Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   anti-malwarebytes findet pup.opencandy (https://www.trojaner-board.de/161277-anti-malwarebytes-findet-pup-opencandy.html)

chiva 28.11.2014 04:13
anti-malwarebytes findet pup.opencandy
 
Hallo!

Habe vor ein paar Tagen Probleme an meinem Laptop festgestellt. Diese äußerten sich darin, dass ich Kaspersky updaten wollte, der Fortschritt des Downloads bei 24% abbrach und die Datenbank ständig als aktuell angezeigt wurde. Dann bekam ich vom System die Aufforderung Windows zu aktivieren- dies gelang mir bis heute nicht. Dabei hatte ich vorher kein Problem damit. Ich lud mir also Malwarebytes- Anti Malware auf den Rechner und ließ es einen Scan machen. Hierbei wurde ein potenziell unerwünschtes Programm gemeldet, irgendetwas mit PUP.opencandy. Ich verschub es dann in Quarantäne.
Nachdem ich ich mich kurz über dieses Programm informiert habe, habe ich mit Hilfe Eurer Checkliste defogger, FRST und Gmer durchlaufen lassen. Gmer meldet mir allerdings: C:\windows\system32\config\system:
Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.
Das gleiche gilt für:
C:\users\Home-PC\ntuser.dat

Alle Programme, Virenscanner, Firewall und Internetverbindungen waren dabei ausgeschaltet.

Hoffe Ihr könnt mir helfen. Vielen Dank im Voraus!

Gruß chiva

schrauber 28.11.2014 06:53
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


chiva 28.11.2014 18:07
Hallo Schrauber!

Danke für Deine Antwort. Hier die Dateien.

Gruß chiva

schrauber 29.11.2014 18:23
Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

chiva 29.11.2014 20:18
Habe zuerst versucht die Dateien normal einzufügen, allerdings bekam ich die Meldung, dass diese zu groß seinen und ich sie in einem gepackten Archiv anhängen solle.

Gruß chiva

schrauber 30.11.2014 08:51
Ich zitiere mich mal selbst :)

Zitat:
Zur Not aufteilen und mehrere Posts nutzen.

chiva 06.12.2014 22:36
Okay, sorry!

Auf ein Neues:

Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-11-2014 01
Ran by Home-PC (administrator) on HOME on 28-11-2014 17:30:09
Running from C:\Users\Home-PC\Downloads
Loaded Profile: Home-PC (Available profiles: Home-PC)
Platform: Windows 8.1 Pro (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Atheros Commnucations) C:\Windows\System32\AdminService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13262480 2012-12-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1256080 2012-12-03] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-27] (Synaptics Incorporated)
HKLM\...\Run: [SynLenovoGestureMgr] => C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [665400 2012-08-27] (Synaptics)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31072 2008-10-25] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174296 2014-03-04] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [148016 2014-03-04] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-4026047864-735787024-2206378200-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKU\S-1-5-21-4026047864-735787024-2206378200-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2BA24A91BF24CF01
HKU\S-1-5-21-4026047864-735787024-2206378200-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Hosts: 127.0.0.1 activation.acronis.com
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Home-PC\AppData\Roaming\Mozilla\Firefox\Profiles\4uu3420l.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: 卡巴斯基網址顧問 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com [2014-02-06]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: 虛擬鍵盤 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-02-06]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: 惡意網站攔截器 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com [2014-02-06]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Chặn quảng cáo - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com [2014-02-06]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com [2014-02-06]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - https://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa []
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx [2013-10-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Windows\system32\AdminService.exe [208384 2012-08-29] (Atheros Commnucations) [File not signed]
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-17] (Kaspersky Lab ZAO)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-05-24] (Disc Soft Ltd)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2014-01-23] () [File not signed]
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2014-02-06] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29792 2014-02-06] (Kaspersky Lab)
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [115296 2014-05-24] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [625760 2014-05-24] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-10-17] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2014-05-24] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-10-17] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [65120 2014-05-24] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178272 2014-02-06] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-10-01] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
U3 pxldipow; \??\C:\Users\Home-PC\AppData\Local\Temp\pxldipow.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-28 17:21 - 2014-11-28 17:21 - 00163081 _____ () C:\Users\Home-PC\Desktop\FRST.txt
2014-11-28 03:50 - 2014-11-28 03:50 - 00001108 _____ () C:\Users\Home-PC\Desktop\FRST.txt - Verknüpfung.lnk
2014-11-28 03:50 - 2014-11-28 03:50 - 00000777 _____ () C:\Users\Home-PC\Desktop\defogger_disable.log - Verknüpfung.lnk
2014-11-28 03:49 - 2014-11-28 04:04 - 00071423 _____ () C:\Users\Home-PC\Desktop\gmer.logdatei.log
2014-11-28 03:33 - 2014-11-28 17:30 - 00014548 _____ () C:\Users\Home-PC\Downloads\FRST.txt
2014-11-28 03:33 - 2014-11-28 17:30 - 00000000 ____D () C:\FRST
2014-11-28 03:33 - 2014-11-28 03:34 - 00017827 _____ () C:\Users\Home-PC\Downloads\Addition.txt
2014-11-28 03:31 - 2014-11-28 03:31 - 00000546 _____ () C:\Users\Home-PC\Downloads\defogger_disable.log
2014-11-28 03:31 - 2014-11-28 03:31 - 00000168 _____ () C:\Users\Home-PC\defogger_reenable
2014-11-28 03:25 - 2014-11-28 03:25 - 02117632 _____ (Farbar) C:\Users\Home-PC\Downloads\FRST64.exe
2014-11-28 03:25 - 2014-11-28 03:25 - 00380416 _____ () C:\Users\Home-PC\Downloads\Gmer-19357.exe
2014-11-28 03:24 - 2014-11-28 03:24 - 00050477 _____ () C:\Users\Home-PC\Downloads\Defogger.exe
2014-11-27 17:27 - 2014-07-24 10:44 - 16874496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-11-27 17:27 - 2014-07-24 10:16 - 12730880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-11-27 17:26 - 2014-07-24 16:28 - 00419648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-11-27 17:26 - 2014-07-24 16:28 - 00412992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2014-11-27 17:26 - 2014-07-24 16:28 - 00280384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2014-11-27 17:26 - 2014-07-24 16:28 - 00143680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-11-27 17:26 - 2014-07-24 16:23 - 00125472 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2014-11-27 17:26 - 2014-07-24 16:20 - 00645592 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-11-27 17:26 - 2014-07-24 16:20 - 00263400 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2014-11-27 17:26 - 2014-07-24 16:16 - 02574208 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-11-27 17:26 - 2014-07-24 16:16 - 00211216 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2014-11-27 17:26 - 2014-07-24 16:07 - 02009920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-11-27 17:26 - 2014-07-24 16:05 - 01660048 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-11-27 17:26 - 2014-07-24 16:05 - 01519560 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-11-27 17:26 - 2014-07-24 16:05 - 01488008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-11-27 17:26 - 2014-07-24 16:05 - 01356840 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-11-27 17:26 - 2014-07-24 16:03 - 02141920 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2014-11-27 17:26 - 2014-07-24 16:03 - 00882136 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-11-27 17:26 - 2014-07-24 16:03 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-11-27 17:26 - 2014-07-24 16:03 - 00233888 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-11-27 17:26 - 2014-07-24 16:03 - 00205512 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2014-11-27 17:26 - 2014-07-24 14:50 - 00098048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2014-11-27 17:26 - 2014-07-24 14:48 - 02410976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-11-27 17:26 - 2014-07-24 14:48 - 00180208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVol.exe
2014-11-27 17:26 - 2014-07-24 14:46 - 00477200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-11-27 17:26 - 2014-07-24 14:36 - 02145472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2014-11-27 17:26 - 2014-07-24 14:36 - 00707536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-11-27 17:26 - 2014-07-24 14:36 - 00355800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2014-11-27 17:26 - 2014-07-24 14:36 - 00180720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2014-11-27 17:26 - 2014-07-24 12:51 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDRUM.DLL
2014-11-27 17:26 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-11-27 17:26 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-11-27 17:26 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-11-27 17:26 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-11-27 17:26 - 2014-07-24 12:51 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-11-27 17:26 - 2014-07-24 12:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-11-27 17:26 - 2014-07-24 12:45 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-11-27 17:26 - 2014-07-24 12:44 - 00674816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-11-27 17:26 - 2014-07-24 12:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-11-27 17:26 - 2014-07-24 12:42 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-11-27 17:26 - 2014-07-24 12:42 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NdisImPlatform.sys
2014-11-27 17:26 - 2014-07-24 12:41 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2014-11-27 17:26 - 2014-07-24 12:06 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2014-11-27 17:26 - 2014-07-24 12:05 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2014-11-27 17:26 - 2014-07-24 12:05 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-11-27 17:26 - 2014-07-24 11:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-11-27 17:26 - 2014-07-24 11:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-11-27 17:26 - 2014-07-24 11:51 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRUM.DLL
2014-11-27 17:26 - 2014-07-24 11:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-11-27 17:26 - 2014-07-24 11:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-11-27 17:26 - 2014-07-24 11:51 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-11-27 17:26 - 2014-07-24 11:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2014-11-27 17:26 - 2014-07-24 11:32 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2014-11-27 17:26 - 2014-07-24 11:20 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2014-11-27 17:26 - 2014-07-24 11:18 - 01089024 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-11-27 17:26 - 2014-07-24 11:12 - 00878592 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2014-11-27 17:26 - 2014-07-24 11:10 - 01844224 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2014-11-27 17:26 - 2014-07-24 11:10 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-11-27 17:26 - 2014-07-24 11:10 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-11-27 17:26 - 2014-07-24 11:10 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasnap.dll
Code:
87392 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2014-11-27 17:26 - 2014-07-24 10:52 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2014-11-27 17:26 - 2014-07-24 10:42 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2014-11-27 17:26 - 2014-07-24 10:40 - 00557056 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2014-11-27 17:26 - 2014-07-24 10:39 - 00770048 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2014-11-27 17:26 - 2014-07-24 10:33 - 01741824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2014-11-27 17:26 - 2014-07-24 10:32 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2014-11-27 17:26 - 2014-07-24 10:27 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-11-27 17:26 - 2014-07-24 10:25 - 00832512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll
2014-11-27 17:26 - 2014-07-24 10:24 - 01817088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2014-11-27 17:26 - 2014-07-24 10:21 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-11-27 17:26 - 2014-07-24 10:18 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll
2014-11-27 17:26 - 2014-07-24 10:14 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-11-27 17:26 - 2014-07-24 10:12 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2014-11-27 17:26 - 2014-07-24 10:11 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-11-27 17:26 - 2014-07-24 10:11 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2014-11-27 17:26 - 2014-07-24 10:10 - 00540672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2014-11-27 17:26 - 2014-07-24 10:04 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2014-11-27 17:26 - 2014-07-24 10:04 - 00183808 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2014-11-27 17:26 - 2014-07-24 10:03 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-11-27 17:26 - 2014-07-24 10:02 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-11-27 17:26 - 2014-07-24 09:58 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2014-11-27 17:26 - 2014-07-24 09:53 - 01261056 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2014-11-27 17:26 - 2014-07-24 09:53 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2014-11-27 17:26 - 2014-07-24 09:49 - 01287680 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2014-11-27 17:26 - 2014-07-24 09:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-11-27 17:26 - 2014-07-24 09:48 - 00659968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2014-11-27 17:26 - 2014-07-24 09:47 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2014-11-27 17:26 - 2014-07-24 09:43 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2014-11-27 17:26 - 2014-07-24 09:39 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2014-11-27 17:26 - 2014-07-24 09:38 - 00371200 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-11-27 17:26 - 2014-07-24 09:36 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2014-11-27 17:26 - 2014-07-24 09:32 - 01532416 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-11-27 17:26 - 2014-07-24 09:30 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2014-11-27 17:26 - 2014-07-24 09:29 - 00439296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2014-11-27 17:26 - 2014-07-24 09:28 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2014-11-27 17:26 - 2014-07-24 09:23 - 01404416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2014-11-27 17:26 - 2014-07-24 09:22 - 00487936 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-11-27 17:26 - 2014-07-24 09:21 - 01231872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-11-27 17:26 - 2014-07-24 09:21 - 00302080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-11-27 17:26 - 2014-07-24 09:18 - 01144320 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2014-11-27 17:26 - 2014-07-24 09:18 - 00795136 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-11-27 17:26 - 2014-07-24 09:16 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2014-11-27 17:26 - 2014-07-24 09:16 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2014-11-27 17:26 - 2014-07-24 09:15 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2014-11-27 17:26 - 2014-07-24 09:15 - 00432128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2014-11-27 17:26 - 2014-07-24 09:13 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2014-11-27 17:26 - 2014-07-24 09:10 - 00889344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-11-27 17:26 - 2014-07-24 09:10 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2014-11-27 17:26 - 2014-07-24 09:08 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-11-27 17:26 - 2014-07-24 09:05 - 00448000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2014-11-27 17:26 - 2014-07-24 09:01 - 01992192 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-11-27 17:26 - 2014-07-24 09:00 - 02100736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2014-11-27 17:26 - 2014-07-24 08:58 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2014-11-27 17:26 - 2014-07-24 08:58 - 00288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2014-11-27 17:26 - 2014-07-24 08:54 - 01290752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-11-27 17:26 - 2014-07-24 08:50 - 01182208 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2014-11-27 17:26 - 2014-07-24 08:47 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2014-11-27 17:26 - 2014-07-24 08:44 - 01057792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2014-11-27 17:26 - 2014-07-24 08:41 - 00459264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2014-11-27 17:26 - 2014-07-24 08:28 - 01600000 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2014-11-27 17:26 - 2014-07-24 05:11 - 00513544 _____ () C:\Windows\SysWOW64\locale.nls
2014-11-27 17:26 - 2014-07-24 05:11 - 00513544 _____ () C:\Windows\system32\locale.nls
2014-11-27 17:26 - 2014-07-12 06:55 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll
2014-11-27 17:26 - 2014-07-12 05:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wisp.dll
2014-11-27 17:26 - 2014-07-04 13:59 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-11-27 17:26 - 2014-07-04 11:29 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\AppxSip.dll
2014-11-27 17:26 - 2014-07-04 11:20 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-11-27 17:26 - 2014-07-04 11:06 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2014-11-27 17:26 - 2014-07-04 11:00 - 01351168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2014-11-27 17:26 - 2014-07-04 10:30 - 00544768 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2014-11-27 17:26 - 2014-07-04 10:27 - 00474112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2014-11-27 17:26 - 2014-06-27 07:22 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-11-27 17:26 - 2014-06-26 01:32 - 01029632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2014-11-27 17:26 - 2014-06-26 01:29 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2014-11-27 17:26 - 2014-06-20 00:37 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-11-27 17:26 - 2014-06-19 03:13 - 00310080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-11-27 17:26 - 2014-06-14 07:03 - 02389504 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-11-27 17:26 - 2014-06-14 06:46 - 02071552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-11-27 17:26 - 2014-06-07 13:46 - 00216368 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2014-11-27 17:26 - 2014-06-07 11:20 - 00189016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2014-11-27 17:26 - 2014-06-05 15:00 - 01118040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-11-27 17:26 - 2014-06-05 11:18 - 01018368 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2014-11-27 17:26 - 2014-06-05 10:42 - 00889856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2014-11-27 17:26 - 2014-05-31 06:00 - 01463808 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2014-11-27 17:26 - 2014-05-31 05:18 - 01319936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2014-11-27 17:26 - 2014-05-29 07:23 - 00427008 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-11-27 17:26 - 2014-05-29 06:25 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-11-27 17:26 - 2014-05-26 08:26 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2014-11-27 17:26 - 2014-05-10 11:12 - 00387896 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2014-11-27 17:26 - 2014-05-10 09:46 - 00335680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2014-11-27 17:26 - 2014-05-06 05:41 - 00486744 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-11-27 17:26 - 2014-05-06 01:55 - 00391000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2014-11-27 17:26 - 2014-03-25 03:27 - 00160600 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2014-11-27 17:26 - 2014-03-25 03:27 - 00123920 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-11-27 17:26 - 2014-03-25 02:20 - 00128568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2014-11-27 17:26 - 2014-03-25 02:20 - 00127544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2014-11-27 17:25 - 2014-11-27 17:25 - 00000000 ____D () C:\Users\Home-PC\Downloads\wpkey_v1.4.7d
2014-11-27 17:25 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTT102.DLL
2014-11-27 17:25 - 2014-07-24 11:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTT102.DLL
2014-11-27 17:24 - 2014-11-27 17:24 - 00005593 _____ () C:\Users\Home-PC\Downloads\wpkey_v1.4.7d.zip
2014-11-26 19:55 - 2014-11-26 19:55 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-26 19:38 - 2014-04-14 04:29 - 01018880 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-26 18:03 - 2014-11-26 18:03 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\0E4F7434.sys
2014-11-26 17:27 - 2014-11-26 17:28 - 00000000 ___HD () C:\$SysReset
2014-11-25 21:28 - 2014-08-15 01:36 - 00146752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2014-11-25 21:28 - 2014-07-30 02:56 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-11-25 21:28 - 2014-07-29 06:22 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2014-11-25 21:05 - 2014-09-22 05:38 - 01519488 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-11-25 21:05 - 2014-09-22 04:06 - 00258368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-11-25 21:05 - 2014-09-22 04:06 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2014-11-25 21:05 - 2014-09-22 03:49 - 00035320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-11-25 21:05 - 2014-09-19 01:16 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-11-25 21:05 - 2014-09-02 23:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2014-11-25 21:05 - 2014-09-02 23:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2014-11-25 20:55 - 2014-05-30 04:03 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-11-25 20:44 - 2014-10-13 03:33 - 00116032 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-11-25 20:44 - 2014-10-11 01:58 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-25 20:44 - 2014-10-11 01:53 - 03607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-25 20:44 - 2014-10-08 08:30 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-11-25 20:44 - 2014-10-08 08:09 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-11-25 20:44 - 2014-10-08 07:27 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-11-25 20:44 - 2014-10-08 06:32 - 02773504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-11-25 20:44 - 2014-10-08 06:19 - 02459136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-11-25 20:44 - 2014-09-27 08:13 - 00104336 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2014-11-25 20:44 - 2014-09-27 06:24 - 00088800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2014-11-25 20:44 - 2014-09-27 04:38 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-25 20:44 - 2014-09-27 04:30 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-11-25 20:44 - 2014-09-27 04:17 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-25 20:44 - 2014-03-13 08:42 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-11-25 20:44 - 2014-03-13 07:51 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-11-25 20:43 - 2014-10-10 02:58 - 00177472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-25 20:43 - 2014-10-10 02:58 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-11-25 20:43 - 2014-10-10 02:44 - 00563976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-11-25 20:43 - 2014-10-08 08:37 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-25 20:43 - 2014-10-08 08:37 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-25 20:43 - 2014-10-08 08:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-11-25 20:43 - 2014-10-08 08:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2014-11-25 20:43 - 2014-10-08 07:56 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-11-25 20:43 - 2014-10-08 07:51 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-25 20:43 - 2014-10-08 07:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-25 20:43 - 2014-10-08 07:18 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2014-11-25 20:43 - 2014-10-08 07:17 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-25 20:43 - 2014-10-08 06:23 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-11-25 20:43 - 2014-08-07 03:12 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-11-25 20:43 - 2014-08-02 04:56 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-11-25 20:43 - 2014-06-20 02:48 - 01273184 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-11-25 20:43 - 2014-06-20 00:52 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-11-25 20:43 - 2014-06-13 02:15 - 00517528 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-11-25 20:43 - 2014-06-13 02:14 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-11-25 20:43 - 2014-06-13 01:10 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-11-25 20:43 - 2014-06-06 12:34 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-11-25 20:43 - 2014-04-11 09:25 - 00419928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2014-11-25 20:43 - 2014-04-11 04:54 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2014-11-25 20:43 - 2014-04-11 03:57 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2014-11-25 20:42 - 2014-10-18 10:55 - 00055776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-11-25 20:42 - 2014-10-18 09:09 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-11-25 20:42 - 2014-10-18 09:09 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-11-25 20:42 - 2014-10-18 08:25 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-11-25 20:42 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2014-11-25 20:42 - 2014-10-18 07:38 - 03557376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-11-25 20:42 - 2014-10-18 07:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-11-25 20:42 - 2014-10-18 07:26 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-11-25 20:42 - 2014-10-18 07:23 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-11-25 20:42 - 2014-10-18 07:23 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-11-25 20:42 - 2014-10-18 07:21 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-11-25 20:42 - 2014-10-18 07:20 - 01714176 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-11-25 20:42 - 2014-10-18 07:14 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-11-25 20:42 - 2014-10-18 07:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-11-25 20:42 - 2014-10-18 07:12 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-11-25 20:42 - 2014-10-18 07:11 - 00723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-11-25 20:42 - 2014-10-17 08:01 - 00789184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-25 20:42 - 2014-10-17 07:58 - 00602768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-25 20:42 - 2014-09-04 01:12 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-11-25 20:42 - 2014-09-04 01:01 - 00514048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-11-25 20:42 - 2014-08-23 08:48 - 02374784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-11-25 20:42 - 2014-08-23 08:13 - 02084520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-11-25 20:42 - 2014-08-23 07:10 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-11-25 20:42 - 2014-08-23 06:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-11-25 20:42 - 2014-08-23 05:33 - 00796672 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2014-11-25 20:42 - 2014-08-16 05:08 - 01507648 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-11-25 20:42 - 2014-08-16 05:01 - 01710184 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-11-25 20:42 - 2014-08-16 04:58 - 01112512 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-11-25 20:42 - 2014-08-16 04:16 - 01205976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-11-25 20:42 - 2014-08-16 04:03 - 01467384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-11-25 20:42 - 2014-08-16 02:31 - 00838144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-11-25 20:42 - 2014-08-16 02:04 - 00359424 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2014-11-25 20:42 - 2014-08-16 01:58 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2014-11-25 20:42 - 2014-08-16 01:53 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2014-11-25 20:42 - 2014-08-16 01:46 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2014-11-25 20:42 - 2014-08-16 01:45 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2014-11-25 20:42 - 2014-08-16 01:43 - 00321024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2014-11-25 20:42 - 2014-08-16 01:43 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2014-11-25 20:42 - 2014-08-16 01:31 - 00914432 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-11-25 20:42 - 2014-08-16 01:31 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2014-11-25 20:42 - 2014-08-16 01:29 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-11-25 20:42 - 2014-08-16 01:23 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-11-25 20:42 - 2014-08-16 01:22 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-11-25 20:42 - 2014-08-16 01:22 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2014-11-25 20:42 - 2014-08-16 01:19 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-11-25 20:42 - 2014-08-16 01:18 - 04758528 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-11-25 20:42 - 2014-08-16 01:17 - 08757760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-11-25 20:42 - 2014-08-16 01:14 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2014-11-25 20:42 - 2014-08-16 01:13 - 06649344 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-11-25 20:42 - 2014-08-16 01:13 - 05902848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-11-25 20:42 - 2014-08-16 01:13 - 00840192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-11-25 20:42 - 2014-08-16 01:11 - 00920064 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-11-25 20:42 - 2014-08-16 01:10 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-11-25 20:42 - 2014-08-16 01:08 - 05777408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-11-25 20:42 - 2014-08-16 01:07 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-11-25 20:42 - 2014-08-02 01:18 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-11-25 20:42 - 2014-07-24 16:28 - 00468288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-11-25 20:42 - 2014-07-24 12:42 - 01200640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-11-25 20:42 - 2014-07-24 12:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2014-11-25 20:42 - 2014-07-24 11:09 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-11-25 20:42 - 2014-07-24 10:27 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-11-25 20:42 - 2014-07-15 19:16 - 03048880 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2014-11-25 20:42 - 2014-07-15 09:29 - 03118080 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-11-25 20:42 - 2014-07-15 09:22 - 02861056 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2014-11-25 20:42 - 2014-07-15 09:03 - 02344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-11-25 20:42 - 2014-04-11 06:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe
2014-11-25 20:41 - 2014-10-31 06:28 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-25 20:41 - 2014-10-31 06:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-11-25 20:41 - 2014-10-31 06:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-11-25 20:41 - 2014-10-31 06:10 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-11-25 20:41 - 2014-10-31 06:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-11-25 20:41 - 2014-10-31 06:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-11-25 20:41 - 2014-10-31 06:06 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-25 20:41 - 2014-10-31 06:06 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-11-25 20:41 - 2014-10-31 06:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-25 20:41 - 2014-10-31 06:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-25 20:41 - 2014-10-31 06:05 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-25 20:41 - 2014-10-31 06:05 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-11-25 20:41 - 2014-10-31 06:04 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-25 20:41 - 2014-10-31 05:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-25 20:41 - 2014-10-31 05:56 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-25 20:41 - 2014-10-31 05:54 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-11-25 20:41 - 2014-10-31 05:53 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-25 20:41 - 2014-10-31 05:52 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2014-11-25 20:41 - 2014-10-31 05:51 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-11-25 20:41 - 2014-10-31 05:51 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-25 20:41 - 2014-10-31 05:51 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-25 20:41 - 2014-10-31 05:50 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-25 20:41 - 2014-10-31 05:50 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-25 20:41 - 2014-10-31 05:40 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-11-25 20:41 - 2014-10-31 05:38 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-25 20:41 - 2014-10-31 05:30 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-25 20:41 - 2014-10-31 05:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-11-25 20:41 - 2014-10-31 05:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-11-25 20:41 - 2014-10-31 05:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-11-25 20:41 - 2014-10-31 05:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-25 20:41 - 2014-10-31 05:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-25 20:41 - 2014-10-31 05:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-11-25 20:41 - 2014-10-31 05:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-11-25 20:41 - 2014-10-31 05:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-25 20:41 - 2014-10-31 05:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-11-25 20:41 - 2014-10-31 05:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-11-25 20:41 - 2014-10-31 05:08 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-11-25 20:41 - 2014-10-31 05:06 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-25 20:41 - 2014-10-31 05:05 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-25 20:41 - 2014-10-31 05:05 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-25 20:41 - 2014-10-31 05:03 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-25 20:41 - 2014-10-31 04:59 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-25 20:41 - 2014-10-31 04:45 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-25 20:41 - 2014-10-31 04:44 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-11-25 20:41 - 2014-10-31 04:42 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-25 20:41 - 2014-10-31 04:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-11-25 20:41 - 2014-10-31 04:32 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-25 20:41 - 2014-10-31 04:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-11-25 20:41 - 2014-10-31 04:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-11-25 20:41 - 2014-10-31 04:27 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-11-25 20:41 - 2014-10-31 04:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-11-25 20:41 - 2014-10-31 04:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-11-25 20:41 - 2014-10-31 04:24 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-25 20:41 - 2014-10-31 04:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-11-25 20:41 - 2014-10-31 04:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-25 20:41 - 2014-10-31 04:23 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-11-25 20:41 - 2014-10-31 04:23 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-25 20:41 - 2014-10-31 04:22 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-25 20:41 - 2014-10-31 04:20 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-25 20:41 - 2014-10-31 04:18 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-25 20:41 - 2014-10-31 04:16 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-25 20:41 - 2014-10-31 04:15 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-25 20:41 - 2014-10-31 04:14 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-11-25 20:41 - 2014-10-31 04:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-25 20:41 - 2014-10-31 04:13 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2014-11-25 20:41 - 2014-10-31 04:12 - 00661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-11-25 20:41 - 2014-10-31 04:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-25 20:41 - 2014-10-31 04:11 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-25 20:41 - 2014-10-31 04:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-11-25 20:41 - 2014-10-31 04:02 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-25 20:41 - 2014-10-31 03:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-25 20:41 - 2014-10-31 03:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-11-25 20:41 - 2014-10-31 03:56 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-11-25 20:41 - 2014-10-31 03:56 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-11-25 20:41 - 2014-10-31 03:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-25 20:41 - 2014-10-31 03:53 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-11-25 20:41 - 2014-10-31 03:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-25 20:41 - 2014-10-31 03:51 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-11-25 20:41 - 2014-10-31 03:50 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-25 20:41 - 2014-10-31 03:48 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-11-25 20:41 - 2014-10-31 03:46 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-25 20:41 - 2014-10-31 03:46 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-11-25 20:41 - 2014-10-31 03:42 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-11-25 20:41 - 2014-10-31 03:40 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-25 20:41 - 2014-10-31 03:40 - 00325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-25 20:41 - 2014-10-31 03:39 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-25 20:41 - 2014-10-31 03:30 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-25 20:41 - 2014-10-31 03:26 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-11-25 20:41 - 2014-10-31 03:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-11-25 20:41 - 2014-10-31 03:17 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-25 20:41 - 2014-10-31 03:13 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-25 20:41 - 2014-10-31 03:11 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-25 20:39 - 2014-11-05 00:38 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-25 20:39 - 2014-11-04 01:10 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-25 20:39 - 2014-10-31 05:53 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-11-25 20:39 - 2014-10-31 05:49 - 00537088 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-25 20:39 - 2014-10-31 05:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-11-25 20:39 - 2014-05-13 08:01 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2014-11-25 20:39 - 2014-05-03 06:36 - 00997888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2014-11-25 20:39 - 2014-05-03 06:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2014-11-25 20:39 - 2014-05-03 06:08 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2014-11-25 20:39 - 2014-05-03 06:07 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2014-11-25 20:39 - 2014-05-03 05:46 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2014-11-25 20:39 - 2014-05-03 05:37 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2014-11-25 20:39 - 2014-05-03 05:37 - 00207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2014-11-25 20:39 - 2014-05-03 00:26 - 00050745 _____ () C:\Windows\system32\srms.dat
2014-11-25 20:39 - 2014-04-30 07:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys
2014-11-25 20:39 - 2014-04-30 07:41 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-11-25 20:39 - 2014-04-30 07:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2014-11-25 20:39 - 2014-04-30 07:41 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2014-11-25 20:39 - 2014-04-30 06:45 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-11-25 20:39 - 2014-04-30 05:48 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-11-25 20:39 - 2014-04-30 05:24 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-11-25 20:39 - 2014-04-30 05:23 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2014-11-25 20:39 - 2014-04-30 05:23 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-11-25 20:39 - 2014-04-30 05:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2014-11-25 20:39 - 2014-04-30 05:14 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-11-25 20:39 - 2014-04-30 04:59 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-11-25 20:39 - 2014-04-30 04:46 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2014-11-25 20:39 - 2014-04-30 04:46 - 00229888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-11-25 20:39 - 2014-04-30 04:46 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-11-25 20:39 - 2014-04-30 04:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2014-11-25 20:39 - 2014-04-30 04:42 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2014-11-25 20:39 - 2014-04-28 23:40 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2014-11-25 20:39 - 2014-04-26 19:41 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe
2014-11-25 20:39 - 2014-04-26 19:22 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll
2014-11-25 20:39 - 2014-04-26 19:04 - 00311296 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2014-11-25 20:39 - 2014-04-26 18:36 - 00794112 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2014-11-25 20:39 - 2014-04-26 17:39 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2014-11-25 20:39 - 2014-04-14 10:37 - 02125344 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2014-11-25 20:39 - 2014-04-14 09:08 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2014-11-25 20:39 - 2014-04-14 06:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll
2014-11-25 20:38 - 2014-10-23 06:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-25 20:38 - 2014-10-23 06:05 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-25 20:38 - 2014-08-23 06:18 - 02149376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-25 20:38 - 2014-08-23 06:03 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-25 20:38 - 2014-04-18 15:57 - 00032600 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll
2014-11-25 20:38 - 2014-04-18 10:44 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll
2014-11-25 20:38 - 2014-04-14 10:20 - 00324888 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2014-11-25 20:38 - 2014-04-14 09:01 - 00285144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2014-11-25 20:38 - 2014-04-11 05:51 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-11-25 20:38 - 2014-04-11 05:23 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2014-11-25 20:38 - 2014-04-09 12:53 - 00337240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-11-25 20:38 - 2014-04-09 07:39 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-11-25 20:38 - 2014-04-09 06:44 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2014-11-25 20:38 - 2014-04-09 04:33 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2014-11-25 20:38 - 2014-04-08 23:46 - 00086688 _____ (Microsoft Corporation) C:\Windows\system32\mrt_map.dll
2014-11-25 20:38 - 2014-04-08 23:46 - 00028320 _____ (Microsoft Corporation) C:\Windows\system32\mrt100.dll
2014-11-25 20:38 - 2014-04-08 19:54 - 00080032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt_map.dll
2014-11-25 20:38 - 2014-04-08 19:54 - 00026784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt100.dll
2014-11-25 20:38 - 2014-04-08 03:01 - 00589656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-11-25 20:38 - 2014-04-06 17:34 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-11-25 20:38 - 2014-04-06 17:34 - 00275800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-11-25 20:38 - 2014-04-06 17:30 - 00201920 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2014-11-25 20:38 - 2014-04-06 17:24 - 00360792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2014-11-25 20:38 - 2014-04-06 17:20 - 01403856 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2014-11-25 20:38 - 2014-04-06 17:20 - 01379064 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-11-25 20:38 - 2014-04-06 17:20 - 00765408 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2014-11-25 20:38 - 2014-04-06 17:20 - 00609448 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-11-25 20:38 - 2014-04-06 17:20 - 00491744 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-11-25 20:38 - 2014-04-06 17:20 - 00028408 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-11-25 20:38 - 2014-04-06 16:22 - 00178184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2014-11-25 20:38 - 2014-04-06 16:16 - 01209616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2014-11-25 20:38 - 2014-04-06 16:16 - 00669856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2014-11-25 20:38 - 2014-04-06 16:16 - 00518544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-11-25 20:38 - 2014-04-06 16:16 - 00387896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2014-11-25 20:38 - 2014-04-06 13:58 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2014-11-25 20:38 - 2014-04-06 13:51 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-11-25 20:38 - 2014-04-06 13:33 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2014-11-25 20:38 - 2014-04-06 13:24 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-11-25 20:38 - 2014-04-06 13:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-11-25 20:38 - 2014-04-06 12:26 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2014-11-25 20:38 - 2014-04-06 11:05 - 01222656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2014-11-25 20:38 - 2014-04-06 10:59 - 00982016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2014-11-25 20:38 - 2014-04-03 09:12 - 00307304 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-11-25 20:38 - 2014-04-03 09:12 - 00130144 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2014-11-25 20:38 - 2014-04-03 05:03 - 00230808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-11-25 20:38 - 2014-04-03 05:03 - 00111528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2014-11-25 20:38 - 2014-04-03 03:23 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll
2014-11-25 20:38 - 2014-04-03 03:22 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2014-11-25 20:38 - 2014-03-28 16:58 - 00407016 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2014-11-25 20:38 - 2014-03-27 06:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2014-11-25 20:38 - 2014-03-27 05:48 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2014-11-25 20:38 - 2014-03-27 04:15 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2014-11-25 20:38 - 2014-03-27 04:10 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-11-25 20:38 - 2014-03-21 05:14 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll
2014-11-25 20:38 - 2014-03-19 09:15 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-11-25 20:38 - 2014-03-19 08:24 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-11-25 20:38 - 2014-03-19 08:17 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2014-11-25 20:38 - 2014-03-18 06:00 - 07173120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2014-11-25 20:38 - 2014-03-18 05:52 - 05104640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2014-11-25 20:38 - 2014-03-17 06:09 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-11-25 20:38 - 2014-03-17 05:11 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-11-25 20:38 - 2014-03-14 07:26 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2014-11-25 20:38 - 2014-03-14 07:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2014-11-25 20:37 - 2014-10-07 07:28 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-25 20:37 - 2014-10-07 07:27 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-25 20:37 - 2014-10-07 07:27 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-25 20:37 - 2014-10-07 07:27 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-11-25 20:37 - 2014-10-07 07:27 - 00108432 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-25 20:37 - 2014-10-07 04:34 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-25 20:37 - 2014-10-07 04:34 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-25 20:37 - 2014-10-07 04:33 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-25 20:37 - 2014-10-07 04:30 - 04182016 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-25 20:37 - 2014-10-07 02:54 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-25 20:37 - 2014-10-07 02:46 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-25 20:37 - 2014-07-12 05:17 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2014-11-25 20:37 - 2014-06-06 14:04 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-11-25 20:37 - 2014-06-06 13:18 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-11-25 20:37 - 2014-06-02 03:10 - 00423768 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll

chiva 06.12.2014 22:38
Code:
40664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-11-25 20:37 - 2014-05-31 11:07 - 00089944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-11-25 20:37 - 2014-05-31 11:07 - 00027480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-11-25 20:37 - 2014-05-31 07:30 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-11-25 20:37 - 2014-05-31 07:27 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-11-25 20:37 - 2014-05-31 07:26 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-11-25 20:37 - 2014-05-31 05:01 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-11-25 20:37 - 2014-05-31 05:01 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-11-25 20:37 - 2014-05-31 05:01 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-11-25 20:37 - 2014-05-29 07:21 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2014-11-25 20:37 - 2014-05-27 10:56 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll
2014-11-25 20:37 - 2014-05-27 10:53 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll
2014-11-25 20:37 - 2014-05-19 07:31 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2014-11-25 20:37 - 2014-05-19 07:21 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-11-25 20:37 - 2014-05-19 06:23 - 00098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-11-25 20:37 - 2014-05-01 14:31 - 00055328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2014-11-25 20:37 - 2014-05-01 06:24 - 02834944 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2014-11-25 20:37 - 2014-04-30 05:43 - 01975296 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-11-25 20:37 - 2014-04-30 05:30 - 00668160 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2014-11-25 20:37 - 2014-04-30 05:26 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-11-25 20:37 - 2014-04-30 04:52 - 00590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2014-11-25 20:37 - 2014-04-30 04:47 - 01509888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-11-25 20:36 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-25 20:36 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-25 20:36 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-25 20:36 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-25 20:36 - 2014-09-10 07:25 - 00474432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-11-25 20:36 - 2014-09-08 04:07 - 02497344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-11-25 20:36 - 2014-09-08 04:07 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-11-25 20:36 - 2014-09-07 23:08 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml
2014-11-25 20:36 - 2014-09-04 23:30 - 00822272 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-11-25 20:36 - 2014-09-04 23:21 - 01053184 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-11-25 20:36 - 2014-09-04 04:05 - 00836176 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2014-11-25 20:36 - 2014-09-04 03:22 - 00670384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-11-25 20:36 - 2014-09-04 02:01 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2014-11-25 20:36 - 2014-09-04 01:32 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2014-11-25 20:36 - 2014-09-04 01:10 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2014-11-25 20:36 - 2014-09-04 00:57 - 00921600 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-11-25 20:36 - 2014-09-04 00:49 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-11-25 20:36 - 2014-08-31 01:17 - 00148800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-11-25 20:36 - 2014-08-31 01:15 - 21197152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-11-25 20:36 - 2014-08-30 23:59 - 18723112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-11-25 20:36 - 2014-08-30 23:05 - 00615424 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2014-11-25 20:36 - 2014-08-30 22:58 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2014-11-25 20:36 - 2014-08-30 22:04 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-11-25 20:36 - 2014-08-30 21:53 - 00239104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2014-11-25 20:36 - 2014-08-30 21:17 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-11-25 20:36 - 2014-08-28 03:55 - 07484224 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-11-25 20:36 - 2014-08-28 01:21 - 02480128 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-11-25 20:36 - 2014-08-28 01:06 - 02030592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-11-25 20:36 - 2014-08-23 06:14 - 13424128 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-11-25 20:36 - 2014-08-23 06:04 - 11820544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-11-25 20:36 - 2014-08-23 05:50 - 02714112 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2014-11-25 20:36 - 2014-08-02 01:51 - 00545792 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-11-25 20:36 - 2014-08-02 01:35 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2014-11-25 20:36 - 2014-07-24 12:22 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2014-11-25 20:36 - 2014-07-24 10:58 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2014-11-25 20:36 - 2014-07-24 10:54 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll
2014-11-25 20:36 - 2014-07-24 10:53 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2014-11-25 20:36 - 2014-07-24 10:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2014-11-25 20:36 - 2014-07-24 09:20 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2014-11-25 20:36 - 2014-07-24 09:08 - 00162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2014-11-25 20:36 - 2014-07-24 08:49 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2014-11-25 20:36 - 2014-07-24 08:43 - 00200192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2014-11-25 20:35 - 2014-07-24 04:20 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2014-11-25 20:35 - 2014-07-24 04:20 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2014-11-25 20:35 - 2014-05-31 11:06 - 00555736 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2014-11-25 20:35 - 2014-05-31 03:37 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2014-11-25 20:35 - 2014-05-31 03:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2014-11-25 00:28 - 2014-03-06 10:19 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2014-11-25 00:28 - 2014-03-06 09:20 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2014-11-25 00:27 - 2014-03-20 05:19 - 01291200 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-11-25 00:27 - 2014-03-20 04:41 - 00376152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2014-11-25 00:27 - 2014-03-20 01:53 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-11-25 00:27 - 2014-03-20 01:48 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2014-11-25 00:27 - 2014-03-20 00:55 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-11-25 00:27 - 2014-03-20 00:39 - 00800256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2014-11-25 00:27 - 2014-03-20 00:36 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2014-11-25 00:27 - 2014-03-19 06:50 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2014-11-25 00:27 - 2014-03-19 06:20 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2014-11-25 00:27 - 2014-03-13 13:35 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2014-11-25 00:27 - 2014-03-11 15:25 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerDeviceEncryption.exe
2014-11-25 00:27 - 2014-03-11 15:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2014-11-25 00:27 - 2014-03-08 21:40 - 00136024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-11-25 00:27 - 2014-03-08 21:38 - 01542768 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-11-25 00:27 - 2014-03-08 16:29 - 00356848 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2014-11-25 00:27 - 2014-03-08 12:34 - 01095488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2014-11-25 00:27 - 2014-03-08 10:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\sxproxy.dll
2014-11-25 00:27 - 2014-03-08 09:33 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-11-25 00:27 - 2014-03-08 09:25 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\SetNetworkLocation.dll
2014-11-25 00:27 - 2014-03-08 09:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxproxy.dll
2014-11-25 00:27 - 2014-03-08 08:47 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2014-11-25 00:27 - 2014-03-08 08:04 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2014-11-25 00:27 - 2014-03-08 07:48 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2014-11-25 00:27 - 2014-03-08 07:41 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-11-25 00:27 - 2014-03-08 07:40 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2014-11-25 00:27 - 2014-03-08 07:31 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2014-11-25 00:27 - 2014-03-08 07:30 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2014-11-25 00:27 - 2014-03-08 07:25 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-11-25 00:27 - 2014-03-08 07:04 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-11-25 00:27 - 2014-03-08 06:58 - 00567296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-11-25 00:27 - 2014-03-08 06:41 - 01306624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2014-11-25 00:27 - 2014-03-08 06:11 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2014-11-25 00:27 - 2014-03-06 15:34 - 02331000 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-11-25 00:27 - 2014-03-06 15:34 - 00113648 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-11-25 00:27 - 2014-03-06 13:53 - 02141912 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-11-25 00:27 - 2014-03-06 13:51 - 00379224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-11-25 00:27 - 2014-03-06 13:39 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-11-25 00:27 - 2014-03-06 12:19 - 00094016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2014-11-25 00:27 - 2014-03-06 12:13 - 01779800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-11-25 00:27 - 2014-03-06 11:46 - 01679128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-11-25 00:27 - 2014-03-06 10:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-11-25 00:27 - 2014-03-06 10:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-11-25 00:27 - 2014-03-06 10:22 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-11-25 00:27 - 2014-03-06 10:22 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-11-25 00:27 - 2014-03-06 10:19 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-11-25 00:27 - 2014-03-06 10:19 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-11-25 00:27 - 2014-03-06 10:19 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-11-25 00:27 - 2014-03-06 10:08 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2014-11-25 00:27 - 2014-03-06 09:41 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2014-11-25 00:27 - 2014-03-06 09:38 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-11-25 00:27 - 2014-03-06 09:10 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll
2014-11-25 00:27 - 2014-03-06 09:00 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2014-11-25 00:27 - 2014-03-06 08:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-11-25 00:27 - 2014-03-06 08:16 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2014-11-25 00:27 - 2014-03-06 08:02 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-11-25 00:27 - 2014-03-06 07:51 - 02900992 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-11-25 00:27 - 2014-03-06 07:29 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2014-11-25 00:27 - 2014-03-06 07:27 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-11-25 00:27 - 2014-03-06 07:24 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-11-25 00:27 - 2014-03-06 07:23 - 02270208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2014-11-25 00:27 - 2014-03-06 07:23 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2014-11-25 00:27 - 2014-03-06 07:21 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2014-11-25 00:27 - 2014-03-06 07:09 - 01764864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2014-11-25 00:27 - 2014-03-06 07:06 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2014-11-25 00:27 - 2014-03-06 07:04 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2014-11-25 00:27 - 2014-03-06 07:01 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2014-11-25 00:27 - 2014-03-06 06:51 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2014-11-25 00:27 - 2014-03-06 06:47 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2014-11-25 00:27 - 2014-03-06 06:42 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2014-11-25 00:27 - 2014-03-04 09:11 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2014-11-25 00:27 - 2014-03-04 08:26 - 00444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AdmTmpl.dll
2014-11-25 00:27 - 2014-03-04 08:16 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-11-25 00:27 - 2014-03-04 08:13 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-11-25 00:27 - 2014-03-04 08:08 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2014-11-25 00:27 - 2014-03-04 08:00 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2014-11-25 00:27 - 2014-03-04 07:56 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2014-11-25 00:27 - 2014-03-04 07:42 - 00494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-11-25 00:27 - 2014-03-04 07:39 - 00254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2014-11-25 00:27 - 2014-03-04 07:32 - 00356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2014-11-25 00:27 - 2014-03-04 07:15 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2014-11-25 00:27 - 2014-03-04 07:05 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2014-11-25 00:27 - 2014-03-04 07:03 - 00669696 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2014-11-25 00:27 - 2014-03-04 07:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2014-11-25 00:27 - 2014-03-04 06:54 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2014-11-25 00:27 - 2014-03-04 06:52 - 00605184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2014-11-25 00:27 - 2013-12-24 00:28 - 00262656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2014-11-25 00:27 - 2013-12-24 00:26 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2014-11-25 00:26 - 2014-02-22 16:53 - 03394384 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2014-11-25 00:26 - 2014-02-22 13:08 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
2014-11-25 00:26 - 2014-02-22 12:17 - 00630272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OobeFldr.dll
2014-11-25 00:26 - 2014-02-22 11:34 - 11742720 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2014-11-25 00:26 - 2014-02-08 02:08 - 00139600 _____ () C:\Windows\system32\systemsf.ebd
2014-11-25 00:25 - 2014-02-22 17:59 - 01290688 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2014-11-25 00:25 - 2014-02-22 17:59 - 00526304 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-11-25 00:25 - 2014-02-22 17:59 - 00461176 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2014-11-25 00:25 - 2014-02-22 17:59 - 00407536 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2014-11-25 00:25 - 2014-02-22 17:59 - 00289752 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2014-11-25 00:25 - 2014-02-22 17:59 - 00209160 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2014-11-25 00:25 - 2014-02-22 17:59 - 00139464 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2014-11-25 00:25 - 2014-02-22 17:58 - 00036200 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2014-11-25 00:25 - 2014-02-22 17:15 - 01929608 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2014-11-25 00:25 - 2014-02-22 17:15 - 01206000 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2014-11-25 00:25 - 2014-02-22 17:15 - 00531128 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-11-25 00:25 - 2014-02-22 17:15 - 00275312 _____ (Microsoft Corporation) C:\Windows\system32\powrprof.dll
2014-11-25 00:25 - 2014-02-22 17:15 - 00188464 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2014-11-25 00:25 - 2014-02-22 17:15 - 00071888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys
2014-11-25 00:25 - 2014-02-22 17:02 - 00170952 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2014-11-25 00:25 - 2014-02-22 17:02 - 00083120 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-11-25 00:25 - 2014-02-22 17:02 - 00080048 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2014-11-25 00:25 - 2014-02-22 17:00 - 00249688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2014-11-25 00:25 - 2014-02-22 17:00 - 00236888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2014-11-25 00:25 - 2014-02-22 17:00 - 00151384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2014-11-25 00:25 - 2014-02-22 17:00 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys
2014-11-25 00:25 - 2014-02-22 16:59 - 00027480 _____ (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
2014-11-25 00:25 - 2014-02-22 16:55 - 01435304 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2014-11-25 00:25 - 2014-02-22 16:55 - 00244848 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2014-11-25 00:25 - 2014-02-22 16:55 - 00162176 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2014-11-25 00:25 - 2014-02-22 16:55 - 00152848 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2014-11-25 00:25 - 2014-02-22 16:55 - 00131168 _____ (Microsoft Corporation) C:\Windows\system32\easinvoker.exe
2014-11-25 00:25 - 2014-02-22 16:50 - 00761792 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2014-11-25 00:25 - 2014-02-22 16:50 - 00101216 _____ (Microsoft Corporation) C:\Windows\system32\RestoreOptIn.exe
2014-11-25 00:25 - 2014-02-22 16:50 - 00043408 _____ (Microsoft Corporation) C:\Windows\system32\CloudNotifications.exe
2014-11-25 00:25 - 2014-02-22 16:50 - 00032544 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountBroker.exe
2014-11-25 00:25 - 2014-02-22 16:49 - 00325464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2014-11-25 00:25 - 2014-02-22 16:49 - 00189784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2014-11-25 00:25 - 2014-02-22 16:49 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdstor.sys
2014-11-25 00:25 - 2014-02-22 16:48 - 01791752 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2014-11-25 00:25 - 2014-02-22 16:46 - 01927600 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2014-11-25 00:25 - 2014-02-22 16:46 - 01445616 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2014-11-25 00:25 - 2014-02-22 16:46 - 01000424 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2014-11-25 00:25 - 2014-02-22 16:46 - 00669896 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-11-25 00:25 - 2014-02-22 16:44 - 00924504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2014-11-25 00:25 - 2014-02-22 16:44 - 00539992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2014-11-25 00:25 - 2014-02-22 16:43 - 00142576 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-11-25 00:25 - 2014-02-22 16:43 - 00094560 _____ (Microsoft Corporation) C:\Windows\system32\bcd.dll
2014-11-25 00:25 - 2014-02-22 16:41 - 01215832 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2014-11-25 00:25 - 2014-02-22 16:41 - 00800552 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2014-11-25 00:25 - 2014-02-22 16:41 - 00391008 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2014-11-25 00:25 - 2014-02-22 16:41 - 00372360 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2014-11-25 00:25 - 2014-02-22 15:52 - 01767440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2014-11-25 00:25 - 2014-02-22 15:52 - 00251504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powrprof.dll
2014-11-25 00:25 - 2014-02-22 15:51 - 01063976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2014-11-25 00:25 - 2014-02-22 15:51 - 00140456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2014-11-25 00:25 - 2014-02-22 15:42 - 01017936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2014-11-25 00:25 - 2014-02-22 15:42 - 00422968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-11-25 00:25 - 2014-02-22 15:42 - 00410568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2014-11-25 00:25 - 2014-02-22 15:42 - 00369288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2014-11-25 00:25 - 2014-02-22 15:42 - 00232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqmapi.dll
2014-11-25 00:25 - 2014-02-22 15:42 - 00137344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2014-11-25 00:25 - 2014-02-22 15:41 - 00033056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2014-11-25 00:25 - 2014-02-22 15:38 - 01374384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2014-11-25 00:25 - 2014-02-22 15:38 - 01077944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2014-11-25 00:25 - 2014-02-22 15:38 - 00506120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2014-11-25 00:25 - 2014-02-22 15:18 - 00089848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RestoreOptIn.exe
2014-11-25 00:25 - 2014-02-22 15:18 - 00041320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudNotifications.exe
2014-11-25 00:25 - 2014-02-22 15:18 - 00029912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountBroker.exe
2014-11-25 00:25 - 2014-02-22 15:11 - 00490136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-11-25 00:25 - 2014-02-22 15:08 - 00079496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcd.dll
2014-11-25 00:25 - 2014-02-22 15:04 - 01011280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2014-11-25 00:25 - 2014-02-22 15:04 - 00650736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2014-11-25 00:25 - 2014-02-22 15:04 - 00317584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2014-11-25 00:25 - 2014-02-22 15:04 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2014-11-25 00:25 - 2014-02-22 13:24 - 02825216 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2014-11-25 00:25 - 2014-02-22 13:22 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-11-25 00:25 - 2014-02-22 13:20 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2014-11-25 00:25 - 2014-02-22 13:20 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2014-11-25 00:25 - 2014-02-22 13:17 - 00902144 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2014-11-25 00:25 - 2014-02-22 13:17 - 00890880 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2014-11-25 00:25 - 2014-02-22 13:17 - 00874496 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2014-11-25 00:25 - 2014-02-22 13:17 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\f3ahvoas.dll
2014-11-25 00:25 - 2014-02-22 13:17 - 00008192 ____H (Microsoft Corporation) C:\Windows\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-11-25 00:25 - 2014-02-22 13:17 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-11-25 00:25 - 2014-02-22 13:17 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-11-25 00:25 - 2014-02-22 13:17 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-11-25 00:25 - 2014-02-22 13:14 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2014-11-25 00:25 - 2014-02-22 13:14 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys
2014-11-25 00:25 - 2014-02-22 13:14 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2014-11-25 00:25 - 2014-02-22 13:11 - 00272896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-11-25 00:25 - 2014-02-22 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2014-11-25 00:25 - 2014-02-22 13:08 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll
2014-11-25 00:25 - 2014-02-22 13:08 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2014-11-25 00:25 - 2014-02-22 13:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2014-11-25 00:25 - 2014-02-22 13:08 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-11-25 00:25 - 2014-02-22 13:08 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-11-25 00:25 - 2014-02-22 13:07 - 00545792 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2014-11-25 00:25 - 2014-02-22 13:07 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-11-25 00:25 - 2014-02-22 13:07 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\WofUtil.dll
2014-11-25 00:25 - 2014-02-22 13:07 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\clrhost.dll
2014-11-25 00:25 - 2014-02-22 13:04 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2014-11-25 00:25 - 2014-02-22 13:03 - 00349696 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2014-11-25 00:25 - 2014-02-22 13:03 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2014-11-25 00:25 - 2014-02-22 13:02 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2014-11-25 00:25 - 2014-02-22 13:01 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\spcompat.dll
2014-11-25 00:25 - 2014-02-22 13:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2014-11-25 00:25 - 2014-02-22 13:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
2014-11-25 00:25 - 2014-02-22 12:59 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgrade.exe
2014-11-25 00:25 - 2014-02-22 12:57 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\slc.dll
2014-11-25 00:25 - 2014-02-22 12:54 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2014-11-25 00:25 - 2014-02-22 12:50 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
2014-11-25 00:25 - 2014-02-22 12:50 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-11-25 00:25 - 2014-02-22 12:48 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll
2014-11-25 00:25 - 2014-02-22 12:47 - 00589312 _____ (Microsoft Corporation) C:\Windows\system32\vdsdyn.dll
2014-11-25 00:25 - 2014-02-22 12:47 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2014-11-25 00:25 - 2014-02-22 12:47 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2014-11-25 00:25 - 2014-02-22 12:46 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-11-25 00:25 - 2014-02-22 12:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2014-11-25 00:25 - 2014-02-22 12:45 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\fhevents.dll
2014-11-25 00:25 - 2014-02-22 12:42 - 00038680 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentServer.exe
2014-11-25 00:25 - 2014-02-22 12:41 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2014-11-25 00:25 - 2014-02-22 12:39 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2014-11-25 00:25 - 2014-02-22 12:37 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2014-11-25 00:25 - 2014-02-22 12:34 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\dmdskmgr.dll
2014-11-25 00:25 - 2014-02-22 12:32 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2014-11-25 00:25 - 2014-02-22 12:29 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2014-11-25 00:25 - 2014-02-22 12:28 - 02428928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2014-11-25 00:25 - 2014-02-22 12:27 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2014-11-25 00:25 - 2014-02-22 12:25 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\recimg.exe
2014-11-25 00:25 - 2014-02-22 12:25 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2014-11-25 00:25 - 2014-02-22 12:25 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2014-11-25 00:25 - 2014-02-22 12:25 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\f3ahvoas.dll
2014-11-25 00:25 - 2014-02-22 12:25 - 00008192 ____H (Microsoft Corporation) C:\Windows\SysWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-11-25 00:25 - 2014-02-22 12:25 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-11-25 00:25 - 2014-02-22 12:24 - 00800256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2014-11-25 00:25 - 2014-02-22 12:24 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2014-11-25 00:25 - 2014-02-22 12:24 - 00780288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autofmt.exe
2014-11-25 00:25 - 2014-02-22 12:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SSShim.dll
2014-11-25 00:25 - 2014-02-22 12:24 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-11-25 00:25 - 2014-02-22 12:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-11-25 00:25 - 2014-02-22 12:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-11-25 00:25 - 2014-02-22 12:22 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2014-11-25 00:25 - 2014-02-22 12:17 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2014-11-25 00:25 - 2014-02-22 12:16 - 00617472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2014-11-25 00:25 - 2014-02-22 12:16 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2014-11-25 00:25 - 2014-02-22 12:16 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-11-25 00:25 - 2014-02-22 12:16 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-11-25 00:25 - 2014-02-22 12:16 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clrhost.dll
2014-11-25 00:25 - 2014-02-22 12:15 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imm32.dll
2014-11-25 00:25 - 2014-02-22 12:14 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\cleanmgr.exe
2014-11-25 00:25 - 2014-02-22 12:13 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2014-11-25 00:25 - 2014-02-22 12:11 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spbcd.dll
2014-11-25 00:25 - 2014-02-22 12:09 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2014-11-25 00:25 - 2014-02-22 12:08 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2014-11-25 00:25 - 2014-02-22 12:08 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2014-11-25 00:25 - 2014-02-22 12:07 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-11-25 00:25 - 2014-02-22 12:07 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\StorageContextHandler.dll
2014-11-25 00:25 - 2014-02-22 12:06 - 00148992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slc.dll
2014-11-25 00:25 - 2014-02-22 12:05 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\RASMM.dll
2014-11-25 00:25 - 2014-02-22 12:05 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\pnpclean.dll
2014-11-25 00:25 - 2014-02-22 12:05 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2014-11-25 00:25 - 2014-02-22 12:05 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentHost.dll
2014-11-25 00:25 - 2014-02-22 12:04 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2014-11-25 00:25 - 2014-02-22 12:02 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContent.dll
2014-11-25 00:25 - 2014-02-22 12:02 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
2014-11-25 00:25 - 2014-02-22 12:01 - 00112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2014-11-25 00:25 - 2014-02-22 11:59 - 01283584 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2014-11-25 00:25 - 2014-02-22 11:59 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2014-11-25 00:25 - 2014-02-22 11:59 - 00163328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ocsetapi.dll
2014-11-25 00:25 - 2014-02-22 11:58 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2014-11-25 00:25 - 2014-02-22 11:58 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\DAConn.dll
2014-11-25 00:25 - 2014-02-22 11:57 - 00165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2014-11-25 00:25 - 2014-02-22 11:57 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-11-25 00:25 - 2014-02-22 11:56 - 02862592 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-11-25 00:25 - 2014-02-22 11:56 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2014-11-25 00:25 - 2014-02-22 11:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2014-11-25 00:25 - 2014-02-22 11:55 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2014-11-25 00:25 - 2014-02-22 11:55 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\SrTasks.exe
2014-11-25 00:25 - 2014-02-22 11:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PkgMgr.exe
2014-11-25 00:25 - 2014-02-22 11:52 - 02288640 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2014-11-25 00:25 - 2014-02-22 11:52 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2014-11-25 00:25 - 2014-02-22 11:51 - 00444416 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2014-11-25 00:25 - 2014-02-22 11:50 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskpart.exe
2014-11-25 00:25 - 2014-02-22 11:47 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmdskmgr.dll
2014-11-25 00:25 - 2014-02-22 11:47 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\migisol.dll
2014-11-25 00:25 - 2014-02-22 11:47 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupugc.exe
2014-11-25 00:25 - 2014-02-22 11:47 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\dfp.exe
2014-11-25 00:25 - 2014-02-22 11:46 - 00283136 _____ (Microsoft Corporation) C:\Windows\system32\wbadmin.exe
2014-11-25 00:25 - 2014-02-22 11:41 - 02566656 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2014-11-25 00:25 - 2014-02-22 11:41 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-11-25 00:25 - 2014-02-22 11:41 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll
2014-11-25 00:25 - 2014-02-22 11:40 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2014-11-25 00:25 - 2014-02-22 11:38 - 00390656 _____ (Microsoft Corporation) C:\Windows\system32\DfpCommon.dll
2014-11-25 00:25 - 2014-02-22 11:38 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2014-11-25 00:25 - 2014-02-22 11:37 - 00912384 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2014-11-25 00:25 - 2014-02-22 11:36 - 00441344 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-11-25 00:25 - 2014-02-22 11:35 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2014-11-25 00:25 - 2014-02-22 11:35 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
2014-11-25 00:25 - 2014-02-22 11:34 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2014-11-25 00:25 - 2014-02-22 11:33 - 00402944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2014-11-25 00:25 - 2014-02-22 11:32 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-11-25 00:25 - 2014-02-22 11:30 - 00213504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cleanmgr.exe
2014-11-25 00:25 - 2014-02-22 11:27 - 00397824 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
2014-11-25 00:25 - 2014-02-22 11:25 - 01428480 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2014-11-25 00:25 - 2014-02-22 11:25 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorageContextHandler.dll
2014-11-25 00:25 - 2014-02-22 11:21 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfrgui.exe
2014-11-25 00:25 - 2014-02-22 11:21 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\acppage.dll
2014-11-25 00:25 - 2014-02-22 11:20 - 01152512 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2014-11-25 00:25 - 2014-02-22 11:18 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-11-25 00:25 - 2014-02-22 11:18 - 00722432 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeui.exe
2014-11-25 00:25 - 2014-02-22 11:17 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2014-11-25 00:25 - 2014-02-22 11:17 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2014-11-25 00:25 - 2014-02-22 11:16 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll
2014-11-25 00:25 - 2014-02-22 11:16 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srchadmin.dll
2014-11-25 00:25 - 2014-02-22 11:16 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2014-11-25 00:25 - 2014-02-22 11:15 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2014-11-25 00:25 - 2014-02-22 11:14 - 02811392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2014-11-25 00:25 - 2014-02-22 11:14 - 02165760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncCenter.dll
2014-11-25 00:25 - 2014-02-22 11:14 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2014-11-25 00:25 - 2014-02-22 11:13 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2014-11-25 00:25 - 2014-02-22 11:13 - 00307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2014-11-25 00:25 - 2014-02-22 11:12 - 00797696 _____ (Microsoft Corporation) C:\Windows\system32\PurchaseWindowsLicense.dll
2014-11-25 00:25 - 2014-02-22 11:12 - 00352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizeng.dll
2014-11-25 00:25 - 2014-02-22 11:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-11-25 00:25 - 2014-02-22 11:09 - 01224192 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2014-11-25 00:25 - 2014-02-22 11:09 - 00097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\migisol.dll
2014-11-25 00:25 - 2014-02-22 11:05 - 01757184 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2014-11-25 00:25 - 2014-02-22 11:04 - 00935424 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2014-11-25 00:25 - 2014-02-22 11:04 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\WLanConn.dll
2014-11-25 00:25 - 2014-02-22 11:04 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netid.dll
2014-11-25 00:25 - 2014-02-22 11:03 - 02544128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2014-11-25 00:25 - 2014-02-22 11:02 - 08946688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2014-11-25 00:25 - 2014-02-22 11:02 - 00258560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-11-25 00:25 - 2014-02-22 11:01 - 01227776 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-11-25 00:25 - 2014-02-22 11:01 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-11-25 00:25 - 2014-02-22 11:00 - 00217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-11-25 00:25 - 2014-02-22 10:59 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2014-11-25 00:25 - 2014-02-22 10:59 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2014-11-25 00:25 - 2014-02-22 10:57 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-11-25 00:25 - 2014-02-22 10:56 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2014-11-25 00:25 - 2014-02-22 10:54 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2014-11-25 00:25 - 2014-02-22 10:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2014-11-25 00:25 - 2014-02-22 10:54 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\deviceassociation.dll
2014-11-25 00:25 - 2014-02-22 10:53 - 00825344 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2014-11-25 00:25 - 2014-02-22 10:52 - 01132032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2014-11-25 00:25 - 2014-02-22 10:52 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.exe
2014-11-25 00:25 - 2014-02-22 10:51 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\fveskybackup.dll
2014-11-25 00:25 - 2014-02-22 10:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\winbrand.dll
2014-11-25 00:25 - 2014-02-22 10:49 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2014-11-25 00:25 - 2014-02-22 10:48 - 01136128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2014-11-25 00:25 - 2014-02-22 10:48 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2014-11-25 00:25 - 2014-02-22 10:48 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2014-11-25 00:25 - 2014-02-22 10:47 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2014-11-25 00:25 - 2014-02-22 10:46 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\winsku.dll
2014-11-25 00:25 - 2014-02-22 10:45 - 00562176 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-11-25 00:25 - 2014-02-22 10:45 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2014-11-25 00:25 - 2014-02-22 10:45 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2014-11-25 00:25 - 2014-02-22 10:45 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-11-25 00:25 - 2014-02-22 10:44 - 00675328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-11-25 00:25 - 2014-02-22 10:44 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\korwbrkr.dll
2014-11-25 00:25 - 2014-02-22 10:43 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2014-11-25 00:25 - 2014-02-22 10:43 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-11-25 00:25 - 2014-02-22 10:40 - 02537472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-11-25 00:25 - 2014-02-22 10:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\dasHost.exe
2014-11-25 00:25 - 2014-02-22 10:38 - 00753664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2014-11-25 00:25 - 2014-02-22 10:36 - 01392640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2014-11-25 00:25 - 2014-02-22 10:36 - 00835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2014-11-25 00:25 - 2014-02-22 10:36 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WLanConn.dll
2014-11-25 00:25 - 2014-02-22 10:36 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\Dism.exe
2014-11-25 00:25 - 2014-02-22 10:35 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-11-25 00:25 - 2014-02-22 10:35 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\WofTasks.dll
2014-11-25 00:25 - 2014-02-22 10:34 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\energy.dll
2014-11-25 00:25 - 2014-02-22 10:34 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2014-11-25 00:25 - 2014-02-22 10:33 - 00653312 _____ (Microsoft Corporation) C:\Windows\system32\DismApi.dll
2014-11-25 00:25 - 2014-02-22 10:32 - 01162752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2014-11-25 00:25 - 2014-02-22 10:31 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2014-11-25 00:25 - 2014-02-22 10:30 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2014-11-25 00:25 - 2014-02-22 10:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2014-11-25 00:25 - 2014-02-22 10:28 - 02643456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-11-25 00:25 - 2014-02-22 10:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2014-11-25 00:25 - 2014-02-22 10:28 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceassociation.dll
2014-11-25 00:25 - 2014-02-22 10:27 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2014-11-25 00:25 - 2014-02-22 10:26 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2014-11-25 00:25 - 2014-02-22 10:26 - 00366080 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2014-11-25 00:25 - 2014-02-22 10:26 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2014-11-25 00:25 - 2014-02-22 10:26 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.exe
2014-11-25 00:25 - 2014-02-22 10:25 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\das.dll
2014-11-25 00:25 - 2014-02-22 10:25 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-11-25 00:25 - 2014-02-22 10:25 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2014-11-25 00:25 - 2014-02-22 10:25 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winbrand.dll
2014-11-25 00:25 - 2014-02-22 10:24 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2014-11-25 00:25 - 2014-02-22 10:23 - 03494912 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-11-25 00:25 - 2014-02-22 10:23 - 01576960 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2014-11-25 00:25 - 2014-02-22 10:23 - 00628224 _____ (Microsoft Corporation) C:\Windows\system32\msTextPrediction.dll
2014-11-25 00:25 - 2014-02-22 10:23 - 00256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2014-11-25 00:25 - 2014-02-22 10:23 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2014-11-25 00:25 - 2014-02-22 10:22 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2014-11-25 00:25 - 2014-02-22 10:22 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsku.dll
2014-11-25 00:25 - 2014-02-22 10:19 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\korwbrkr.dll
2014-11-25 00:25 - 2014-02-22 10:19 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-11-25 00:25 - 2014-02-22 10:18 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2014-11-25 00:25 - 2014-02-22 10:16 - 11776000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-11-25 00:25 - 2014-02-22 10:16 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxshared.dll
2014-11-25 00:25 - 2014-02-22 10:15 - 00211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Dism.exe
2014-11-25 00:25 - 2014-02-22 10:14 - 00752640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-11-25 00:25 - 2014-02-22 10:14 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2014-11-25 00:25 - 2014-02-22 10:13 - 01728000 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2014-11-25 00:25 - 2014-02-22 10:12 - 00459776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DismApi.dll
2014-11-25 00:25 - 2014-02-22 10:11 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2014-11-25 00:25 - 2014-02-22 10:10 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2014-11-25 00:25 - 2014-02-22 10:10 - 00569856 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2014-11-25 00:25 - 2014-02-22 10:09 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2014-11-25 00:25 - 2014-02-22 10:09 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2014-11-25 00:25 - 2014-02-22 10:08 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-11-25 00:25 - 2014-02-22 10:07 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2014-11-25 00:25 - 2014-02-22 10:07 - 00109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll
2014-11-25 00:25 - 2014-02-22 10:06 - 00251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2014-11-25 00:25 - 2014-02-22 10:04 - 01107456 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2014-11-25 00:25 - 2014-02-22 10:04 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\slpts.dll
2014-11-25 00:25 - 2014-02-22 10:02 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2014-11-25 00:25 - 2014-02-22 10:02 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2014-11-25 00:25 - 2014-02-22 10:01 - 13933568 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-11-25 00:25 - 2014-02-22 10:00 - 01341440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2014-11-25 00:25 - 2014-02-22 10:00 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2014-11-25 00:25 - 2014-02-22 09:59 - 01621504 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2014-11-25 00:25 - 2014-02-22 09:59 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2014-11-25 00:25 - 2014-02-22 09:58 - 00544768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2014-11-25 00:25 - 2014-02-22 09:55 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2014-11-25 00:25 - 2014-02-22 09:55 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\ConfigureExpandedStorage.dll
2014-11-25 00:25 - 2014-02-22 09:55 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2014-11-25 00:25 - 2014-02-22 09:55 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\energytask.dll
2014-11-25 00:25 - 2014-02-22 09:55 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slpts.dll
2014-11-25 00:25 - 2014-02-22 09:55 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2014-11-25 00:25 - 2014-02-22 09:54 - 00647168 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2014-11-25 00:25 - 2014-02-22 09:54 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2014-11-25 00:25 - 2014-02-22 09:54 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\wlidcredprov.dll
2014-11-25 00:25 - 2014-02-22 09:54 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-11-25 00:25 - 2014-02-22 09:54 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2014-11-25 00:25 - 2014-02-22 09:54 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\AepRoam.dll
2014-11-25 00:25 - 2014-02-22 09:53 - 00876544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-11-25 00:25 - 2014-02-22 09:52 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2014-11-25 00:25 - 2014-02-22 09:51 - 01258496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll
2014-11-25 00:25 - 2014-02-22 09:51 - 00716288 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-11-25 00:25 - 2014-02-22 09:51 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2014-11-25 00:25 - 2014-02-22 09:51 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2014-11-25 00:25 - 2014-02-22 09:49 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2014-11-25 00:25 - 2014-02-22 09:49 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2014-11-25 00:25 - 2014-02-22 09:48 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\BioCredProv.dll
2014-11-25 00:25 - 2014-02-22 09:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConfigureExpandedStorage.dll
2014-11-25 00:25 - 2014-02-22 09:48 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2014-11-25 00:25 - 2014-02-22 09:48 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dataclen.dll
2014-11-25 00:25 - 2014-02-22 09:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2014-11-25 00:25 - 2014-02-22 09:47 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\WlanMM.dll
2014-11-25 00:25 - 2014-02-22 09:47 - 00517120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2014-11-25 00:25 - 2014-02-22 09:47 - 00185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcredprov.dll
2014-11-25 00:25 - 2014-02-22 09:47 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\AltTab.dll
2014-11-25 00:25 - 2014-02-22 09:46 - 03312128 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll
2014-11-25 00:25 - 2014-02-22 09:45 - 00845824 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-11-25 00:25 - 2014-02-22 09:45 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2014-11-25 00:25 - 2014-02-22 09:45 - 00169472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2014-11-25 00:25 - 2014-02-22 09:45 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-11-25 00:25 - 2014-02-22 09:44 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-11-25 00:25 - 2014-02-22 09:44 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll
2014-11-25 00:25 - 2014-02-22 09:44 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2014-11-25 00:25 - 2014-02-22 09:43 - 00644608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-11-25 00:25 - 2014-02-22 09:43 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2014-11-25 00:25 - 2014-02-22 09:43 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BioCredProv.dll
2014-11-25 00:25 - 2014-02-22 09:43 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2014-11-25 00:25 - 2014-02-22 09:43 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Renewal.dll
2014-11-25 00:25 - 2014-02-22 09:42 - 00943104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WlanMM.dll
2014-11-25 00:25 - 2014-02-22 09:42 - 00709120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2014-11-25 00:25 - 2014-02-22 09:40 - 02368512 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-11-25 00:25 - 2014-02-22 09:40 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2014-11-25 00:25 - 2014-02-22 09:40 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2014-11-25 00:25 - 2014-02-22 09:39 - 00556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2014-11-25 00:25 - 2014-02-22 09:39 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2014-11-25 00:25 - 2014-02-22 09:39 - 00321536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provsvc.dll
2014-11-25 00:25 - 2014-02-22 09:39 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2014-11-25 00:25 - 2014-02-22 09:38 - 00470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-11-25 00:25 - 2014-02-22 09:37 - 01716736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-11-25 00:25 - 2014-02-22 09:37 - 00658432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-11-25 00:25 - 2014-02-22 09:36 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\InputSwitch.dll
2014-11-25 00:25 - 2014-02-22 09:35 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\SettingMonitor.dll
2014-11-25 00:25 - 2014-02-22 09:33 - 00609792 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2014-11-25 00:25 - 2014-02-22 09:33 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingMonitor.dll
2014-11-25 00:25 - 2014-02-22 09:31 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2014-11-25 00:25 - 2014-02-22 09:30 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2014-11-25 00:25 - 2014-02-22 09:29 - 00191488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputSwitch.dll
2014-11-25 00:25 - 2014-02-22 09:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2014-11-25 00:25 - 2014-02-22 09:24 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2014-11-25 00:25 - 2014-02-22 09:22 - 00777728 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2014-11-25 00:25 - 2014-02-22 09:22 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncPolicy.dll
2014-11-25 00:25 - 2014-02-22 09:21 - 00600576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2014-11-25 00:25 - 2014-02-22 09:21 - 00518144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2014-11-25 00:25 - 2014-02-22 09:20 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2014-11-25 00:25 - 2014-02-22 09:20 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncPolicy.dll
2014-11-25 00:25 - 2014-02-22 09:19 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2014-11-25 00:25 - 2014-02-22 09:17 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\CloudStorageWizard.exe
2014-11-25 00:25 - 2014-02-22 09:17 - 00109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudStorageWizard.exe
2014-11-25 00:25 - 2014-02-22 09:06 - 01640960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2014-11-25 00:25 - 2014-02-22 09:03 - 01496576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2014-11-25 00:25 - 2014-02-22 09:01 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2014-11-25 00:25 - 2014-02-22 09:00 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2014-11-25 00:25 - 2014-02-22 08:54 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll
2014-11-25 00:25 - 2014-02-22 05:43 - 00002440 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk
2014-11-25 00:25 - 2014-02-22 05:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-11-25 00:25 - 2014-02-22 05:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-11-25 00:25 - 2014-02-22 05:37 - 00000369 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-11-25 00:25 - 2014-02-22 05:37 - 00000369 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-11-25 00:25 - 2014-02-22 05:33 - 00262335 _____ () C:\Windows\system32\dfpinc.dat
2014-11-25 00:25 - 2014-02-08 02:08 - 00100197 _____ () C:\Windows\SysWOW64\RacRules.xml
2014-11-25 00:25 - 2014-02-08 02:08 - 00100197 _____ () C:\Windows\system32\RacRules.xml
2014-11-25 00:25 - 2014-02-01 07:00 - 00011109 _____ () C:\Windows\SysWOW64\connectedsearch-results.searchconnector-ms
2014-11-25 00:25 - 2014-02-01 07:00 - 00011109 _____ () C:\Windows\system32\connectedsearch-results.searchconnector-ms
2014-11-25 00:25 - 2014-02-01 07:00 - 00007762 _____ () C:\Windows\SysWOW64\connectedsearch-suggestions.searchconnector-ms
2014-11-25 00:25 - 2014-02-01 07:00 - 00007762 _____ () C:\Windows\system32\connectedsearch-suggestions.searchconnector-ms
2014-11-25 00:25 - 2014-02-01 07:00 - 00007130 _____ () C:\Windows\SysWOW64\connectedsearch-zeroinput.searchconnector-ms
2014-11-25 00:25 - 2014-02-01 07:00 - 00007130 _____ () C:\Windows\system32\connectedsearch-zeroinput.searchconnector-ms
2014-11-25 00:25 - 2014-02-01 07:00 - 00002255 _____ () C:\Windows\SysWOW64\WimBootCompress.ini
2014-11-25 00:25 - 2014-02-01 07:00 - 00002255 _____ () C:\Windows\system32\WimBootCompress.ini
2014-11-25 00:25 - 2014-01-31 13:09 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2014-11-25 00:25 - 2014-01-31 10:55 - 03596800 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-11-25 00:25 - 2014-01-31 10:35 - 03085824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-11-25 00:25 - 2014-01-31 10:19 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll
2014-11-25 00:25 - 2014-01-31 10:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-11-25 00:25 - 2014-01-31 10:10 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2014-11-25 00:25 - 2014-01-31 10:08 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2014-11-25 00:25 - 2014-01-31 10:04 - 00409600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2014-11-25 00:25 - 2014-01-29 09:53 - 01653352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-11-25 00:25 - 2014-01-29 09:52 - 00551256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2014-11-25 00:25 - 2014-01-29 09:40 - 00994136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2014-11-25 00:25 - 2014-01-29 08:44 - 01369736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-11-25 00:25 - 2014-01-29 01:36 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2014-11-25 00:25 - 2014-01-29 01:18 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2014-11-25 00:25 - 2014-01-29 01:17 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2014-11-25 00:25 - 2014-01-27 20:53 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-11-25 00:25 - 2014-01-27 20:48 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2014-11-25 00:25 - 2014-01-22 07:21 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2014-11-25 00:25 - 2014-01-22 06:50 - 00147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2014-11-25 00:25 - 2014-01-17 18:24 - 00388096 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll
2014-11-25 00:25 - 2014-01-17 18:04 - 00292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2014-11-25 00:25 - 2013-12-10 08:35 - 00530944 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2014-11-25 00:25 - 2013-12-04 19:41 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthLEEnum.sys
2014-11-25 00:25 - 2013-11-27 10:47 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\finger.exe
2014-11-25 00:25 - 2013-11-27 10:20 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\finger.exe
2014-11-25 00:25 - 2013-11-27 10:10 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2014-11-25 00:25 - 2013-11-27 09:56 - 00167936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll
2014-11-25 00:25 - 2013-11-11 00:41 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll
2014-11-24 20:54 - 2014-11-24 20:54 - 00388608 _____ (Trend Micro Inc.) C:\Users\Home-PC\Downloads\HiJackThis204.exe
2014-11-24 20:39 - 2014-11-28 02:53 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-24 20:39 - 2014-11-24 20:39 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-24 20:39 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-24 20:39 - 2014-10-01 11:11 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-24 20:37 - 2014-11-24 20:39 - 00000000 ____D () C:\Users\Home-PC\AppData\Roaming\Malwarebytes
2014-11-24 20:37 - 2014-11-24 20:39 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-24 20:37 - 2014-11-24 20:39 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-11-24 20:37 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-11-24 20:31 - 2014-11-24 20:31 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Home-PC\Downloads\mbam-setup-1.75.0.1300.exe
2014-11-24 18:24 - 2014-11-24 18:24 - 00000000 ____D () C:\Program Files\Common Files\Atheros
2014-11-24 18:13 - 2013-09-24 04:56 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2014-11-24 18:13 - 2013-09-21 10:09 - 00796928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2014-11-24 18:12 - 2013-09-25 08:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2014-11-24 18:12 - 2013-09-25 06:40 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2014-11-24 18:12 - 2013-09-24 07:55 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2014-11-24 18:12 - 2013-09-24 06:59 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2014-11-24 18:12 - 2013-09-21 11:56 - 00101208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-11-24 18:12 - 2013-09-21 11:53 - 00934856 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2014-11-24 18:12 - 2013-09-21 11:45 - 00171968 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-11-24 18:12 - 2013-09-21 08:50 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2014-11-24 18:12 - 2013-09-21 07:55 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2014-11-24 18:12 - 2013-09-21 06:57 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\livessp.dll
2014-11-24 18:12 - 2013-09-21 06:37 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-24 18:12 - 2013-09-21 05:38 - 00102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2014-11-24 18:12 - 2013-09-21 05:37 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2014-11-24 18:12 - 2013-09-19 08:19 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersRes.dll
2014-11-24 18:12 - 2013-09-19 07:39 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2014-11-24 18:12 - 2013-09-19 07:27 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2014-11-24 18:12 - 2013-09-19 07:23 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WorkFoldersRes.dll
2014-11-24 18:12 - 2013-09-19 07:17 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2014-11-24 18:12 - 2013-09-19 06:47 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.dll
2014-11-24 18:12 - 2013-09-19 06:29 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2014-11-24 18:12 - 2013-09-19 05:25 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-11-24 18:12 - 2013-09-17 07:58 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-11-24 18:12 - 2013-09-17 06:26 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-11-24 18:12 - 2013-09-14 15:06 - 00175960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VerifierExt.sys
2014-11-24 18:12 - 2013-09-14 15:06 - 00066904 _____ (Microsoft Corporation) C:\Windows\system32\PSHED.DLL
2014-11-24 18:12 - 2013-09-14 12:39 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-11-24 18:12 - 2013-09-13 10:52 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\SensorsClassExtension.dll
2014-11-24 18:12 - 2013-09-13 09:54 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2014-11-24 18:12 - 2013-09-13 09:10 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2014-11-24 18:12 - 2013-09-12 08:37 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2014-11-24 18:12 - 2013-09-07 13:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\fdprint.dll
2014-11-24 18:12 - 2013-09-07 13:29 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2014-11-24 18:12 - 2013-09-07 13:00 - 00256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdprint.dll
2014-11-24 18:12 - 2013-09-07 12:50 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll
2014-11-24 18:12 - 2013-09-07 12:45 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2014-11-24 18:12 - 2013-09-07 12:22 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2014-11-24 18:12 - 2013-09-07 12:07 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2014-11-24 18:12 - 2013-09-05 07:42 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2014-11-24 18:12 - 2013-09-05 06:40 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Utilman.exe
2014-11-24 18:12 - 2013-09-04 06:47 - 00492032 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2014-11-24 18:12 - 2013-09-04 06:12 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\DscCoreConfProv.dll
2014-11-24 18:12 - 2013-09-04 05:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2014-11-24 18:12 - 2013-08-31 13:04 - 00638464 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2014-11-24 18:12 - 2013-08-31 11:46 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched20.dll
2014-11-24 18:12 - 2013-08-30 08:31 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2014-11-24 18:12 - 2013-08-28 08:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2014-11-24 18:12 - 2013-08-28 08:09 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2014-11-24 18:12 - 2013-08-27 07:09 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2014-11-24 18:12 - 2013-08-27 06:24 - 00813568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2014-11-24 18:11 - 2013-10-23 12:29 - 00044936 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2014-11-24 18:11 - 2013-10-23 12:13 - 00171864 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_8086.dll
2014-11-24 18:11 - 2013-10-22 09:18 - 00096088 _____ (Microsoft Corporation) C:\Windows\system32\embeddedapplauncher.exe
2014-11-24 18:11 - 2013-10-08 06:58 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2014-11-24 18:11 - 2013-10-08 06:09 - 01160704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2014-11-24 18:11 - 2013-10-08 05:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2014-11-24 18:11 - 2013-10-05 16:25 - 00057176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2014-11-24 18:11 - 2013-10-05 15:21 - 00699840 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-11-24 18:11 - 2013-10-05 13:05 - 00578952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-11-24 18:11 - 2013-10-05 10:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-11-24 18:11 - 2013-10-05 10:18 - 01011712 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-11-24 18:11 - 2013-10-05 09:56 - 01147904 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2014-11-24 18:11 - 2013-10-05 09:55 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2014-11-24 18:11 - 2013-10-05 09:40 - 00795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-11-24 18:11 - 2013-10-05 09:24 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2014-11-24 18:11 - 2013-10-05 09:21 - 00920064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2014-11-24 18:11 - 2013-10-05 08:43 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2014-11-24 18:11 - 2013-10-05 08:35 - 00411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2014-11-24 18:11 - 2013-09-17 10:06 - 01067080 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2014-11-24 18:11 - 2013-09-17 07:31 - 00883184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2014-11-24 18:11 - 2013-09-14 15:00 - 00391512 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2014-11-24 18:11 - 2013-09-14 13:33 - 00345552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2014-11-24 18:11 - 2013-09-14 11:05 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2014-11-24 18:11 - 2013-09-13 09:22 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2014-11-24 18:11 - 2013-09-13 08:47 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe
2014-11-24 18:11 - 2013-09-12 09:45 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2014-11-24 18:11 - 2013-09-12 09:08 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2014-11-24 18:11 - 2013-09-12 09:02 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2014-11-24 18:11 - 2013-09-12 08:44 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2014-11-24 18:11 - 2013-09-12 08:37 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2014-11-24 18:11 - 2013-09-12 08:21 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2014-11-24 18:11 - 2013-09-12 08:16 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2014-11-24 18:11 - 2013-09-12 08:01 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2014-11-24 18:11 - 2013-09-10 05:52 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\msched.dll
2014-11-24 18:09 - 2013-11-27 16:34 - 03210528 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-11-24 18:09 - 2013-11-27 14:47 - 02804528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-11-24 18:09 - 2013-11-27 13:02 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys
2014-11-24 18:09 - 2013-11-27 11:24 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-11-24 18:09 - 2013-11-27 10:46 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-11-24 18:09 - 2013-11-27 10:10 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2014-11-24 18:09 - 2013-11-27 09:56 - 00218112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2014-11-24 18:09 - 2013-11-23 08:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\bi.dll
2014-11-24 18:09 - 2013-11-23 08:13 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2014-11-24 18:09 - 2013-11-21 07:58 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\deviceregistration.dll
2014-11-24 18:09 - 2013-11-15 15:59 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2014-11-24 18:09 - 2013-11-15 15:25 - 00433664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2014-11-24 18:09 - 2013-09-14 10:11 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2014-11-24 18:08 - 2014-01-04 16:54 - 00138240 _____ () C:\Windows\system32\OEMLicense.dll
2014-11-24 18:08 - 2014-01-04 16:08 - 00103936 _____ () C:\Windows\SysWOW64\OEMLicense.dll
2014-11-24 18:08 - 2013-12-31 00:34 - 00218112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2014-11-24 18:08 - 2013-12-31 00:32 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2014-11-24 18:08 - 2013-12-27 09:57 - 00842752 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2014-11-24 18:08 - 2013-12-27 08:03 - 00630272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2014-11-24 18:08 - 2013-12-21 08:21 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2014-11-24 18:08 - 2013-12-17 08:21 - 00408576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2014-11-24 18:07 - 2014-01-27 20:07 - 04175360 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2014-11-24 18:07 - 2014-01-27 19:23 - 02873344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2014-11-24 18:07 - 2014-01-27 19:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-11-24 18:07 - 2014-01-27 18:18 - 01486848 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2014-11-24 18:07 - 2014-01-27 18:00 - 01238016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2014-11-24 18:07 - 2013-12-21 15:51 - 06353960 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2014-11-24 18:07 - 2013-12-21 09:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2014-11-24 18:07 - 2013-11-11 03:48 - 00039768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2014-11-24 18:07 - 2013-11-08 06:23 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2014-11-24 18:07 - 2013-11-08 05:42 - 00366080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll
2014-11-24 18:07 - 2013-11-01 12:39 - 00086872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2014-11-24 18:07 - 2013-10-26 02:54 - 00146776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\SerCx2.sys
2014-11-24 18:05 - 2014-01-07 08:03 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.exe
2014-11-24 18:05 - 2014-01-07 06:59 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.exe
2014-11-24 18:05 - 2013-12-09 01:19 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-11-24 18:05 - 2013-12-09 00:55 - 00444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-11-24 18:01 - 2014-02-22 13:16 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-11-24 18:01 - 2014-02-22 12:24 - 00124416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-28 17:25 - 2014-02-06 14:11 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-11-28 17:25 - 2014-01-31 20:48 - 00003922 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{B4EB039A-A17F-407E-97AE-AE70B85A32CF}
2014-11-28 17:24 - 2014-01-31 20:26 - 01236004 _____ () C:\Windows\WindowsUpdate.log
2014-11-28 17:16 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2014-11-28 04:04 - 2014-01-31 20:30 - 01689572 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-28 04:04 - 2013-08-23 00:24 - 00728968 _____ () C:\Windows\system32\perfh007.dat
2014-11-28 04:04 - 2013-08-23 00:24 - 00152122 _____ () C:\Windows\system32\perfc007.dat
2014-11-28 03:59 - 2014-02-06 16:05 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-11-28 03:59 - 2014-01-31 20:19 - 00009618 _____ () C:\Windows\PFRO.log
2014-11-28 03:59 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-28 03:31 - 2014-01-31 20:26 - 00000000 ____D () C:\Users\Home-PC
2014-11-28 02:53 - 2013-08-23 00:26 - 00000000 ____D () C:\Windows\ShellNew
2014-11-28 02:53 - 2013-08-22 15:44 - 00484488 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-28 02:18 - 2013-08-23 00:26 - 00000000 ____D () C:\Program Files\Windows Journal
2014-11-28 02:18 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ToastData
2014-11-28 02:18 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-11-28 02:18 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-11-28 02:18 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-11-28 02:18 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\setup
2014-11-28 02:18 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\InputMethod
2014-11-28 02:18 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\setup
2014-11-28 02:18 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-11-28 02:18 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\oobe
2014-11-27 21:28 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-11-26 19:55 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-26 19:55 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-26 19:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\WinStore
2014-11-26 19:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\MediaViewer
2014-11-26 19:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\FileManager
2014-11-26 19:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\Camera
2014-11-26 19:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-26 19:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-11-26 18:52 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-11-25 22:58 - 2014-01-31 20:31 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4026047864-735787024-2206378200-1001
2014-11-25 22:04 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-11-25 17:51 - 2014-02-16 07:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-25 15:10 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\uk-UA
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\th-TH
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\SystemResetPlatform
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-RS
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sl-SI
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\migwiz
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\lv-LV
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\lt-LT
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\he-IL
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\et-EE
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\en-GB
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Multimedia Platform
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2014-11-25 15:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Multimedia Platform
2014-11-25 15:09 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-11-25 15:09 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-11-25 15:09 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\Sysprep
2014-11-25 15:09 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\Dism
2014-11-25 15:09 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\servicing
2014-11-25 14:39 - 2014-02-16 07:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-24 22:12 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2014-11-24 20:49 - 2013-08-22 16:43 - 00000000 ____D () C:\Windows\DigitalLocker
2014-11-24 18:24 - 2013-08-22 15:46 - 00017804 _____ () C:\Windows\setupact.log
2014-11-24 18:14 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-11-24 18:04 - 2014-05-24 15:17 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-24 18:03 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-11-20 21:51 - 2013-08-22 16:38 - 00714208 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-20 21:51 - 2013-08-22 16:38 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-31 23:26 - 2014-05-24 15:17 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Some content of TEMP:
====================
C:\Users\Home-PC\AppData\Local\Temp\917b0b87-3358-4e79-93de-3dfc2fc99ed0.exe
C:\Users\Home-PC\AppData\Local\Temp\autorun.dll
C:\Users\Home-PC\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\Home-PC\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Home-PC\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Home-PC\AppData\Local\Temp\nvStInst.exe
C:\Users\Home-PC\AppData\Local\Temp\ose00000.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-24 21:20

==================== End Of Log ============================
Oben war die FRST.txt und nun die addition.txt:

Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-11-2014 01
Ran by Home-PC at 2014-11-28 03:33:56
Running from C:\Users\Home-PC\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}) (Version:  - Microsoft)
2007 Microsoft Office Suite Service Pack 2 (SP2) (x32 Version:  - Microsoft) Hidden
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Hornil StylePix (HKU\S-1-5-21-4026047864-735787024-2206378200-1001\...\Hornil StylePix) (Version: 1.14.2.1 - Hornil Co.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2932 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{6F6873E3-5C92-4049-B511-231A138DD090}) (Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
Malwarebytes Anti-Malware Version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6425.1000 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 33.1.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 33.1.1 (x86 de)) (Version: 33.1.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 33.1.1 - Mozilla)
MyFreeCodec (HKU\S-1-5-21-4026047864-735787024-2206378200-1001\...\MyFreeCodec) (Version:  - )
NVIDIA 3D Vision Treiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6798 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.10.13 - Synaptics Incorporated)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

10-10-2014 15:16:05 Removed Samsung Kies
24-11-2014 17:02:23 Windows Update
27-11-2014 20:28:14 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2014-01-31 20:50 - 00000860 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 activation.acronis.com

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0D221922-FE60-4D84-9A7C-9115D14091EB} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-10-31] (Microsoft Corporation)
Task: {2736A678-876B-4153-A8C0-19ABF15A608C} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)

==================== Loaded Modules (whitelisted) =============

2014-02-06 16:05 - 2014-03-04 14:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-02-06 15:59 - 2012-12-13 08:38 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\dblite.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\kpcengine.2.3.dll
2014-02-16 07:48 - 2014-11-25 14:39 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-11-28 02:38 - 2014-11-28 02:38 - 00016384 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\1706c668394b6917a63634ebd3bedcf2\PSIClient.ni.dll
2014-02-06 15:58 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "RtHDVBg_Dolby"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run32: => "IAStorIcon"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKU\S-1-5-21-4026047864-735787024-2206378200-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"

========================= Accounts: ==========================

Administrator (S-1-5-21-4026047864-735787024-2206378200-500 - Administrator - Disabled)
Gast (S-1-5-21-4026047864-735787024-2206378200-501 - Limited - Enabled)
Home-PC (S-1-5-21-4026047864-735787024-2206378200-1001 - Administrator - Enabled) => C:\Users\Home-PC

==================== Faulty Device Manager Devices =============

Name: Intel(R) USB 3.0 eXtensible-Hostcontroller - 0100 (Microsoft)
Description: USB-xHCI-kompatibler Hostcontroller
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Generischer USB-xHCI-Hostcontroller
Service: USBXHCI
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Mikrofon (Realtek High Definition Audio)
Description: Audioendpunkt
Class Guid: {c166523c-fe0c-4a94-a586-f1a80cfbbf3e}
Manufacturer: Microsoft
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft Kerneldebugger-Netzwerkadapter
Description: Microsoft Kerneldebugger-Netzwerkadapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: kdnic
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: USB-Root-Hub
Description: USB-Root-Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service: usbhub
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: USB-Root-Hub
Description: USB-Root-Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service: usbhub
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Virtueller Microsoft-Adapter für direktes WiFi
Description: Virtueller Microsoft-Adapter für direktes WiFi
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/24/2014 09:31:30 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Das Volume "Wiederherstellung" wurde aufgrund eines Fehlers nicht optimiert: Falscher Parameter. (0x80070057)

Error: (11/24/2014 08:19:51 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (11/24/2014 08:19:51 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (11/24/2014 08:19:51 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]

Error: (11/24/2014 06:04:16 PM) (Source: Perflib) (EventID: 1017) (User: )
Description: Outlook

Error: (11/24/2014 06:04:16 PM) (Source: Perflib) (EventID: 1021) (User: )
Description: Outlook8

Error: (02/16/2014 07:45:53 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (02/16/2014 07:45:53 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (02/16/2014 07:45:53 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]

Error: (02/06/2014 04:05:42 PM) (Source: Windows Search Service Profile Notification) (EventID: 6) (User: )
Description: Fehler von Windows Search beim Erstellen der Standardkonfiguration für den neuen Benutzer "Home\UpdatusUser" als Reaktion auf die Erstellung eines Benutzerprofils. Fehlercode "0x80070005".

Zugriff verweigert
.


System errors:
=============
Error: (11/28/2014 02:18:11 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎27.‎11.‎2014 um 22:47:50 unerwartet heruntergefahren.

Error: (11/27/2014 05:45:42 PM) (Source: DCOM) (EventID: 10010) (User: Home)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (11/27/2014 05:07:33 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎26.‎11.‎2014 um 22:34:06 unerwartet heruntergefahren.

Error: (11/26/2014 09:25:02 PM) (Source: DCOM) (EventID: 10010) (User: Home)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (11/26/2014 09:14:06 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎26.‎11.‎2014 um 19:56:25 unerwartet heruntergefahren.

Error: (11/26/2014 07:37:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80246007 fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB2990967)

Error: (11/26/2014 06:02:44 PM) (Source: DCOM) (EventID: 10010) (User: Home)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (11/26/2014 05:24:00 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen.

Error: (11/26/2014 05:01:15 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen.

Error: (11/26/2014 00:48:31 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-11-26 17:40:47.021
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-02-08 12:34:02.761
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-02-08 12:34:00.737
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-02-08 12:33:58.709
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-02-08 12:33:56.650
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-02-08 12:33:54.628
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-02-08 12:33:52.606
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\SysWOW64\FsUsbExDisk.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 18%
Total physical RAM: 8047.52 MB
Available physical RAM: 6538.31 MB
Total Pagefile: 9327.52 MB
Available Pagefile: 7506.09 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.37 GB) (Free:191.99 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 329D93DD)

Partition: GPT Partition Type.

==================== End Of Log ============================

chiva 06.12.2014 22:48
Nun die gmer.log:

Code:
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-11-28 04:04:42
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\0000002c Samsung_SSD_840_EVO_250GB rev.EXT0BB0Q 232,89GB
Running: Gmer-19357.exe; Driver: C:\Users\Home-PC\AppData\Local\Temp\pxldipow.sys


---- User code sections - GMER 2.1 ----

.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                                                                                                                        00007ffff0f928c0 7 bytes JMP 00008000f02d0260
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                                                                                                              00007ffff0f943d8 7 bytes JMP 00008000f02d0298
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                                                                                                                00007ffff1041f20 7 bytes JMP 00008000f02d0308
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                                                                                                                00007ffff10440b4 7 bytes JMP 00008000f02d0340
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                                                                                                                00007ffff1044510 7 bytes JMP 00008000f02d02d0
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                                                                                                                        00007ffff106cea0 7 bytes JMP 00008000f02d01f0
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                                                                                                          00007ffff106cf10 7 bytes JMP 00008000f02d0228
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                                                            00007ffff02e299c 7 bytes JMP 00008000f02d00d8
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                                                                  00007ffff02e54c8 5 bytes JMP 00008000f02d0180
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                                                              00007ffff02e55b0 5 bytes JMP 00008000f02d0148
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                                                          00007ffff02e5e58 5 bytes JMP 00008000f02d0110
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                                                        00007ffff0356200 5 bytes JMP 00008000f02d01b8
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\USER32.dll!CreateWindowExW                                                                                                                                                  00007ffff0987834 10 bytes JMP 00008000f02d0420
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                                                                                                              00007ffff098b4d0 5 bytes JMP 00008000f02d03b0
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                                                                                                              00007ffff098c6d8 5 bytes JMP 00008000f02d03e8
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                                                                                                                      00007ffff098e39c 9 bytes JMP 00008000f02d0378
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                                                                                          00007ffff0cf1500 8 bytes JMP 00008000f02d0458
.text    C:\Windows\system32\dwm.exe[980] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                                                                                            00007ffff0cf1750 8 bytes JMP 00008000f02d0490
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                                                                                          00007ffff0f928c0 7 bytes JMP 00008000f02d0260
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                                                                                  00007ffff0f943d8 7 bytes JMP 00008000f02d0298
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                                                                                    00007ffff1041f20 7 bytes JMP 00008000f02d0308
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                                                                                    00007ffff10440b4 7 bytes JMP 00008000f02d0340
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                                                                                  00007ffff1044510 7 bytes JMP 00008000f02d02d0
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                                                                                          00007ffff106cea0 7 bytes JMP 00008000f02d01f0
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                                                                            00007ffff106cf10 7 bytes JMP 00008000f02d0228
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                                00007ffff02e299c 7 bytes JMP 00008000f02d00d8
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                                    00007ffff02e54c8 5 bytes JMP 00008000f02d0180
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                                  00007ffff02e55b0 5 bytes JMP 00008000f02d0148
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                              00007ffff02e5e58 5 bytes JMP 00008000f02d0110
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                            00007ffff0356200 5 bytes JMP 00008000f02d01b8
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                                                                                                                  00007ffff10f9318 7 bytes JMP 00008000f02d0500
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                                                                                                                  00007ffff10fcbe0 7 bytes JMP 00008000f02d04c8
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\USER32.dll!CreateWindowExW                                                                                                                    00007ffff0987834 10 bytes JMP 00008000f02d0420
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                                                                                00007ffff098b4d0 5 bytes JMP 00008000f02d03b0
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                                                                                00007ffff098c6d8 5 bytes JMP 00008000f02d03e8
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                                                                                          00007ffff098e39c 9 bytes JMP 00008000f02d0378
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                                                            00007ffff0cf1500 8 bytes JMP 00008000f02d0458
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[388] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                                                              00007ffff0cf1750 8 bytes JMP 00008000f02d0490
.text    C:\Windows\system32\nvvsvc.exe[416] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506                                                                                                                                      00007ffff0b0169a 4 bytes [B0, F0, FF, 7F]
.text    C:\Windows\system32\nvvsvc.exe[416] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514                                                                                                                                      00007ffff0b016a2 4 bytes [B0, F0, FF, 7F]
.text    C:\Windows\system32\nvvsvc.exe[416] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118                                                                                                                                          00007ffff0b0181a 4 bytes [B0, F0, FF, 7F]
.text    C:\Windows\system32\nvvsvc.exe[416] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142                                                                                                                                          00007ffff0b01832 4 bytes [B0, F0, FF, 7F]
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                                                                                  00007ffff0f928c0 7 bytes JMP 00008000f02d0260
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                                                                          00007ffff0f943d8 7 bytes JMP 00008000f02d0298
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                                                                            00007ffff1041f20 7 bytes JMP 00008000f02d0308
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                                                                            00007ffff10440b4 7 bytes JMP 00008000f02d0340
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                                                                          00007ffff1044510 7 bytes JMP 00008000f02d02d0
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                                                                                  00007ffff106cea0 7 bytes JMP 00008000f02d01f0
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                                                                    00007ffff106cf10 7 bytes JMP 00008000f02d0228
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                        00007ffff02e299c 7 bytes JMP 00008000f02d00d8
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                            00007ffff02e54c8 5 bytes JMP 00008000f02d0180
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                          00007ffff02e55b0 5 bytes JMP 00008000f02d0148
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                      00007ffff02e5e58 5 bytes JMP 00008000f02d0110
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                    00007ffff0356200 5 bytes JMP 00008000f02d01b8
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\USER32.dll!CreateWindowExW                                                                                                            00007ffff0987834 10 bytes JMP 00008000f02d0420
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                                                                        00007ffff098b4d0 5 bytes JMP 00008000f02d03b0
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                                                                        00007ffff098c6d8 5 bytes JMP 00008000f02d03e8
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                                                                                  00007ffff098e39c 9 bytes JMP 00008000f02d0378
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\SYSTEM32\d3d9.dll!Direct3DCreate9Ex                                                                                                            00007fffe81fa204 4 bytes JMP 00007ffff02d0570
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\SYSTEM32\d3d9.dll!Direct3DCreate9                                                                                                              00007fffe82122cc 6 bytes JMP 00007ffff02d0538
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                                                    00007ffff0cf1500 8 bytes JMP 00008000f02d0458
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                                                      00007ffff0cf1750 8 bytes JMP 00008000f02d0490
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                                                                                                          00007ffff10f9318 7 bytes JMP 00008000f02d0500
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2624] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                                                                                                          00007ffff10fcbe0 7 bytes JMP 00008000f02d04c8
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                                                                                                                00007ffff0f928c0 7 bytes JMP 00008000f02d0260
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                                                                                                      00007ffff0f943d8 7 bytes JMP 00008000f02d0298
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                                                                                                        00007ffff1041f20 7 bytes JMP 00008000f02d0308
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                                                                                                        00007ffff10440b4 7 bytes JMP 00008000f02d0340
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                                                                                                        00007ffff1044510 7 bytes JMP 00008000f02d02d0
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                                                                                                                00007ffff106cea0 7 bytes JMP 00008000f02d01f0
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                                                                                                  00007ffff106cf10 7 bytes JMP 00008000f02d0228
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                                                    00007ffff02e299c 7 bytes JMP 00008000f02d00d8
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                                                          00007ffff02e54c8 5 bytes JMP 00008000f02d0180
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                                                      00007ffff02e55b0 5 bytes JMP 00008000f02d0148
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                                                  00007ffff02e5e58 5 bytes JMP 00008000f02d0110
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                                                00007ffff0356200 5 bytes JMP 00008000f02d01b8
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\SYSTEM32\user32.dll!CreateWindowExW                                                                                                                                          00007ffff0987834 10 bytes JMP 00008000f02d0420
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\SYSTEM32\user32.dll!EnumDisplayDevicesA                                                                                                                                      00007ffff098b4d0 5 bytes JMP 00008000f02d03b0
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\SYSTEM32\user32.dll!EnumDisplayDevicesW                                                                                                                                      00007ffff098c6d8 5 bytes JMP 00008000f02d03e8
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\SYSTEM32\user32.dll!DisplayConfigGetDeviceInfo                                                                                                                              00007ffff098e39c 9 bytes JMP 00008000f02d0378
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                                                                                  00007ffff0cf1500 8 bytes JMP 00008000f02d0458
.text    C:\Windows\system32\taskhostex.exe[2700] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                                                                                    00007ffff0cf1750 8 bytes JMP 00008000f02d0490
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                                                                                            00007ffff0f928c0 7 bytes JMP 00008000f01d0260
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                                                                                  00007ffff0f943d8 7 bytes JMP 00008000f01d0298
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                                                                                    00007ffff1041f20 7 bytes JMP 00008000f01d0308
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                                                                                    00007ffff10440b4 7 bytes JMP 00008000f01d0340
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                                                                                    00007ffff1044510 7 bytes JMP 00008000f01d02d0
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                                                                                            00007ffff106cea0 7 bytes JMP 00008000f01d01f0
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                                                                              00007ffff106cf10 7 bytes JMP 00008000f01d0228
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                                00007ffff02e299c 7 bytes JMP 00008000f01d00d8
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                                      00007ffff02e54c8 5 bytes JMP 00008000f01d0180
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                                  00007ffff02e55b0 5 bytes JMP 00008000f01d0148
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                              00007ffff02e5e58 5 bytes JMP 00008000f01d0110
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                            00007ffff0356200 5 bytes JMP 00008000f01d01b8
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\USER32.dll!CreateWindowExW                                                                                                                      00007ffff0987834 10 bytes JMP 00008000f01d0420
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                                                                                  00007ffff098b4d0 5 bytes JMP 00008000f01d03b0
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                                                                                  00007ffff098c6d8 5 bytes JMP 00008000f01d03e8
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                                                                                          00007ffff098e39c 9 bytes JMP 00008000f01d0378
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                                                              00007ffff0cf1500 8 bytes JMP 00008000f01d0458
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                                                                00007ffff0cf1750 8 bytes JMP 00008000f01d0490
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                                                                                                                  00007ffff10f9318 7 bytes JMP 00008000f01d0500
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3368] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                                                                                                                    00007ffff10fcbe0 7 bytes JMP 00008000f01d04c8
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                                                                                                                  00007ffff0f928c0 7 bytes JMP 00008000f02d0260
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                                                                                                        00007ffff0f943d8 7 bytes JMP 00008000f02d0298
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                                                                                                          00007ffff1041f20 7 bytes JMP 00008000f02d0308
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                                                                                                          00007ffff10440b4 7 bytes JMP 00008000f02d0340
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                                                                                                          00007ffff1044510 7 bytes JMP 00008000f02d02d0
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                                                                                                                  00007ffff106cea0 7 bytes JMP 00008000f02d01f0
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                                                                                                    00007ffff106cf10 7 bytes JMP 00008000f02d0228
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                                                      00007ffff02e299c 7 bytes JMP 00008000f02d00d8
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                                                            00007ffff02e54c8 5 bytes JMP 00008000f02d0180
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                                                        00007ffff02e55b0 5 bytes JMP 00008000f02d0148
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                                                    00007ffff02e5e58 5 bytes JMP 00008000f02d0110
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                                                  00007ffff0356200 5 bytes JMP 00008000f02d01b8
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\USER32.dll!CreateWindowExW                                                                                                                                            00007ffff0987834 10 bytes JMP 00008000f02d0420
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                                                                                                        00007ffff098b4d0 5 bytes JMP 00008000f02d03b0
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                                                                                                        00007ffff098c6d8 5 bytes JMP 00008000f02d03e8
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                                                                                                                00007ffff098e39c 9 bytes JMP 00008000f02d0378
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                                                                                    00007ffff0cf1500 8 bytes JMP 00008000f02d0458
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                                                                                      00007ffff0cf1750 8 bytes JMP 00008000f02d0490
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                                                                                                                                        00007ffff10f9318 7 bytes JMP 00008000f02d0500
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                                                                                                                                          00007ffff10fcbe0 7 bytes JMP 00008000f02d04c8
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506                                                                                                                                    00007ffff0b0169a 4 bytes [B0, F0, FF, 7F]
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514                                                                                                                                    00007ffff0b016a2 4 bytes [B0, F0, FF, 7F]
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118                                                                                                                                      00007ffff0b0181a 4 bytes [B0, F0, FF, 7F]
.text    C:\Windows\System32\igfxpers.exe[3672] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142                                                                                                                                      00007ffff0b01832 4 bytes [B0, F0, FF, 7F]
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                                                                                                  00007ffff0f928c0 7 bytes JMP 00008000f02d0260
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                                                                                          00007ffff0f943d8 7 bytes JMP 00008000f02d0298
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                                                                                            00007ffff1041f20 7 bytes JMP 00008000f02d0308
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                                                                                            00007ffff10440b4 7 bytes JMP 00008000f02d0340
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                                                                                          00007ffff1044510 7 bytes JMP 00008000f02d02d0
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                                                                                                  00007ffff106cea0 7 bytes JMP 00008000f02d01f0
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                                                                                    00007ffff106cf10 7 bytes JMP 00008000f02d0228
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                                        00007ffff02e299c 7 bytes JMP 00008000f02d00d8
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                                            00007ffff02e54c8 5 bytes JMP 00008000f02d0180
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                                          00007ffff02e55b0 5 bytes JMP 00008000f02d0148
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                                      00007ffff02e5e58 5 bytes JMP 00008000f02d0110
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                                    00007ffff0356200 5 bytes JMP 00008000f02d01b8
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\USER32.dll!CreateWindowExW                                                                                                                            00007ffff0987834 10 bytes JMP 00008000f02d0420
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                                                                                        00007ffff098b4d0 5 bytes JMP 00008000f02d03b0
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                                                                                        00007ffff098c6d8 5 bytes JMP 00008000f02d03e8
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                                                                                                  00007ffff098e39c 9 bytes JMP 00008000f02d0378
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                                                                    00007ffff0cf1500 8 bytes JMP 00008000f02d0458
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                                                                      00007ffff0cf1750 8 bytes JMP 00008000f02d0490
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                                                                                                                          00007ffff10f9318 7 bytes JMP 00008000f02d0500
.text    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[3720] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                                                                                                                          00007ffff10fcbe0 7 bytes JMP 00008000f02d04c8
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                                                                                                    00007ffff0f928c0 7 bytes JMP 00008000f01d0260
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                                                                                            00007ffff0f943d8 7 bytes JMP 00008000f01d0298
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                                                                                              00007ffff1041f20 7 bytes JMP 00008000f01d0308
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                                                                                              00007ffff10440b4 7 bytes JMP 00008000f01d0340
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                                                                                            00007ffff1044510 7 bytes JMP 00008000f01d02d0
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                                                                                                    00007ffff106cea0 7 bytes JMP 00008000f01d01f0
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                                                                                      00007ffff106cf10 7 bytes JMP 00008000f01d0228
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                                          00007ffff02e299c 7 bytes JMP 00008000f01d00d8
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                                              00007ffff02e54c8 5 bytes JMP 00008000f01d0180
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                                            00007ffff02e55b0 5 bytes JMP 00008000f01d0148
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                                        00007ffff02e5e58 5 bytes JMP 00008000f01d0110
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                                      00007ffff0356200 5 bytes JMP 00008000f01d01b8
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506                                                                                                                      00007ffff0b0169a 4 bytes [B0, F0, FF, 7F]
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514                                                                                                                      00007ffff0b016a2 4 bytes [B0, F0, FF, 7F]
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118                                                                                                                          00007ffff0b0181a 4 bytes [B0, F0, FF, 7F]
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142                                                                                                                          00007ffff0b01832 4 bytes [B0, F0, FF, 7F]
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\USER32.dll!CreateWindowExW                                                                                                                              00007ffff0987834 10 bytes JMP 00008000f01d0420
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                                                                                          00007ffff098b4d0 5 bytes JMP 00008000f01d03b0
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                                                                                          00007ffff098c6d8 5 bytes JMP 00008000f01d03e8
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                                                                                                    00007ffff098e39c 9 bytes JMP 00008000f01d0378
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                                                                      00007ffff0cf1500 8 bytes JMP 00008000f01d0458
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                                                                        00007ffff0cf1750 8 bytes JMP 00008000f01d0490
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                                                                                                                            00007ffff10f9318 7 bytes JMP 00008000f01d0500
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3788] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                                                                                                                            00007ffff10fcbe0 7 bytes JMP 00008000f01d04c8
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                                                                                                  00007ffff0f928c0 7 bytes JMP 00008000f02d0260
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                                                                                        00007ffff0f943d8 7 bytes JMP 00008000f02d0298
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                                                                                          00007ffff1041f20 7 bytes JMP 00008000f02d0308
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                                                                                          00007ffff10440b4 7 bytes JMP 00008000f02d0340
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                                                                                          00007ffff1044510 7 bytes JMP 00008000f02d02d0
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                                                                                                  00007ffff106cea0 7 bytes JMP 00008000f02d01f0
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                                                                                    00007ffff106cf10 7 bytes JMP 00008000f02d0228
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                                      00007ffff02e299c 7 bytes JMP 00008000f02d00d8
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                                            00007ffff02e54c8 5 bytes JMP 00008000f02d0180
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                                        00007ffff02e55b0 5 bytes JMP 00008000f02d0148
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                                    00007ffff02e5e58 5 bytes JMP 00008000f02d0110
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                                  00007ffff0356200 5 bytes JMP 00008000f02d01b8
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506                                                                                                                    00007ffff0b0169a 4 bytes [B0, F0, FF, 7F]
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514                                                                                                                    00007ffff0b016a2 4 bytes [B0, F0, FF, 7F]
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118                                                                                                                      00007ffff0b0181a 4 bytes [B0, F0, FF, 7F]
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142                                                                                                                      00007ffff0b01832 4 bytes [B0, F0, FF, 7F]
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\USER32.dll!CreateWindowExW                                                                                                                            00007ffff0987834 10 bytes JMP 00008000f02d0420
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                                                                                        00007ffff098b4d0 5 bytes JMP 00008000f02d03b0
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                                                                                        00007ffff098c6d8 5 bytes JMP 00008000f02d03e8
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                                                                                                00007ffff098e39c 9 bytes JMP 00008000f02d0378
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                                                                    00007ffff0cf1500 8 bytes JMP 00008000f02d0458
.text    C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[3908] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                                                                      00007ffff0cf1750 8 bytes JMP 00008000f02d0490
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                                                                                          00007ffff0f928c0 7 bytes JMP 00008000f02d0260
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                                                                                00007ffff0f943d8 7 bytes JMP 00008000f02d0298
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                                                                                  00007ffff1041f20 7 bytes JMP 00008000f02d0308
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                                                                                  00007ffff10440b4 7 bytes JMP 00008000f02d0340
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                                                                                  00007ffff1044510 7 bytes JMP 00008000f02d02d0
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                                                                                          00007ffff106cea0 7 bytes JMP 00008000f02d01f0
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                                                                            00007ffff106cf10 7 bytes JMP 00008000f02d0228
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                              00007ffff02e299c 7 bytes JMP 00008000f02d00d8
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                                    00007ffff02e54c8 5 bytes JMP 00008000f02d0180
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                                00007ffff02e55b0 5 bytes JMP 00008000f02d0148
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                            00007ffff02e5e58 5 bytes JMP 00008000f02d0110
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                          00007ffff0356200 5 bytes JMP 00008000f02d01b8
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\USER32.dll!CreateWindowExW                                                                                                                    00007ffff0987834 10 bytes JMP 00008000f02d0420
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                                                                                00007ffff098b4d0 5 bytes JMP 00008000f02d03b0
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                                                                                00007ffff098c6d8 5 bytes JMP 00008000f02d03e8
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                                                                                        00007ffff098e39c 9 bytes JMP 00008000f02d0378
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                                                            00007ffff0cf1500 8 bytes JMP 00008000f02d0458
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                                                              00007ffff0cf1750 8 bytes JMP 00008000f02d0490
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                                                                                                                00007ffff10f9318 7 bytes JMP 00008000f02d0500
.text    C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe[3932] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                                                                                                                  00007ffff10fcbe0 7 bytes JMP 00008000f02d04c8
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNEL32.dll!K32GetModuleInformation                                                                                                            00007ffff0f928c0 7 bytes JMP 00008000f02d0260
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNEL32.dll!RegQueryValueExW                                                                                                                  00007ffff0f943d8 7 bytes JMP 00008000f02d0298
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNEL32.dll!RegSetValueExA                                                                                                                    00007ffff1041f20 7 bytes JMP 00008000f02d0308
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNEL32.dll!RegSetValueExW                                                                                                                    00007ffff10440b4 7 bytes JMP 00008000f02d0340
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNEL32.dll!RegDeleteValueW                                                                                                                    00007ffff1044510 7 bytes JMP 00008000f02d02d0
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNEL32.dll!K32EnumProcessModulesEx                                                                                                            00007ffff106cea0 7 bytes JMP 00008000f02d01f0
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNEL32.dll!K32GetMappedFileNameW                                                                                                              00007ffff106cf10 7 bytes JMP 00008000f02d0228
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                                00007ffff02e299c 7 bytes JMP 00008000f02d00d8
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                                      00007ffff02e54c8 5 bytes JMP 00008000f02d0180
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                                  00007ffff02e55b0 5 bytes JMP 00008000f02d0148
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                              00007ffff02e5e58 5 bytes JMP 00008000f02d0110
.text    C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe[4000] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                            00007ffff0356200 5 bytes JMP 00008000f02d01b8
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                                                                                                                    00007ffff0f928c0 7 bytes JMP 00008000f02d0260
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                                                                                                          00007ffff0f943d8 7 bytes JMP 00008000f02d0298
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                                                                                                            00007ffff1041f20 7 bytes JMP 00008000f02d0308
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                                                                                                            00007ffff10440b4 7 bytes JMP 00008000f02d0340
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                                                                                                            00007ffff1044510 7 bytes JMP 00008000f02d02d0
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                                                                                                                    00007ffff106cea0 7 bytes JMP 00008000f02d01f0
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                                                                                                      00007ffff106cf10 7 bytes JMP 00008000f02d0228
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                                                                                        00007ffff02e299c 7 bytes JMP 00008000f02d00d8
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                                                                                              00007ffff02e54c8 5 bytes JMP 00008000f02d0180
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                                                                                          00007ffff02e55b0 5 bytes JMP 00008000f02d0148
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                                                                                      00007ffff02e5e58 5 bytes JMP 00008000f02d0110
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                                                                                                                    00007ffff0356200 5 bytes JMP 00008000f02d01b8
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\USER32.dll!CreateWindowExW                                                                                                                                              00007ffff0987834 10 bytes JMP 00008000f02d0420
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                                                                                                          00007ffff098b4d0 5 bytes JMP 00008000f02d03b0
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                                                                                                          00007ffff098c6d8 5 bytes JMP 00008000f02d03e8
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                                                                                                                  00007ffff098e39c 9 bytes JMP 00008000f02d0378
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                                                                                      00007ffff0cf1500 8 bytes JMP 00008000f02d0458
.text    C:\Windows\WinStore\WSHost.exe[2956] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                                                                                        00007ffff0cf1750 8 bytes JMP 00008000f02d0490

---- Threads - GMER 2.1 ----

Thread  C:\Windows\system32\csrss.exe [684:696]                                                                                                                                                                                          fffff96000907b90
Thread  C:\Windows\Explorer.EXE [2676:3628]                                                                                                                                                                                              00007fffdfccd73c
---- Processes - GMER 2.1 ----

Library  C:\ProgramData\Kaspersky Lab\AVP14.0.0\Bases\Cache\uds.dll.f5b69f586b37cf2095967ddd348d210b (*** suspicious ***) @ C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [1636] (FILE NOT FOUND)      00000000724a0000
Library  C:\ProgramData\Kaspersky Lab\AVP14.0.0\Bases\Cache\avengine.dll.cf76373cb9a583c9603a47377e180985 (*** suspicious ***) @ C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [1636] (FILE NOT FOUND)  0000000072410000
Library  C:\ProgramData\Kaspersky Lab\AVP14.0.0\Bases\Cache\kavbase.kdl.7aa539a1cbbfb4baa644b9866f4bcf4b (*** suspicious ***) @ C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [1636] (FILE NOT FOUND)  0000000072370000
Library  C:\ProgramData\Kaspersky Lab\AVP14.0.0\Bases\Cache\klavemu.kdl.b6b6dd223ad2aad28374217a028b59b0 (*** suspicious ***) @ C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [1636] (FILE NOT FOUND)  0000000071cf0000
Library  C:\ProgramData\Kaspersky Lab\AVP14.0.0\Bases\Cache\kjim.kdl.515c9bc6da1b5b7f42860347f720ee10 (*** suspicious ***) @ C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [1636] (FILE NOT FOUND)      0000000071ab0000
Library  C:\ProgramData\Kaspersky Lab\AVP14.0.0\Bases\Cache\mark.kdl.35135545dc52614f6e863f3b83d58d4b (*** suspicious ***) @ C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [1636] (FILE NOT FOUND)      0000000071a50000
Library  C:\ProgramData\Kaspersky Lab\AVP14.0.0\Bases\Cache\qscan.kdl.94c366b442c3accc919782ce5f0d7fd0 (*** suspicious ***) @ C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [1636] (FILE NOT FOUND)    0000000071920000
Library  C:\ProgramData\Kaspersky Lab\AVP14.0.0\Bases\Cache\arkmon.kdl.17721213727e08998b9e3a74f97a8de9 (*** suspicious ***) @ C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [1636] (FILE NOT FOUND)    00000000718a0000
Library  C:\ProgramData\Kaspersky Lab\AVP14.0.0\Bases\Cache\kavsys.kdl.3cbce9162519ae9d590238cb927fbb55 (*** suspicious ***) @ C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [1636] (FILE NOT FOUND)    0000000071820000

---- Disk sectors - GMER 2.1 ----

Disk    \Device\Harddisk0\DR0                                                                                                                                                                                                            unknown MBR code

---- EOF - GMER 2.1 ----
defogger.disable.log:

Code:
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 03:31 on 28/11/2014 (Home-PC)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
HKCU:DAEMON Tools Lite -> Removed

Checking for services/drivers...


-=E.O.F=-
Bericht Kaspersky:

Code:
Aufgabe wurde gestartet        Anti-Banner        Heute, 02:20
c.microsoft.com        Blockiert: 0, übersprungen: 2        0        2        Heute, 02:20
wscont.apps.microsoft.com        Blockiert: 0, übersprungen: 5        0        5        Heute, 02:21
wscont1.apps.microsoft.com        Blockiert: 0, übersprungen: 10        0        10        Heute, 02:21
wscont2.apps.microsoft.com        Blockiert: 0, übersprungen: 10        0        10        Heute, 02:21
gameduell01.webtrekk.net        Blockiert: 7, übersprungen: 0        7        0        Heute, 02:33
m4.gameduell.de        Blockiert: 3, übersprungen: 0        3        0        Heute, 02:33
Aufgabe wurde gestartet        Anti-Banner        Heute, 02:54
www.google.de        Blockiert: 0, übersprungen: 1        0        1        Heute, 03:15
accounts.google.de        Blockiert: 0, übersprungen: 2        0        2        Heute, 03:15
googleads.g.doubleclick.net        Blockiert: 2, übersprungen: 0        2        0        Heute, 03:15
www.google.com        Blockiert: 0, übersprungen: 1        0        1        Heute, 03:15
Aufgabe wurde gestartet        Anti-Banner        Heute, 03:37
Aufgabe wurde beendet        Anti-Banner        Heute, 03:37
Aufgabe wurde gestartet        Anti-Banner        Heute, 17:24
service.weather.microsoft.com        Blockiert: 0, übersprungen: 2        0        2        Heute, 17:24
next-services.apps.microsoft.com        Blockiert: 0, übersprungen: 49        0        49        Heute, 17:25
ieonlinews.microsoft.com        Blockiert: 0, übersprungen: 2        0        2        Heute, 17:25
tpc.googlesyndication.com        Blockiert: 9, übersprungen: 0        9        0        Heute, 17:36
w.apprep.smartscreen.microsoft.com        Blockiert: 0, übersprungen: 3        0        3        Heute, 17:37
Aufgabe wurde gestartet        Anti-Banner        Heute, 17:39
partner.googleadservices.com        Blockiert: 0, übersprungen: 7        0        7        Heute, 17:44
ajax.googleapis.com        Blockiert: 0, übersprungen: 7        0        7        Heute, 17:44
pubads.g.doubleclick.net        Blockiert: 31, übersprungen: 0        31        0        Heute, 17:46
pagead2.googlesyndication.com        Blockiert: 37, übersprungen: 0        37        0        Heute, 17:46
watson.telemetry.microsoft.com        Blockiert: 0, übersprungen: 32        0        32        Heute, 17:51
Aufgabe wurde gestartet        Anti-Spam        Heute, 02:20
Aufgabe wurde gestartet        Anti-Spam        Heute, 02:54
Aufgabe wurde gestartet        Anti-Spam        Heute, 03:37
Aufgabe wurde beendet        Anti-Spam        Heute, 03:37
Aufgabe wurde gestartet        Anti-Spam        Heute, 17:24
Aufgabe wurde gestartet        Anti-Spam        Heute, 17:39
Aufgabe wurde gestartet        Programmkontrolle
Aufgabe wurde gestartet        Programmkontrolle
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        Spooler SubSystem App        Spooler SubSystem App        Besitzt die digitale Signatur eines vertrauenswürdigen Herstellers        c:\windows\system32\spoolsv.exe        Heute, 02:19
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        Console Window Host        Console Window Host        Bekannt aus der Datenbank für weit verbreitete Software        c:\windows\system32\conhost.exe        Heute, 02:19
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        Disk Defragmenter Module        Disk Defragmenter Module        Besitzt die digitale Signatur eines vertrauenswürdigen Herstellers        c:\windows\system32\defrag.exe        Heute, 02:38
Aufgabe wurde gestartet        Programmkontrolle
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        defogger.exe        defogger.exe        Bekannt aus der Datenbank für weit verbreitete Software        c:\users\home-pc\downloads\defogger.exe        Heute, 03:28
Das Programm wurde zur Gruppe Schwach beschränkt hinzugefügt        Farbar Recovery Scan Tool        Farbar Recovery Scan Tool        Heuristisch berechneter Risikowert        c:\users\home-pc\downloads\frst64.exe        Heute, 03:32
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        erunt.exe        erunt.exe        Bekannt aus der Datenbank für weit verbreitete Software        c:\windows\erunt.exe        Heute, 03:33
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        Boot Configuration Data Editor        Boot Configuration Data Editor        Besitzt die digitale Signatur eines vertrauenswürdigen Herstellers        c:\windows\system32\bcdedit.exe        Heute, 03:33
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        Aut2Exe        Aut2Exe        Bekannt aus der Datenbank für weit verbreitete Software        c:\windows\mod_frst.exe        Heute, 03:33
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        Eventing Command Line Utility        Eventing Command Line Utility        Besitzt die digitale Signatur eines vertrauenswürdigen Herstellers        c:\windows\system32\wevtutil.exe        Heute, 03:34
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        Notepad        Notepad        Bekannt aus der Datenbank für weit verbreitete Software        c:\windows\system32\notepad.exe        Heute, 03:34
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        CTF Loader        CTF Loader        Besitzt die digitale Signatur eines vertrauenswürdigen Herstellers        c:\windows\syswow64\ctfmon.exe        Heute, 03:36
Aufgabe wurde gestartet        Programmkontrolle
Aufgabe wurde beendet        Programmkontrolle
Aufgabe wurde gestartet        Programmkontrolle
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        Extension CLSID Verification Host        Extension CLSID Verification Host        Bekannt aus der Datenbank für weit verbreitete Software        c:\windows\system32\verclsid.exe        Heute, 17:31
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        7z920.exe        7z920.exe        Bekannt aus der Datenbank für weit verbreitete Software        c:\users\home-pc\downloads\7z920.exe        Heute, 17:37
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        Application Experience Program Inventory Component        Application Experience Program Inventory Component        Bekannt aus der Datenbank für weit verbreitete Software        c:\windows\system32\aeinv.dll        Heute, 17:37
Aufgabe wurde gestartet        Programmkontrolle
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        7-Zip File Manager        7-Zip File Manager        Bekannt aus der Datenbank für weit verbreitete Software        c:\program files (x86)\7-zip\7zfm.exe        Heute, 17:41
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        7-Zip File Manager        7-Zip File Manager        Bekannt aus der Datenbank für weit verbreitete Software        c:\program files (x86)\7-zip\7zfm.exe        Heute, 17:41
Das Programm wurde zur Gruppe Vertrauenswürdig hinzugefügt        7-Zip GUI        7-Zip GUI        Bekannt aus der Datenbank für weit verbreitete Software        c:\program files (x86)\7-zip\7zg.exe        Heute, 17:42
Aufgabe wurde gestartet        Datei-Anti-Virus        Heute, 02:18
Aufgabe wurde gestartet        Datei-Anti-Virus        Heute, 02:19
Objekt (Datei) ist gepackt        C:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe        C:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe        PE_Patch        Malwarebytes Anti-Malware        Heute, 02:19
Objekt (Datei) ist gepackt        C:\windows\system32\WinUSBCoInstaller.dll/data0000.res        C:\windows\system32\WinUSBCoInstaller.dll/data0000.res        PE_Patch        Malwarebytes Anti-Malware        Heute, 02:24
Objekt (Datei) ist gepackt        C:\users\home-pc\downloads\HiJackThis204.exe        C:\users\home-pc\downloads\HiJackThis204.exe        UPX        Malwarebytes Anti-Malware        Heute, 02:26
Objekt (Datei) ist gepackt        C:\users\home-pc\appdata\roaming\DAEMON Tools Lite\MediaInfo\fonts\yrzXiAvgeQQdopyG8QSg8Q.eot        C:\users\home-pc\appdata\roaming\DAEMON Tools Lite\MediaInfo\fonts\yrzXiAvgeQQdopyG8QSg8Q.eot        EOT        DAEMON Tools Lite        Heute, 02:28
Aufgabe wurde gestartet        Datei-Anti-Virus        Heute, 02:53
Objekt (Datei) ist gepackt        C:\users\home-pc\appdata\local\temp\sPaLhwTG.exe.part        C:\users\home-pc\appdata\local\temp\sPaLhwTG.exe.part        UPX        Firefox        Heute, 03:25
Objekt (Datei) ist gepackt        C:\windows\erunt.exe        C:\windows\erunt.exe        UPX        erunt.exe        Heute, 03:33
Objekt (Datei) ist gepackt        C:\FRST\Hives\ERDNT.EXE        C:\FRST\Hives\ERDNT.EXE        UPX        erunt.exe        Heute, 03:33
Objekt (Datei) ist gepackt        C:\windows\mod_frst.exe        C:\windows\mod_frst.exe        UPX        Malwarebytes Anti-Malware        Heute, 03:33
Aufgabe wurde gestartet        Datei-Anti-Virus        Heute, 03:37
Aufgabe wurde beendet        Datei-Anti-Virus        Heute, 03:37
Aufgabe wurde gestartet        Datei-Anti-Virus        Heute, 17:24
Objekt (Datei) ist gepackt        C:\users\home-pc\downloads\gmer-19357.exe        C:\users\home-pc\downloads\gmer-19357.exe        UPX        Kaspersky Anti-Virus        Heute, 17:24
Objekt (Datei) ist gepackt        C:\users\home-pc\downloads\FRST64.exe/C:\eruntFRST\ERUNT.exe        C:\users\home-pc\downloads\FRST64.exe/C:\eruntFRST\ERUNT.exe        UPX        Kaspersky Anti-Virus        Heute, 17:24
Objekt (Datei) ist gepackt        C:\users\home-pc\downloads\FRST64.exe/C:\eruntFRST\ERDNT.E_E        C:\users\home-pc\downloads\FRST64.exe/C:\eruntFRST\ERDNT.E_E        UPX        Kaspersky Anti-Virus        Heute, 17:24
Objekt (Datei) ist gepackt        C:\users\home-pc\downloads\FRST64.exe/mod_frst.exe        C:\users\home-pc\downloads\FRST64.exe/mod_frst.exe        UPX        Kaspersky Anti-Virus        Heute, 17:24
Objekt (Datei) ist gepackt        C:\users\home-pc\downloads\gmer-19357.exe        C:\users\home-pc\downloads\gmer-19357.exe        UPX        Farbar Recovery Scan Tool        Heute, 17:30
Objekt (Datei) ist gepackt        C:\users\home-pc\downloads\HiJackThis204.exe        C:\users\home-pc\downloads\HiJackThis204.exe        UPX        Farbar Recovery Scan Tool        Heute, 17:30
Aufgabe wurde gestartet        Datei-Anti-Virus        Heute, 17:38
Aufgabe wurde gestartet        IM-Anti-Virus        Heute, 02:20
Aufgabe wurde gestartet        IM-Anti-Virus        Heute, 02:54
Aufgabe wurde gestartet        IM-Anti-Virus        Heute, 03:37
Aufgabe wurde beendet        IM-Anti-Virus        Heute, 03:37
Aufgabe wurde gestartet        IM-Anti-Virus        Heute, 17:24
Aufgabe wurde gestartet        IM-Anti-Virus        Heute, 17:39
Aufgabe wurde gestartet        Mail-Anti-Virus        Heute, 02:20
Aufgabe wurde gestartet        Mail-Anti-Virus        Heute, 02:54
Aufgabe wurde gestartet        Mail-Anti-Virus        Heute, 03:37
Aufgabe wurde beendet        Mail-Anti-Virus        Heute, 03:37
Aufgabe wurde gestartet        Mail-Anti-Virus        Heute, 17:24
Aufgabe wurde gestartet        Mail-Anti-Virus        Heute, 17:39
Aufgabe wurde gestartet        Schutz vor Netzwerkangriffen
Aufgabe wurde gestartet        Schutz vor Netzwerkangriffen
Aufgabe wurde gestartet        Schutz vor Netzwerkangriffen
Aufgabe wurde beendet        Schutz vor Netzwerkangriffen
Aufgabe wurde gestartet        Schutz vor Netzwerkangriffen
Aufgabe wurde gestartet        Schutz vor Netzwerkangriffen
Rootkit-Suche (abgebrochen)        Keine Bedrohungen gefunden        Abgebrochen        0        0        0        4 Minuten 7 Sekunden        Heute, 02:49
Aufgabe wurde gestartet        Aktivitätsmonitor
Aufgabe wurde gestartet        Aktivitätsmonitor
Aufgabe wurde gestartet        Aktivitätsmonitor
Aufgabe wurde beendet        Aktivitätsmonitor
Aufgabe wurde gestartet        Aktivitätsmonitor
Aufgabe wurde gestartet        Aktivitätsmonitor
Update der Antiviren-Datenbanken        Abgeschlossen        122,53 KB/s        Abgeschlossen        785,15 KB        Heute, 02:34
Update der Antiviren-Datenbanken        Abgeschlossen        144,50 KB/s        Abgeschlossen        1,96 MB        Heute, 17:25
Aufgabe wurde gestartet        Web-Anti-Virus        Heute, 02:20
Aufgabe wurde gestartet        Web-Anti-Virus        Heute, 02:54
Aufgabe wurde gestartet        Web-Anti-Virus        Heute, 03:37
Aufgabe wurde beendet        Web-Anti-Virus        Heute, 03:37
Aufgabe wurde gestartet        Web-Anti-Virus        Heute, 17:24
Aufgabe wurde gestartet        Web-Anti-Virus        Heute, 17:39
Bericht Malwarebytes:

Code:
<?xml version="1.0" encoding="UTF-16" ?>
<mbam-log>
<header>
<date>2014/11/28 02:45:48 +0100</date>
<logfile>mbam-log-2014-11-28 (02-45-46).xml</logfile>
<isadmin>yes</isadmin>
</header>
<engine>
<version>2.00.3.1025</version>
<malware-database>v2014.11.27.08</malware-database>
<rootkit-database>v2014.11.22.01</rootkit-database>
<license>trial</license>
<file-protection>enabled</file-protection>
<web-protection>enabled</web-protection>
<self-protection>disabled</self-protection>
</engine>
<system>
<osversion>Windows 8.1</osversion>
<arch>x64</arch>
<username>Home-PC</username>
<filesys>NTFS</filesys>
</system>
<summary>
<type>threat</type>
<result>completed</result>
<objects>314865</objects>
<time>192</time>
<processes>0</processes>
<modules>0</modules>
<keys>0</keys>
<values>0</values>
<datas>0</datas>
<folders>0</folders>
<files>1</files>
<sectors>0</sectors>
</summary>
<options>
<memory>enabled</memory>
<startup>enabled</startup>
<filesystem>enabled</filesystem>
<archives>enabled</archives>
<rootkits>disabled</rootkits>
<deeprootkit>disabled</deeprootkit>
<heuristics>enabled</heuristics>
<pup>warn</pup>
<pum>enabled</pum>
</options>
<items>
<file><path>C:\Users\Home-PC\Downloads\DTLite4491-0356.exe</path><vendor>PUP.Optional.OpenCandy</vendor><action>success</action><hash>c30195ab0a720a2cde85e9959a6b40c0</hash></file>
</items>
</mbam-log>
Und zum Schluss die protection.log:

Code:
<?xml version="1.0" encoding="UTF-8" ?>
<logs>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:18:17.623118+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="5c5c97be-873f-4fe0-8c70-70dfba4e17c6" result="Starting" subtype="Malware Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:18:17.638745+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="86f2f97f-d805-4dad-8da5-033cd255e8be" result="Started" subtype="Malware Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:18:17.638745+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="f07d6cfa-dea5-4f05-bda1-3808a2bbdf06" result="Starting" subtype="Malicious Website Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:18:17.857505+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="aec24552-6fc5-4f45-960f-455aeb58dea8" result="Started" subtype="Malicious Website Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:19:13.385682+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="4a8cc66b-270a-4540-a7ee-39d876f443c1" result="Starting" subtype="Malware Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:19:13.401307+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="aad3db10-60fa-4435-ba6d-cdb8d43bce85" result="Started" subtype="Malware Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:19:13.416933+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="50d79e5d-5958-4033-a206-b6f61e677531" result="Starting" subtype="Malicious Website Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:19:13.620067+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="c466633e-8440-49c1-b517-b0fa8c8506cc" result="Started" subtype="Malicious Website Protection"></record>
  <record severity="debug" LoggingEventType="6" datetime="2014-11-28T02:28:09.676871+01:00" source="Manual" type="Scan" username="SYSTEM" systemname="HOME" duration="306" last_modified_tag="51ae4510-9ac2-4f62-a48a-475cd0d17c0e" malwaredetections="0" nonmalwaredetections="1" scanresult="completed" scantype="threat" starttime="2014-11-28T02:22:19+01:00"></record>
  <record severity="debug" LoggingEventType="6" datetime="2014-11-28T02:53:09.268226+01:00" source="Manual" type="Scan" username="SYSTEM" systemname="HOME" duration="192" last_modified_tag="cf4c4837-76cb-49c6-89c9-53dbf47fcfa8" malwaredetections="0" nonmalwaredetections="1" scanresult="completed" scantype="threat" starttime="2014-11-28T02:45:48+01:00"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:53:37.416001+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="371bb162-e13c-42b3-a091-03f13fbd1cd3" result="Starting" subtype="Malware Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:53:37.416001+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="06648fc4-58d9-4861-ad02-bfef416a0a98" result="Started" subtype="Malware Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:53:37.416001+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="968a1ef3-922b-489e-8475-27a962f1feae" result="Starting" subtype="Malicious Website Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T02:53:37.619133+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="e39dff0e-b4ac-47a2-bbc5-0ab3ca037cb5" result="Started" subtype="Malicious Website Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T03:36:57.625767+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="e0c607df-4eaf-43e2-b953-4696ea68e748" result="Stopping" subtype="Malicious Website Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T03:36:57.688265+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="ed120ebe-3b5f-4489-bf04-d44e08795f5d" result="Stopped" subtype="Malicious Website Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T03:36:57.688265+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="ec0ee809-e050-415b-8c5d-6841158e17a2" result="Stopping" subtype="Malware Protection"></record>
  <record severity="debug" LoggingEventType="2" datetime="2014-11-28T03:36:58.078910+01:00" source="Protection" type="Protection" username="SYSTEM" systemname="HOME" last_modified_tag="e57c3ba0-5290-4291-8d73-a6c1600ee4b9" result="Stopped" subtype="Malware Protection"></record>
</logs>
Hoffe, jetzt habe ich es endlich richtig gemacht. Nochmal, sorry!

Gruß chiva!

schrauber 07.12.2014 21:00
Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

chiva 08.12.2014 13:33
Hier die Dateien:

Code:
# AdwCleaner v4.104 - Bericht erstellt am 08/12/2014 um 10:48:06
# Aktualisiert 05/12/2014 von Xplode
# Database : 2014-12-08.1 [Live]
# Betriebssystem : Windows 8.1 Pro  (64 bits)
# Benutzername : Home-PC - HOME
# Gestartet von : C:\Users\Home-PC\Downloads\AdwCleaner_4.104.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\Myfree Codec
Schlüssel Gelöscht : HKLM\SOFTWARE\Myfree Codec

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v33.1.1 (x86 de)


*************************

AdwCleaner[R0].txt - [913 octets] - [08/12/2014 10:45:42]
AdwCleaner[S0].txt - [780 octets] - [08/12/2014 10:48:06]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [839 octets] ##########
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.0 (11.29.2014:1)
OS: Windows 8.1 Pro x64
Ran by Home-PC on 08.12.2014 at 13:26:46,79
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\myfree codec"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 08.12.2014 at 13:28:44,79
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

schrauber 09.12.2014 11:28

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

chiva 09.12.2014 14:35
Hier die ESET.log:

Code:
ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internet# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=95e708ddf7143441939ce04f2c0fee9a
# engine=21470
# end=finished
# remove_checked=false
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-12-09 01:27:48
# local_time=2014-12-09 02:27:48 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='Kaspersky Internet Security'
# compatibility_mode=1292 16777213 100 100 1397 49606090 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 1103523 32007564 0 0
# scanned=147337
# found=0
# cleaned=0
# scan_time=863
und hier securitycheck:

Code:
Results of screen317's Security Check version 0.99.91 
  x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````
Kaspersky Internet Security 
Windows Defender             
 Antivirus up to date! 
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware Version 2.0.3.1025 
 Adobe Flash Player        15.0.0.223 
 Mozilla Firefox (33.1.1)
````````Process Check: objlist.exe by Laurent```````` 
 Kaspersky Lab Kaspersky Internet Security 14.0.0 avp.exe 
 Kaspersky Lab Kaspersky Internet Security 14.0.0 avpui.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````

schrauber 09.12.2014 17:27
und der Rest? :)

chiva 09.12.2014 18:48
FRST.txt:

Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-12-2014
Ran by Home-PC (administrator) on HOME on 09-12-2014 18:38:43
Running from C:\Users\Home-PC\Downloads
Loaded Profile: Home-PC (Available profiles: Home-PC)
Platform: Windows 8.1 Pro (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Atheros Commnucations) C:\Windows\System32\AdminService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\wmi64.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13262480 2012-12-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1256080 2012-12-03] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-27] (Synaptics Incorporated)
HKLM\...\Run: [SynLenovoGestureMgr] => C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [665400 2012-08-27] (Synaptics)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31072 2008-10-25] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174296 2014-03-04] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [148016 2014-03-04] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-4026047864-735787024-2206378200-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Hosts: 127.0.0.1 activation.acronis.com
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Home-PC\AppData\Roaming\Mozilla\Firefox\Profiles\4uu3420l.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: 卡巴斯基網址顧問 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com [2014-02-06]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: 虛擬鍵盤 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-02-06]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: 惡意網站攔截器 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com [2014-02-06]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Chặn quảng cáo - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com [2014-02-06]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com [2014-02-06]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - https://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx [2013-10-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Windows\system32\AdminService.exe [208384 2012-08-29] (Atheros Commnucations) [File not signed]
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-17] (Kaspersky Lab ZAO)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-05-24] (Disc Soft Ltd)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2014-01-23] () [File not signed]
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2014-02-06] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29792 2014-02-06] (Kaspersky Lab)
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [115296 2014-05-24] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [625760 2014-05-24] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-10-17] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2014-05-24] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-10-17] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [65120 2014-05-24] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178272 2014-02-06] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-10-01] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-09 18:37 - 2014-12-09 18:37 - 00000000 ____D () C:\Users\Home-PC\Downloads\FRST-OlderVersion
2014-12-09 14:33 - 2014-12-09 14:33 - 00852490 _____ () C:\Users\Home-PC\Desktop\SecurityCheck.exe
2014-12-09 14:03 - 2014-12-09 14:03 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-12-09 14:02 - 2014-12-09 14:03 - 02347384 _____ (ESET) C:\Users\Home-PC\Downloads\esetsmartinstaller_deu.exe
2014-12-08 13:28 - 2014-12-08 13:28 - 00000692 _____ () C:\Users\Home-PC\Desktop\JRT.txt
2014-12-08 13:26 - 2014-12-08 13:26 - 00000000 ____D () C:\Windows\ERUNT
2014-12-08 10:43 - 2014-12-08 10:48 - 00000000 ____D () C:\AdwCleaner
2014-12-08 10:43 - 2014-12-08 10:43 - 00000055 _____ () C:\AdwCleanerDebug.txt
2014-12-08 10:40 - 2014-12-08 10:40 - 01707646 _____ (Thisisu) C:\Users\Home-PC\Downloads\JRT.exe
2014-12-08 10:39 - 2014-12-08 10:39 - 02153472 _____ () C:\Users\Home-PC\Downloads\AdwCleaner_4.104.exe
2014-11-28 17:44 - 2014-11-28 17:44 - 00004886 _____ () C:\Users\Home-PC\Downloads\Addition.7z
2014-11-28 17:37 - 2014-11-28 17:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-11-28 17:37 - 2014-11-28 17:37 - 00000000 ____D () C:\Program Files (x86)\7-Zip
2014-11-28 17:36 - 2014-11-28 17:36 - 01110476 _____ () C:\Users\Home-PC\Downloads\7z920.exe
2014-11-28 03:33 - 2014-12-09 18:38 - 00014320 _____ () C:\Users\Home-PC\Downloads\FRST.txt
2014-11-28 03:33 - 2014-12-09 18:38 - 00000000 ____D () C:\FRST
2014-11-28 03:33 - 2014-11-28 03:34 - 00017827 _____ () C:\Users\Home-PC\Downloads\Addition.txt
2014-11-28 03:31 - 2014-11-28 03:31 - 00000546 _____ () C:\Users\Home-PC\Downloads\defogger_disable.log
2014-11-28 03:31 - 2014-11-28 03:31 - 00000168 _____ () C:\Users\Home-PC\defogger_reenable
2014-11-28 03:25 - 2014-12-09 18:37 - 02119680 _____ (Farbar) C:\Users\Home-PC\Downloads\FRST64.exe
2014-11-28 03:25 - 2014-11-28 03:25 - 00380416 _____ () C:\Users\Home-PC\Downloads\Gmer-19357.exe
2014-11-28 03:24 - 2014-11-28 03:24 - 00050477 _____ () C:\Users\Home-PC\Downloads\Defogger.exe
2014-11-27 17:27 - 2014-07-24 10:44 - 16874496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-11-27 17:27 - 2014-07-24 10:16 - 12730880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-11-27 17:26 - 2014-07-24 16:28 - 00419648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-11-27 17:26 - 2014-07-24 16:28 - 00412992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2014-11-27 17:26 - 2014-07-24 16:28 - 00280384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2014-11-27 17:26 - 2014-07-24 16:28 - 00143680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-11-27 17:26 - 2014-07-24 16:23 - 00125472 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2014-11-27 17:26 - 2014-07-24 16:20 - 00645592 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-11-27 17:26 - 2014-07-24 16:20 - 00263400 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2014-11-27 17:26 - 2014-07-24 16:16 - 02574208 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-11-27 17:26 - 2014-07-24 16:16 - 00211216 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2014-11-27 17:26 - 2014-07-24 16:07 - 02009920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-11-27 17:26 - 2014-07-24 16:05 - 01660048 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-11-27 17:26 - 2014-07-24 16:05 - 01519560 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-11-27 17:26 - 2014-07-24 16:05 - 01488008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-11-27 17:26 - 2014-07-24 16:05 - 01356840 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-11-27 17:26 - 2014-07-24 16:03 - 02141920 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2014-11-27 17:26 - 2014-07-24 16:03 - 00882136 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-11-27 17:26 - 2014-07-24 16:03 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-11-27 17:26 - 2014-07-24 16:03 - 00233888 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-11-27 17:26 - 2014-07-24 16:03 - 00205512 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2014-11-27 17:26 - 2014-07-24 14:50 - 00098048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2014-11-27 17:26 - 2014-07-24 14:48 - 02410976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-11-27 17:26 - 2014-07-24 14:48 - 00180208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVol.exe
2014-11-27 17:26 - 2014-07-24 14:46 - 00477200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-11-27 17:26 - 2014-07-24 14:36 - 02145472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2014-11-27 17:26 - 2014-07-24 14:36 - 00707536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-11-27 17:26 - 2014-07-24 14:36 - 00355800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2014-11-27 17:26 - 2014-07-24 14:36 - 00180720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2014-11-27 17:26 - 2014-07-24 12:51 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDRUM.DLL
2014-11-27 17:26 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-11-27 17:26 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-11-27 17:26 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-11-27 17:26 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-11-27 17:26 - 2014-07-24 12:51 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-11-27 17:26 - 2014-07-24 12:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-11-27 17:26 - 2014-07-24 12:45 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-11-27 17:26 - 2014-07-24 12:44 - 00674816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-11-27 17:26 - 2014-07-24 12:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-11-27 17:26 - 2014-07-24 12:42 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-11-27 17:26 - 2014-07-24 12:42 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NdisImPlatform.sys
2014-11-27 17:26 - 2014-07-24 12:41 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2014-11-27 17:26 - 2014-07-24 12:06 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2014-11-27 17:26 - 2014-07-24 12:05 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2014-11-27 17:26 - 2014-07-24 12:05 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-11-27 17:26 - 2014-07-24 11:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-11-27 17:26 - 2014-07-24 11:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-11-27 17:26 - 2014-07-24 11:51 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRUM.DLL
2014-11-27 17:26 - 2014-07-24 11:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-11-27 17:26 - 2014-07-24 11:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-11-27 17:26 - 2014-07-24 11:51 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-11-27 17:26 - 2014-07-24 11:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2014-11-27 17:26 - 2014-07-24 11:32 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2014-11-27 17:26 - 2014-07-24 11:20 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2014-11-27 17:26 - 2014-07-24 11:18 - 01089024 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-11-27 17:26 - 2014-07-24 11:12 - 00878592 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2014-11-27 17:26 - 2014-07-24 11:10 - 01844224 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2014-11-27 17:26 - 2014-07-24 11:10 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-11-27 17:26 - 2014-07-24 11:10 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-11-27 17:26 - 2014-07-24 11:10 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasnap.dll
2014-11-27 17:26 - 2014-07-24 11:05 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2014-11-27 17:26 - 2014-07-24 10:52 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2014-11-27 17:26 - 2014-07-24 10:42 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2014-11-27 17:26 - 2014-07-24 10:40 - 00557056 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2014-11-27 17:26 - 2014-07-24 10:39 - 00770048 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2014-11-27 17:26 - 2014-07-24 10:33 - 01741824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2014-11-27 17:26 - 2014-07-24 10:32 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2014-11-27 17:26 - 2014-07-24 10:27 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-11-27 17:26 - 2014-07-24 10:25 - 00832512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll
2014-11-27 17:26 - 2014-07-24 10:24 - 01817088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2014-11-27 17:26 - 2014-07-24 10:21 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-11-27 17:26 - 2014-07-24 10:18 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll
2014-11-27 17:26 - 2014-07-24 10:14 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-11-27 17:26 - 2014-07-24 10:12 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2014-11-27 17:26 - 2014-07-24 10:11 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-11-27 17:26 - 2014-07-24 10:11 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2014-11-27 17:26 - 2014-07-24 10:10 - 00540672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2014-11-27 17:26 - 2014-07-24 10:04 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2014-11-27 17:26 - 2014-07-24 10:04 - 00183808 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2014-11-27 17:26 - 2014-07-24 10:03 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-11-27 17:26 - 2014-07-24 10:02 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-11-27 17:26 - 2014-07-24 09:58 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2014-11-27 17:26 - 2014-07-24 09:53 - 01261056 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2014-11-27 17:26 - 2014-07-24 09:53 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2014-11-27 17:26 - 2014-07-24 09:49 - 01287680 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2014-11-27 17:26 - 2014-07-24 09:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-11-27 17:26 - 2014-07-24 09:48 - 00659968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2014-11-27 17:26 - 2014-07-24 09:47 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2014-11-27 17:26 - 2014-07-24 09:43 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2014-11-27 17:26 - 2014-07-24 09:39 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2014-11-27 17:26 - 2014-07-24 09:38 - 00371200 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-11-27 17:26 - 2014-07-24 09:36 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2014-11-27 17:26 - 2014-07-24 09:32 - 01532416 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-11-27 17:26 - 2014-07-24 09:30 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2014-11-27 17:26 - 2014-07-24 09:29 - 00439296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2014-11-27 17:26 - 2014-07-24 09:28 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2014-11-27 17:26 - 2014-07-24 09:23 - 01404416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2014-11-27 17:26 - 2014-07-24 09:22 - 00487936 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-11-27 17:26 - 2014-07-24 09:21 - 01231872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-11-27 17:26 - 2014-07-24 09:21 - 00302080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-11-27 17:26 - 2014-07-24 09:18 - 01144320 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2014-11-27 17:26 - 2014-07-24 09:18 - 00795136 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-11-27 17:26 - 2014-07-24 09:16 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2014-11-27 17:26 - 2014-07-24 09:16 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2014-11-27 17:26 - 2014-07-24 09:15 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2014-11-27 17:26 - 2014-07-24 09:15 - 00432128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2014-11-27 17:26 - 2014-07-24 09:13 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2014-11-27 17:26 - 2014-07-24 09:10 - 00889344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-11-27 17:26 - 2014-07-24 09:10 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2014-11-27 17:26 - 2014-07-24 09:08 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-11-27 17:26 - 2014-07-24 09:05 - 00448000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2014-11-27 17:26 - 2014-07-24 09:01 - 01992192 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-11-27 17:26 - 2014-07-24 09:00 - 02100736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2014-11-27 17:26 - 2014-07-24 08:58 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2014-11-27 17:26 - 2014-07-24 08:58 - 00288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2014-11-27 17:26 - 2014-07-24 08:54 - 01290752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-11-27 17:26 - 2014-07-24 08:50 - 01182208 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2014-11-27 17:26 - 2014-07-24 08:47 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2014-11-27 17:26 - 2014-07-24 08:44 - 01057792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2014-11-27 17:26 - 2014-07-24 08:41 - 00459264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2014-11-27 17:26 - 2014-07-24 08:28 - 01600000 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2014-11-27 17:26 - 2014-07-24 05:11 - 00513544 _____ () C:\Windows\SysWOW64\locale.nls
2014-11-27 17:26 - 2014-07-24 05:11 - 00513544 _____ () C:\Windows\system32\locale.nls
2014-11-27 17:26 - 2014-07-12 06:55 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll
2014-11-27 17:26 - 2014-07-12 05:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wisp.dll
2014-11-27 17:26 - 2014-07-04 13:59 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-11-27 17:26 - 2014-07-04 11:29 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\AppxSip.dll
2014-11-27 17:26 - 2014-07-04 11:20 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-11-27 17:26 - 2014-07-04 11:06 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2014-11-27 17:26 - 2014-07-04 11:00 - 01351168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2014-11-27 17:26 - 2014-07-04 10:30 - 00544768 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2014-11-27 17:26 - 2014-07-04 10:27 - 00474112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2014-11-27 17:26 - 2014-06-27 07:22 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-11-27 17:26 - 2014-06-26 01:32 - 01029632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2014-11-27 17:26 - 2014-06-26 01:29 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2014-11-27 17:26 - 2014-06-20 00:37 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-11-27 17:26 - 2014-06-19 03:13 - 00310080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-11-27 17:26 - 2014-06-14 07:03 - 02389504 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-11-27 17:26 - 2014-06-14 06:46 - 02071552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-11-27 17:26 - 2014-06-07 13:46 - 00216368 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2014-11-27 17:26 - 2014-06-07 11:20 - 00189016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2014-11-27 17:26 - 2014-06-05 15:00 - 01118040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-11-27 17:26 - 2014-06-05 11:18 - 01018368 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2014-11-27 17:26 - 2014-06-05 10:42 - 00889856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2014-11-27 17:26 - 2014-05-31 06:00 - 01463808 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2014-11-27 17:26 - 2014-05-31 05:18 - 01319936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2014-11-27 17:26 - 2014-05-29 07:23 - 00427008 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-11-27 17:26 - 2014-05-29 06:25 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-11-27 17:26 - 2014-05-26 08:26 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2014-11-27 17:26 - 2014-05-10 11:12 - 00387896 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2014-11-27 17:26 - 2014-05-10 09:46 - 00335680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2014-11-27 17:26 - 2014-05-06 05:41 - 00486744 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-11-27 17:26 - 2014-05-06 01:55 - 00391000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2014-11-27 17:26 - 2014-03-25 03:27 - 00160600 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2014-11-27 17:26 - 2014-03-25 03:27 - 00123920 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-11-27 17:26 - 2014-03-25 02:20 - 00128568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2014-11-27 17:26 - 2014-03-25 02:20 - 00127544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2014-11-27 17:25 - 2014-11-27 17:25 - 00000000 ____D () C:\Users\Home-PC\Downloads\wpkey_v1.4.7d
2014-11-27 17:25 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTT102.DLL
2014-11-27 17:25 - 2014-07-24 11:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTT102.DLL
2014-11-27 17:24 - 2014-11-27 17:24 - 00005593 _____ () C:\Users\Home-PC\Downloads\wpkey_v1.4.7d.zip
2014-11-26 19:55 - 2014-11-26 19:55 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-26 19:38 - 2014-04-14 04:29 - 01018880 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-26 18:03 - 2014-11-26 18:03 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\0E4F7434.sys
2014-11-26 17:27 - 2014-11-26 17:28 - 00000000 ___HD () C:\$SysReset
2014-11-25 21:28 - 2014-08-15 01:36 - 00146752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2014-11-25 21:28 - 2014-07-30 02:56 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-11-25 21:28 - 2014-07-29 06:22 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2014-11-25 21:05 - 2014-09-22 05:38 - 01519488 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-11-25 21:05 - 2014-09-22 04:06 - 00258368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-11-25 21:05 - 2014-09-22 04:06 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2014-11-25 21:05 - 2014-09-22 03:49 - 00035320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-11-25 21:05 - 2014-09-19 01:16 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-11-25 21:05 - 2014-09-02 23:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2014-11-25 21:05 - 2014-09-02 23:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2014-11-25 20:55 - 2014-05-30 04:03 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-11-25 20:44 - 2014-10-13 03:33 - 00116032 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-11-25 20:44 - 2014-10-11 01:58 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-25 20:44 - 2014-10-11 01:53 - 03607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-25 20:44 - 2014-10-08 08:30 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-11-25 20:44 - 2014-10-08 08:09 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-11-25 20:44 - 2014-10-08 07:27 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-11-25 20:44 - 2014-10-08 06:32 - 02773504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-11-25 20:44 - 2014-10-08 06:19 - 02459136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-11-25 20:44 - 2014-09-27 08:13 - 00104336 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2014-11-25 20:44 - 2014-09-27 06:24 - 00088800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2014-11-25 20:44 - 2014-09-27 04:38 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-25 20:44 - 2014-09-27 04:30 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-11-25 20:44 - 2014-09-27 04:17 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-25 20:44 - 2014-03-13 08:42 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-11-25 20:44 - 2014-03-13 07:51 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-11-25 20:43 - 2014-10-10 02:58 - 00177472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-25 20:43 - 2014-10-10 02:58 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-11-25 20:43 - 2014-10-10 02:44 - 00563976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-11-25 20:43 - 2014-10-08 08:37 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-25 20:43 - 2014-10-08 08:37 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-25 20:43 - 2014-10-08 08:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-11-25 20:43 - 2014-10-08 08:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2014-11-25 20:43 - 2014-10-08 07:56 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-11-25 20:43 - 2014-10-08 07:51 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-25 20:43 - 2014-10-08 07:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-25 20:43 - 2014-10-08 07:18 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2014-11-25 20:43 - 2014-10-08 07:17 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-25 20:43 - 2014-10-08 06:23 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-11-25 20:43 - 2014-08-07 03:12 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-11-25 20:43 - 2014-08-02 04:56 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-11-25 20:43 - 2014-06-20 02:48 - 01273184 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-11-25 20:43 - 2014-06-20 00:52 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-11-25 20:43 - 2014-06-13 02:15 - 00517528 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-11-25 20:43 - 2014-06-13 02:14 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-11-25 20:43 - 2014-06-13 01:10 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-11-25 20:43 - 2014-06-06 12:34 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-11-25 20:43 - 2014-04-11 09:25 - 00419928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2014-11-25 20:43 - 2014-04-11 04:54 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2014-11-25 20:43 - 2014-04-11 03:57 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2014-11-25 20:42 - 2014-10-18 10:55 - 00055776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-11-25 20:42 - 2014-10-18 09:09 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-11-25 20:42 - 2014-10-18 09:09 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-11-25 20:42 - 2014-10-18 08:25 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-11-25 20:42 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2014-11-25 20:42 - 2014-10-18 07:38 - 03557376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-11-25 20:42 - 2014-10-18 07:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-11-25 20:42 - 2014-10-18 07:26 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-11-25 20:42 - 2014-10-18 07:23 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-11-25 20:42 - 2014-10-18 07:23 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-11-25 20:42 - 2014-10-18 07:21 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-11-25 20:42 - 2014-10-18 07:20 - 01714176 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-11-25 20:42 - 2014-10-18 07:14 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-11-25 20:42 - 2014-10-18 07:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-11-25 20:42 - 2014-10-18 07:12 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-11-25 20:42 - 2014-10-18 07:11 - 00723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-11-25 20:42 - 2014-10-17 08:01 - 00789184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-25 20:42 - 2014-10-17 07:58 - 00602768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-25 20:42 - 2014-09-04 01:12 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-11-25 20:42 - 2014-09-04 01:01 - 00514048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-11-25 20:42 - 2014-08-23 08:48 - 02374784 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-11-25 20:42 - 2014-08-23 08:13 - 02084520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-11-25 20:42 - 2014-08-23 07:10 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-11-25 20:42 - 2014-08-23 06:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-11-25 20:42 - 2014-08-23 05:33 - 00796672 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2014-11-25 20:42 - 2014-08-16 05:08 - 01507648 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-11-25 20:42 - 2014-08-16 05:01 - 01710184 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-11-25 20:42 - 2014-08-16 04:58 - 01112512 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-11-25 20:42 - 2014-08-16 04:16 - 01205976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-11-25 20:42 - 2014-08-16 04:03 - 01467384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-11-25 20:42 - 2014-08-16 02:31 - 00838144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-11-25 20:42 - 2014-08-16 02:04 - 00359424 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2014-11-25 20:42 - 2014-08-16 01:58 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2014-11-25 20:42 - 2014-08-16 01:53 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2014-11-25 20:42 - 2014-08-16 01:46 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2014-11-25 20:42 - 2014-08-16 01:45 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2014-11-25 20:42 - 2014-08-16 01:43 - 00321024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2014-11-25 20:42 - 2014-08-16 01:43 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2014-11-25 20:42 - 2014-08-16 01:31 - 00914432 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-11-25 20:42 - 2014-08-16 01:31 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2014-11-25 20:42 - 2014-08-16 01:29 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-11-25 20:42 - 2014-08-16 01:23 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-11-25 20:42 - 2014-08-16 01:22 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-11-25 20:42 - 2014-08-16 01:22 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2014-11-25 20:42 - 2014-08-16 01:19 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-11-25 20:42 - 2014-08-16 01:18 - 04758528 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-11-25 20:42 - 2014-08-16 01:17 - 08757760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-11-25 20:42 - 2014-08-16 01:14 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2014-11-25 20:42 - 2014-08-16 01:13 - 06649344 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-11-25 20:42 - 2014-08-16 01:13 - 05902848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-11-25 20:42 - 2014-08-16 01:13 - 00840192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-11-25 20:42 - 2014-08-16 01:11 - 00920064 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-11-25 20:42 - 2014-08-16 01:10 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-11-25 20:42 - 2014-08-16 01:08 - 05777408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-11-25 20:42 - 2014-08-16 01:07 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-11-25 20:42 - 2014-08-02 01:18 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-11-25 20:42 - 2014-07-24 16:28 - 00468288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-11-25 20:42 - 2014-07-24 12:42 - 01200640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-11-25 20:42 - 2014-07-24 12:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2014-11-25 20:42 - 2014-07-24 11:09 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-11-25 20:42 - 2014-07-24 10:27 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-11-25 20:42 - 2014-07-15 19:16 - 03048880 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2014-11-25 20:42 - 2014-07-15 09:29 - 03118080 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-11-25 20:42 - 2014-07-15 09:22 - 02861056 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2014-11-25 20:42 - 2014-07-15 09:03 - 02344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-11-25 20:42 - 2014-04-11 06:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe
2014-11-25 20:41 - 2014-10-31 06:28 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-25 20:41 - 2014-10-31 06:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-11-25 20:41 - 2014-10-31 06:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-11-25 20:41 - 2014-10-31 06:10 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-11-25 20:41 - 2014-10-31 06:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-11-25 20:41 - 2014-10-31 06:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-11-25 20:41 - 2014-10-31 06:06 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-25 20:41 - 2014-10-31 06:06 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-11-25 20:41 - 2014-10-31 06:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-25 20:41 - 2014-10-31 06:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-25 20:41 - 2014-10-31 06:05 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-25 20:41 - 2014-10-31 06:05 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-11-25 20:41 - 2014-10-31 06:04 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-25 20:41 - 2014-10-31 05:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-25 20:41 - 2014-10-31 05:56 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-25 20:41 - 2014-10-31 05:54 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-11-25 20:41 - 2014-10-31 05:53 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-25 20:41 - 2014-10-31 05:52 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2014-11-25 20:41 - 2014-10-31 05:51 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-11-25 20:41 - 2014-10-31 05:51 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-25 20:41 - 2014-10-31 05:51 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-25 20:41 - 2014-10-31 05:50 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-25 20:41 - 2014-10-31 05:50 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-25 20:41 - 2014-10-31 05:40 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-11-25 20:41 - 2014-10-31 05:38 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-25 20:41 - 2014-10-31 05:30 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-25 20:41 - 2014-10-31 05:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-11-25 20:41 - 2014-10-31 05:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-11-25 20:41 - 2014-10-31 05:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-11-25 20:41 - 2014-10-31 05:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-25 20:41 - 2014-10-31 05:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-25 20:41 - 2014-10-31 05:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-11-25 20:41 - 2014-10-31 05:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-11-25 20:41 - 2014-10-31 05:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-25 20:41 - 2014-10-31 05:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-11-25 20:41 - 2014-10-31 05:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-11-25 20:41 - 2014-10-31 05:08 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-11-25 20:41 - 2014-10-31 05:06 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-25 20:41 - 2014-10-31 05:05 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-25 20:41 - 2014-10-31 05:05 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-25 20:41 - 2014-10-31 05:03 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-25 20:41 - 2014-10-31 04:59 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-25 20:41 - 2014-10-31 04:45 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-25 20:41 - 2014-10-31 04:44 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-11-25 20:41 - 2014-10-31 04:42 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-25 20:41 - 2014-10-31 04:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-11-25 20:41 - 2014-10-31 04:32 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-25 20:41 - 2014-10-31 04:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-11-25 20:41 - 2014-10-31 04:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-11-25 20:41 - 2014-10-31 04:27 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-11-25 20:41 - 2014-10-31 04:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-11-25 20:41 - 2014-10-31 04:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-11-25 20:41 - 2014-10-31 04:24 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-25 20:41 - 2014-10-31 04:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-11-25 20:41 - 2014-10-31 04:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-25 20:41 - 2014-10-31 04:23 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-11-25 20:41 - 2014-10-31 04:23 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-25 20:41 - 2014-10-31 04:22 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-25 20:41 - 2014-10-31 04:20 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-25 20:41 - 2014-10-31 04:18 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-25 20:41 - 2014-10-31 04:16 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-25 20:41 - 2014-10-31 04:15 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-25 20:41 - 2014-10-31 04:14 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-11-25 20:41 - 2014-10-31 04:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-25 20:41 - 2014-10-31 04:13 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2014-11-25 20:41 - 2014-10-31 04:12 - 00661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-11-25 20:41 - 2014-10-31 04:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-25 20:41 - 2014-10-31 04:11 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-25 20:41 - 2014-10-31 04:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-11-25 20:41 - 2014-10-31 04:02 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-25 20:41 - 2014-10-31 03:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-25 20:41 - 2014-10-31 03:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-11-25 20:41 - 2014-10-31 03:56 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-11-25 20:41 - 2014-10-31 03:56 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-11-25 20:41 - 2014-10-31 03:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-25 20:41 - 2014-10-31 03:53 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-11-25 20:41 - 2014-10-31 03:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-25 20:41 - 2014-10-31 03:51 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-11-25 20:41 - 2014-10-31 03:50 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-25 20:41 - 2014-10-31 03:48 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-11-25 20:41 - 2014-10-31 03:46 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-25 20:41 - 2014-10-31 03:46 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-11-25 20:41 - 2014-10-31 03:42 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-11-25 20:41 - 2014-10-31 03:40 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-25 20:41 - 2014-10-31 03:40 - 00325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-25 20:41 - 2014-10-31 03:39 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-25 20:41 - 2014-10-31 03:30 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-25 20:41 - 2014-10-31 03:26 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-11-25 20:41 - 2014-10-31 03:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-11-25 20:41 - 2014-10-31 03:17 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-25 20:41 - 2014-10-31 03:13 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-25 20:41 - 2014-10-31 03:11 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-25 20:39 - 2014-11-05 00:38 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-25 20:39 - 2014-11-04 01:10 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-25 20:39 - 2014-10-31 05:53 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-11-25 20:39 - 2014-10-31 05:49 - 00537088 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-25 20:39 - 2014-10-31 05:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-11-25 20:39 - 2014-05-13 08:01 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2014-11-25 20:39 - 2014-05-03 06:36 - 00997888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2014-11-25 20:39 - 2014-05-03 06:19 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2014-11-25 20:39 - 2014-05-03 06:08 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2014-11-25 20:39 - 2014-05-03 06:07 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2014-11-25 20:39 - 2014-05-03 05:46 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2014-11-25 20:39 - 2014-05-03 05:37 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2014-11-25 20:39 - 2014-05-03 05:37 - 00207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2014-11-25 20:39 - 2014-05-03 00:26 - 00050745 _____ () C:\Windows\system32\srms.dat
2014-11-25 20:39 - 2014-04-30 07:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys
2014-11-25 20:39 - 2014-04-30 07:41 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-11-25 20:39 - 2014-04-30 07:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2014-11-25 20:39 - 2014-04-30 07:41 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2014-11-25 20:39 - 2014-04-30 06:45 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-11-25 20:39 - 2014-04-30 05:48 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-11-25 20:39 - 2014-04-30 05:24 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-11-25 20:39 - 2014-04-30 05:23 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2014-11-25 20:39 - 2014-04-30 05:23 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-11-25 20:39 - 2014-04-30 05:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2014-11-25 20:39 - 2014-04-30 05:14 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-11-25 20:39 - 2014-04-30 04:59 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-11-25 20:39 - 2014-04-30 04:46 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2014-11-25 20:39 - 2014-04-30 04:46 - 00229888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-11-25 20:39 - 2014-04-30 04:46 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-11-25 20:39 - 2014-04-30 04:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2014-11-25 20:39 - 2014-04-30 04:42 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2014-11-25 20:39 - 2014-04-28 23:40 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2014-11-25 20:39 - 2014-04-26 19:41 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe
2014-11-25 20:39 - 2014-04-26 19:22 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll
2014-11-25 20:39 - 2014-04-26 19:04 - 00311296 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2014-11-25 20:39 - 2014-04-26 18:36 - 00794112 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2014-11-25 20:39 - 2014-04-26 17:39 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2014-11-25 20:39 - 2014-04-14 10:37 - 02125344 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2014-11-25 20:39 - 2014-04-14 09:08 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2014-11-25 20:39 - 2014-04-14 06:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll
2014-11-25 20:38 - 2014-10-23 06:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-25 20:38 - 2014-10-23 06:05 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-25 20:38 - 2014-08-23 06:18 - 02149376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-25 20:38 - 2014-08-23 06:03 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-25 20:38 - 2014-04-18 15:57 - 00032600 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll
2014-11-25 20:38 - 2014-04-18 10:44 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll
2014-11-25 20:38 - 2014-04-14 10:20 - 00324888 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2014-11-25 20:38 - 2014-04-14 09:01 - 00285144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2014-11-25 20:38 - 2014-04-11 05:51 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-11-25 20:38 - 2014-04-11 05:23 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2014-11-25 20:38 - 2014-04-09 12:53 - 00337240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-11-25 20:38 - 2014-04-09 07:39 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-11-25 20:38 - 2014-04-09 06:44 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2014-11-25 20:38 - 2014-04-09 04:33 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2014-11-25 20:38 - 2014-04-08 23:46 - 00086688 _____ (Microsoft Corporation) C:\Windows\system32\mrt_map.dll
2014-11-25 20:38 - 2014-04-08 23:46 - 00028320 _____ (Microsoft Corporation) C:\Windows\system32\mrt100.dll
2014-11-25 20:38 - 2014-04-08 19:54 - 00080032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt_map.dll
2014-11-25 20:38 - 2014-04-08 19:54 - 00026784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt100.dll
2014-11-25 20:38 - 2014-04-08 03:01 - 00589656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-11-25 20:38 - 2014-04-06 17:34 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-11-25 20:38 - 2014-04-06 17:34 - 00275800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-11-25 20:38 - 2014-04-06 17:30 - 00201920 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2014-11-25 20:38 - 2014-04-06 17:24 - 00360792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2014-11-25 20:38 - 2014-04-06 17:20 - 01403856 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2014-11-25 20:38 - 2014-04-06 17:20 - 01379064 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-11-25 20:38 - 2014-04-06 17:20 - 00765408 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2014-11-25 20:38 - 2014-04-06 17:20 - 00609448 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-11-25 20:38 - 2014-04-06 17:20 - 00491744 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-11-25 20:38 - 2014-04-06 17:20 - 00028408 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-11-25 20:38 - 2014-04-06 16:22 - 00178184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2014-11-25 20:38 - 2014-04-06 16:16 - 01209616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2014-11-25 20:38 - 2014-04-06 16:16 - 00669856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2014-11-25 20:38 - 2014-04-06 16:16 - 00518544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-11-25 20:38 - 2014-04-06 16:16 - 00387896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2014-11-25 20:38 - 2014-04-06 13:58 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2014-11-25 20:38 - 2014-04-06 13:51 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-11-25 20:38 - 2014-04-06 13:33 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2014-11-25 20:38 - 2014-04-06 13:24 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-11-25 20:38 - 2014-04-06 13:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-11-25 20:38 - 2014-04-06 12:26 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2014-11-25 20:38 - 2014-04-06 11:05 - 01222656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2014-11-25 20:38 - 2014-04-06 10:59 - 00982016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2014-11-25 20:38 - 2014-04-03 09:12 - 00307304 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-11-25 20:38 - 2014-04-03 09:12 - 00130144 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2014-11-25 20:38 - 2014-04-03 05:03 - 00230808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-11-25 20:38 - 2014-04-03 05:03 - 00111528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2014-11-25 20:38 - 2014-04-03 03:23 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll
2014-11-25 20:38 - 2014-04-03 03:22 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2014-11-25 20:38 - 2014-03-28 16:58 - 00407016 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2014-11-25 20:38 - 2014-03-27 06:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2014-11-25 20:38 - 2014-03-27 05:48 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2014-11-25 20:38 - 2014-03-27 04:15 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2014-11-25 20:38 - 2014-03-27 04:10 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-11-25 20:38 - 2014-03-21 05:14 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll
2014-11-25 20:38 - 2014-03-19 09:15 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-11-25 20:38 - 2014-03-19 08:24 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-11-25 20:38 - 2014-03-19 08:17 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2014-11-25 20:38 - 2014-03-18 06:00 - 07173120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2014-11-25 20:38 - 2014-03-18 05:52 - 05104640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2014-11-25 20:38 - 2014-03-17 06:09 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-11-25 20:38 - 2014-03-17 05:11 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-11-25 20:38 - 2014-03-14 07:26 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2014-11-25 20:38 - 2014-03-14 07:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2014-11-25 20:37 - 2014-10-07 07:28 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-25 20:37 - 2014-10-07 07:27 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-25 20:37 - 2014-10-07 07:27 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-25 20:37 - 2014-10-07 07:27 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-11-25 20:37 - 2014-10-07 07:27 - 00108432 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-25 20:37 - 2014-10-07 04:34 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-25 20:37 - 2014-10-07 04:34 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-25 20:37 - 2014-10-07 04:33 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-25 20:37 - 2014-10-07 04:30 - 04182016 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-25 20:37 - 2014-10-07 02:54 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-25 20:37 - 2014-10-07 02:46 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-25 20:37 - 2014-07-12 05:17 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2014-11-25 20:37 - 2014-06-06 14:04 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-11-25 20:37 - 2014-06-06 13:18 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-11-25 20:37 - 2014-06-02 03:10 - 00423768 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2014-11-25 20:37 - 2014-05-31 11:07 - 00440664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-11-25 20:37 - 2014-05-31 11:07 - 00089944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-11-25 20:37 - 2014-05-31 11:07 - 00027480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-11-25 20:37 - 2014-05-31 07:30 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-11-25 20:37 - 2014-05-31 07:27 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-11-25 20:37 - 2014-05-31 07:26 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-11-25 20:37 - 2014-05-31 05:01 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-11-25 20:37 - 2014-05-31 05:01 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-11-25 20:37 - 2014-05-31 05:01 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-11-25 20:37 - 2014-05-29 07:21 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2014-11-25 20:37 - 2014-05-27 10:56 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll
2014-11-25 20:37 - 2014-05-27 10:53 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll
2014-11-25 20:37 - 2014-05-19 07:31 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2014-11-25 20:37 - 2014-05-19 07:21 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-11-25 20:37 - 2014-05-19 06:23 - 00098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-11-25 20:37 - 2014-05-01 14:31 - 00055328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2014-11-25 20:37 - 2014-05-01 06:24 - 02834944 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2014-11-25 20:37 - 2014-04-30 05:43 - 01975296 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-11-25 20:37 - 2014-04-30 05:30 - 00668160 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2014-11-25 20:37 - 2014-04-30 05:26 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-11-25 20:37 - 2014-04-30 04:52 - 00590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2014-11-25 20:37 - 2014-04-30 04:47 - 01509888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-11-25 20:36 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-25 20:36 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-25 20:36 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-25 20:36 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-25 20:36 - 2014-09-10 07:25 - 00474432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-11-25 20:36 - 2014-09-08 04:07 - 02497344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-11-25 20:36 - 2014-09-08 04:07 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-11-25 20:36 - 2014-09-07 23:08 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml
2014-11-25 20:36 - 2014-09-04 23:30 - 00822272 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-11-25 20:36 - 2014-09-04 23:21 - 01053184 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-11-25 20:36 - 2014-09-04 04:05 - 00836176 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2014-11-25 20:36 - 2014-09-04 03:22 - 00670384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-11-25 20:36 - 2014-09-04 02:01 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2014-11-25 20:36 - 2014-09-04 01:32 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2014-11-25 20:36 - 2014-09-04 01:10 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2014-11-25 20:36 - 2014-09-04 00:57 - 00921600 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-11-25 20:36 - 2014-09-04 00:49 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-11-25 20:36 - 2014-08-31 01:17 - 00148800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-11-25 20:36 - 2014-08-31 01:15 - 21197152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-11-25 20:36 - 2014-08-30 23:59 - 18723112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-11-25 20:36 - 2014-08-30 23:05 - 00615424 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2014-11-25 20:36 - 2014-08-30 22:58 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2014-11-25 20:36 - 2014-08-30 22:04 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-11-25 20:36 - 2014-08-30 21:53 - 00239104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2014-11-25 20:36 - 2014-08-30 21:17 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-11-25 20:36 - 2014-08-28 03:55 - 07484224 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-11-25 20:36 - 2014-08-28 01:21 - 02480128 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-11-25 20:36 - 2014-08-28 01:06 - 02030592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-11-25 20:36 - 2014-08-23 06:14 - 13424128 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-11-25 20:36 - 2014-08-23 06:04 - 11820544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-11-25 20:36 - 2014-08-23 05:50 - 02714112 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2014-11-25 20:36 - 2014-08-02 01:51 - 00545792 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-11-25 20:36 - 2014-08-02 01:35 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2014-11-25 20:36 - 2014-07-24 12:22 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2014-11-25 20:36 - 2014-07-24 10:58 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2014-11-25 20:36 - 2014-07-24 10:54 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll
2014-11-25 20:36 - 2014-07-24 10:53 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2014-11-25 20:36 - 2014-07-24 10:13 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2014-11-25 20:36 - 2014-07-24 09:20 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2014-11-25 20:36 - 2014-07-24 09:08 - 00162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll


Alle Zeitangaben in WEZ +1. Es ist jetzt 05:09 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131