:20 - 2013-07-25 01:07 - 13661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-05-29 16:15 - 2015-05-29 16:15 - 00028983 _____ () C:\Users\Juliane8\Desktop\Addition.txt 2015-05-29 16:14 - 2015-05-29 16:14 - 00099382 _____ () C:\Users\Juliane8\Desktop\FRST.txt 2015-05-29 16:12 - 2015-05-29 16:14 - 00028983 _____ () C:\Users\Juliane8\Downloads\Addition.txt 2015-05-29 16:11 - 2015-05-31 19:00 - 00015316 _____ () C:\Users\Juliane8\Downloads\FRST.txt 2015-05-29 16:11 - 2015-05-29 16:11 - 00380416 _____ () C:\Users\Juliane8\Downloads\uwfk0wd2.exe 2015-05-29 16:10 - 2015-05-31 19:00 - 00000000 ____D () C:\FRST 2015-05-29 16:10 - 2015-05-29 16:10 - 02108928 _____ (Farbar) C:\Users\Juliane8\Downloads\FRST64.exe 2015-05-29 16:08 - 2015-05-29 16:08 - 00050477 _____ () C:\Users\Juliane8\Downloads\Defogger.exe 2015-05-29 16:08 - 2015-05-29 16:08 - 00000478 _____ () C:\Users\Juliane8\Downloads\defogger_disable.log 2015-05-29 16:08 - 2015-05-29 16:08 - 00000000 _____ () C:\Users\Juliane8\defogger_reenable 2015-05-29 16:04 - 2014-07-24 15:50 - 00447296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2015-05-29 16:04 - 2014-07-17 01:28 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll 2015-05-29 16:04 - 2014-07-17 00:59 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll 2015-05-29 16:04 - 2014-07-17 00:59 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll 2015-05-29 16:04 - 2014-07-12 08:45 - 01549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll 2015-05-29 16:04 - 2014-07-12 06:36 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2015-05-29 16:04 - 2014-07-12 06:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2015-05-29 16:04 - 2014-07-12 06:34 - 00404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2015-05-29 16:04 - 2014-07-12 06:34 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2015-05-29 16:04 - 2014-06-28 08:57 - 01341952 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2015-05-29 16:04 - 2014-06-28 04:23 - 01126400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2015-05-29 16:04 - 2013-10-31 07:56 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2015-05-29 16:04 - 2013-10-31 07:56 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll 2015-05-29 16:04 - 2013-10-31 06:01 - 00550400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll 2015-05-29 16:04 - 2013-10-31 05:42 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys 2015-05-29 16:04 - 2013-10-13 22:49 - 00100696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys 2015-05-29 16:04 - 2013-08-27 07:21 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll 2015-05-29 16:04 - 2013-08-27 07:19 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll 2015-05-29 16:04 - 2013-08-27 00:29 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll 2015-05-29 16:04 - 2013-08-27 00:28 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll 2015-05-29 16:04 - 2013-08-10 07:21 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2015-05-29 16:04 - 2013-08-10 07:21 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll 2015-05-29 16:04 - 2013-08-10 05:58 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2015-05-29 16:04 - 2013-08-03 08:40 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll 2015-05-29 16:04 - 2013-08-03 08:40 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll 2015-05-29 16:04 - 2013-08-03 08:40 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx 2015-05-29 16:04 - 2013-08-03 07:14 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx 2015-05-29 16:04 - 2013-08-03 07:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll 2015-05-29 16:04 - 2013-08-03 07:13 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll 2015-05-29 16:04 - 2013-08-02 08:28 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll 2015-05-29 16:04 - 2013-08-02 07:08 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll 2015-05-29 16:04 - 2013-07-25 01:10 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll 2015-05-29 16:04 - 2013-07-25 01:06 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll 2015-05-29 16:02 - 2014-05-29 06:04 - 00094552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys 2015-05-29 16:02 - 2014-03-01 11:47 - 01258496 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2015-05-29 16:02 - 2014-03-01 11:47 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll 2015-05-29 16:02 - 2014-03-01 10:07 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll 2015-05-29 16:02 - 2014-03-01 08:59 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2015-05-29 16:02 - 2014-02-15 06:15 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys 2015-05-29 16:02 - 2013-11-26 01:17 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2015-05-29 12:29 - 2015-05-29 12:29 - 00000000 ____D () C:\ProgramData\hsswpr 2015-05-29 12:27 - 2015-05-29 12:27 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group 2015-05-28 21:18 - 2015-05-29 09:37 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy 2015-05-28 21:18 - 2015-05-28 21:18 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking 2015-05-28 21:17 - 2015-05-29 10:28 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2 2015-05-27 13:38 - 2015-05-27 13:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\Hotspot Shield 2015-05-27 09:08 - 2015-05-31 09:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-05-26 20:56 - 2015-05-26 23:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5 2015-05-26 20:56 - 2015-05-26 20:56 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\GlarySoft 2015-05-26 20:56 - 2015-05-26 20:56 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\DiskDefrag 2015-05-26 20:55 - 2015-05-26 23:12 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5 2015-05-26 20:30 - 2015-05-31 09:02 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-05-26 20:30 - 2015-05-26 20:30 - 00000000 ____D () C:\ProgramData\Malwarebytes 2015-05-26 08:57 - 2015-05-26 12:17 - 00000000 ____D () C:\Program Files (x86)\PDF24 2015-05-26 08:57 - 2015-05-26 08:57 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\PDF24 2015-05-26 08:26 - 2015-05-26 08:26 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\clear.fi 2015-05-26 08:16 - 2015-05-26 08:16 - 00000108 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc 2015-05-26 08:15 - 2015-05-26 08:15 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (4).pptx 2015-05-26 08:12 - 2015-05-26 08:44 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\MemoQ 2015-05-26 08:12 - 2015-05-26 08:43 - 00000000 ____D () C:\ProgramData\MemoQ 2015-05-26 08:12 - 2015-05-26 08:12 - 00000000 ____D () C:\Program Files (x86)\Kilgray 2015-05-25 23:57 - 2015-05-25 23:57 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (3).pptx 2015-05-25 23:57 - 2015-05-25 23:57 - 00012960 _____ () C:\Users\Juliane8\Downloads\source (2).zip 2015-05-25 23:43 - 2015-05-25 23:43 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (2).pptx 2015-05-25 23:40 - 2015-05-25 23:40 - 00366005 _____ () C:\Users\Juliane8\Downloads\April 15 charts_US labour market (1).pptx 2015-05-25 09:49 - 2015-05-25 09:49 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\SDL 2015-05-25 09:49 - 2015-05-25 09:49 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\SDL 2015-05-25 09:47 - 2015-05-26 12:13 - 00000000 ____D () C:\ProgramData\SafeNet Sentinel 2015-05-25 09:46 - 2015-05-25 09:48 - 00000000 ____D () C:\ProgramData\SDL 2015-05-25 09:45 - 2015-05-26 12:13 - 00000000 ____D () C:\ProgramData\Package Cache 2015-05-25 09:30 - 2015-05-25 09:30 - 00000000 ____D () C:\Program Files\Common Files\Little Registry Cleaner 2015-05-25 09:29 - 2015-05-26 12:30 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Little Registry Cleaner 2015-05-25 09:29 - 2015-05-26 12:30 - 00000000 ____D () C:\Program Files (x86)\Little Registry Cleaner 2015-05-25 09:23 - 2015-05-29 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Shredder 2015-05-25 09:23 - 2015-05-29 15:44 - 00000000 ____D () C:\Program Files\File Shredder 2015-05-25 09:23 - 2015-05-25 09:23 - 00000851 _____ () C:\Users\Juliane8\Desktop\File Shredder.lnk 2015-05-25 09:22 - 2015-05-25 09:23 - 02317839 _____ (PowTools ) C:\Users\Juliane8\Downloads\file_shredder_setup.exe 2015-05-25 09:17 - 2015-05-25 09:21 - 338565749 _____ () C:\Users\Juliane8\Downloads\SDLTradosStudio2014TrialDE (1).exe 2015-05-25 09:10 - 2015-05-29 15:45 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Hotspot Shield 2015-05-25 09:10 - 2015-05-29 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield 2015-05-25 09:10 - 2015-05-29 15:44 - 00000000 ____D () C:\Program Files (x86)\Hotspot Shield 2015-05-25 09:10 - 2015-05-29 15:38 - 00000000 ____D () C:\ProgramData\Hotspot Shield 2015-05-25 09:10 - 2015-05-25 09:10 - 09975680 _____ () C:\Users\Juliane8\Downloads\HSS-4.15.2-install-plain-701-plain.exe 2015-05-25 09:10 - 2015-05-19 03:06 - 00044744 _____ (AnchorFree Inc.) C:\WINDOWS\system32\Drivers\hssdrv6.sys 2015-05-24 13:55 - 2015-05-24 13:55 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel 2015-05-24 13:55 - 2015-05-24 13:55 - 00000000 ____D () C:\WINDOWS\system32\appraiser 2015-05-24 10:35 - 2014-10-09 06:00 - 01519104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll 2015-05-24 10:35 - 2014-10-09 06:00 - 01484288 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe 2015-05-24 10:35 - 2014-10-09 06:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll 2015-05-24 10:35 - 2014-10-09 05:59 - 01195520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll 2015-05-24 10:35 - 2014-10-09 05:59 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll 2015-05-23 16:53 - 2015-05-23 16:57 - 00000000 ____D () C:\WINDOWS\system32\MRT 2015-05-23 16:53 - 2015-04-30 10:07 - 140425016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-05-23 16:25 - 2015-01-09 08:43 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2015-05-23 16:25 - 2015-01-09 07:03 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2015-05-23 16:25 - 2015-01-09 01:52 - 00478296 _____ () C:\WINDOWS\SysWOW64\locale.nls 2015-05-23 16:25 - 2015-01-09 01:52 - 00478296 _____ () C:\WINDOWS\system32\locale.nls 2015-05-23 16:20 - 2015-04-30 15:07 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-05-23 16:20 - 2015-04-30 15:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-05-23 15:48 - 2014-06-11 00:44 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2015-05-23 15:48 - 2014-06-11 00:43 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-05-23 15:35 - 2014-11-15 08:06 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2015-05-23 15:35 - 2014-11-15 07:13 - 03286016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 01623552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2015-05-23 15:35 - 2014-11-15 07:13 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe 2015-05-23 15:35 - 2014-11-15 07:12 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll 2015-05-23 15:35 - 2014-11-15 05:54 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe 2015-05-23 15:35 - 2014-11-15 05:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2015-05-23 15:35 - 2014-11-15 05:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll 2015-05-23 15:35 - 2014-11-15 05:53 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2015-05-23 15:35 - 2013-10-19 07:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll 2015-05-23 15:35 - 2013-10-19 06:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll 2015-05-23 15:35 - 2013-07-06 02:15 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2015-05-23 15:35 - 2013-07-04 04:13 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2015-05-23 15:34 - 2014-11-05 08:40 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2015-05-23 15:34 - 2014-11-05 08:39 - 01024512 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2015-05-23 15:34 - 2014-10-29 16:21 - 00499008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2015-05-23 15:34 - 2014-08-28 08:01 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll 2015-05-23 15:33 - 2015-03-23 07:19 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll 2015-05-23 15:33 - 2015-03-23 07:17 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-05-23 15:33 - 2015-03-23 00:04 - 01111552 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2015-05-23 15:33 - 2014-12-03 03:48 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2015-05-23 15:33 - 2014-06-18 01:27 - 01440256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe 2015-05-23 15:33 - 2014-06-18 01:24 - 01557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe 2015-05-23 15:33 - 2014-06-05 03:12 - 00678600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll 2015-05-23 15:33 - 2014-06-04 01:12 - 00536776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll 2015-05-23 15:32 - 2014-12-11 08:51 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe 2015-05-23 15:31 - 2015-04-13 07:32 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2015-05-23 15:31 - 2015-03-17 09:00 - 06971712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-05-23 15:31 - 2015-03-17 08:52 - 01822696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2015-05-23 15:31 - 2015-03-17 06:45 - 01409496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2015-05-23 15:30 - 2015-02-20 15:59 - 00046080 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-05-23 15:30 - 2015-02-20 13:56 - 00366592 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-05-23 15:30 - 2015-02-20 10:10 - 00035328 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-05-23 15:30 - 2015-02-20 09:24 - 00304128 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-05-23 15:30 - 2015-01-31 15:48 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys 2015-05-23 15:30 - 2015-01-31 07:55 - 00275712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys 2015-05-23 15:30 - 2014-02-06 01:41 - 01257984 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32(171).dll 2015-05-23 15:29 - 2014-09-13 08:24 - 02233152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2015-05-23 15:29 - 2014-09-03 04:48 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll 2015-05-23 15:29 - 2014-09-03 04:22 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll 2015-05-23 15:29 - 2014-08-29 06:17 - 02043392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2015-05-23 15:29 - 2014-08-29 06:17 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll 2015-05-23 15:29 - 2014-08-29 06:04 - 02837504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2015-05-23 15:29 - 2014-08-29 06:04 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2015-05-23 15:29 - 2014-08-28 08:04 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll 2015-05-23 15:29 - 2014-08-28 08:04 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSTIFF.dll 2015-05-23 15:29 - 2014-08-28 07:59 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXST30.dll 2015-05-23 15:29 - 2014-07-24 15:12 - 00328512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys 2015-05-23 15:29 - 2014-02-06 01:19 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32(184).dll 2015-05-23 15:27 - 2015-02-24 09:58 - 00861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2015-05-23 15:27 - 2014-10-09 05:59 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2015-05-23 15:27 - 2014-10-09 05:59 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2015-05-23 15:27 - 2014-10-09 05:58 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2015-05-23 15:27 - 2014-09-22 07:38 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2015-05-23 15:27 - 2014-09-22 05:56 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2015-05-23 15:27 - 2013-07-06 00:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys 2015-05-23 15:27 - 2013-07-06 00:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys 2015-05-23 15:27 - 2013-07-02 00:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys 2015-05-23 15:27 - 2013-06-29 05:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys 2015-05-23 15:27 - 2013-06-22 07:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys 2015-05-23 15:27 - 2013-06-22 07:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys 2015-05-23 15:26 - 2015-04-13 07:30 - 01839616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2015-05-23 15:26 - 2015-04-13 07:30 - 01280512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2015-05-23 15:26 - 2015-04-13 06:05 - 01416192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2015-05-23 15:26 - 2015-04-13 05:25 - 04063744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-05-23 15:26 - 2015-01-29 10:05 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2015-05-23 15:26 - 2015-01-29 08:19 - 01339392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2015-05-23 15:26 - 2013-03-02 12:57 - 00077544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys 2015-05-23 15:26 - 2013-03-02 10:23 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2015-05-23 15:26 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2015-05-23 15:26 - 2013-03-02 10:23 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncInfo.dll 2015-05-23 15:26 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll 2015-05-23 15:26 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll 2015-05-23 15:26 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl 2015-05-23 15:26 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 01149952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll 2015-05-23 15:26 - 2013-03-02 04:45 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL 2015-05-23 15:26 - 2013-03-02 04:44 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo(177).dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll 2015-05-23 15:26 - 2013-03-02 04:44 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll 2015-05-23 15:26 - 2013-03-02 04:43 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl 2015-05-23 15:26 - 2013-03-02 04:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys 2015-05-23 15:26 - 2013-03-01 06:56 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys 2015-05-23 15:20 - 2014-07-24 05:33 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll 2015-05-23 15:20 - 2014-07-24 05:33 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll 2015-05-23 15:20 - 2014-07-07 07:53 - 01125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe 2015-05-23 15:20 - 2014-07-07 07:52 - 00724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll 2015-05-23 15:20 - 2014-07-07 07:52 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll 2015-05-23 15:20 - 2014-07-07 07:51 - 05982208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2015-05-23 15:20 - 2014-07-07 06:01 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe 2015-05-23 15:20 - 2014-07-07 06:01 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll 2015-05-23 15:20 - 2014-07-07 06:00 - 05095424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2015-05-23 15:20 - 2014-07-07 05:59 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aaclient.dll 2015-05-23 15:19 - 2015-03-14 10:07 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2015-05-23 15:19 - 2015-03-14 08:33 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2015-05-23 15:19 - 2015-03-04 09:29 - 00361280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2015-05-23 15:19 - 2015-03-04 08:39 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll 2015-05-23 15:19 - 2015-03-04 06:52 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll 2015-05-23 15:19 - 2014-12-08 08:48 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll 2015-05-23 15:19 - 2014-12-08 07:04 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll 2015-05-23 15:19 - 2014-10-11 09:45 - 10115072 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2015-05-23 15:19 - 2014-10-11 09:44 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2015-05-23 15:19 - 2014-10-11 09:44 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll 2015-05-23 15:19 - 2014-10-11 09:43 - 02307072 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2015-05-23 15:19 - 2014-10-11 07:58 - 08858624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2015-05-23 15:19 - 2014-10-11 07:57 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2015-05-23 15:19 - 2014-10-11 07:57 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll 2015-05-23 15:19 - 2014-10-11 07:56 - 02037760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2015-05-23 15:19 - 2014-06-13 01:34 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2015-05-23 15:19 - 2014-06-13 01:29 - 02146304 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2015-05-23 15:19 - 2013-04-24 01:13 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe 2015-05-23 15:19 - 2013-04-24 01:12 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll 2015-05-23 15:19 - 2013-04-24 00:56 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe 2015-05-23 15:19 - 2013-04-24 00:55 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 14374400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 13771776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 02864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 01763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-05-23 15:15 - 2015-04-21 16:33 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-05-23 15:15 - 2015-04-21 15:53 - 02237440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-05-23 15:15 - 2015-04-21 15:53 - 01409536 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 19291136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 15414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 03959296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-05-23 15:15 - 2015-04-21 15:52 - 02656768 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-05-23 15:15 - 2015-02-23 12:51 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll 2015-05-23 15:15 - 2014-06-03 00:33 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2015-05-23 15:14 - 2015-04-21 16:33 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2015-05-23 15:14 - 2015-04-21 16:32 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2015-05-23 15:14 - 2015-04-21 15:53 - 00601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2015-05-23 15:14 - 2015-04-21 15:52 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2015-05-23 15:14 - 2015-04-21 15:52 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2015-05-23 15:14 - 2015-04-18 04:37 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec 2015-05-23 15:14 - 2015-04-18 04:34 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec 2015-05-23 15:14 - 2015-02-23 12:52 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2015-05-23 15:14 - 2015-02-23 12:51 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll 2015-05-23 15:14 - 2015-02-23 12:51 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2015-05-23 15:14 - 2015-02-23 12:50 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll 2015-05-23 15:14 - 2015-02-23 11:17 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2015-05-23 15:14 - 2015-02-23 11:15 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll 2015-05-23 15:14 - 2015-02-21 07:31 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2015-05-23 15:14 - 2015-02-21 07:30 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll 2015-05-23 15:14 - 2015-02-21 07:09 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2015-05-23 15:14 - 2015-02-21 07:07 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll 2015-05-23 15:14 - 2015-02-21 05:00 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll 2015-05-23 15:14 - 2014-12-06 09:52 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2015-05-23 15:14 - 2014-12-06 09:52 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2015-05-23 15:14 - 2014-12-06 09:52 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll 2015-05-23 15:14 - 2014-12-06 08:09 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll 2015-05-23 15:12 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll 2015-05-23 15:12 - 2013-03-02 04:44 - 01011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2015-05-23 15:11 - 2014-03-11 02:41 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll 2015-05-23 15:11 - 2014-03-11 02:41 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dimsroam.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll 2015-05-23 15:11 - 2014-03-11 02:38 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll 2015-05-23 15:11 - 2014-03-10 05:05 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2015-05-23 15:10 - 2014-12-06 09:53 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2015-05-23 15:10 - 2014-12-06 09:53 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe 2015-05-23 15:10 - 2014-12-06 09:51 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2015-05-23 15:10 - 2014-12-06 09:51 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll 2015-05-23 15:10 - 2014-12-06 09:50 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-05-23 15:10 - 2014-12-06 08:10 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2015-05-23 15:10 - 2014-12-06 08:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe 2015-05-23 15:10 - 2014-12-06 08:09 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2015-05-23 15:10 - 2014-11-26 08:43 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2015-05-23 15:10 - 2014-11-26 06:50 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2015-05-23 15:10 - 2014-10-03 03:21 - 00522728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2015-05-23 15:10 - 2014-10-03 00:29 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2015-05-23 15:10 - 2013-07-09 08:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2015-05-23 15:10 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2015-05-23 15:10 - 2013-07-01 03:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys 2015-05-23 15:10 - 2013-07-01 03:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys 2015-05-23 15:10 - 2013-07-01 03:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys 2015-05-23 15:10 - 2013-07-01 03:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys 2015-05-23 15:10 - 2013-06-29 05:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys 2015-05-23 15:10 - 2013-06-29 05:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys 2015-05-23 15:09 - 2014-07-16 01:03 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2015-05-23 15:09 - 2014-07-12 04:36 - 01023488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2015-05-23 15:09 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe 2015-05-23 15:09 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll 2015-05-23 15:09 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe 2015-05-23 15:09 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll 2015-05-23 15:09 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe 2015-05-23 15:09 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe 2015-05-23 15:09 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm(180).dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll 2015-05-23 15:09 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll 2015-05-23 15:09 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\muifontsetup.dll 2015-05-23 15:09 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2015-05-23 15:09 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe 2015-05-23 15:09 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll 2015-05-23 15:09 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\muifontsetup.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll 2015-05-23 15:09 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll 2015-05-23 15:09 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2015-05-23 15:09 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs 2015-05-23 15:09 - 2013-05-04 06:48 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys 2015-05-23 15:09 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2015-05-23 15:09 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs 2015-05-23 15:09 - 2013-03-02 04:45 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe 2015-05-23 15:09 - 2013-03-02 04:45 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe 2015-05-23 15:08 - 2013-12-05 01:43 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll 2015-05-23 15:08 - 2013-12-05 01:37 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll 2015-05-23 15:04 - 2013-07-02 03:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2015-05-23 15:04 - 2013-07-02 03:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS 2015-05-23 15:04 - 2013-04-09 06:51 - 14267904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2015-05-23 15:04 - 2013-04-09 06:51 - 03552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2015-05-23 15:04 - 2013-04-09 06:50 - 02107904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2015-05-23 15:04 - 2013-04-09 06:49 - 01444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll 2015-05-23 15:04 - 2013-04-08 23:52 - 11878912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2015-05-23 15:04 - 2013-04-08 23:51 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2015-05-23 15:04 - 2013-04-08 23:51 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2015-05-23 15:03 - 2015-03-04 08:41 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe 2015-05-23 15:03 - 2015-03-04 08:39 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll 2015-05-23 15:03 - 2015-03-04 08:39 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll 2015-05-23 15:03 - 2015-03-04 06:53 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe 2015-05-23 15:03 - 2015-03-04 06:52 - 00676864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll 2015-05-23 15:03 - 2013-04-09 07:33 - 00489576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-05-23 15:03 - 2013-04-09 07:33 - 00446792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2015-05-23 15:03 - 2013-04-09 07:33 - 00253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2015-05-23 15:03 - 2013-04-09 07:20 - 00306952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_10ec.dll 2015-05-23 15:03 - 2013-04-09 07:20 - 00086280 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll 2015-05-23 15:03 - 2013-04-09 07:18 - 00077960 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdvm.dll 2015-05-23 15:03 - 2013-04-09 06:52 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2015-05-23 15:03 - 2013-04-09 06:52 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2015-05-23 15:03 - 2013-04-09 06:52 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2015-05-23 15:03 - 2013-04-09 06:52 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2015-05-23 15:03 - 2013-04-09 06:51 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll 2015-05-23 15:03 - 2013-04-09 06:51 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2015-05-23 15:03 - 2013-04-09 06:51 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe 2015-05-23 15:03 - 2013-04-09 06:51 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 01285632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc(176).dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00745984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenuineCenter.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2015-05-23 15:03 - 2013-04-09 06:50 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll 2015-05-23 15:03 - 2013-04-09 06:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fmifs.dll 2015-05-23 15:03 - 2013-04-09 04:34 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys 2015-05-23 15:03 - 2013-04-09 04:33 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys 2015-05-23 15:03 - 2013-04-09 04:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys 2015-05-23 15:03 - 2013-04-09 04:31 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys 2015-05-23 15:03 - 2013-04-09 01:44 - 00123880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll 2015-05-23 15:03 - 2013-04-09 01:37 - 00426024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2015-05-23 15:03 - 2013-04-09 01:37 - 00324368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-05-23 15:03 - 2013-04-08 23:52 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2015-05-23 15:03 - 2013-04-08 23:52 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2015-05-23 15:03 - 2013-04-08 23:52 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2015-05-23 15:03 - 2013-04-08 23:51 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fmifs.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2015-05-23 15:03 - 2013-04-08 23:51 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll 2015-05-23 15:03 - 2013-04-05 01:30 - 00503080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2015-05-23 15:03 - 2013-03-16 00:05 - 00298456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll 2015-05-23 15:03 - 2013-03-16 00:05 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll 2015-05-23 15:03 - 2013-03-02 12:39 - 00069864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2015-05-23 15:02 - 2015-03-14 02:55 - 00410017 _____ () C:\WINDOWS\system32\ApnDatabase.xml 2015-05-23 15:02 - 2015-02-18 09:39 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2015-05-23 15:02 - 2015-02-18 09:38 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll 2015-05-23 15:02 - 2015-01-24 08:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll 2015-05-23 15:02 - 2015-01-24 07:00 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll 2015-05-23 15:02 - 2014-11-08 13:22 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll 2015-05-23 15:02 - 2014-11-08 08:57 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll 2015-05-23 15:02 - 2014-06-20 01:35 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2015-05-23 15:02 - 2014-06-20 00:24 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2015-05-23 15:02 - 2014-06-05 19:56 - 00112984 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe 2015-05-23 15:02 - 2014-05-30 00:24 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2015-05-23 15:02 - 2014-01-13 01:30 - 02238976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp(166).dll 2015-05-23 15:02 - 2013-11-20 02:15 - 03842560 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2015-05-23 15:02 - 2013-11-20 01:57 - 03288576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2015-05-23 15:02 - 2013-03-06 08:29 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll 2015-05-23 15:02 - 2012-11-10 06:23 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2015-05-23 15:02 - 2012-11-10 06:22 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDWebAI.dll 2015-05-23 15:02 - 2012-11-10 06:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmHostAI.dll 2015-05-23 15:02 - 2012-11-10 06:20 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appserverai.dll 2015-05-23 15:01 - 2015-03-12 07:31 - 02048000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll 2015-05-23 15:01 - 2015-03-12 07:31 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll 2015-05-23 15:01 - 2015-03-12 05:52 - 01933312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll 2015-05-23 15:01 - 2015-02-17 08:54 - 19777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-05-23 15:01 - 2015-02-17 07:13 - 17561600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-05-23 15:01 - 2015-01-24 06:31 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2015-05-23 15:01 - 2014-10-11 09:44 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2015-05-23 15:01 - 2014-06-06 16:06 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2015-05-23 15:01 - 2014-06-06 12:17 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll 2015-05-23 15:01 - 2013-10-10 11:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe 2015-05-23 15:01 - 2013-10-10 11:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll 2015-05-23 15:01 - 2013-10-10 11:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll 2015-05-23 15:01 - 2013-10-10 11:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx 2015-05-23 15:01 - 2013-10-10 11:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe 2015-05-23 15:01 - 2013-10-10 11:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll 2015-05-23 15:01 - 2013-10-10 11:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll 2015-05-23 15:01 - 2013-09-28 05:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys 2015-05-23 15:01 - 2013-07-13 08:18 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll 2015-05-23 15:01 - 2013-07-13 08:16 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll 2015-05-23 15:01 - 2013-07-13 08:15 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll 2015-05-23 15:01 - 2013-07-13 08:15 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll 2015-05-23 15:01 - 2013-07-13 06:24 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll 2015-05-23 15:01 - 2013-07-13 06:23 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll 2015-05-23 15:01 - 2013-07-13 06:23 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll 2015-05-23 15:01 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdlg.dll 2015-05-23 15:01 - 2013-04-03 01:12 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll 2015-05-23 15:01 - 2013-03-02 11:59 - 00411880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2015-05-23 15:00 - 2015-05-02 08:28 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys 2015-05-23 15:00 - 2015-05-02 05:59 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2015-05-23 15:00 - 2015-05-02 05:36 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2015-05-23 15:00 - 2015-04-14 00:09 - 00570248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2015-05-23 15:00 - 2015-03-06 09:39 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2015-05-23 15:00 - 2015-03-06 07:48 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2015-05-23 15:00 - 2015-01-15 13:44 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll 2015-05-23 15:00 - 2015-01-15 13:43 - 01282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-05-23 15:00 - 2015-01-15 12:00 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll 2015-05-23 15:00 - 2015-01-15 11:38 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll 2015-05-23 15:00 - 2015-01-15 11:09 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll 2015-05-23 15:00 - 2014-12-19 06:35 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys 2015-05-23 15:00 - 2014-12-18 10:51 - 00096576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys 2015-05-23 15:00 - 2014-12-18 08:52 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2015-05-23 15:00 - 2014-12-18 08:51 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2015-05-23 15:00 - 2014-12-18 08:50 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL 2015-05-23 15:00 - 2014-12-18 08:20 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2015-05-23 15:00 - 2014-09-25 01:29 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll 2015-05-23 15:00 - 2014-09-25 01:01 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll 2015-05-23 15:00 - 2014-03-11 02:39 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe 2015-05-23 15:00 - 2014-03-11 02:38 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll 2015-05-23 15:00 - 2014-03-11 02:38 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll 2015-05-23 15:00 - 2014-03-10 03:27 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll 2015-05-23 15:00 - 2013-08-23 09:22 - 02062848 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2015-05-23 15:00 - 2013-08-23 03:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2015-05-23 15:00 - 2013-06-10 21:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL 2015-05-23 15:00 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL 2015-05-23 14:59 - 2014-11-08 13:21 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2015-05-23 14:59 - 2014-11-08 08:56 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2015-05-23 14:59 - 2014-10-11 10:35 - 00171840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2015-05-23 14:59 - 2014-10-11 07:41 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll 2015-05-23 14:59 - 2014-10-11 07:05 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll 2015-05-23 14:59 - 2014-08-22 01:56 - 01418752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll 2015-05-23 14:59 - 2014-08-22 01:27 - 01845760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2015-05-23 14:59 - 2014-05-30 01:02 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll 2015-05-23 14:59 - 2014-04-12 11:10 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-05-23 14:59 - 2014-04-12 11:09 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll 2015-05-23 14:59 - 2014-04-12 11:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll 2015-05-23 14:59 - 2014-04-12 11:08 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2015-05-23 14:59 - 2014-04-12 11:07 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll 2015-05-23 14:59 - 2014-04-12 09:23 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2015-05-23 14:59 - 2014-04-12 09:23 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll 2015-05-23 14:59 - 2014-04-12 09:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll 2015-05-23 14:59 - 2014-04-12 09:22 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll 2015-05-23 14:59 - 2014-04-12 08:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\workerdd.dll 2015-05-23 14:59 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2015-05-23 14:59 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2015-05-23 14:58 - 2014-10-23 14:47 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll 2015-05-23 14:58 - 2014-10-23 13:04 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll 2015-05-23 14:57 - 2015-04-06 07:36 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll 2015-05-23 14:57 - 2015-04-06 06:08 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll 2015-05-23 14:57 - 2014-12-19 08:48 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll 2015-05-23 14:57 - 2014-10-30 09:20 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2015-05-23 14:57 - 2014-10-30 07:22 - 01569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2015-05-23 14:57 - 2013-11-01 07:38 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll 2015-05-23 14:57 - 2013-11-01 05:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll 2015-05-23 14:52 - 2015-05-23 17:43 - 00000000 ____D () C:\Windows.old 2015-05-23 14:52 - 2015-05-23 14:52 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff 2015-05-23 14:49 - 2015-05-23 14:49 - 00002179 _____ () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2015-05-23 14:49 - 2015-05-23 14:49 - 00002152 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2015-05-23 14:49 - 2015-05-23 14:49 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive 2015-05-23 14:48 - 2015-05-23 14:48 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive 2015-05-23 14:39 - 2015-05-29 20:52 - 00002187 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-05-23 14:39 - 2015-05-29 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-05-23 14:39 - 2015-05-23 14:40 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Mozilla 2015-05-23 14:39 - 2015-05-23 14:40 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Mozilla 2015-05-23 14:39 - 2015-05-23 14:39 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-05-23 14:39 - 2015-05-23 14:39 - 00001155 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-05-23 14:39 - 2015-05-23 14:39 - 00000000 ____D () C:\ProgramData\Mozilla 2015-05-23 14:39 - 2015-05-23 14:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2015-05-23 14:38 - 2015-05-31 18:51 - 00001092 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-23 14:38 - 2015-05-31 10:20 - 00001088 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-23 14:38 - 2015-05-23 14:45 - 00004064 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-05-23 14:38 - 2015-05-23 14:45 - 00003828 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-05-23 14:38 - 2015-05-23 14:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2015-05-23 14:38 - 2015-05-23 14:39 - 00000000 ____D () C:\Program Files (x86)\Google 2015-05-23 14:37 - 2015-05-30 18:43 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Deployment 2015-05-23 14:37 - 2015-05-30 18:43 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Apps\2.0 2015-05-23 14:37 - 2015-05-23 14:39 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Google 2015-05-23 14:35 - 2015-05-23 14:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2015-05-23 14:34 - 2015-05-23 17:36 - 00000000 ____D () C:\Program Files\Microsoft Office 15 2015-05-23 14:32 - 2015-05-23 14:32 - 00000000 ____D () C:\$WINDOWS.~BT 2015-05-23 14:30 - 2013-08-16 07:21 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll 2015-05-23 14:30 - 2013-08-16 07:21 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2015-05-23 14:30 - 2013-08-16 00:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll 2015-05-23 14:28 - 2015-05-23 14:40 - 196612224 _____ (Kaspersky Lab) C:\Users\Juliane8\Downloads\kis15.0.2.361en.exe 2015-05-23 14:14 - 2015-05-30 19:59 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2694262190-2736747673-2123131371-1002 2015-05-23 14:05 - 2015-05-23 14:05 - 00001454 _____ () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-05-23 14:05 - 2015-05-23 14:05 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD 2015-05-23 14:05 - 2015-05-23 14:05 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\lm 2015-05-23 14:05 - 2015-05-23 14:05 - 00000000 ____D () C:\ProgramData\OEM_YAHOO 2015-05-23 14:02 - 2015-05-23 14:02 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Macromedia 2015-05-23 14:02 - 2015-05-23 14:02 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Adobe 2015-05-23 14:00 - 2015-05-23 14:00 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\VirtualStore 2015-05-23 13:59 - 2015-05-29 15:38 - 00000000 ____D () C:\Users\Juliane8\AppData\Local\Packages 2015-05-23 13:59 - 2015-05-23 13:59 - 00000020 ___SH () C:\Users\Juliane8\ntuser.ini 2015-05-23 13:57 - 2015-05-23 13:57 - 00000020 ___SH () C:\Users\UpdatusUser.000\ntuser.ini 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Voisinage réseau 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Voisinage d'impression 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Modèles 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Menu Démarrer 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Documents\Mes vidéos 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Documents\Mes images 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\Documents\Ma musique 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historique 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Modèles 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Menu Démarrer 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\ProgramData\Bureau 2015-05-23 13:57 - 2015-05-23 13:57 - 00000000 _SHDL () C:\Program Files\Fichiers communs 2015-05-23 13:55 - 2015-05-29 16:08 - 00000000 ____D () C:\Users\Juliane8 2015-05-23 13:55 - 2015-05-29 15:47 - 00000000 ____D () C:\Users\UpdatusUser.000 2015-05-23 13:55 - 2015-05-29 15:47 - 00000000 ____D () C:\Users\Eike 2015-05-23 13:55 - 2015-05-23 13:56 - 00036198 _____ () C:\WINDOWS\diagwrn.xml 2015-05-23 13:55 - 2015-05-23 13:56 - 00036198 _____ () C:\WINDOWS\diagerr.xml 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Voisinage réseau 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Voisinage d'impression 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Modèles 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Menu Démarrer 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Documents\Mes vidéos 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Documents\Mes images 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\Documents\Ma musique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\UpdatusUser.000\AppData\Local\Historique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Voisinage réseau 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Voisinage d'impression 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Modèles 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Menu Démarrer 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Documents\Mes vidéos 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Documents\Mes images 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\Documents\Ma musique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Juliane8\AppData\Local\Historique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Voisinage réseau 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Voisinage d'impression 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Modèles 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Menu Démarrer 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Documents\Mes vidéos 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Documents\Mes images 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\Documents\Ma musique 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-05-23 13:55 - 2015-05-23 13:55 - 00000000 _SHDL () C:\Users\Eike\AppData\Local\Historique 2015-05-23 13:55 - 2013-04-21 11:38 - 00000000 ___RD () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-23 13:55 - 2013-04-21 11:38 - 00000000 ___RD () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-23 13:55 - 2013-04-21 11:38 - 00000000 ___RD () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ____D () C:\Users\UpdatusUser.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ____D () C:\Users\Juliane8\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-05-23 13:55 - 2012-07-26 10:13 - 00000000 ____D () C:\Users\Eike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-05-23 13:29 - 2015-05-23 15:42 - 00000000 ____D () C:\$SysReset 2015-05-23 13:10 - 2015-05-23 13:10 - 00000000 ____D () C:\AX6HPBC85FMOVZ38WNG7D5E3STJ8KLU5IQRY21 2015-05-21 13:01 - 2015-05-21 13:01 - 04818760 _____ (AVG Technologies) C:\Users\Juliane8\Downloads\avg_free_stb_all_5863p1_177.exe 2015-05-21 12:50 - 2015-05-21 12:50 - 01190704 _____ () C:\Users\Juliane8\Downloads\Adware-Removal-Tool-v3.6.exe 2015-05-21 11:45 - 2015-05-21 11:45 - 00880208 _____ (Google Inc.) C:\Users\Juliane8\Downloads\ChromeSetup.exe 2015-05-19 11:36 - 2015-05-19 11:36 - 00005351 _____ () C:\Users\Juliane8\Downloads\SOURCE (1).zip 2015-05-19 03:08 - 2015-05-19 03:08 - 00042184 _____ (Anchorfree Inc.) C:\WINDOWS\system32\Drivers\taphss6.sys 2015-05-18 22:16 - 2015-05-18 22:16 - 00056008 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\kldisk.sys 2015-05-15 17:45 - 2015-05-15 17:45 - 00015754 _____ () C:\Users\Juliane8\Downloads\English_to_Native_-_140515_15-5-15_08-38-10.xlsx 2015-05-13 15:53 - 2015-05-13 15:53 - 00014855 _____ () C:\Users\Juliane8\Downloads\LS-to-translate-language_DE.txt 2015-05-12 19:44 - 2015-05-12 19:45 - 00001533 _____ () C:\Users\Juliane8\Downloads\emmajolie-com_20150512T174459Z_ExternalLinks_LinkingDomains.csv 2015-05-08 15:03 - 2015-05-08 15:03 - 00005210 _____ () C:\Users\Juliane8\Downloads\Lantus SoloStar_IPat_DE_appr_21.05.2014_clean_corr.docx_fr-FR_de-DE QA.sdlproj 2015-05-06 19:09 - 2015-05-06 19:09 - 00006855 _____ () C:\Users\Juliane8\Downloads\Source.zip 2015-05-06 09:42 - 2015-05-06 09:42 - 00019686 _____ () C:\Users\Juliane8\Downloads\French emailing text_de-DE-201555-16h31m12s.zip 2015-05-01 19:32 - 2015-05-01 19:32 - 15058264 _____ () C:\Users\Juliane8\Downloads\Glary_Utilities_v5.24.0.43.exe ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-05-31 18:23 - 2013-06-26 22:13 - 01617670 _____ () C:\WINDOWS\WindowsUpdate.log 2015-05-31 18:00 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\sru 2015-05-31 10:19 - 2012-07-26 09:22 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2015-05-31 10:18 - 2013-05-23 06:13 - 00038428 _____ () C:\WINDOWS\PFRO.log 2015-05-31 09:55 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\rescache 2015-05-31 09:40 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\WinStore 2015-05-31 09:40 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp 2015-05-31 09:36 - 2013-06-27 07:58 - 00800978 _____ () C:\WINDOWS\system32\perfh00C.dat 2015-05-31 09:36 - 2013-06-27 07:58 - 00155650 _____ () C:\WINDOWS\system32\perfc00C.dat 2015-05-31 09:36 - 2012-07-26 09:28 - 01793362 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2015-05-31 09:28 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\Resources 2015-05-31 09:28 - 2012-07-26 07:26 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI 2015-05-30 16:44 - 2012-07-26 07:26 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2015-05-30 16:43 - 2012-07-26 10:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP 2015-05-30 16:36 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates 2015-05-30 16:36 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions 2015-05-30 16:36 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2015-05-30 16:36 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\oobe 2015-05-30 16:36 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\AdvancedInstallers 2015-05-30 13:38 - 2012-07-26 07:26 - 00000215 _____ () C:\WINDOWS\system.ini 2015-05-30 13:35 - 2013-05-23 06:50 - 00000000 ____D () C:\ProgramData\Temp 2015-05-29 16:05 - 2013-09-20 12:27 - 00000000 ____D () C:\Users\Juliane8\Desktop\Agencies 2015-05-29 15:47 - 2013-06-26 22:24 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-29 15:47 - 2013-06-26 22:24 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-29 15:47 - 2013-06-26 22:24 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-29 15:47 - 2013-05-23 06:22 - 00000000 ____D () C:\Users\Administrator 2015-05-29 15:46 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\spp 2015-05-29 15:42 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\registration 2015-05-29 15:41 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\Sysprep 2015-05-29 15:39 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\AppCompat 2015-05-26 21:07 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\NDF 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Defender 2015-05-24 13:55 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2015-05-24 13:53 - 2012-07-26 10:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-23 17:06 - 2012-07-26 07:37 - 00000000 ____D () C:\WINDOWS\servicing 2015-05-23 17:04 - 2013-05-23 06:45 - 00000000 ____D () C:\Program Files\Common Files\mcafee 2015-05-23 17:02 - 2012-07-26 10:12 - 00000000 ___RD () C:\WINDOWS\ToastData 2015-05-23 17:01 - 2012-07-26 09:52 - 00000000 ____D () C:\Program Files\Windows Journal 2015-05-23 17:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Photo Viewer 2015-05-23 17:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer 2015-05-23 17:00 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism 2015-05-23 17:00 - 2012-07-26 07:38 - 00000000 ____D () C:\WINDOWS\system32\Dism 2015-05-23 15:44 - 2014-11-21 22:58 - 00000000 ____D () C:\kleaner.tmp 2015-05-23 15:39 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent 2015-05-23 14:58 - 2013-05-23 06:45 - 00000000 ____D () C:\Program Files\mcafee 2015-05-23 14:52 - 2012-07-26 10:13 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template 2015-05-23 14:49 - 2013-11-19 19:56 - 00000000 __RDO () C:\Users\Juliane8\SkyDrive 2015-05-23 14:15 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\restore 2015-05-23 14:14 - 2013-05-23 06:45 - 00000000 ____D () C:\ProgramData\McAfee 2015-05-23 14:05 - 2013-05-23 07:00 - 00000000 ____D () C:\OEM 2015-05-23 13:59 - 2012-07-26 10:12 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel 2015-05-23 13:58 - 2013-05-23 07:12 - 00000000 ___DC () C:\WINDOWS\Panther 2015-05-23 13:57 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows NT 2015-05-23 13:57 - 2012-07-26 07:37 - 00000000 __RHD () C:\Users\Default 2015-05-23 13:56 - 2012-07-26 10:12 - 00000000 __RHD () C:\Users\Public\Libraries 2015-05-23 13:56 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\Recovery 2015-05-23 13:56 - 2012-07-26 09:21 - 00035807 _____ () C:\WINDOWS\setupact.log 2015-05-23 13:23 - 2014-11-30 19:30 - 00000000 __RDO () C:\Users\Juliane8\OneDrive 2015-05-14 19:00 - 2013-09-22 16:35 - 00000000 ____D () C:\Users\Juliane8\Documents\Mes projets memoQ 2015-05-05 19:49 - 2012-07-26 10:14 - 00792032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-05-05 19:49 - 2012-07-26 10:14 - 00177632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl ==================== Files in the root of some directories ======= 2015-05-26 08:16 - 2015-05-26 08:16 - 0000108 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc Some files in TEMP: ==================== C:\Users\Juliane8\AppData\Local\temp\Quarantine.exe C:\Users\Juliane8\AppData\Local\temp\sqlite3.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2013-05-23 06:13 ==================== End of log ============================ |
01.06.2015, 11:48 | #10 |
/// the machine /// TB-Ausbilder | Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter C:\Users\Juliane8\Desktop\Old Firefox Data\q9wjg3hy.default\extensions\fftoolbar2014@etech.com\chrome\content\toolbar.js HKU\S-1-5-21-2694262190-2736747673-2123131371-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION AutoConfigURL: [S-1-5-21-2694262190-2736747673-2123131371-1002] => hxxp://127.0.0.1:895/proxy.js Emptytemp: Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Cleanup: (Die Reihenfolge ist hier entscheidend) Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken. Falls Combofix verwendet wurde: Combofix deinstallieren
Alle Logs gepostet? Dann lade Dir bitte DelFix herunter.
Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen. Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...und/oder das Forum mit einer kleinen Spende unterstützen. Absicherung: Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen: Browser Java Flash-Player PDF-Reader Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren. Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen. Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig. Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank. Meine Empfehlung: Emsisoft Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen. Optional: NoScript verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen. Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen. Lade Software von einem sauberen Portal wie . Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen. Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner . Abschließend noch ein paar grundsätzliche Bemerkungen: Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems. Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
01.06.2015, 15:29 | #11 |
| Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Ganz lieben Dank, schrauber, auch für Deine Anmerkungen, die ich mir zu Herzen nehme. Eine Frage habe ich noch. Hotspot Shield ist immer noch auf dem Computer installiert, kann ich das Programm jetzt problemlos manuell deinstallieren, ohne dass das ganze Theater wieder von vorn losgeht? Auch File Shredder steht noch in der Programmliste, lässt sich aber wie schon gesagt nicht deinstallieren. Soll ich das einfach ignorieren und stehen lassen? Danke für Deine Mühe. LG Juli Hier die Fixlog-Datei: Code:
ATTFilter Fix result of Farbar Recovery Scan Tool (x64) Version: 27-05-2015 01 Ran by Juliane8 at 2015-06-01 15:36:26 Run:1 Running from C:\Users\Juliane8\Downloads Loaded Profiles: Juliane8 (Available Profiles: Juliane8 & UpdatusUser & Eike & Administrateur) Boot Mode: Normal ============================================== fixlist content: ***************** C:\Users\Juliane8\Desktop\Old Firefox Data\q9wjg3hy.default\extensions\fftoolbar2014@etech.com\chrome\content\toolbar.js HKU\S-1-5-21-2694262190-2736747673-2123131371-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION AutoConfigURL: [S-1-5-21-2694262190-2736747673-2123131371-1002] => hxxp://127.0.0.1:895/proxy.js Emptytemp: ***************** C:\Users\Juliane8\Desktop\Old Firefox Data\q9wjg3hy.default\extensions\fftoolbar2014@etech.com\chrome\content\toolbar.js => Moved successfully. "HKU\S-1-5-21-2694262190-2736747673-2123131371-1002\SOFTWARE\Policies\Microsoft\Internet Explorer" => key Removed successfully HKU\S-1-5-21-2694262190-2736747673-2123131371-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL => value Removed successfully EmptyTemp: => Removed 690.1 MB temporary data. The system needed a reboot. ==== End of Fixlog 15:38:09 ==== Geändert von Juli9 (01.06.2015 um 15:40 Uhr) |
02.06.2015, 07:29 | #12 |
/// the machine /// TB-Ausbilder | Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Hotspotshield deinstallieren. Was passiert genau wenn Du das andere deinstallieren willst?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
02.06.2015, 09:30 | #13 |
| Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Wenn ich File Shredder entfernen will, erscheint ein Fenster mit rotem X: File"C:\Program Files\FileShredder\unins000.dat" does not exist. Cannot uninstall. |
03.06.2015, 06:05 | #14 |
/// the machine /// TB-Ausbilder | Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Mit Revo haben wir schon versucht?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
03.06.2015, 14:15 | #15 |
| Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam Nein, ich glaube noch nicht. Revo Uninstaller, stimmt's? Ich hab' grad probiert, im Revo Uninstaller wird File Shredder als Programm gar nicht angezeigt. |
Themen zu Hotspot Shield und File Shredder lassen sich nicht deinstallieren, kein WLAN mehr, PC langsam |
adobe, avg, computer, defender, desktop, explorer, fehlermeldung, google, hotspot, installation, kaputt, kaspersky, kis, langsam, launch, mozilla, proxy, realtek, registry, scan, security, software, svchost.exe, symantec, temp, windows, wlan |