Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Windows 8: Virenbefall/Popups/dubiose Programme

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 01.01.2014, 18:07   #1
phenex
 
Windows 8: Virenbefall/Popups/dubiose Programme - Standard

Windows 8: Virenbefall/Popups/dubiose Programme



Frohes neues Jahr und hallo,

mein Schwiegervater hat sich einen neuen Laptop samt Windows 8 zugelegt und seit dem nur Probleme, also hab ichs mir mal angeschaut. Websiten werden umgeleitet, diverse Popups erscheinen, auch direkt in Windows und irgendwie befinden sich auch ein haufen merkwürdiger Programme auf dem Rechner, nur kenne ich mich 0 mit Windows 8 aus und weiss nun nicht, was eh schon vorinstalliert war. Ich habe zunächst Avast installiert und durchlaufen lassen. Es wurde auch eine Menge gefunden und in Quarantäne gestellt aber die Probleme bleiben. Bspw kann man die Startseite im Internetexplorer umstellen aber nach dem erneuten Aufrufen sind alle vorigen Einstellungen hinüber. Speed Up my PC und irgendwelche HD Video Optimierer rauben einem auch stetig die Sicht. Die Avast Logs sind für mich in Windows 8 auch irgendwie unfindbar. Da ich aktuell alles über den Teamviewer mache, habe ich das GMER-Log noch nicht erstellt, da man ja die Internetverbindung trennen müsste, d.h. ich müsste das beim nächsten Besuch die Tage dort machen aber vielleicht könnt ihr ja mit den restlichen Logs schon was anfangen. Vielen Dank schonmal!

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013 01
Ran by Karin (administrator) on KARIN on 01-01-2014 09:36:26
Running from C:\Users\Karin\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\iSafe\iSafeSvc.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\iSafe\iSafeSvc2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\iSafe\iSafeTray.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(Spotify Ltd) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Windows\BrowserChoice\browserchoice.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(TOSHIBA) C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Program Files\WindowsApps\Microsoft.BingMaps_2.0.2009.2356_x64__8wekyb3d8bbwe\Map.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
(TeamViewer GmbH) C:\Users\Karin\AppData\Local\Temp\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Users\Karin\AppData\Local\Temp\TeamViewer\Version9\TeamViewer_Desktop.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [] - [x]
HKLM\...\Run: [HotKeysCmds] - "C:\Windows\system32\hkcmd.exe"
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM\...\Run: [TSSSrv] - C:\Program Files (x86)\TOSHIBA\System Setting\TssSrv.exe [296520 2013-09-11] (TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] - C:\Program Files\TOSHIBA\Teco\TecoResident.exe [178016 2013-08-21] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] - C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] - C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-08-17] (TOSHIBA Corporation)
HKLM-x32\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2002-04-12] (Alcor Micro Corp.)
HKLM-x32\...\Run: [1.TPUReg] - C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2216800 2013-03-27] (TOSHIBA)
HKLM-x32\...\Run: [TSVU] - C:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Spotify Web Helper] - C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1199576 2013-09-06] (Spotify Ltd)
HKCU\...\Run: [BrowserChoice] - C:\Windows\BrowserChoice\browserchoice.exe [86816 2013-08-22] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll C:\Windows\system32\nvinitx.dll [ ] ()
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll C:\Windows\SysWOW64\nvinit.dll [326224 2013-08-09] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://toshiba13.msn.com/?pc=TEJB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TEJB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://toshiba.eu/symbaloo_c
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388257406&from=tugs&uid=TOSHIBAXMQ01ABF050_93KKCKOPTXX93KKCKOPT&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nationzoom.com/web/?type=ds&ts=1388257406&from=tugs&uid=TOSHIBAXMQ01ABF050_93KKCKOPTXX93KKCKOPT&q={searchTerms}
SearchScopes: HKLM - DefaultScope {7ED62170-54D0-4F8C-9692-DF338105F23E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {7ED62170-54D0-4F8C-9692-DF338105F23E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
SearchScopes: HKLM-x32 - DefaultScope {7ED62170-54D0-4F8C-9692-DF338105F23E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - {7ED62170-54D0-4F8C-9692-DF338105F23E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
SearchScopes: HKCU - DefaultScope {7ED62170-54D0-4F8C-9692-DF338105F23E} URL = 
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = 
BHO-x32: Re-markit - {14fbefe4-962f-4792-9a80-c74534d34636} - C:\Program Files (x86)\Re-markit\150.dll ()
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

==================== Services (Whitelisted) =================

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-08-22] (Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-31] (AVAST Software)
S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [38440 2013-09-19] (Just Develop It)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19792 2013-09-10] ()
R2 GFNEXSrv; C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe [163168 2013-03-27] ()
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 iSafeService; C:\Program Files (x86)\iSafe\iSafeSvc.exe [491688 2013-12-27] (Elex do Brasil Participações Ltda)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-07] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-07] (McAfee, Inc.)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116088 2013-07-18] (Toshiba Europe GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
R2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [499856 2013-12-28] (Cherished Technololgy LIMITED)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2013-12-31] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-31] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-31] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2013-12-31] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2013-12-31] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2013-12-31] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-31] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows (R) Win 7 DDK provider)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-08-07] (McAfee, Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-10] (Microsoft Corporation)
R1 iSafeNetFilter; C:\Program Files (x86)\iSafe\iSafeNetFilter.sys [44032 2013-12-27] (Elex do Brasil Participações Ltda)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-07] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-07] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69264 2013-08-07] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-07] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-07] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-07] (McAfee, Inc.)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R2 PEGAGFN; C:\Program Files (x86)\TOSHIBA\PasswordUtility\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation                           )
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-25] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-21] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-01 09:36 - 2014-01-01 09:36 - 00013205 _____ C:\Users\Karin\Downloads\FRST.txt
2014-01-01 09:36 - 2014-01-01 09:36 - 00000000 ____D C:\FRST
2014-01-01 09:34 - 2014-01-01 09:35 - 01931302 _____ (Farbar) C:\Users\Karin\Downloads\FRST64.exe
2014-01-01 09:32 - 2014-01-01 09:32 - 00000472 _____ C:\Windows\SysWOW64\defogger_disable.log
2014-01-01 09:32 - 2014-01-01 09:32 - 00000000 _____ C:\Users\Karin\defogger_reenable
2014-01-01 09:30 - 2014-01-01 09:30 - 00050477 _____ C:\Users\Karin\Downloads\Defogger.exe
2013-12-31 06:59 - 2013-12-31 06:59 - 00003544 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2013-12-31 06:14 - 2013-12-31 06:15 - 00000000 ____D C:\Windows\system32\MRT
2013-12-31 06:14 - 2013-12-01 14:42 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-31 05:32 - 2013-09-25 02:25 - 00783504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2013-12-31 05:32 - 2013-09-23 21:05 - 01245696 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2013-12-31 05:32 - 2013-09-21 03:18 - 01109936 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-31 05:32 - 2013-09-21 02:53 - 02131120 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2013-12-31 05:32 - 2013-09-21 02:53 - 01928656 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2013-12-31 05:32 - 2013-09-21 01:12 - 01370800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2013-12-31 05:32 - 2013-09-21 01:09 - 02142424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2013-12-31 05:32 - 2013-09-21 01:09 - 00796928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2013-12-31 05:32 - 2013-09-20 22:33 - 11366912 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2013-12-31 05:32 - 2013-09-20 22:06 - 01415168 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-31 05:32 - 2013-09-20 21:56 - 08712704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2013-12-31 05:32 - 2013-09-20 21:34 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2013-12-31 05:32 - 2013-09-20 21:10 - 12028416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2013-12-31 05:32 - 2013-09-20 21:05 - 08875008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2013-12-31 05:32 - 2013-09-20 20:49 - 04975104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2013-12-31 05:32 - 2013-09-20 20:48 - 07544320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2013-12-31 05:32 - 2013-09-20 20:45 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2013-12-31 05:32 - 2013-09-20 20:44 - 01662464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2013-12-31 05:32 - 2013-09-20 20:39 - 01455616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2013-12-31 05:31 - 2013-09-26 01:20 - 00556032 _____ (Microsoft Corporation) C:\Windows\system32\recimg.exe
2013-12-31 05:31 - 2013-09-26 00:24 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-31 05:31 - 2013-09-25 23:32 - 00638464 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2013-12-31 05:31 - 2013-09-25 23:14 - 00528896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2013-12-31 05:31 - 2013-09-25 00:58 - 00648648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2013-12-31 05:31 - 2013-09-24 23:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2013-12-31 05:31 - 2013-09-24 21:40 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2013-12-31 05:31 - 2013-09-23 22:55 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2013-12-31 05:31 - 2013-09-23 21:59 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2013-12-31 05:31 - 2013-09-23 21:54 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2013-12-31 05:31 - 2013-09-23 21:10 - 01741824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2013-12-31 05:31 - 2013-09-23 19:56 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2013-12-31 05:31 - 2013-09-21 04:10 - 00579416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-12-31 05:31 - 2013-09-21 04:10 - 00236376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2013-12-31 05:31 - 2013-09-21 04:10 - 00151384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2013-12-31 05:31 - 2013-09-21 03:50 - 00528048 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2013-12-31 05:31 - 2013-09-21 03:48 - 00534048 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2013-12-31 05:31 - 2013-09-21 03:48 - 00123480 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2013-12-31 05:31 - 2013-09-21 03:04 - 00419160 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2013-12-31 05:31 - 2013-09-21 02:56 - 01119576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-12-31 05:31 - 2013-09-21 02:56 - 00101208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-31 05:31 - 2013-09-21 02:53 - 01534504 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00996320 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00934856 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00366688 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-12-31 05:31 - 2013-09-21 02:51 - 01720552 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-31 05:31 - 2013-09-21 02:45 - 00171968 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-31 05:31 - 2013-09-21 01:23 - 00427096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2013-12-31 05:31 - 2013-09-21 01:23 - 00098104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2013-12-31 05:31 - 2013-09-21 01:12 - 01092896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2013-12-31 05:31 - 2013-09-21 01:09 - 01472048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-12-31 05:31 - 2013-09-21 01:09 - 00312936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2013-12-31 05:31 - 2013-09-20 23:58 - 00675328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-12-31 05:31 - 2013-09-20 23:57 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-12-31 05:31 - 2013-09-20 23:56 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-12-31 05:31 - 2013-09-20 23:55 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2013-12-31 05:31 - 2013-09-20 23:50 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2013-12-31 05:31 - 2013-09-20 23:17 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2013-12-31 05:31 - 2013-09-20 23:05 - 00835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-12-31 05:31 - 2013-09-20 22:55 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2013-12-31 05:31 - 2013-09-20 22:27 - 00911872 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2013-12-31 05:31 - 2013-09-20 22:01 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2013-12-31 05:31 - 2013-09-20 22:00 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2013-12-31 05:31 - 2013-09-20 21:59 - 00940544 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-12-31 05:31 - 2013-09-20 21:57 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\livessp.dll
2013-12-31 05:31 - 2013-09-20 21:50 - 00767488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2013-12-31 05:31 - 2013-09-20 21:43 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2013-12-31 05:31 - 2013-09-20 21:38 - 00365568 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2013-12-31 05:31 - 2013-09-20 21:37 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-12-31 05:31 - 2013-09-20 21:36 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2013-12-31 05:31 - 2013-09-20 21:31 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-12-31 05:31 - 2013-09-20 21:26 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2013-12-31 05:31 - 2013-09-20 21:20 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2013-12-31 05:31 - 2013-09-20 21:16 - 01503232 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2013-12-31 05:31 - 2013-09-20 21:13 - 00787968 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2013-12-31 05:31 - 2013-09-20 21:09 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2013-12-31 05:31 - 2013-09-20 21:08 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2013-12-31 05:31 - 2013-09-20 21:02 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2013-12-31 05:31 - 2013-09-20 20:58 - 00803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2013-12-31 05:31 - 2013-09-20 20:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2013-12-31 05:31 - 2013-09-20 20:42 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2013-12-31 05:31 - 2013-09-20 20:38 - 01057792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2013-12-31 05:31 - 2013-09-20 20:38 - 00102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2013-12-31 05:31 - 2013-09-20 20:37 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2013-12-31 05:31 - 2013-09-20 20:36 - 01185280 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2013-12-31 05:31 - 2013-09-18 23:19 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersRes.dll
2013-12-31 05:31 - 2013-09-18 22:39 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2013-12-31 05:31 - 2013-09-18 22:27 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2013-12-31 05:31 - 2013-09-18 22:23 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WorkFoldersRes.dll
2013-12-31 05:31 - 2013-09-18 22:17 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2013-12-31 05:31 - 2013-09-18 21:47 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.dll
2013-12-31 05:31 - 2013-09-18 21:29 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2013-12-31 05:31 - 2013-09-18 21:08 - 01150976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2013-12-31 05:31 - 2013-09-18 21:01 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2013-12-31 05:31 - 2013-09-18 20:37 - 00802816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2013-12-31 05:31 - 2013-09-18 20:32 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2013-12-31 05:31 - 2013-09-18 20:27 - 01730560 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2013-12-31 05:31 - 2013-09-18 20:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2013-12-31 05:31 - 2013-09-18 20:25 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2013-12-31 05:31 - 2013-09-18 20:11 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2013-12-31 05:31 - 2013-09-18 20:10 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-12-31 05:31 - 2013-09-18 19:59 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2013-12-31 05:31 - 2013-09-18 19:55 - 00552448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2013-12-31 05:31 - 2013-09-18 19:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2013-12-31 05:31 - 2013-09-18 19:32 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2013-12-31 05:31 - 2013-09-17 01:18 - 00467800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2013-12-31 05:31 - 2013-09-16 22:58 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-31 05:31 - 2013-09-16 21:26 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-12-31 05:31 - 2013-09-16 21:15 - 01225728 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2013-12-31 05:31 - 2013-09-16 21:00 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2013-12-31 05:31 - 2013-09-16 20:09 - 01160704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2013-12-31 05:31 - 2013-09-16 20:08 - 00738304 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2013-12-31 05:31 - 2013-09-16 19:28 - 00695808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2013-12-31 05:31 - 2013-09-14 06:06 - 00175960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VerifierExt.sys
2013-12-31 05:31 - 2013-09-14 06:06 - 00066904 _____ (Microsoft Corporation) C:\Windows\system32\PSHED.DLL
2013-12-31 05:31 - 2013-09-14 03:39 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2013-12-31 05:31 - 2013-09-14 03:38 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys
2013-12-31 05:31 - 2013-09-13 01:52 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\SensorsClassExtension.dll
2013-12-31 05:31 - 2013-09-13 00:54 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2013-12-31 05:31 - 2013-09-13 00:10 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2013-12-31 05:31 - 2013-09-12 23:55 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2013-12-31 05:31 - 2013-09-12 23:30 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2013-12-31 05:31 - 2013-09-12 04:33 - 06353952 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2013-12-31 05:31 - 2013-09-11 23:37 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2013-12-31 05:31 - 2013-09-11 01:32 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2013-12-31 05:31 - 2013-09-11 01:31 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2013-12-31 05:31 - 2013-09-11 01:31 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-12-31 05:31 - 2013-09-10 23:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2013-12-31 05:31 - 2013-09-10 23:09 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2013-12-31 05:31 - 2013-09-07 08:12 - 00458616 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2013-12-31 05:31 - 2013-09-07 08:12 - 00407016 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2013-12-31 05:31 - 2013-09-07 06:45 - 00408480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2013-12-31 05:31 - 2013-09-07 06:45 - 00368736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2013-12-31 05:31 - 2013-09-07 04:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\fdprint.dll
2013-12-31 05:31 - 2013-09-07 04:29 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2013-12-31 05:31 - 2013-09-07 04:00 - 00256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdprint.dll
2013-12-31 05:31 - 2013-09-07 03:50 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll
2013-12-31 05:31 - 2013-09-07 03:45 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2013-12-31 05:31 - 2013-09-07 03:30 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2013-12-31 05:31 - 2013-09-07 03:22 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2013-12-31 05:31 - 2013-09-07 03:13 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2013-12-31 05:31 - 2013-09-07 03:07 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2013-12-31 05:31 - 2013-09-07 02:51 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2013-12-31 05:31 - 2013-09-07 02:51 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2013-12-31 05:31 - 2013-09-04 23:39 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2013-12-31 05:31 - 2013-09-04 22:42 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2013-12-31 05:31 - 2013-09-04 21:40 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Utilman.exe
2013-12-31 05:31 - 2013-09-03 23:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2013-12-31 05:31 - 2013-09-03 22:16 - 00358912 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll
2013-12-31 05:31 - 2013-09-03 21:47 - 00492032 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2013-12-31 05:31 - 2013-09-03 21:12 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\DscCoreConfProv.dll
2013-12-31 05:31 - 2013-09-03 20:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2013-12-31 05:31 - 2013-09-03 20:48 - 00326656 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2013-12-31 05:31 - 2013-09-03 20:35 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2013-12-31 05:31 - 2013-08-31 06:18 - 00205024 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2013-12-31 05:31 - 2013-08-31 04:15 - 00180232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2013-12-31 05:31 - 2013-08-31 04:04 - 00638464 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2013-12-31 05:31 - 2013-08-31 02:46 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched20.dll
2013-12-31 05:31 - 2013-08-31 02:00 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2013-12-31 05:31 - 2013-08-31 01:25 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2013-12-31 05:31 - 2013-08-29 23:31 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2013-12-31 05:31 - 2013-08-28 00:03 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2013-12-31 05:31 - 2013-08-27 23:55 - 00334336 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2013-12-31 05:31 - 2013-08-27 23:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2013-12-31 05:31 - 2013-08-27 23:09 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2013-12-31 05:31 - 2013-08-27 23:04 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2013-12-31 05:31 - 2013-08-26 23:44 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2013-12-31 05:31 - 2013-08-26 22:09 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2013-12-31 05:31 - 2013-08-26 21:24 - 00813568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2013-12-31 05:22 - 2013-10-10 03:26 - 02801664 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2013-12-31 05:20 - 2013-10-10 02:34 - 01085952 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2013-12-31 05:19 - 2013-10-10 03:05 - 01019392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2013-12-31 05:19 - 2013-10-10 02:27 - 00869888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2013-12-31 05:15 - 2013-11-05 12:21 - 21196664 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-31 05:14 - 2013-11-05 10:51 - 18642504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-12-31 05:14 - 2013-11-05 08:20 - 13925888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-12-31 05:14 - 2013-11-05 08:11 - 18577408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2013-12-31 05:13 - 2013-11-11 15:41 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-31 05:13 - 2013-11-11 15:40 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-31 05:13 - 2013-11-11 15:27 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2013-12-31 05:13 - 2013-11-11 15:24 - 00840704 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2013-12-31 05:13 - 2013-11-08 22:37 - 01756160 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2013-12-31 05:13 - 2013-11-08 02:26 - 00358896 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2013-12-31 05:13 - 2013-11-07 20:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2013-12-31 05:13 - 2013-11-07 20:28 - 13177344 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2013-12-31 05:13 - 2013-11-07 20:26 - 11674624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-12-31 05:13 - 2013-11-07 20:16 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2013-12-31 05:13 - 2013-11-07 20:15 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2013-12-31 05:13 - 2013-11-07 19:41 - 01302528 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2013-12-31 05:13 - 2013-11-05 06:19 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2013-12-31 05:13 - 2013-11-05 06:03 - 00637952 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2013-12-31 05:13 - 2013-11-05 05:57 - 00479744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2013-12-31 05:13 - 2013-11-05 05:33 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2013-12-31 05:13 - 2013-11-05 05:32 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2013-12-31 05:13 - 2013-11-04 09:13 - 01530200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-31 05:13 - 2013-11-04 09:13 - 00382808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-12-31 05:13 - 2013-11-04 03:50 - 02143744 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2013-12-31 05:13 - 2013-11-04 02:32 - 02570240 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2013-12-31 05:13 - 2013-11-03 17:30 - 01765376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2013-12-31 05:13 - 2013-10-31 22:08 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2013-12-31 05:13 - 2013-10-30 16:58 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2013-12-31 05:13 - 2013-10-30 16:42 - 07399256 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-31 05:13 - 2013-10-30 16:33 - 01642016 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-12-31 05:13 - 2013-10-30 16:33 - 01506680 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-12-31 05:13 - 2013-10-30 16:33 - 01476184 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-12-31 05:13 - 2013-10-30 16:33 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-12-31 05:13 - 2013-10-17 03:21 - 02896896 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2013-12-31 05:13 - 2013-10-17 02:36 - 02266624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2013-12-31 05:13 - 2013-10-10 03:53 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2013-12-31 05:13 - 2013-10-10 03:21 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2013-12-31 05:13 - 2013-10-05 06:21 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-12-31 05:13 - 2013-10-05 06:21 - 00516496 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-12-31 05:13 - 2013-10-05 04:05 - 01765384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-12-31 05:13 - 2013-10-05 04:05 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-12-31 05:12 - 2013-11-08 21:56 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2013-12-31 05:11 - 2013-11-10 18:48 - 00039768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2013-12-31 05:11 - 2013-10-25 17:54 - 00146776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\SerCx2.sys
2013-12-31 05:10 - 2013-11-07 19:14 - 00922624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2013-12-31 05:08 - 2013-12-31 05:08 - 00000000 ____D C:\Users\Karin\AppData\Roaming\TeamViewer
2013-12-31 05:08 - 2013-11-09 03:55 - 00325464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2013-12-31 05:08 - 2013-11-01 03:39 - 00086872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2013-12-31 05:07 - 2013-12-31 05:07 - 04571480 _____ (TeamViewer) C:\Users\Karin\Desktop\TeamViewerQS_de.exe
2013-12-31 05:07 - 2013-10-24 01:31 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2013-12-31 05:06 - 2013-11-04 05:07 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2013-12-31 05:06 - 2013-11-03 18:28 - 01816576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2013-12-31 05:06 - 2013-10-24 01:12 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2013-12-31 05:05 - 2013-10-31 21:57 - 00544768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2013-12-31 04:58 - 2013-11-07 20:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2013-12-31 04:55 - 2013-10-22 00:18 - 01287064 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-31 04:55 - 2013-10-21 23:55 - 02328872 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-12-31 04:55 - 2013-10-21 22:03 - 02065448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-12-31 04:55 - 2013-10-21 17:53 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2013-12-31 04:55 - 2013-10-10 08:23 - 03395920 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2013-12-31 04:55 - 2013-10-08 02:13 - 02551640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-31 04:55 - 2013-10-06 18:13 - 03532288 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-12-31 04:55 - 2013-10-04 23:39 - 06639616 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-12-31 04:55 - 2013-10-04 00:10 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2013-12-31 04:55 - 2013-09-17 01:06 - 01067080 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2013-12-31 04:55 - 2013-09-16 22:31 - 00883184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2013-12-31 04:55 - 2013-09-14 06:07 - 02134120 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2013-12-31 04:54 - 2013-10-23 03:29 - 00044936 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2013-12-31 04:54 - 2013-10-23 03:21 - 00155480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-31 04:54 - 2013-10-23 03:13 - 00171864 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_8086.dll
2013-12-31 04:54 - 2013-10-21 21:15 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2013-12-31 04:54 - 2013-10-21 20:04 - 00618496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2013-12-31 04:54 - 2013-10-21 20:02 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-12-31 04:54 - 2013-10-21 19:56 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2013-12-31 04:54 - 2013-10-21 19:44 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2013-12-31 04:54 - 2013-10-21 18:38 - 01362944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2013-12-31 04:54 - 2013-10-21 18:22 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2013-12-31 04:54 - 2013-10-21 18:07 - 02617344 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-31 04:54 - 2013-10-21 17:47 - 02295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-12-31 04:54 - 2013-10-19 00:51 - 00481392 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2013-12-31 04:54 - 2013-10-18 23:12 - 00380656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2013-12-31 04:54 - 2013-10-18 21:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-31 04:54 - 2013-10-18 20:48 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2013-12-31 04:54 - 2013-10-18 20:03 - 00531968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2013-12-31 04:54 - 2013-10-18 19:26 - 01231360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2013-12-31 04:54 - 2013-10-18 19:14 - 00888832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2013-12-31 04:54 - 2013-10-17 07:42 - 01399176 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2013-12-31 04:54 - 2013-10-17 07:42 - 01373872 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2013-12-31 04:54 - 2013-10-17 06:04 - 01204968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2013-12-31 04:54 - 2013-10-16 01:34 - 00518656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2013-12-31 04:54 - 2013-10-16 01:33 - 00631296 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2013-12-31 04:54 - 2013-10-12 19:06 - 00258904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2013-12-31 04:54 - 2013-10-12 18:43 - 00708616 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2013-12-31 04:54 - 2013-10-10 08:44 - 00031064 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll
2013-12-31 04:54 - 2013-10-10 08:26 - 00317616 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-31 04:54 - 2013-10-10 08:26 - 00104320 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2013-12-31 04:54 - 2013-10-10 06:53 - 00235960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-12-31 04:54 - 2013-10-10 06:53 - 00088272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2013-12-31 04:54 - 2013-10-10 03:38 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-12-31 04:54 - 2013-10-08 21:40 - 00385528 _____ C:\Windows\system32\ApnDatabase.xml
2013-12-31 04:54 - 2013-10-08 02:28 - 00523096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2013-12-31 04:54 - 2013-10-07 22:46 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2013-12-31 04:54 - 2013-10-07 21:58 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2013-12-31 04:54 - 2013-10-07 21:50 - 00656384 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-12-31 04:54 - 2013-10-07 21:48 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-12-31 04:54 - 2013-10-07 21:15 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-12-31 04:54 - 2013-10-07 21:09 - 01160704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2013-12-31 04:54 - 2013-10-07 20:50 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-12-31 04:54 - 2013-10-07 20:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2013-12-31 04:54 - 2013-10-06 23:21 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-12-31 04:54 - 2013-10-05 07:25 - 00057176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2013-12-31 04:54 - 2013-10-05 06:21 - 00699840 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-12-31 04:54 - 2013-10-05 04:05 - 00578952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-12-31 04:54 - 2013-10-05 03:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-12-31 04:54 - 2013-10-05 03:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-12-31 04:54 - 2013-10-05 03:00 - 01200640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-12-31 04:54 - 2013-10-05 01:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-12-31 04:54 - 2013-10-05 01:18 - 01011712 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2013-12-31 04:54 - 2013-10-05 01:07 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2013-12-31 04:54 - 2013-10-05 00:56 - 01147904 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2013-12-31 04:54 - 2013-10-05 00:55 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2013-12-31 04:54 - 2013-10-05 00:40 - 00795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2013-12-31 04:54 - 2013-10-05 00:21 - 00920064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2013-12-31 04:54 - 2013-10-05 00:15 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2013-12-31 04:54 - 2013-10-04 23:43 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-31 04:54 - 2013-10-04 23:35 - 00411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-31 04:54 - 2013-10-04 23:32 - 05769728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-12-31 04:54 - 2013-09-18 21:04 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2013-12-31 04:54 - 2013-09-17 01:06 - 00465960 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2013-12-31 04:54 - 2013-09-16 22:31 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2013-12-31 04:54 - 2013-09-16 20:37 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll
2013-12-31 04:54 - 2013-09-14 06:00 - 00391512 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2013-12-31 04:54 - 2013-09-14 04:39 - 01799944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2013-12-31 04:54 - 2013-09-14 04:33 - 00345552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2013-12-31 04:54 - 2013-09-14 01:11 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2013-12-31 04:54 - 2013-09-12 00:08 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2013-12-31 04:54 - 2013-09-11 23:44 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2013-12-31 04:54 - 2013-09-11 23:37 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2013-12-31 04:54 - 2013-09-11 23:21 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2013-12-31 04:54 - 2013-09-11 23:16 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2013-12-31 04:54 - 2013-09-09 21:26 - 04599808 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-12-31 04:54 - 2013-09-09 20:52 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\msched.dll
2013-12-31 04:54 - 2013-09-09 20:34 - 03934208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-12-31 04:53 - 2013-10-21 18:13 - 01704448 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-12-31 04:53 - 2013-10-05 00:24 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2013-12-31 04:53 - 2013-09-14 02:05 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2013-12-31 04:53 - 2013-09-13 00:22 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2013-12-31 04:53 - 2013-09-12 23:47 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe
2013-12-31 04:53 - 2013-09-12 00:45 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2013-12-31 04:53 - 2013-09-12 00:08 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2013-12-31 04:53 - 2013-09-12 00:02 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2013-12-31 04:53 - 2013-09-11 23:37 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2013-12-31 04:53 - 2013-09-11 23:01 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2013-12-31 04:30 - 2013-12-31 04:30 - 00001993 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-31 04:30 - 2013-12-31 04:30 - 00000000 ____D C:\Users\Karin\AppData\Roaming\AVAST Software
2013-12-31 04:29 - 2014-01-01 09:16 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-31 04:29 - 2013-12-31 04:30 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-31 04:29 - 2013-12-31 04:29 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-12-31 04:28 - 2013-12-31 04:28 - 00000000 ____D C:\Program Files\AVAST Software
2013-12-31 04:26 - 2013-12-31 04:26 - 00000000 ____D C:\ProgramData\AVAST Software
2013-12-31 04:17 - 2013-12-31 04:17 - 00000000 ___RD C:\Windows\BrowserChoice
2013-12-29 11:58 - 2013-09-25 22:51 - 00669184 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2013-12-29 11:58 - 2013-09-25 22:34 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2013-12-29 11:58 - 2013-09-25 22:34 - 00515072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2013-12-29 11:52 - 2013-11-19 02:30 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-12-29 11:51 - 2013-10-19 00:53 - 00075360 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-29 11:51 - 2013-10-18 23:14 - 00070680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-29 11:51 - 2013-10-11 05:24 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2013-12-29 11:51 - 2013-10-11 05:03 - 00621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2013-12-29 11:51 - 2013-10-03 01:16 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2013-12-29 11:51 - 2013-10-03 01:02 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2013-12-29 11:51 - 2013-10-02 03:00 - 01286552 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2013-12-29 11:51 - 2013-10-02 01:47 - 01018960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2013-12-29 11:51 - 2013-09-30 19:42 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2013-12-29 11:51 - 2013-09-30 19:36 - 00977408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2013-12-29 11:50 - 2013-10-16 07:58 - 01943536 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-29 11:50 - 2013-10-16 05:54 - 01581968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-12-29 11:45 - 2013-11-07 23:21 - 04191744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-29 11:44 - 2013-10-23 03:01 - 00872840 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-12-29 11:44 - 2013-10-23 00:59 - 00698232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2013-12-29 11:42 - 2013-10-15 00:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-29 11:42 - 2013-10-15 00:03 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-29 11:42 - 2013-10-05 06:21 - 01341288 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-29 11:42 - 2013-10-05 00:39 - 01067008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-12-29 11:41 - 2013-11-26 03:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-29 11:41 - 2013-11-26 02:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-29 11:41 - 2013-11-26 01:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-29 11:41 - 2013-11-26 00:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-29 11:41 - 2013-11-26 00:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-29 11:41 - 2013-11-26 00:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-29 11:41 - 2013-11-25 23:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-29 11:41 - 2013-11-25 23:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-29 11:41 - 2013-11-25 23:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-29 11:41 - 2013-11-25 22:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-29 11:41 - 2013-11-25 22:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-29 11:41 - 2013-11-25 22:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-29 11:40 - 2013-11-26 00:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-29 11:40 - 2013-11-26 00:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-29 11:40 - 2013-11-25 23:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-29 11:40 - 2013-11-25 22:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-29 11:40 - 2013-11-25 22:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-28 17:11 - 2013-10-12 13:48 - 00828416 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2013-12-28 17:11 - 2013-10-12 13:34 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-28 17:10 - 2013-11-08 22:34 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2013-12-28 17:10 - 2013-11-08 22:34 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2013-12-28 17:10 - 2013-11-08 21:52 - 00240128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2013-12-28 17:10 - 2013-10-12 18:48 - 00136536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2013-12-28 17:09 - 2013-11-22 20:34 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-28 17:09 - 2013-11-22 20:13 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-28 11:06 - 2013-11-22 19:32 - 04105728 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2013-12-28 11:06 - 2013-11-22 19:10 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2013-12-28 11:04 - 2013-12-28 11:05 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2013-12-28 11:04 - 2013-12-28 11:05 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-12-28 11:04 - 2013-12-28 11:04 - 00001110 _____ C:\Users\Karin\Desktop\MyPC Backup.lnk
2013-12-28 11:03 - 2014-01-01 09:24 - 00000284 _____ C:\Windows\Tasks\SpeedUpMyPC Startup.job
2013-12-28 11:03 - 2013-12-31 07:00 - 00000290 _____ C:\Windows\Tasks\SpeedUpMyPC Maintenance.job
2013-12-28 11:03 - 2013-12-28 11:04 - 00003186 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance
2013-12-28 11:03 - 2013-12-28 11:04 - 00002490 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Startup
2013-12-28 11:03 - 2013-12-28 11:04 - 00000000 ____D C:\ProgramData\WPM
2013-12-28 11:03 - 2013-12-28 11:03 - 00001192 _____ C:\Users\Public\Desktop\SpeedUpMyPC.lnk
2013-12-28 11:03 - 2013-12-28 11:03 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Uniblue
2013-12-28 11:03 - 2013-12-28 11:03 - 00000000 ____D C:\Program Files (x86)\Uniblue
2013-12-28 11:02 - 2013-12-28 11:02 - 00000396 _____ C:\Windows\Tasks\Re-markit Update.job
2013-12-28 11:02 - 2013-12-28 11:02 - 00000000 ____D C:\Program Files (x86)\Re-markit
2013-12-28 10:59 - 2013-12-28 10:59 - 741086122 _____ C:\Windows\MEMORY.DMP
2013-12-28 10:59 - 2013-12-28 10:59 - 00302344 _____ C:\Windows\Minidump\122813-31421-01.dmp
2013-12-28 10:59 - 2013-12-28 10:59 - 00000000 ____D C:\Windows\Minidump
2013-12-28 07:08 - 2014-01-01 09:14 - 00002116 _____ C:\Windows\Tasks\Plus-HD-1.2-firefoxinstaller.job
2013-12-28 07:08 - 2014-01-01 09:14 - 00001988 _____ C:\Windows\Tasks\Plus-HD-1.2-chromeinstaller.job
2013-12-28 07:08 - 2014-01-01 09:14 - 00001242 _____ C:\Windows\Tasks\Plus-HD-1.2-codedownloader.job
2013-12-28 07:08 - 2013-12-28 11:03 - 00004246 _____ C:\Windows\System32\Tasks\Plus-HD-1.2-codedownloader
2013-12-28 07:08 - 2013-12-28 11:03 - 00001056 _____ C:\Users\Public\Desktop\VideoPlayer.lnk
2013-12-28 07:08 - 2013-12-28 07:08 - 00001049 _____ C:\Users\Karin\Desktop\Driver Pro.lnk
2013-12-28 07:08 - 2013-12-28 07:08 - 00001042 _____ C:\Users\Karin\Desktop\Mobogenie.lnk
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Users\Karin\Documents\Mobogenie
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Driver Pro
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Users\Karin\AppData\Local\Mobogenie
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\VideoPlayer
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.2
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\Driver Pro
2013-12-28 07:07 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-28 07:07 - 2013-12-28 07:07 - 00000000 ____D C:\Users\Karin\AppData\Local\SearchProtect
2013-12-28 07:07 - 2013-12-28 07:07 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2013-12-28 07:05 - 2013-12-28 07:05 - 00470080 _____ C:\Users\Karin\Downloads\Player.exe
2013-12-27 13:18 - 2013-12-27 13:18 - 00000000 ____D C:\Users\Karin\AppData\Roaming\eCyber
2013-12-27 13:17 - 2014-01-01 09:18 - 00000000 ____D C:\Program Files (x86)\iSafe
2013-12-27 13:17 - 2013-12-28 05:07 - 00000000 ____D C:\Users\Karin\AppData\Roaming\iSafe
2013-12-27 13:17 - 2013-12-27 13:17 - 00001803 _____ C:\Users\Public\Desktop\YAC.lnk
2013-12-27 13:17 - 2013-12-27 13:17 - 00000000 ____D C:\Windows\system32\log
2013-12-23 14:09 - 2013-12-23 14:09 - 00000000 ____D C:\Users\Karin\Documents\Fax
2013-12-22 14:19 - 2013-12-22 14:19 - 00000000 ____D C:\Users\Karin\AppData\Roaming\WildTangent
2013-12-21 15:20 - 2013-12-21 15:20 - 00000000 ____D C:\Users\Karin\AppData\Local\Amazon_Services_LLC
2013-12-21 03:13 - 2013-12-28 04:22 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Spotify
2013-12-21 03:13 - 2013-12-21 03:13 - 00000000 ____D C:\Users\Karin\AppData\Local\Spotify
2013-12-21 02:58 - 2013-12-21 02:58 - 00000000 ____D C:\Users\Karin\AppData\Roaming\sMedio
2013-12-21 02:16 - 2013-12-31 07:13 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4107547971-784288387-3362512993-1002
2013-12-21 02:16 - 2013-12-21 02:16 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Macromedia
2013-12-21 02:15 - 2013-12-21 02:15 - 00000000 ____D C:\ProgramData\ToshibaEurope
2013-12-21 02:14 - 2014-01-01 09:15 - 00000000 __RDO C:\Users\Karin\SkyDrive
2013-12-21 02:11 - 2013-12-21 02:49 - 00000000 ____D C:\Users\Karin\AppData\Local\TOSHIBA
2013-12-21 02:09 - 2013-12-31 06:59 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-21 02:09 - 2013-12-31 06:59 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-21 02:09 - 2013-12-31 04:17 - 00000000 ____D C:\Users\Karin\AppData\Local\Packages
2013-12-21 02:09 - 2013-12-28 11:03 - 00001679 _____ C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Adobe
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Local\VirtualStore
2013-12-21 02:07 - 2014-01-01 09:32 - 00000000 ____D C:\Users\Karin
2013-12-21 02:07 - 2013-12-21 02:07 - 00000020 ___SH C:\Users\Karin\ntuser.ini
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Vorlagen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Startmenü
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Netzwerkumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Lokale Einstellungen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Eigene Dateien
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Druckumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Musik
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Bilder
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Verlauf
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Anwendungsdaten
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Anwendungsdaten
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

==================== One Month Modified Files and Folders =======

2014-01-01 09:36 - 2014-01-01 09:36 - 00013205 _____ C:\Users\Karin\Downloads\FRST.txt
2014-01-01 09:36 - 2014-01-01 09:36 - 00000000 ____D C:\FRST
2014-01-01 09:35 - 2014-01-01 09:34 - 01931302 _____ (Farbar) C:\Users\Karin\Downloads\FRST64.exe
2014-01-01 09:32 - 2014-01-01 09:32 - 00000472 _____ C:\Windows\SysWOW64\defogger_disable.log
2014-01-01 09:32 - 2014-01-01 09:32 - 00000000 _____ C:\Users\Karin\defogger_reenable
2014-01-01 09:32 - 2013-12-21 02:07 - 00000000 ____D C:\Users\Karin
2014-01-01 09:30 - 2014-01-01 09:30 - 00050477 _____ C:\Users\Karin\Downloads\Defogger.exe
2014-01-01 09:29 - 2013-11-18 16:31 - 01899969 _____ C:\Windows\WindowsUpdate.log
2014-01-01 09:24 - 2013-12-28 11:03 - 00000284 _____ C:\Windows\Tasks\SpeedUpMyPC Startup.job
2014-01-01 09:19 - 2013-09-06 13:25 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-01 09:19 - 2013-08-28 01:59 - 00765582 _____ C:\Windows\system32\perfh007.dat
2014-01-01 09:19 - 2013-08-28 01:59 - 00159366 _____ C:\Windows\system32\perfc007.dat
2014-01-01 09:18 - 2013-12-27 13:17 - 00000000 ____D C:\Program Files (x86)\iSafe
2014-01-01 09:16 - 2013-12-31 04:29 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-01 09:15 - 2013-12-21 02:14 - 00000000 __RDO C:\Users\Karin\SkyDrive
2014-01-01 09:14 - 2013-12-28 07:08 - 00002116 _____ C:\Windows\Tasks\Plus-HD-1.2-firefoxinstaller.job
2014-01-01 09:14 - 2013-12-28 07:08 - 00001988 _____ C:\Windows\Tasks\Plus-HD-1.2-chromeinstaller.job
2014-01-01 09:14 - 2013-12-28 07:08 - 00001242 _____ C:\Windows\Tasks\Plus-HD-1.2-codedownloader.job
2014-01-01 09:13 - 2013-08-22 06:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-31 07:13 - 2013-12-21 02:16 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4107547971-784288387-3362512993-1002
2013-12-31 07:00 - 2013-12-28 11:03 - 00000290 _____ C:\Windows\Tasks\SpeedUpMyPC Maintenance.job
2013-12-31 07:00 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\sru
2013-12-31 06:59 - 2013-12-31 06:59 - 00003544 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2013-12-31 06:59 - 2013-12-21 02:09 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-31 06:59 - 2013-12-21 02:09 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-31 06:57 - 2013-08-22 06:44 - 00336024 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-31 06:56 - 2013-08-22 05:25 - 00524288 ___SH C:\Windows\system32\config\BBI
2013-12-31 06:55 - 2013-11-18 16:52 - 00000000 ____D C:\ProgramData\McAfee
2013-12-31 06:55 - 2013-11-18 16:52 - 00000000 ____D C:\Program Files\Common Files\mcafee
2013-12-31 06:55 - 2013-11-18 16:52 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ___RD C:\Windows\ToastData
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\WinStore
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\migwiz
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\MediaViewer
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\FileManager
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\Camera
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Windows Defender
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-12-31 06:53 - 2013-09-06 22:13 - 00002560 _____ C:\Windows\PFRO.log
2013-12-31 06:53 - 2013-08-22 07:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2013-12-31 06:53 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-12-31 06:53 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\system32\oobe
2013-12-31 06:53 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\system32\Dism
2013-12-31 06:15 - 2013-12-31 06:14 - 00000000 ____D C:\Windows\system32\MRT
2013-12-31 05:57 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\AppReadiness
2013-12-31 05:08 - 2013-12-31 05:08 - 00000000 ____D C:\Users\Karin\AppData\Roaming\TeamViewer
2013-12-31 05:07 - 2013-12-31 05:07 - 04571480 _____ (TeamViewer) C:\Users\Karin\Desktop\TeamViewerQS_de.exe
2013-12-31 04:30 - 2013-12-31 04:30 - 00001993 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-31 04:30 - 2013-12-31 04:30 - 00000000 ____D C:\Users\Karin\AppData\Roaming\AVAST Software
2013-12-31 04:30 - 2013-12-31 04:29 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-31 04:29 - 2013-12-31 04:29 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-12-31 04:28 - 2013-12-31 04:28 - 00000000 ____D C:\Program Files\AVAST Software
2013-12-31 04:26 - 2013-12-31 04:26 - 00000000 ____D C:\ProgramData\AVAST Software
2013-12-31 04:22 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\NDF
2013-12-31 04:17 - 2013-12-31 04:17 - 00000000 ___RD C:\Windows\BrowserChoice
2013-12-31 04:17 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Local\Packages
2013-12-28 11:05 - 2013-12-28 11:04 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2013-12-28 11:05 - 2013-12-28 11:04 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-12-28 11:04 - 2013-12-28 11:04 - 00001110 _____ C:\Users\Karin\Desktop\MyPC Backup.lnk
2013-12-28 11:04 - 2013-12-28 11:03 - 00003186 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance
2013-12-28 11:04 - 2013-12-28 11:03 - 00002490 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Startup
2013-12-28 11:04 - 2013-12-28 11:03 - 00000000 ____D C:\ProgramData\WPM
2013-12-28 11:03 - 2013-12-28 11:03 - 00001192 _____ C:\Users\Public\Desktop\SpeedUpMyPC.lnk
2013-12-28 11:03 - 2013-12-28 11:03 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Uniblue
2013-12-28 11:03 - 2013-12-28 11:03 - 00000000 ____D C:\Program Files (x86)\Uniblue
2013-12-28 11:03 - 2013-12-28 07:08 - 00004246 _____ C:\Windows\System32\Tasks\Plus-HD-1.2-codedownloader
2013-12-28 11:03 - 2013-12-28 07:08 - 00001056 _____ C:\Users\Public\Desktop\VideoPlayer.lnk
2013-12-28 11:03 - 2013-12-21 02:09 - 00001679 _____ C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-28 11:02 - 2013-12-28 11:02 - 00000396 _____ C:\Windows\Tasks\Re-markit Update.job
2013-12-28 11:02 - 2013-12-28 11:02 - 00000000 ____D C:\Program Files (x86)\Re-markit
2013-12-28 10:59 - 2013-12-28 10:59 - 741086122 _____ C:\Windows\MEMORY.DMP
2013-12-28 10:59 - 2013-12-28 10:59 - 00302344 _____ C:\Windows\Minidump\122813-31421-01.dmp
2013-12-28 10:59 - 2013-12-28 10:59 - 00000000 ____D C:\Windows\Minidump
2013-12-28 10:59 - 2013-08-22 05:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-12-28 07:08 - 2013-12-28 07:08 - 00001049 _____ C:\Users\Karin\Desktop\Driver Pro.lnk
2013-12-28 07:08 - 2013-12-28 07:08 - 00001042 _____ C:\Users\Karin\Desktop\Mobogenie.lnk
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Users\Karin\Documents\Mobogenie
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Driver Pro
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Users\Karin\AppData\Local\Mobogenie
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\VideoPlayer
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.2
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\Driver Pro
2013-12-28 07:08 - 2013-12-28 07:07 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-28 07:07 - 2013-12-28 07:07 - 00000000 ____D C:\Users\Karin\AppData\Local\SearchProtect
2013-12-28 07:07 - 2013-12-28 07:07 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2013-12-28 07:05 - 2013-12-28 07:05 - 00470080 _____ C:\Users\Karin\Downloads\Player.exe
2013-12-28 05:07 - 2013-12-27 13:17 - 00000000 ____D C:\Users\Karin\AppData\Roaming\iSafe
2013-12-28 04:22 - 2013-12-21 03:13 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Spotify
2013-12-27 13:18 - 2013-12-27 13:18 - 00000000 ____D C:\Users\Karin\AppData\Roaming\eCyber
2013-12-27 13:17 - 2013-12-27 13:17 - 00001803 _____ C:\Users\Public\Desktop\YAC.lnk
2013-12-27 13:17 - 2013-12-27 13:17 - 00000000 ____D C:\Windows\system32\log
2013-12-25 12:27 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\rescache
2013-12-25 12:25 - 2013-08-28 01:58 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2013-12-25 12:25 - 2013-08-22 11:11 - 00000000 ____D C:\Program Files\Windows Journal
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\winrm
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\WCN
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\winrm
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\WCN
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\slmgr
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\SysWOW64\MUI
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\MUI
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\Com
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\IME
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\Help
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Common Files\System
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-12-25 12:25 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2013-12-25 12:25 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\system32\Sysprep
2013-12-25 12:25 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\servicing
2013-12-25 12:23 - 2013-08-22 07:36 - 00000000 ___SD C:\Windows\system32\dsc
2013-12-24 16:50 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-23 14:09 - 2013-12-23 14:09 - 00000000 ____D C:\Users\Karin\Documents\Fax
2013-12-22 14:19 - 2013-12-22 14:19 - 00000000 ____D C:\Users\Karin\AppData\Roaming\WildTangent
2013-12-22 14:19 - 2013-11-18 17:01 - 00000000 ____D C:\ProgramData\WildTangent
2013-12-21 16:57 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\LiveKernelReports
2013-12-21 15:20 - 2013-12-21 15:20 - 00000000 ____D C:\Users\Karin\AppData\Local\Amazon_Services_LLC
2013-12-21 03:13 - 2013-12-21 03:13 - 00000000 ____D C:\Users\Karin\AppData\Local\Spotify
2013-12-21 02:58 - 2013-12-21 02:58 - 00000000 ____D C:\Users\Karin\AppData\Roaming\sMedio
2013-12-21 02:49 - 2013-12-21 02:11 - 00000000 ____D C:\Users\Karin\AppData\Local\TOSHIBA
2013-12-21 02:16 - 2013-12-21 02:16 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Macromedia
2013-12-21 02:15 - 2013-12-21 02:15 - 00000000 ____D C:\ProgramData\ToshibaEurope
2013-12-21 02:15 - 2013-09-06 13:26 - 00000000 ____D C:\ProgramData\Toshiba
2013-12-21 02:14 - 2013-11-18 16:43 - 00000000 ____D C:\Windows\System32\Tasks\TOSHIBA
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Adobe
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Local\VirtualStore
2013-12-21 02:09 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\sysprep
2013-12-21 02:07 - 2013-12-21 02:07 - 00000020 ___SH C:\Users\Karin\ntuser.ini
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Vorlagen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Startmenü
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Netzwerkumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Lokale Einstellungen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Eigene Dateien
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Druckumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Musik
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Bilder
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Verlauf
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Anwendungsdaten
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Anwendungsdaten
2013-12-21 01:29 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\restore
2013-12-03 16:05 - 2013-08-22 07:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-03 16:05 - 2013-08-22 07:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

Some content of TEMP:
====================
C:\Users\Karin\AppData\Local\Temp\BackupSetup.exe
C:\Users\Karin\AppData\Local\Temp\nsh5802.exe
C:\Users\Karin\AppData\Local\Temp\nsp6E3.exe
C:\Users\Karin\AppData\Local\Temp\vcredist_x64.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-06 22:13

==================== End Of Log ============================
         
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-12-2013 01
Ran by Karin at 2014-01-01 09:37:10
Running from C:\Users\Karin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

Alcor Micro USB Card Reader (x32 Version: 4.8.1245.73583 - Alcor Micro Corp.)
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent)
Amazon 1Button App (x32 Version: 1.0.0.4 - Amazon)
Atheros Driver Installation Program (x32 Version: 10.0 - Atheros)
avast! Free Antivirus (x32 Version: 9.0.2011 - Avast Software)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent)
DMUninstaller (x32 Version:  - )
DTS Sound (x32 Version: 1.01.2700 - DTS, Inc.)
Empress of the Deep - The Darkest Secret (x32 Version: 2.2.0.98 - WildTangent)
IDT Audio Driver (Version: 6.10.6491.0 - IDT)
Intel(R) Management Engine Components (x32 Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 10.18.10.3282 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation)
Island Tribe (x32 Version: 2.2.0.98 - WildTangent)
Jewel Quest Solitaire 2 (x32 Version: 2.2.0.98 - WildTangent)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent)
Microsoft Office (x32 Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation)
Microsoft Visual C++ 2013 Preview Redistributable (x64) - 12.0.20617 (x32 Version: 12.0.20617.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Preview Redistributable (x86) - 12.0.20617 (x32 Version: 12.0.20617.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.20617 (Version: 12.0.20617 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.20617 (Version: 12.0.20617 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.20617 (x32 Version: 12.0.20617 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.20617 (x32 Version: 12.0.20617 - Microsoft Corporation)
MyPC Backup  (Version:  - MyPC Backup) <==== ATTENTION
NVIDIA Control Panel 326.60 (Version: 326.60 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.6.1 (Version: 1.6.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 326.60 (Version: 326.60 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.133.902 - NVIDIA Corporation)
NVIDIA Optimus 8.3.14 (Version: 8.3.14 - NVIDIA Corporation)
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA Update 8.3.14 (Version: 8.3.14 - NVIDIA Corporation)
NVIDIA Update Components (Version: 8.3.14 - NVIDIA Corporation)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent)
Plus-HD-1.2 (x32 Version: 1.32.153.0 - Plus HD) <==== ATTENTION
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent)
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.1.300 - Qualcomm Atheros)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 2.1.0.21 - Qualcomm Atheros Inc.)
Re-markit (x32 Version:  - Re-markit Software)
Search Protect (x32 Version: 2.9.8.2 - Conduit) <==== ATTENTION
SpeedUpMyPC (x32 Version: 6.0.0.0 - Uniblue Systems Limited)
Spotify (x32 Version: 0.8.5.1333.g822e0de8 - Spotify AB)
Synaptics Pointing Device Driver (Version: 17.0.10.1 - Synaptics Incorporated)
TOSHIBA Addendum (x32 Version: 1.00 - TOSHIBA)
TOSHIBA Desktop Assist (Version: 1.02.01.6407 - Toshiba Corporation)
TOSHIBA Display Utility (Version: 1.1.5.0 - Toshiba Corporation)
TOSHIBA eco Utility (Version: 2.2.0.6404 - Toshiba Corporation)
TOSHIBA Function Key (Version: 1.1.0001.6403 - Toshiba Corporation)
TOSHIBA Manuals (x32 Version: 10.10 - TOSHIBA)
TOSHIBA Password Utility (x32 Version: 3.00.344 - Toshiba Corporation)
TOSHIBA PC Health Monitor (Version: 1.9.09.6400 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (x32 Version: 3.1.02.55065006 - Toshiba Corporation)
TOSHIBA Service Station (Version: 2.6.8 - Toshiba Corporation)
TOSHIBA System Driver (x32 Version: 1.00.0030 - Toshiba Corporation)
TOSHIBA System Settings (x32 Version: 1.1.2.32001 - Toshiba Corporation)
Toshiba TEMPRO (x32 Version: 4.5.0 - Toshiba Europe GmbH)
TOSHIBA VIDEO PLAYER (Version: 5.3.27.102 - Toshiba Corporation)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent)
VideoPlayer v2.0.6 (x32 Version: v2.0.6 - TUGUU SL)
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent)
WildTangent Games (x32 Version: 1.0.3.0 - WildTangent)
WildTangent Games App (Toshiba Games) (x32 Version: 4.0.9.7 - WildTangent)
WPM17.8.0.3159 (x32 Version: 17.8.0.3159 - Cherished Technololgy LIMITED) <==== ATTENTION
YAC (x32 Version:  - ELEX DO BRASIL PARTICIPAÇÕES LTDA)

==================== Restore Points  =========================

21-12-2013 09:29:50 Windows Modules Installer
25-12-2013 00:47:20 Windows Update
28-12-2013 19:03:28 Uniblue SpeedUpMyPC installation
31-12-2013 12:28:01 avast! antivirus system restore point

==================== Hosts content: ==========================

2013-08-22 05:25 - 2013-08-22 05:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {166E6598-ACC6-4C43-8EF3-87F093663C5D} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\System32\MRT.exe [2013-12-01] (Microsoft Corporation)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2F3860FE-EAF4-42E6-AB99-6BA2EF8AC05A} - System32\Tasks\Plus-HD-1.2-chromeinstaller => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-chromeinstaller.exe [2013-12-28] (Plus HD) <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-21] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\System32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4FACBEE0-051B-4C55-9FA3-E4B4A4F0D38C} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2013-07-18] (Toshiba Europe GmbH)
Task: {545511BE-7107-43A8-A2D7-DA4E7891AAA9} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-12-31] (AVAST Software)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {70607B7A-E7C4-4027-BB18-DC774BCBBA81} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [2013-07-31] (TOSHIBA Corporation)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {79C8DD86-FC92-4627-A549-62E775109E84} - System32\Tasks\SpeedUpMyPC Startup => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe [2013-12-12] (Uniblue Systems Limited)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {99653EBE-45A5-4769-9B80-B41D269E66E2} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-21] (Synaptics Incorporated)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {AE8CC3A6-DD36-4904-ACA3-303EFF483FFE} - System32\Tasks\Plus-HD-1.2-firefoxinstaller => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-firefoxinstaller.exe [2013-12-28] (Plus HD) <==== ATTENTION
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DCD9C377-1FEC-4C1C-9D6E-210C9853C3FD} - System32\Tasks\SpeedUpMyPC Maintenance => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe [2013-12-12] (Uniblue Systems Limited)
Task: {E669C454-52D4-4962-8408-5726FD6D690F} - System32\Tasks\Plus-HD-1.2-codedownloader => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-codedownloader.exe [2013-12-28] (Plus HD) <==== ATTENTION
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EE3599F9-D594-4DD5-8112-F4B204B8EBD2} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe [2013-08-28] (TODO: <Company name>)
Task: C:\Windows\Tasks\Plus-HD-1.2-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-chromeinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Plus-HD-1.2-codedownloader.job => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-codedownloader.exe <==== ATTENTION
Task: C:\Windows\Tasks\Plus-HD-1.2-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Re-markit Update.job => C:\Program Files (x86)\Re-markit\ReMarkit_up.exe <==== ATTENTION
Task: C:\Windows\Tasks\SpeedUpMyPC Maintenance.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe
Task: C:\Windows\Tasks\SpeedUpMyPC Startup.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe

==================== Loaded Modules (whitelisted) =============

2013-09-06 13:53 - 2013-08-12 09:52 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-07-18 18:38 - 2012-07-18 18:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2013-08-21 23:19 - 2013-08-21 22:54 - 00792064 _____ () C:\Windows\system32\WinMetadata\Windows.UI.Xaml.winmd
2013-08-21 23:19 - 2013-08-21 22:54 - 00134144 _____ () C:\Windows\system32\WinMetadata\Windows.ApplicationModel.winmd
2013-08-21 23:19 - 2013-08-21 22:54 - 00030208 _____ () C:\Windows\system32\WinMetadata\Windows.Foundation.winmd
2013-08-21 23:19 - 2013-08-21 22:54 - 00174592 _____ () C:\Windows\system32\WinMetadata\Windows.UI.winmd
2013-08-22 11:12 - 2013-08-22 11:12 - 00191904 _____ () C:\Program Files\WindowsApps\Microsoft.BingMaps_2.0.2009.2356_x64__8wekyb3d8bbwe\DataTypes.DLL
2013-08-22 11:12 - 2013-08-22 11:12 - 00043936 _____ () C:\Program Files\WindowsApps\Microsoft.BingMaps_2.0.2009.2356_x64__8wekyb3d8bbwe\Utils.DLL
2013-08-21 23:19 - 2013-08-21 22:54 - 00050176 _____ () C:\Windows\system32\WinMetadata\Windows.Data.winmd
2013-08-22 11:12 - 2013-08-22 11:12 - 00129432 _____ () C:\Program Files\WindowsApps\Microsoft.BingMaps_2.0.2009.2356_x64__8wekyb3d8bbwe\Bing.Maps.winmd
2013-08-21 23:19 - 2013-08-21 22:54 - 00112640 _____ () C:\Windows\system32\WinMetadata\Windows.Networking.winmd
2013-08-21 23:19 - 2013-08-21 22:54 - 00020480 _____ () C:\Windows\system32\WinMetadata\Windows.System.winmd
2013-08-21 23:19 - 2013-08-21 22:54 - 00054784 _____ () C:\Windows\system32\WinMetadata\Windows.Globalization.winmd
2013-08-21 23:19 - 2013-08-21 22:54 - 00096256 _____ () C:\Windows\system32\WinMetadata\Windows.Storage.winmd
2013-08-22 11:12 - 2013-08-22 11:12 - 00070056 _____ () C:\Program Files\WindowsApps\Microsoft.BingMaps_2.0.2009.2356_x64__8wekyb3d8bbwe\Requests.DLL
2013-08-22 11:12 - 2013-08-22 11:12 - 00169408 _____ () C:\Program Files\WindowsApps\Microsoft.BingMaps_2.0.2009.2356_x64__8wekyb3d8bbwe\Microsoft.Bing.Platform.Logging.ClientWinRT.DLL
2013-08-21 23:19 - 2013-08-21 22:54 - 00169472 _____ () C:\Windows\system32\WinMetadata\Windows.Devices.winmd
2013-08-21 23:19 - 2013-08-21 22:54 - 00049664 _____ () C:\Windows\system32\WinMetadata\Windows.Graphics.winmd
2013-08-22 11:12 - 2013-08-22 11:12 - 00049056 _____ () C:\Program Files\WindowsApps\Microsoft.BingMaps_2.0.2009.2356_x64__8wekyb3d8bbwe\Authentication.DLL
2013-08-21 23:19 - 2013-08-21 22:54 - 00066560 _____ () C:\Windows\system32\WinMetadata\Windows.Security.winmd

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Karin\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/01/2014 09:24:58 AM) (Source: Application Hang) (User: )
Description: Programm speedupmypc.exe, Version 6.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 9a8

Startzeit: 01cf0714ee6df68d

Endzeit: 4294967295

Anwendungspfad: C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe

Berichts-ID: a29445ca-7309-11e3-8267-645a04b235e3

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (12/31/2013 04:28:08 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddWin32ServiceFiles: Unable to back up image of service McAfee Home Network since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (12/31/2013 04:28:08 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddLegacyDriverFiles: Unable to back up image of binary zxexpoxr.

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (12/31/2013 04:28:08 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddLegacyDriverFiles: Unable to back up image of binary McAfee Inc. mfencbdc.

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (12/31/2013 04:18:58 AM) (Source: Application Hang) (User: )
Description: Programm LiveComm.exe, Version 17.4.9600.16384 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: c18

Startzeit: 01cf04d105e3eee0

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 455c5cb7-7215-11e3-8263-645a04b235e3

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (12/28/2013 04:21:11 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: KARIN)
Description: Bei der Aktivierung der App „Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness“ ist folgender Fehler aufgetreten: -2147417848. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.


System errors:
=============
Error: (01/01/2014 09:14:27 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computer Backup (MyPC Backup)" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/01/2014 09:14:27 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Computer Backup (MyPC Backup) erreicht.

Error: (01/01/2014 09:13:40 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎31.‎12.‎2013 um 07:29:55 unerwartet heruntergefahren.

Error: (01/01/2014 09:13:22 AM) (Source: Microsoft-Windows-Kernel-Boot) (User: NT-AUTORITÄT)
Description: 32212256841161680

Error: (12/31/2013 07:30:42 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computer Backup (MyPC Backup)" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (12/31/2013 07:30:42 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Computer Backup (MyPC Backup) erreicht.

Error: (12/31/2013 07:29:33 AM) (Source: Microsoft-Windows-Kernel-Boot) (User: NT-AUTORITÄT)
Description: 32212256841082352

Error: (12/31/2013 07:29:55 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎31.‎12.‎2013 um 06:57:36 unerwartet heruntergefahren.

Error: (12/31/2013 07:15:33 AM) (Source: DCOM) (User: KARIN)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}karinKarinS-1-5-21-4107547971-784288387-3362512993-1002LocalHost (unter Verwendung von LRPC)Microsoft.BingWeather_3.0.1.174_x64__8wekyb3d8bbweS-1-15-2-2040986369-264322980-3882385089-1970153872-3662121739-3363227934-2464603330

Error: (12/31/2013 07:15:33 AM) (Source: DCOM) (User: KARIN)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}karinKarinS-1-5-21-4107547971-784288387-3362512993-1002LocalHost (unter Verwendung von LRPC)Microsoft.BingWeather_3.0.1.174_x64__8wekyb3d8bbweS-1-15-2-2040986369-264322980-3882385089-1970153872-3662121739-3363227934-2464603330


Microsoft Office Sessions:
=========================
Error: (01/01/2014 09:24:58 AM) (Source: Application Hang)(User: )
Description: speedupmypc.exe6.0.0.09a801cf0714ee6df68d4294967295C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exea29445ca-7309-11e3-8267-645a04b235e3

Error: (12/31/2013 04:28:08 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddWin32ServiceFiles: Unable to back up image of service McAfee Home Network since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (12/31/2013 04:28:08 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary zxexpoxr.

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (12/31/2013 04:28:08 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary McAfee Inc. mfencbdc.

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (12/31/2013 04:18:58 AM) (Source: Application Hang)(User: )
Description: LiveComm.exe17.4.9600.16384c1801cf04d105e3eee04294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\LiveComm.exe455c5cb7-7215-11e3-8263-645a04b235e3microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (12/28/2013 04:21:11 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: KARIN)
Description: Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness-2147417848


CodeIntegrity Errors:
===================================
  Date: 2013-12-31 04:34:18.160
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Percentage of memory in use: 22%
Total physical RAM: 8067.27 MB
Available physical RAM: 6248.31 MB
Total Pagefile: 16259.27 MB
Available Pagefile: 14377.28 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB

==================== Drives ================================

Drive c: (TI31204300A) (Fixed) (Total:454.45 GB) (Free:414.78 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 00000000)

Partition: GPT Partition Type
==================== End Of Log ============================
         

Alt 01.01.2014, 18:36   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 8: Virenbefall/Popups/dubiose Programme - Standard

Windows 8: Virenbefall/Popups/dubiose Programme



Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________

__________________

Alt 04.01.2014, 17:28   #3
phenex
 
Windows 8: Virenbefall/Popups/dubiose Programme - Standard

Windows 8: Virenbefall/Popups/dubiose Programme



Malwarebytes Anti-Malware kann ich nur unter größtem Protest von Windows 8 herunterladen ("Software ist nicht sicher") und ausführen geht leider auch nicht. Es kommt die Meldung, dass die Datei "corrupted" sei. Ich hab es dann nochmal mit älteren Installationsdateien versucht aber genau das selbe Ergebnis. Zudem bricht der Download mittendrin immer kurz ab und ich muss ihn manuell fortsetzen. Nochmal kann ichs auch nicht versuchen weil nach dem Neustart vom System nun eine folgende Meldung beim Aufrufen des Internet Explorers erscheint: "Internet Explorer kann nicht geöffnet werden, während der Explorer mit Administratorberechtigungen ausgeführt wird. Anbei nun zumindest das, was ich machen konnte:

Code:
ATTFilter
# AdwCleaner v3.016 - Bericht erstellt am 04/01/2014 um 09:01:04
# Aktualisiert 23/12/2013 von Xplode
# Betriebssystem : Windows 8.1  (64 bits)
# Benutzername : Karin - KARIN
# Gestartet von : C:\Users\Karin\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****

[#] Dienst Gelöscht : BackupStack
Dienst Gelöscht : Wpm

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\WPM
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Pro
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue\SpeedUpMyPC
Ordner Gelöscht : C:\Program Files (x86)\Driver Pro
[!] Ordner Gelöscht : C:\Program Files (x86)\iSafe
Ordner Gelöscht : C:\Program Files (x86)\Mobogenie
Ordner Gelöscht : C:\Program Files (x86)\MyPC Backup
Ordner Gelöscht : C:\Program Files (x86)\Re-markit
Ordner Gelöscht : C:\Program Files (x86)\Searchprotect
Ordner Gelöscht : C:\Program Files (x86)\Uniblue\SpeedUpMyPC
Ordner Gelöscht : C:\Users\Karin\AppData\Local\Mobogenie
Ordner Gelöscht : C:\Users\Karin\AppData\Local\Searchprotect
Ordner Gelöscht : C:\Users\Karin\AppData\Roaming\Driver Pro
Ordner Gelöscht : C:\Users\Karin\AppData\Roaming\iSafe
Ordner Gelöscht : C:\Users\Karin\AppData\Roaming\Uniblue\SpeedUpMyPC
Ordner Gelöscht : C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Ordner Gelöscht : C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
Ordner Gelöscht : C:\Users\Karin\Documents\Mobogenie
Datei Gelöscht : C:\Users\Public\Desktop\eBay.lnk
Datei Gelöscht : C:\Users\Public\Desktop\speedupmypc.lnk
Datei Gelöscht : C:\Users\Karin\Desktop\Driver Pro.lnk
Datei Gelöscht : C:\Users\Karin\Desktop\Mobogenie.lnk
Datei Gelöscht : C:\Users\Karin\Desktop\MyPC Backup.lnk
Datei Gelöscht : C:\Windows\Tasks\Re-markit Update.job

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\dcpfhaghaadpjpgocojgnlhjcieeooel
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\speedupmypc
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0031255.BHO
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0031255.BHO.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0031255.Sandbox
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0031255.Sandbox.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311121155}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322122255}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gelöscht : HKCU\Software\Driver Pro
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Crossrider
Schlüssel Gelöscht : HKLM\Software\nationzoomSoftware
Schlüssel Gelöscht : HKLM\Software\SearchProtect
Schlüssel Gelöscht : HKLM\Software\supWPM
Schlüssel Gelöscht : HKLM\Software\Uniblue
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DomaIQ
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup
Daten Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll
Daten Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16384

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

*************************

AdwCleaner[R0].txt - [4793 octets] - [04/01/2014 08:59:41]
AdwCleaner[S0].txt - [4283 octets] - [04/01/2014 09:01:04]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4343 octets] ##########
         
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.9 (01.01.2014:1)
OS: Windows 8.1 x64
Ran by Karin on 04.01.2014 at  9:10:44,03
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] isafeservice 
Successfully deleted: [Service] isafeservice 



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\isafe



~~~ Files

Successfully deleted: [File] C:\Windows\Tasks\Plus-HD-1.2-chromeinstaller.job
Successfully deleted: [File] C:\Windows\Tasks\Plus-HD-1.2-codedownloader.job
Successfully deleted: [File] C:\Windows\Tasks\Plus-HD-1.2-firefoxinstaller.job
Successfully deleted: [File] "C:\Users\Karin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\speedupmypc.lnk"



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\isafe"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uniblue"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 04.01.2014 at  9:16:02,02
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-01-2014
Ran by Karin (administrator) on KARIN on 04-01-2014 09:18:48
Running from C:\Users\Karin\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(Spotify Ltd) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(TOSHIBA) C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe
(TeamViewer GmbH) C:\Users\Karin\AppData\Local\Temp\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Users\Karin\AppData\Local\Temp\TeamViewer\Version9\TeamViewer_Desktop.exe
() C:\Program Files\WindowsApps\Microsoft.BingMaps_2.0.2210.2401_x64__8wekyb3d8bbwe\Map.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [] - [x]
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM\...\Run: [TSSSrv] - C:\Program Files (x86)\TOSHIBA\System Setting\TssSrv.exe [296520 2013-09-11] (TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] - C:\Program Files\TOSHIBA\Teco\TecoResident.exe [178016 2013-08-21] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] - C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] - C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-08-17] (TOSHIBA Corporation)
HKLM-x32\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2002-04-12] (Alcor Micro Corp.)
HKLM-x32\...\Run: [1.TPUReg] - C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2216800 2013-03-27] (TOSHIBA)
HKLM-x32\...\Run: [TSVU] - C:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Spotify Web Helper] - C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1199576 2013-09-06] (Spotify Ltd)
HKCU\...\Run: [BrowserChoice] - C:\Windows\BrowserChoice\browserchoice.exe [86816 2013-08-22] (Microsoft Corporation)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [387536 2013-08-09] (NVIDIA Corporation)
AppInit_DLLs-x32:  C:\Windows\SysWOW64\nvinit.dll [326224 2013-08-09] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://toshiba13.msn.com/?pc=TEJB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TEJB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://toshiba.eu/symbaloo_c
SearchScopes: HKLM - DefaultScope {7ED62170-54D0-4F8C-9692-DF338105F23E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {7ED62170-54D0-4F8C-9692-DF338105F23E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
SearchScopes: HKLM-x32 - {7ED62170-54D0-4F8C-9692-DF338105F23E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
BHO-x32: Re-markit - {14fbefe4-962f-4792-9a80-c74534d34636} - C:\Program Files (x86)\Re-markit\150.dll No File
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

==================== Services (Whitelisted) =================

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-08-22] (Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-31] (AVAST Software)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19792 2013-09-10] ()
R2 GFNEXSrv; C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe [163168 2013-03-27] ()
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-07] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-07] (McAfee, Inc.)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116088 2013-07-18] (Toshiba Europe GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2013-12-31] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-31] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-31] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2013-12-31] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2013-12-31] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2013-12-31] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-31] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows (R) Win 7 DDK provider)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-08-07] (McAfee, Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-10] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-07] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-07] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69264 2013-08-07] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-07] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-07] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-07] (McAfee, Inc.)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R2 PEGAGFN; C:\Program Files (x86)\TOSHIBA\PasswordUtility\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation                           )
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-25] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-21] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S1 iSafeNetFilter; \??\C:\Program Files (x86)\iSafe\iSafeNetFilter.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-04 09:18 - 2014-01-04 09:18 - 00000000 ____D C:\Users\Karin\Downloads\FRST-OlderVersion
2014-01-04 09:16 - 2014-01-04 09:16 - 00001303 _____ C:\Users\Karin\Desktop\JRT.txt
2014-01-04 09:10 - 2014-01-04 09:10 - 00000000 ____D C:\Windows\ERUNT
2014-01-04 09:07 - 2014-01-04 09:08 - 01036305 _____ (Thisisu) C:\Users\Karin\Downloads\JRT.exe
2014-01-04 08:59 - 2014-01-04 09:01 - 00000000 ____D C:\AdwCleaner
2014-01-04 08:59 - 2014-01-04 08:59 - 01233962 _____ C:\Users\Karin\Downloads\adwcleaner.exe
2014-01-01 09:37 - 2014-01-01 09:37 - 00023709 _____ C:\Users\Karin\Downloads\Addition.txt
2014-01-01 09:36 - 2014-01-04 09:18 - 00011174 _____ C:\Users\Karin\Downloads\FRST.txt
2014-01-01 09:36 - 2014-01-04 09:18 - 00000000 ____D C:\FRST
2014-01-01 09:34 - 2014-01-04 09:18 - 01931368 _____ (Farbar) C:\Users\Karin\Downloads\FRST64.exe
2014-01-01 09:32 - 2014-01-01 09:32 - 00000472 _____ C:\Windows\SysWOW64\defogger_disable.log
2014-01-01 09:32 - 2014-01-01 09:32 - 00000000 _____ C:\Users\Karin\defogger_reenable
2014-01-01 09:30 - 2014-01-01 09:30 - 00050477 _____ C:\Users\Karin\Downloads\Defogger.exe
2013-12-31 06:59 - 2013-12-31 06:59 - 00003544 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2013-12-31 06:14 - 2013-12-31 06:15 - 00000000 ____D C:\Windows\system32\MRT
2013-12-31 06:14 - 2013-12-01 14:42 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-31 05:32 - 2013-09-25 02:25 - 00783504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2013-12-31 05:32 - 2013-09-23 21:05 - 01245696 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2013-12-31 05:32 - 2013-09-21 03:18 - 01109936 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-31 05:32 - 2013-09-21 02:53 - 02131120 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2013-12-31 05:32 - 2013-09-21 02:53 - 01928656 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2013-12-31 05:32 - 2013-09-21 01:12 - 01370800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2013-12-31 05:32 - 2013-09-21 01:09 - 02142424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2013-12-31 05:32 - 2013-09-21 01:09 - 00796928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2013-12-31 05:32 - 2013-09-20 22:33 - 11366912 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2013-12-31 05:32 - 2013-09-20 22:06 - 01415168 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-31 05:32 - 2013-09-20 21:56 - 08712704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2013-12-31 05:32 - 2013-09-20 21:34 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2013-12-31 05:32 - 2013-09-20 21:10 - 12028416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2013-12-31 05:32 - 2013-09-20 21:05 - 08875008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2013-12-31 05:32 - 2013-09-20 20:49 - 04975104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2013-12-31 05:32 - 2013-09-20 20:48 - 07544320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2013-12-31 05:32 - 2013-09-20 20:45 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2013-12-31 05:32 - 2013-09-20 20:44 - 01662464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2013-12-31 05:32 - 2013-09-20 20:39 - 01455616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2013-12-31 05:31 - 2013-09-26 01:20 - 00556032 _____ (Microsoft Corporation) C:\Windows\system32\recimg.exe
2013-12-31 05:31 - 2013-09-26 00:24 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-31 05:31 - 2013-09-25 23:32 - 00638464 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2013-12-31 05:31 - 2013-09-25 23:14 - 00528896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2013-12-31 05:31 - 2013-09-25 00:58 - 00648648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2013-12-31 05:31 - 2013-09-24 23:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2013-12-31 05:31 - 2013-09-24 21:40 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2013-12-31 05:31 - 2013-09-23 22:55 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2013-12-31 05:31 - 2013-09-23 21:59 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2013-12-31 05:31 - 2013-09-23 21:54 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2013-12-31 05:31 - 2013-09-23 21:10 - 01741824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2013-12-31 05:31 - 2013-09-23 19:56 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2013-12-31 05:31 - 2013-09-21 04:10 - 00579416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-12-31 05:31 - 2013-09-21 04:10 - 00236376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2013-12-31 05:31 - 2013-09-21 04:10 - 00151384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2013-12-31 05:31 - 2013-09-21 03:50 - 00528048 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2013-12-31 05:31 - 2013-09-21 03:48 - 00534048 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2013-12-31 05:31 - 2013-09-21 03:48 - 00123480 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2013-12-31 05:31 - 2013-09-21 03:04 - 00419160 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2013-12-31 05:31 - 2013-09-21 02:56 - 01119576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-12-31 05:31 - 2013-09-21 02:56 - 00101208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-31 05:31 - 2013-09-21 02:53 - 01534504 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00996320 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00934856 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00366688 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-12-31 05:31 - 2013-09-21 02:51 - 01720552 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-31 05:31 - 2013-09-21 02:45 - 00171968 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-31 05:31 - 2013-09-21 01:23 - 00427096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2013-12-31 05:31 - 2013-09-21 01:23 - 00098104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2013-12-31 05:31 - 2013-09-21 01:12 - 01092896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2013-12-31 05:31 - 2013-09-21 01:09 - 01472048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-12-31 05:31 - 2013-09-21 01:09 - 00312936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2013-12-31 05:31 - 2013-09-20 23:58 - 00675328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-12-31 05:31 - 2013-09-20 23:57 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-12-31 05:31 - 2013-09-20 23:56 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-12-31 05:31 - 2013-09-20 23:55 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2013-12-31 05:31 - 2013-09-20 23:50 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2013-12-31 05:31 - 2013-09-20 23:17 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2013-12-31 05:31 - 2013-09-20 23:05 - 00835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-12-31 05:31 - 2013-09-20 22:55 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2013-12-31 05:31 - 2013-09-20 22:27 - 00911872 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2013-12-31 05:31 - 2013-09-20 22:01 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2013-12-31 05:31 - 2013-09-20 22:00 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2013-12-31 05:31 - 2013-09-20 21:59 - 00940544 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-12-31 05:31 - 2013-09-20 21:57 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\livessp.dll
2013-12-31 05:31 - 2013-09-20 21:50 - 00767488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2013-12-31 05:31 - 2013-09-20 21:43 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2013-12-31 05:31 - 2013-09-20 21:38 - 00365568 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2013-12-31 05:31 - 2013-09-20 21:37 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-12-31 05:31 - 2013-09-20 21:36 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2013-12-31 05:31 - 2013-09-20 21:31 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-12-31 05:31 - 2013-09-20 21:26 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2013-12-31 05:31 - 2013-09-20 21:20 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2013-12-31 05:31 - 2013-09-20 21:16 - 01503232 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2013-12-31 05:31 - 2013-09-20 21:13 - 00787968 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2013-12-31 05:31 - 2013-09-20 21:09 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2013-12-31 05:31 - 2013-09-20 21:08 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2013-12-31 05:31 - 2013-09-20 21:02 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2013-12-31 05:31 - 2013-09-20 20:58 - 00803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2013-12-31 05:31 - 2013-09-20 20:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2013-12-31 05:31 - 2013-09-20 20:42 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2013-12-31 05:31 - 2013-09-20 20:38 - 01057792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2013-12-31 05:31 - 2013-09-20 20:38 - 00102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2013-12-31 05:31 - 2013-09-20 20:37 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2013-12-31 05:31 - 2013-09-20 20:36 - 01185280 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2013-12-31 05:31 - 2013-09-18 23:19 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersRes.dll
2013-12-31 05:31 - 2013-09-18 22:39 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2013-12-31 05:31 - 2013-09-18 22:27 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2013-12-31 05:31 - 2013-09-18 22:23 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WorkFoldersRes.dll
2013-12-31 05:31 - 2013-09-18 22:17 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2013-12-31 05:31 - 2013-09-18 21:47 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.dll
2013-12-31 05:31 - 2013-09-18 21:29 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2013-12-31 05:31 - 2013-09-18 21:08 - 01150976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2013-12-31 05:31 - 2013-09-18 21:01 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2013-12-31 05:31 - 2013-09-18 20:37 - 00802816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2013-12-31 05:31 - 2013-09-18 20:32 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2013-12-31 05:31 - 2013-09-18 20:27 - 01730560 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2013-12-31 05:31 - 2013-09-18 20:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2013-12-31 05:31 - 2013-09-18 20:25 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2013-12-31 05:31 - 2013-09-18 20:11 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2013-12-31 05:31 - 2013-09-18 20:10 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-12-31 05:31 - 2013-09-18 19:59 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2013-12-31 05:31 - 2013-09-18 19:55 - 00552448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2013-12-31 05:31 - 2013-09-18 19:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2013-12-31 05:31 - 2013-09-18 19:32 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2013-12-31 05:31 - 2013-09-17 01:18 - 00467800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2013-12-31 05:31 - 2013-09-16 22:58 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-31 05:31 - 2013-09-16 21:26 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-12-31 05:31 - 2013-09-16 21:15 - 01225728 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2013-12-31 05:31 - 2013-09-16 21:00 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2013-12-31 05:31 - 2013-09-16 20:09 - 01160704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2013-12-31 05:31 - 2013-09-16 20:08 - 00738304 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2013-12-31 05:31 - 2013-09-16 19:28 - 00695808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2013-12-31 05:31 - 2013-09-14 06:06 - 00175960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VerifierExt.sys
2013-12-31 05:31 - 2013-09-14 06:06 - 00066904 _____ (Microsoft Corporation) C:\Windows\system32\PSHED.DLL
2013-12-31 05:31 - 2013-09-14 03:39 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2013-12-31 05:31 - 2013-09-14 03:38 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys
2013-12-31 05:31 - 2013-09-13 01:52 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\SensorsClassExtension.dll
2013-12-31 05:31 - 2013-09-13 00:54 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2013-12-31 05:31 - 2013-09-13 00:10 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2013-12-31 05:31 - 2013-09-12 23:55 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2013-12-31 05:31 - 2013-09-12 23:30 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2013-12-31 05:31 - 2013-09-12 04:33 - 06353952 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2013-12-31 05:31 - 2013-09-11 23:37 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2013-12-31 05:31 - 2013-09-11 01:32 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2013-12-31 05:31 - 2013-09-11 01:31 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2013-12-31 05:31 - 2013-09-11 01:31 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-12-31 05:31 - 2013-09-10 23:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2013-12-31 05:31 - 2013-09-10 23:09 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2013-12-31 05:31 - 2013-09-07 08:12 - 00458616 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2013-12-31 05:31 - 2013-09-07 08:12 - 00407016 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2013-12-31 05:31 - 2013-09-07 06:45 - 00408480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2013-12-31 05:31 - 2013-09-07 06:45 - 00368736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2013-12-31 05:31 - 2013-09-07 04:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\fdprint.dll
2013-12-31 05:31 - 2013-09-07 04:29 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2013-12-31 05:31 - 2013-09-07 04:00 - 00256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdprint.dll
2013-12-31 05:31 - 2013-09-07 03:50 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll
2013-12-31 05:31 - 2013-09-07 03:45 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2013-12-31 05:31 - 2013-09-07 03:30 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2013-12-31 05:31 - 2013-09-07 03:22 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2013-12-31 05:31 - 2013-09-07 03:13 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2013-12-31 05:31 - 2013-09-07 03:07 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2013-12-31 05:31 - 2013-09-07 02:51 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2013-12-31 05:31 - 2013-09-07 02:51 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2013-12-31 05:31 - 2013-09-04 23:39 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2013-12-31 05:31 - 2013-09-04 22:42 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2013-12-31 05:31 - 2013-09-04 21:40 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Utilman.exe
2013-12-31 05:31 - 2013-09-03 23:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2013-12-31 05:31 - 2013-09-03 22:16 - 00358912 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll
2013-12-31 05:31 - 2013-09-03 21:47 - 00492032 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2013-12-31 05:31 - 2013-09-03 21:12 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\DscCoreConfProv.dll
2013-12-31 05:31 - 2013-09-03 20:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2013-12-31 05:31 - 2013-09-03 20:48 - 00326656 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2013-12-31 05:31 - 2013-09-03 20:35 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2013-12-31 05:31 - 2013-08-31 06:18 - 00205024 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2013-12-31 05:31 - 2013-08-31 04:15 - 00180232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2013-12-31 05:31 - 2013-08-31 04:04 - 00638464 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2013-12-31 05:31 - 2013-08-31 02:46 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched20.dll
2013-12-31 05:31 - 2013-08-31 02:00 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2013-12-31 05:31 - 2013-08-31 01:25 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2013-12-31 05:31 - 2013-08-29 23:31 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2013-12-31 05:31 - 2013-08-28 00:03 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2013-12-31 05:31 - 2013-08-27 23:55 - 00334336 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2013-12-31 05:31 - 2013-08-27 23:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2013-12-31 05:31 - 2013-08-27 23:09 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2013-12-31 05:31 - 2013-08-27 23:04 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2013-12-31 05:31 - 2013-08-26 23:44 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2013-12-31 05:31 - 2013-08-26 22:09 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2013-12-31 05:31 - 2013-08-26 21:24 - 00813568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2013-12-31 05:22 - 2013-10-10 03:26 - 02801664 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2013-12-31 05:20 - 2013-10-10 02:34 - 01085952 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2013-12-31 05:19 - 2013-10-10 03:05 - 01019392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2013-12-31 05:19 - 2013-10-10 02:27 - 00869888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2013-12-31 05:15 - 2013-11-05 12:21 - 21196664 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-31 05:14 - 2013-11-05 10:51 - 18642504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-12-31 05:14 - 2013-11-05 08:20 - 13925888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-12-31 05:14 - 2013-11-05 08:11 - 18577408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2013-12-31 05:13 - 2013-11-11 15:41 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-31 05:13 - 2013-11-11 15:40 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-31 05:13 - 2013-11-11 15:27 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2013-12-31 05:13 - 2013-11-11 15:24 - 00840704 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2013-12-31 05:13 - 2013-11-08 22:37 - 01756160 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2013-12-31 05:13 - 2013-11-08 02:26 - 00358896 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2013-12-31 05:13 - 2013-11-07 20:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2013-12-31 05:13 - 2013-11-07 20:28 - 13177344 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2013-12-31 05:13 - 2013-11-07 20:26 - 11674624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-12-31 05:13 - 2013-11-07 20:16 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2013-12-31 05:13 - 2013-11-07 20:15 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2013-12-31 05:13 - 2013-11-07 19:41 - 01302528 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2013-12-31 05:13 - 2013-11-05 06:19 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2013-12-31 05:13 - 2013-11-05 06:03 - 00637952 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2013-12-31 05:13 - 2013-11-05 05:57 - 00479744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2013-12-31 05:13 - 2013-11-05 05:33 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2013-12-31 05:13 - 2013-11-05 05:32 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2013-12-31 05:13 - 2013-11-04 09:13 - 01530200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-31 05:13 - 2013-11-04 09:13 - 00382808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-12-31 05:13 - 2013-11-04 03:50 - 02143744 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2013-12-31 05:13 - 2013-11-04 02:32 - 02570240 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2013-12-31 05:13 - 2013-11-03 17:30 - 01765376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2013-12-31 05:13 - 2013-10-31 22:08 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2013-12-31 05:13 - 2013-10-30 16:58 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2013-12-31 05:13 - 2013-10-30 16:42 - 07399256 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-31 05:13 - 2013-10-30 16:33 - 01642016 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-12-31 05:13 - 2013-10-30 16:33 - 01506680 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-12-31 05:13 - 2013-10-30 16:33 - 01476184 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-12-31 05:13 - 2013-10-30 16:33 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-12-31 05:13 - 2013-10-17 03:21 - 02896896 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2013-12-31 05:13 - 2013-10-17 02:36 - 02266624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2013-12-31 05:13 - 2013-10-10 03:53 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2013-12-31 05:13 - 2013-10-10 03:21 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2013-12-31 05:13 - 2013-10-05 06:21 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-12-31 05:13 - 2013-10-05 06:21 - 00516496 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-12-31 05:13 - 2013-10-05 04:05 - 01765384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-12-31 05:13 - 2013-10-05 04:05 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-12-31 05:12 - 2013-11-08 21:56 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2013-12-31 05:11 - 2013-11-10 18:48 - 00039768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2013-12-31 05:11 - 2013-10-25 17:54 - 00146776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\SerCx2.sys
2013-12-31 05:10 - 2013-11-07 19:14 - 00922624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2013-12-31 05:08 - 2013-12-31 05:08 - 00000000 ____D C:\Users\Karin\AppData\Roaming\TeamViewer
2013-12-31 05:08 - 2013-11-09 03:55 - 00325464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2013-12-31 05:08 - 2013-11-01 03:39 - 00086872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2013-12-31 05:07 - 2013-12-31 05:07 - 04571480 _____ (TeamViewer) C:\Users\Karin\Desktop\TeamViewerQS_de.exe
2013-12-31 05:07 - 2013-10-24 01:31 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2013-12-31 05:06 - 2013-11-04 05:07 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2013-12-31 05:06 - 2013-11-03 18:28 - 01816576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2013-12-31 05:06 - 2013-10-24 01:12 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2013-12-31 05:05 - 2013-10-31 21:57 - 00544768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2013-12-31 04:58 - 2013-11-07 20:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2013-12-31 04:55 - 2013-10-22 00:18 - 01287064 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-31 04:55 - 2013-10-21 23:55 - 02328872 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-12-31 04:55 - 2013-10-21 22:03 - 02065448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-12-31 04:55 - 2013-10-21 17:53 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2013-12-31 04:55 - 2013-10-10 08:23 - 03395920 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2013-12-31 04:55 - 2013-10-08 02:13 - 02551640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-31 04:55 - 2013-10-06 18:13 - 03532288 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-12-31 04:55 - 2013-10-04 23:39 - 06639616 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-12-31 04:55 - 2013-10-04 00:10 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2013-12-31 04:55 - 2013-09-17 01:06 - 01067080 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2013-12-31 04:55 - 2013-09-16 22:31 - 00883184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2013-12-31 04:55 - 2013-09-14 06:07 - 02134120 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2013-12-31 04:54 - 2013-10-23 03:29 - 00044936 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2013-12-31 04:54 - 2013-10-23 03:21 - 00155480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-31 04:54 - 2013-10-23 03:13 - 00171864 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_8086.dll
2013-12-31 04:54 - 2013-10-21 21:15 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2013-12-31 04:54 - 2013-10-21 20:04 - 00618496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2013-12-31 04:54 - 2013-10-21 20:02 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-12-31 04:54 - 2013-10-21 19:56 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2013-12-31 04:54 - 2013-10-21 19:44 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2013-12-31 04:54 - 2013-10-21 18:38 - 01362944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2013-12-31 04:54 - 2013-10-21 18:22 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2013-12-31 04:54 - 2013-10-21 18:07 - 02617344 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-31 04:54 - 2013-10-21 17:47 - 02295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-12-31 04:54 - 2013-10-19 00:51 - 00481392 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2013-12-31 04:54 - 2013-10-18 23:12 - 00380656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2013-12-31 04:54 - 2013-10-18 21:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-31 04:54 - 2013-10-18 20:48 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2013-12-31 04:54 - 2013-10-18 20:03 - 00531968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2013-12-31 04:54 - 2013-10-18 19:26 - 01231360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2013-12-31 04:54 - 2013-10-18 19:14 - 00888832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2013-12-31 04:54 - 2013-10-17 07:42 - 01399176 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2013-12-31 04:54 - 2013-10-17 07:42 - 01373872 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2013-12-31 04:54 - 2013-10-17 06:04 - 01204968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2013-12-31 04:54 - 2013-10-16 01:34 - 00518656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2013-12-31 04:54 - 2013-10-16 01:33 - 00631296 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2013-12-31 04:54 - 2013-10-12 19:06 - 00258904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2013-12-31 04:54 - 2013-10-12 18:43 - 00708616 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2013-12-31 04:54 - 2013-10-10 08:44 - 00031064 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll
2013-12-31 04:54 - 2013-10-10 08:26 - 00317616 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-31 04:54 - 2013-10-10 08:26 - 00104320 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2013-12-31 04:54 - 2013-10-10 06:53 - 00235960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-12-31 04:54 - 2013-10-10 06:53 - 00088272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2013-12-31 04:54 - 2013-10-10 03:38 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-12-31 04:54 - 2013-10-08 21:40 - 00385528 _____ C:\Windows\system32\ApnDatabase.xml
2013-12-31 04:54 - 2013-10-08 02:28 - 00523096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2013-12-31 04:54 - 2013-10-07 22:46 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2013-12-31 04:54 - 2013-10-07 21:58 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2013-12-31 04:54 - 2013-10-07 21:50 - 00656384 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-12-31 04:54 - 2013-10-07 21:48 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-12-31 04:54 - 2013-10-07 21:15 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-12-31 04:54 - 2013-10-07 21:09 - 01160704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2013-12-31 04:54 - 2013-10-07 20:50 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-12-31 04:54 - 2013-10-07 20:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2013-12-31 04:54 - 2013-10-06 23:21 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-12-31 04:54 - 2013-10-05 07:25 - 00057176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2013-12-31 04:54 - 2013-10-05 06:21 - 00699840 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-12-31 04:54 - 2013-10-05 04:05 - 00578952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-12-31 04:54 - 2013-10-05 03:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-12-31 04:54 - 2013-10-05 03:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-12-31 04:54 - 2013-10-05 03:00 - 01200640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-12-31 04:54 - 2013-10-05 01:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-12-31 04:54 - 2013-10-05 01:18 - 01011712 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2013-12-31 04:54 - 2013-10-05 01:07 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2013-12-31 04:54 - 2013-10-05 00:56 - 01147904 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2013-12-31 04:54 - 2013-10-05 00:55 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2013-12-31 04:54 - 2013-10-05 00:40 - 00795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2013-12-31 04:54 - 2013-10-05 00:21 - 00920064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2013-12-31 04:54 - 2013-10-05 00:15 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2013-12-31 04:54 - 2013-10-04 23:43 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-31 04:54 - 2013-10-04 23:35 - 00411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-31 04:54 - 2013-10-04 23:32 - 05769728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-12-31 04:54 - 2013-09-18 21:04 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2013-12-31 04:54 - 2013-09-17 01:06 - 00465960 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2013-12-31 04:54 - 2013-09-16 22:31 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2013-12-31 04:54 - 2013-09-16 20:37 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll
2013-12-31 04:54 - 2013-09-14 06:00 - 00391512 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2013-12-31 04:54 - 2013-09-14 04:39 - 01799944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2013-12-31 04:54 - 2013-09-14 04:33 - 00345552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2013-12-31 04:54 - 2013-09-14 01:11 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2013-12-31 04:54 - 2013-09-12 00:08 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2013-12-31 04:54 - 2013-09-11 23:44 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2013-12-31 04:54 - 2013-09-11 23:37 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2013-12-31 04:54 - 2013-09-11 23:21 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2013-12-31 04:54 - 2013-09-11 23:16 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2013-12-31 04:54 - 2013-09-09 21:26 - 04599808 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-12-31 04:54 - 2013-09-09 20:52 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\msched.dll
2013-12-31 04:54 - 2013-09-09 20:34 - 03934208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-12-31 04:53 - 2013-10-21 18:13 - 01704448 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-12-31 04:53 - 2013-10-05 00:24 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2013-12-31 04:53 - 2013-09-14 02:05 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2013-12-31 04:53 - 2013-09-13 00:22 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2013-12-31 04:53 - 2013-09-12 23:47 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe
2013-12-31 04:53 - 2013-09-12 00:45 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2013-12-31 04:53 - 2013-09-12 00:08 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2013-12-31 04:53 - 2013-09-12 00:02 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2013-12-31 04:53 - 2013-09-11 23:37 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2013-12-31 04:53 - 2013-09-11 23:01 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2013-12-31 04:30 - 2013-12-31 04:30 - 00001993 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-31 04:30 - 2013-12-31 04:30 - 00000000 ____D C:\Users\Karin\AppData\Roaming\AVAST Software
2013-12-31 04:29 - 2014-01-01 09:16 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-31 04:29 - 2013-12-31 04:30 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-31 04:29 - 2013-12-31 04:29 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-12-31 04:28 - 2013-12-31 04:28 - 00000000 ____D C:\Program Files\AVAST Software
2013-12-31 04:26 - 2013-12-31 04:26 - 00000000 ____D C:\ProgramData\AVAST Software
2013-12-31 04:17 - 2013-12-31 04:17 - 00000000 ___RD C:\Windows\BrowserChoice
2013-12-29 11:58 - 2013-09-25 22:51 - 00669184 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2013-12-29 11:58 - 2013-09-25 22:34 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2013-12-29 11:58 - 2013-09-25 22:34 - 00515072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2013-12-29 11:52 - 2013-11-19 02:30 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-12-29 11:51 - 2013-10-19 00:53 - 00075360 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-29 11:51 - 2013-10-18 23:14 - 00070680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-29 11:51 - 2013-10-11 05:24 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2013-12-29 11:51 - 2013-10-11 05:03 - 00621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2013-12-29 11:51 - 2013-10-03 01:16 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2013-12-29 11:51 - 2013-10-03 01:02 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2013-12-29 11:51 - 2013-10-02 03:00 - 01286552 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2013-12-29 11:51 - 2013-10-02 01:47 - 01018960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2013-12-29 11:51 - 2013-09-30 19:42 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2013-12-29 11:51 - 2013-09-30 19:36 - 00977408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2013-12-29 11:50 - 2013-10-16 07:58 - 01943536 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-29 11:50 - 2013-10-16 05:54 - 01581968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-12-29 11:45 - 2013-11-07 23:21 - 04191744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-29 11:44 - 2013-10-23 03:01 - 00872840 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-12-29 11:44 - 2013-10-23 00:59 - 00698232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2013-12-29 11:42 - 2013-10-15 00:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-29 11:42 - 2013-10-15 00:03 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-29 11:42 - 2013-10-05 06:21 - 01341288 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-29 11:42 - 2013-10-05 00:39 - 01067008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-12-29 11:41 - 2013-11-26 03:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-29 11:41 - 2013-11-26 02:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-29 11:41 - 2013-11-26 01:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-29 11:41 - 2013-11-26 00:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-29 11:41 - 2013-11-26 00:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-29 11:41 - 2013-11-26 00:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-29 11:41 - 2013-11-25 23:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-29 11:41 - 2013-11-25 23:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-29 11:41 - 2013-11-25 23:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-29 11:41 - 2013-11-25 22:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-29 11:41 - 2013-11-25 22:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-29 11:41 - 2013-11-25 22:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-29 11:40 - 2013-11-26 00:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-29 11:40 - 2013-11-26 00:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-29 11:40 - 2013-11-25 23:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-29 11:40 - 2013-11-25 22:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-29 11:40 - 2013-11-25 22:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-28 17:11 - 2013-10-12 13:48 - 00828416 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2013-12-28 17:11 - 2013-10-12 13:34 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-28 17:10 - 2013-11-08 22:34 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2013-12-28 17:10 - 2013-11-08 22:34 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2013-12-28 17:10 - 2013-11-08 21:52 - 00240128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2013-12-28 17:10 - 2013-10-12 18:48 - 00136536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2013-12-28 17:09 - 2013-11-22 20:34 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-28 17:09 - 2013-11-22 20:13 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-28 11:06 - 2013-11-22 19:32 - 04105728 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2013-12-28 11:06 - 2013-11-22 19:10 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2013-12-28 11:03 - 2014-01-04 09:03 - 00000284 _____ C:\Windows\Tasks\SpeedUpMyPC Startup.job
2013-12-28 11:03 - 2014-01-04 09:01 - 00000000 ____D C:\Program Files (x86)\Uniblue
2013-12-28 11:03 - 2014-01-04 09:00 - 00000290 _____ C:\Windows\Tasks\SpeedUpMyPC Maintenance.job
2013-12-28 11:03 - 2013-12-28 11:04 - 00003186 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance
2013-12-28 11:03 - 2013-12-28 11:04 - 00002490 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Startup
2013-12-28 11:03 - 2013-12-28 11:03 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Uniblue
2013-12-28 10:59 - 2014-01-01 10:19 - 00000000 ____D C:\Windows\Minidump
2013-12-28 10:59 - 2013-12-28 10:59 - 741086122 _____ C:\Windows\MEMORY.DMP
2013-12-28 07:08 - 2013-12-28 11:03 - 00001056 _____ C:\Users\Public\Desktop\VideoPlayer.lnk
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\VideoPlayer
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.2
2013-12-27 13:18 - 2013-12-27 13:18 - 00000000 ____D C:\Users\Karin\AppData\Roaming\eCyber
2013-12-27 13:17 - 2013-12-27 13:17 - 00001803 _____ C:\Users\Public\Desktop\YAC.lnk
2013-12-27 13:17 - 2013-12-27 13:17 - 00000000 ____D C:\Windows\system32\log
2013-12-23 14:09 - 2013-12-23 14:09 - 00000000 ____D C:\Users\Karin\Documents\Fax
2013-12-22 14:19 - 2013-12-22 14:19 - 00000000 ____D C:\Users\Karin\AppData\Roaming\WildTangent
2013-12-21 15:20 - 2013-12-21 15:20 - 00000000 ____D C:\Users\Karin\AppData\Local\Amazon_Services_LLC
2013-12-21 03:13 - 2013-12-28 04:22 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Spotify
2013-12-21 03:13 - 2013-12-21 03:13 - 00000000 ____D C:\Users\Karin\AppData\Local\Spotify
2013-12-21 02:58 - 2013-12-21 02:58 - 00000000 ____D C:\Users\Karin\AppData\Roaming\sMedio
2013-12-21 02:16 - 2014-01-04 09:18 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4107547971-784288387-3362512993-1002
2013-12-21 02:16 - 2013-12-21 02:16 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Macromedia
2013-12-21 02:15 - 2013-12-21 02:15 - 00000000 ____D C:\ProgramData\ToshibaEurope
2013-12-21 02:14 - 2014-01-04 09:04 - 00000000 __RDO C:\Users\Karin\SkyDrive
2013-12-21 02:11 - 2013-12-21 02:49 - 00000000 ____D C:\Users\Karin\AppData\Local\TOSHIBA
2013-12-21 02:09 - 2013-12-31 06:59 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-21 02:09 - 2013-12-31 06:59 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-21 02:09 - 2013-12-31 04:17 - 00000000 ____D C:\Users\Karin\AppData\Local\Packages
2013-12-21 02:09 - 2013-12-28 11:03 - 00001679 _____ C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Adobe
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Local\VirtualStore
2013-12-21 02:07 - 2014-01-01 09:32 - 00000000 ____D C:\Users\Karin
2013-12-21 02:07 - 2013-12-21 02:07 - 00000020 ___SH C:\Users\Karin\ntuser.ini
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Vorlagen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Startmenü
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Netzwerkumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Lokale Einstellungen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Eigene Dateien
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Druckumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Musik
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Bilder
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Verlauf
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Anwendungsdaten
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Anwendungsdaten
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

==================== One Month Modified Files and Folders =======

2014-01-04 09:18 - 2014-01-04 09:18 - 00000000 ____D C:\Users\Karin\Downloads\FRST-OlderVersion
2014-01-04 09:18 - 2014-01-01 09:36 - 00011174 _____ C:\Users\Karin\Downloads\FRST.txt
2014-01-04 09:18 - 2014-01-01 09:36 - 00000000 ____D C:\FRST
2014-01-04 09:18 - 2014-01-01 09:34 - 01931368 _____ (Farbar) C:\Users\Karin\Downloads\FRST64.exe
2014-01-04 09:18 - 2013-12-21 02:16 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4107547971-784288387-3362512993-1002
2014-01-04 09:17 - 2013-11-18 16:31 - 01217151 _____ C:\Windows\WindowsUpdate.log
2014-01-04 09:16 - 2014-01-04 09:16 - 00001303 _____ C:\Users\Karin\Desktop\JRT.txt
2014-01-04 09:10 - 2014-01-04 09:10 - 00000000 ____D C:\Windows\ERUNT
2014-01-04 09:09 - 2013-09-06 13:25 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-04 09:09 - 2013-08-28 01:59 - 00765582 _____ C:\Windows\system32\perfh007.dat
2014-01-04 09:09 - 2013-08-28 01:59 - 00159366 _____ C:\Windows\system32\perfc007.dat
2014-01-04 09:08 - 2014-01-04 09:07 - 01036305 _____ (Thisisu) C:\Users\Karin\Downloads\JRT.exe
2014-01-04 09:06 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\AppReadiness
2014-01-04 09:04 - 2013-12-21 02:14 - 00000000 __RDO C:\Users\Karin\SkyDrive
2014-01-04 09:03 - 2013-12-28 11:03 - 00000284 _____ C:\Windows\Tasks\SpeedUpMyPC Startup.job
2014-01-04 09:02 - 2013-09-06 22:13 - 00003054 _____ C:\Windows\PFRO.log
2014-01-04 09:02 - 2013-08-22 06:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-04 09:02 - 2013-08-22 05:25 - 00524288 ___SH C:\Windows\system32\config\BBI
2014-01-04 09:01 - 2014-01-04 08:59 - 00000000 ____D C:\AdwCleaner
2014-01-04 09:01 - 2013-12-28 11:03 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Uniblue
2014-01-04 09:01 - 2013-12-28 11:03 - 00000000 ____D C:\Program Files (x86)\Uniblue
2014-01-04 09:00 - 2013-12-28 11:03 - 00000290 _____ C:\Windows\Tasks\SpeedUpMyPC Maintenance.job
2014-01-04 09:00 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\sru
2014-01-04 08:59 - 2014-01-04 08:59 - 01233962 _____ C:\Users\Karin\Downloads\adwcleaner.exe
2014-01-01 10:20 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\rescache
2014-01-01 10:19 - 2013-12-28 10:59 - 00000000 ____D C:\Windows\Minidump
2014-01-01 09:37 - 2014-01-01 09:37 - 00023709 _____ C:\Users\Karin\Downloads\Addition.txt
2014-01-01 09:32 - 2014-01-01 09:32 - 00000472 _____ C:\Windows\SysWOW64\defogger_disable.log
2014-01-01 09:32 - 2014-01-01 09:32 - 00000000 _____ C:\Users\Karin\defogger_reenable
2014-01-01 09:32 - 2013-12-21 02:07 - 00000000 ____D C:\Users\Karin
2014-01-01 09:30 - 2014-01-01 09:30 - 00050477 _____ C:\Users\Karin\Downloads\Defogger.exe
2014-01-01 09:16 - 2013-12-31 04:29 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-31 06:59 - 2013-12-31 06:59 - 00003544 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2013-12-31 06:59 - 2013-12-21 02:09 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-31 06:59 - 2013-12-21 02:09 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-31 06:57 - 2013-08-22 06:44 - 00336024 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-31 06:55 - 2013-11-18 16:52 - 00000000 ____D C:\ProgramData\McAfee
2013-12-31 06:55 - 2013-11-18 16:52 - 00000000 ____D C:\Program Files\Common Files\mcafee
2013-12-31 06:55 - 2013-11-18 16:52 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ___RD C:\Windows\ToastData
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\WinStore
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\migwiz
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\MediaViewer
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\FileManager
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\Camera
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Windows Defender
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-12-31 06:53 - 2013-08-22 07:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2013-12-31 06:53 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-12-31 06:53 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\system32\oobe
2013-12-31 06:53 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\system32\Dism
2013-12-31 06:15 - 2013-12-31 06:14 - 00000000 ____D C:\Windows\system32\MRT
2013-12-31 05:08 - 2013-12-31 05:08 - 00000000 ____D C:\Users\Karin\AppData\Roaming\TeamViewer
2013-12-31 05:07 - 2013-12-31 05:07 - 04571480 _____ (TeamViewer) C:\Users\Karin\Desktop\TeamViewerQS_de.exe
2013-12-31 04:30 - 2013-12-31 04:30 - 00001993 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-31 04:30 - 2013-12-31 04:30 - 00000000 ____D C:\Users\Karin\AppData\Roaming\AVAST Software
2013-12-31 04:30 - 2013-12-31 04:29 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-31 04:29 - 2013-12-31 04:29 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-12-31 04:28 - 2013-12-31 04:28 - 00000000 ____D C:\Program Files\AVAST Software
2013-12-31 04:26 - 2013-12-31 04:26 - 00000000 ____D C:\ProgramData\AVAST Software
2013-12-31 04:22 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\NDF
2013-12-31 04:17 - 2013-12-31 04:17 - 00000000 ___RD C:\Windows\BrowserChoice
2013-12-31 04:17 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Local\Packages
2013-12-28 11:04 - 2013-12-28 11:03 - 00003186 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance
2013-12-28 11:04 - 2013-12-28 11:03 - 00002490 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Startup
2013-12-28 11:03 - 2013-12-28 07:08 - 00001056 _____ C:\Users\Public\Desktop\VideoPlayer.lnk
2013-12-28 11:03 - 2013-12-21 02:09 - 00001679 _____ C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-28 10:59 - 2013-12-28 10:59 - 741086122 _____ C:\Windows\MEMORY.DMP
2013-12-28 10:59 - 2013-08-22 05:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\VideoPlayer
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.2
2013-12-28 04:22 - 2013-12-21 03:13 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Spotify
2013-12-27 13:18 - 2013-12-27 13:18 - 00000000 ____D C:\Users\Karin\AppData\Roaming\eCyber
2013-12-27 13:17 - 2013-12-27 13:17 - 00001803 _____ C:\Users\Public\Desktop\YAC.lnk
2013-12-27 13:17 - 2013-12-27 13:17 - 00000000 ____D C:\Windows\system32\log
2013-12-25 12:25 - 2013-08-28 01:58 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2013-12-25 12:25 - 2013-08-22 11:11 - 00000000 ____D C:\Program Files\Windows Journal
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\winrm
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\WCN
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\winrm
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\WCN
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\slmgr
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\SysWOW64\MUI
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\MUI
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\Com
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\IME
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\Help
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Common Files\System
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-12-25 12:25 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2013-12-25 12:25 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\system32\Sysprep
2013-12-25 12:25 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\servicing
2013-12-25 12:23 - 2013-08-22 07:36 - 00000000 ___SD C:\Windows\system32\dsc
2013-12-24 16:50 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-23 14:09 - 2013-12-23 14:09 - 00000000 ____D C:\Users\Karin\Documents\Fax
2013-12-22 14:19 - 2013-12-22 14:19 - 00000000 ____D C:\Users\Karin\AppData\Roaming\WildTangent
2013-12-22 14:19 - 2013-11-18 17:01 - 00000000 ____D C:\ProgramData\WildTangent
2013-12-21 16:57 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\LiveKernelReports
2013-12-21 15:20 - 2013-12-21 15:20 - 00000000 ____D C:\Users\Karin\AppData\Local\Amazon_Services_LLC
2013-12-21 03:13 - 2013-12-21 03:13 - 00000000 ____D C:\Users\Karin\AppData\Local\Spotify
2013-12-21 02:58 - 2013-12-21 02:58 - 00000000 ____D C:\Users\Karin\AppData\Roaming\sMedio
2013-12-21 02:49 - 2013-12-21 02:11 - 00000000 ____D C:\Users\Karin\AppData\Local\TOSHIBA
2013-12-21 02:16 - 2013-12-21 02:16 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Macromedia
2013-12-21 02:15 - 2013-12-21 02:15 - 00000000 ____D C:\ProgramData\ToshibaEurope
2013-12-21 02:15 - 2013-09-06 13:26 - 00000000 ____D C:\ProgramData\Toshiba
2013-12-21 02:14 - 2013-11-18 16:43 - 00000000 ____D C:\Windows\System32\Tasks\TOSHIBA
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Adobe
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Local\VirtualStore
2013-12-21 02:09 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\sysprep
2013-12-21 02:07 - 2013-12-21 02:07 - 00000020 ___SH C:\Users\Karin\ntuser.ini
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Vorlagen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Startmenü
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Netzwerkumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Lokale Einstellungen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Eigene Dateien
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Druckumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Musik
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Bilder
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Verlauf
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Anwendungsdaten
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Anwendungsdaten
2013-12-21 01:29 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\restore

Some content of TEMP:
====================
C:\Users\Karin\AppData\Local\Temp\BackupSetup.exe
C:\Users\Karin\AppData\Local\Temp\nsh5802.exe
C:\Users\Karin\AppData\Local\Temp\nsp6E3.exe
C:\Users\Karin\AppData\Local\Temp\Quarantine.exe
C:\Users\Karin\AppData\Local\Temp\vcredist_x64.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-06 22:13

==================== End Of Log ============================
         
--- --- ---

--- --- ---
__________________

Alt 05.01.2014, 15:15   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 8: Virenbefall/Popups/dubiose Programme - Standard

Windows 8: Virenbefall/Popups/dubiose Programme




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 07.01.2014, 19:55   #5
phenex
 
Windows 8: Virenbefall/Popups/dubiose Programme - Standard

Windows 8: Virenbefall/Popups/dubiose Programme



Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=f31db02dfb7a7d4ab684e056e2dc5b13
# engine=16553
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-07 07:33:03
# local_time=2014-01-07 11:33:03 (-0800, Pacific Normalzeit)
# country="Germany"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode=774 16777214 71 77 0 0 0 0
# compatibility_mode=5893 16776574 100 94 0 11035285 0 0
# scanned=143070
# found=3
# cleaned=0
# scan_time=2680
sh=D4BD507F917917B829EB9FCE79A29047635E3668 ft=1 fh=6a4bd6f73db15183 vn="Win32/Adware.SpeedingUpMyPC.C application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Driver Pro\DPSmartScan.exe.vir"
sh=E010378F7E80DF1728EE5EEA05191FC5FDA13399 ft=1 fh=a7df42149645881c vn="Win32/AdWare.SpeedingUpMyPC application" ac=I fn="C:\Users\Karin\AppData\Local\Temp\zpytozzlgoimvrd\software\Driverpro.exe"
sh=17F1ADEDEF0349961B4AC61FE1E2C0B0D5322AAE ft=1 fh=d28a09982087cc36 vn="Win32/Adware.SpeedingUpMyPC.C application" ac=I fn="C:\Windows\Temp\DriverPro.exe"
         
Code:
ATTFilter
 Results of screen317's Security Check version 0.99.78  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Windows Defender   
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
````````Process Check: objlist.exe by Laurent````````  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````
         

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-01-2014
Ran by Karin (administrator) on KARIN on 07-01-2014 11:48:05
Running from C:\Users\Karin\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(TeamViewer GmbH) C:\Users\Karin\AppData\Local\Temp\TeamViewer\Version9\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TeamViewer GmbH) C:\Users\Karin\AppData\Local\Temp\TeamViewer\Version9\TeamViewer.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(Spotify Ltd) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Windows\BrowserChoice\browserchoice.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(TOSHIBA) C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
() C:\Program Files\WindowsApps\Microsoft.BingMaps_2.0.2210.2401_x64__8wekyb3d8bbwe\Map.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(TeamViewer GmbH) C:\Users\Karin\AppData\Local\Temp\TeamViewer\Version9\TeamViewer_Desktop.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [] - [x]
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM\...\Run: [TSSSrv] - C:\Program Files (x86)\TOSHIBA\System Setting\TssSrv.exe [296520 2013-09-11] (TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] - C:\Program Files\TOSHIBA\Teco\TecoResident.exe [178016 2013-08-21] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] - C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] - C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-08-17] (TOSHIBA Corporation)
HKLM-x32\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2002-04-12] (Alcor Micro Corp.)
HKLM-x32\...\Run: [1.TPUReg] - C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2216800 2013-03-27] (TOSHIBA)
HKLM-x32\...\Run: [TSVU] - C:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Spotify Web Helper] - C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1199576 2013-09-06] (Spotify Ltd)
HKCU\...\Run: [BrowserChoice] - C:\Windows\BrowserChoice\browserchoice.exe [86816 2013-08-22] (Microsoft Corporation)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [387536 2013-08-09] (NVIDIA Corporation)
AppInit_DLLs-x32:  C:\Windows\SysWOW64\nvinit.dll [326224 2013-08-09] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://toshiba13.msn.com/?pc=TEJB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TEJB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://toshiba.eu/symbaloo_c
SearchScopes: HKLM - DefaultScope {7ED62170-54D0-4F8C-9692-DF338105F23E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {7ED62170-54D0-4F8C-9692-DF338105F23E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
SearchScopes: HKLM-x32 - {7ED62170-54D0-4F8C-9692-DF338105F23E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
BHO-x32: Re-markit - {14fbefe4-962f-4792-9a80-c74534d34636} - C:\Program Files (x86)\Re-markit\150.dll No File
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

==================== Services (Whitelisted) =================

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-08-22] (Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-31] (AVAST Software)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19792 2013-09-10] ()
R2 GFNEXSrv; C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe [163168 2013-03-27] ()
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-07] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-07] (McAfee, Inc.)
R2 TeamViewer9; c:\users\karin\appdata\local\temp\teamviewer\version9\TeamViewer_Service.exe [4932448 2013-12-17] (TeamViewer GmbH)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116088 2013-07-18] (Toshiba Europe GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2013-12-31] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-31] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-31] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2013-12-31] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2013-12-31] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2013-12-31] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-31] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows (R) Win 7 DDK provider)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-08-07] (McAfee, Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-10] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-07] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-07] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69264 2013-08-07] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-07] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-07] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-07] (McAfee, Inc.)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R2 PEGAGFN; C:\Program Files (x86)\TOSHIBA\PasswordUtility\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation                           )
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-25] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-21] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S1 iSafeNetFilter; \??\C:\Program Files (x86)\iSafe\iSafeNetFilter.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-07 11:43 - 2014-01-07 11:43 - 00987410 _____ C:\Users\Karin\Downloads\SecurityCheck.exe
2014-01-07 10:34 - 2014-01-07 10:34 - 02347384 _____ (ESET) C:\Users\Karin\Downloads\esetsmartinstaller_enu.exe
2014-01-04 09:18 - 2014-01-07 11:47 - 00000000 ____D C:\Users\Karin\Downloads\FRST-OlderVersion
2014-01-04 09:16 - 2014-01-04 09:16 - 00001303 _____ C:\Users\Karin\Desktop\JRT.txt
2014-01-04 09:10 - 2014-01-04 09:10 - 00000000 ____D C:\Windows\ERUNT
2014-01-04 09:07 - 2014-01-04 09:08 - 01036305 _____ (Thisisu) C:\Users\Karin\Downloads\JRT.exe
2014-01-04 08:59 - 2014-01-04 09:01 - 00000000 ____D C:\AdwCleaner
2014-01-04 08:59 - 2014-01-04 08:59 - 01233962 _____ C:\Users\Karin\Downloads\adwcleaner.exe
2014-01-01 09:37 - 2014-01-01 09:37 - 00023709 _____ C:\Users\Karin\Downloads\Addition.txt
2014-01-01 09:36 - 2014-01-07 11:48 - 00011851 _____ C:\Users\Karin\Downloads\FRST.txt
2014-01-01 09:36 - 2014-01-07 11:47 - 00000000 ____D C:\FRST
2014-01-01 09:34 - 2014-01-07 11:47 - 01931762 _____ (Farbar) C:\Users\Karin\Downloads\FRST64.exe
2014-01-01 09:32 - 2014-01-01 09:32 - 00000472 _____ C:\Windows\SysWOW64\defogger_disable.log
2014-01-01 09:32 - 2014-01-01 09:32 - 00000000 _____ C:\Users\Karin\defogger_reenable
2014-01-01 09:30 - 2014-01-01 09:30 - 00050477 _____ C:\Users\Karin\Downloads\Defogger.exe
2013-12-31 06:59 - 2013-12-31 06:59 - 00003544 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2013-12-31 06:14 - 2013-12-31 06:15 - 00000000 ____D C:\Windows\system32\MRT
2013-12-31 06:14 - 2013-12-01 14:42 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-31 05:32 - 2013-09-25 02:25 - 00783504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2013-12-31 05:32 - 2013-09-23 21:05 - 01245696 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2013-12-31 05:32 - 2013-09-21 03:18 - 01109936 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-31 05:32 - 2013-09-21 02:53 - 02131120 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2013-12-31 05:32 - 2013-09-21 02:53 - 01928656 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2013-12-31 05:32 - 2013-09-21 01:12 - 01370800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2013-12-31 05:32 - 2013-09-21 01:09 - 02142424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2013-12-31 05:32 - 2013-09-21 01:09 - 00796928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2013-12-31 05:32 - 2013-09-20 22:33 - 11366912 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2013-12-31 05:32 - 2013-09-20 22:06 - 01415168 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-31 05:32 - 2013-09-20 21:56 - 08712704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2013-12-31 05:32 - 2013-09-20 21:34 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2013-12-31 05:32 - 2013-09-20 21:10 - 12028416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2013-12-31 05:32 - 2013-09-20 21:05 - 08875008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2013-12-31 05:32 - 2013-09-20 20:49 - 04975104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2013-12-31 05:32 - 2013-09-20 20:48 - 07544320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2013-12-31 05:32 - 2013-09-20 20:45 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2013-12-31 05:32 - 2013-09-20 20:44 - 01662464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2013-12-31 05:32 - 2013-09-20 20:39 - 01455616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2013-12-31 05:31 - 2013-09-26 01:20 - 00556032 _____ (Microsoft Corporation) C:\Windows\system32\recimg.exe
2013-12-31 05:31 - 2013-09-26 00:24 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-31 05:31 - 2013-09-25 23:32 - 00638464 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2013-12-31 05:31 - 2013-09-25 23:14 - 00528896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2013-12-31 05:31 - 2013-09-25 00:58 - 00648648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2013-12-31 05:31 - 2013-09-24 23:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2013-12-31 05:31 - 2013-09-24 21:40 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2013-12-31 05:31 - 2013-09-23 22:55 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2013-12-31 05:31 - 2013-09-23 21:59 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2013-12-31 05:31 - 2013-09-23 21:54 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2013-12-31 05:31 - 2013-09-23 21:10 - 01741824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2013-12-31 05:31 - 2013-09-23 19:56 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2013-12-31 05:31 - 2013-09-21 04:10 - 00579416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-12-31 05:31 - 2013-09-21 04:10 - 00236376 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2013-12-31 05:31 - 2013-09-21 04:10 - 00151384 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2013-12-31 05:31 - 2013-09-21 03:50 - 00528048 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2013-12-31 05:31 - 2013-09-21 03:48 - 00534048 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2013-12-31 05:31 - 2013-09-21 03:48 - 00123480 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2013-12-31 05:31 - 2013-09-21 03:04 - 00419160 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2013-12-31 05:31 - 2013-09-21 02:56 - 01119576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-12-31 05:31 - 2013-09-21 02:56 - 00101208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-31 05:31 - 2013-09-21 02:53 - 01534504 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00996320 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00934856 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00366688 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2013-12-31 05:31 - 2013-09-21 02:53 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-12-31 05:31 - 2013-09-21 02:51 - 01720552 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-31 05:31 - 2013-09-21 02:45 - 00171968 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-31 05:31 - 2013-09-21 01:23 - 00427096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2013-12-31 05:31 - 2013-09-21 01:23 - 00098104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2013-12-31 05:31 - 2013-09-21 01:12 - 01092896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2013-12-31 05:31 - 2013-09-21 01:09 - 01472048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-12-31 05:31 - 2013-09-21 01:09 - 00312936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2013-12-31 05:31 - 2013-09-20 23:58 - 00675328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-12-31 05:31 - 2013-09-20 23:57 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-12-31 05:31 - 2013-09-20 23:56 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-12-31 05:31 - 2013-09-20 23:55 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2013-12-31 05:31 - 2013-09-20 23:50 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2013-12-31 05:31 - 2013-09-20 23:17 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2013-12-31 05:31 - 2013-09-20 23:05 - 00835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-12-31 05:31 - 2013-09-20 22:55 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2013-12-31 05:31 - 2013-09-20 22:27 - 00911872 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2013-12-31 05:31 - 2013-09-20 22:01 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2013-12-31 05:31 - 2013-09-20 22:00 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2013-12-31 05:31 - 2013-09-20 21:59 - 00940544 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-12-31 05:31 - 2013-09-20 21:57 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\livessp.dll
2013-12-31 05:31 - 2013-09-20 21:50 - 00767488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2013-12-31 05:31 - 2013-09-20 21:43 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2013-12-31 05:31 - 2013-09-20 21:38 - 00365568 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2013-12-31 05:31 - 2013-09-20 21:37 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-12-31 05:31 - 2013-09-20 21:36 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2013-12-31 05:31 - 2013-09-20 21:31 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-12-31 05:31 - 2013-09-20 21:26 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2013-12-31 05:31 - 2013-09-20 21:20 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2013-12-31 05:31 - 2013-09-20 21:16 - 01503232 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2013-12-31 05:31 - 2013-09-20 21:13 - 00787968 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2013-12-31 05:31 - 2013-09-20 21:09 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2013-12-31 05:31 - 2013-09-20 21:08 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2013-12-31 05:31 - 2013-09-20 21:02 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2013-12-31 05:31 - 2013-09-20 20:58 - 00803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2013-12-31 05:31 - 2013-09-20 20:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2013-12-31 05:31 - 2013-09-20 20:42 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2013-12-31 05:31 - 2013-09-20 20:38 - 01057792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2013-12-31 05:31 - 2013-09-20 20:38 - 00102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2013-12-31 05:31 - 2013-09-20 20:37 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2013-12-31 05:31 - 2013-09-20 20:36 - 01185280 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2013-12-31 05:31 - 2013-09-18 23:19 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersRes.dll
2013-12-31 05:31 - 2013-09-18 22:39 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2013-12-31 05:31 - 2013-09-18 22:27 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2013-12-31 05:31 - 2013-09-18 22:23 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WorkFoldersRes.dll
2013-12-31 05:31 - 2013-09-18 22:17 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2013-12-31 05:31 - 2013-09-18 21:47 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.dll
2013-12-31 05:31 - 2013-09-18 21:29 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2013-12-31 05:31 - 2013-09-18 21:08 - 01150976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2013-12-31 05:31 - 2013-09-18 21:01 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2013-12-31 05:31 - 2013-09-18 20:37 - 00802816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2013-12-31 05:31 - 2013-09-18 20:32 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2013-12-31 05:31 - 2013-09-18 20:27 - 01730560 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2013-12-31 05:31 - 2013-09-18 20:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2013-12-31 05:31 - 2013-09-18 20:25 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2013-12-31 05:31 - 2013-09-18 20:11 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2013-12-31 05:31 - 2013-09-18 20:10 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-12-31 05:31 - 2013-09-18 19:59 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2013-12-31 05:31 - 2013-09-18 19:55 - 00552448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2013-12-31 05:31 - 2013-09-18 19:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2013-12-31 05:31 - 2013-09-18 19:32 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2013-12-31 05:31 - 2013-09-17 01:18 - 00467800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2013-12-31 05:31 - 2013-09-16 22:58 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-31 05:31 - 2013-09-16 21:26 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-12-31 05:31 - 2013-09-16 21:15 - 01225728 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2013-12-31 05:31 - 2013-09-16 21:00 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2013-12-31 05:31 - 2013-09-16 20:09 - 01160704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2013-12-31 05:31 - 2013-09-16 20:08 - 00738304 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2013-12-31 05:31 - 2013-09-16 19:28 - 00695808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2013-12-31 05:31 - 2013-09-14 06:06 - 00175960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VerifierExt.sys
2013-12-31 05:31 - 2013-09-14 06:06 - 00066904 _____ (Microsoft Corporation) C:\Windows\system32\PSHED.DLL
2013-12-31 05:31 - 2013-09-14 03:39 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2013-12-31 05:31 - 2013-09-14 03:38 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys
2013-12-31 05:31 - 2013-09-13 01:52 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\SensorsClassExtension.dll
2013-12-31 05:31 - 2013-09-13 00:54 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2013-12-31 05:31 - 2013-09-13 00:10 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2013-12-31 05:31 - 2013-09-12 23:55 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2013-12-31 05:31 - 2013-09-12 23:30 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2013-12-31 05:31 - 2013-09-12 04:33 - 06353952 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2013-12-31 05:31 - 2013-09-11 23:37 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2013-12-31 05:31 - 2013-09-11 01:32 - 00167424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2013-12-31 05:31 - 2013-09-11 01:31 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2013-12-31 05:31 - 2013-09-11 01:31 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-12-31 05:31 - 2013-09-10 23:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2013-12-31 05:31 - 2013-09-10 23:09 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2013-12-31 05:31 - 2013-09-07 08:12 - 00458616 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2013-12-31 05:31 - 2013-09-07 08:12 - 00407016 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2013-12-31 05:31 - 2013-09-07 06:45 - 00408480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2013-12-31 05:31 - 2013-09-07 06:45 - 00368736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2013-12-31 05:31 - 2013-09-07 04:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\fdprint.dll
2013-12-31 05:31 - 2013-09-07 04:29 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2013-12-31 05:31 - 2013-09-07 04:00 - 00256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdprint.dll
2013-12-31 05:31 - 2013-09-07 03:50 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll
2013-12-31 05:31 - 2013-09-07 03:45 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2013-12-31 05:31 - 2013-09-07 03:30 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2013-12-31 05:31 - 2013-09-07 03:22 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2013-12-31 05:31 - 2013-09-07 03:13 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2013-12-31 05:31 - 2013-09-07 03:07 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2013-12-31 05:31 - 2013-09-07 02:51 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2013-12-31 05:31 - 2013-09-07 02:51 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2013-12-31 05:31 - 2013-09-04 23:39 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2013-12-31 05:31 - 2013-09-04 22:42 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2013-12-31 05:31 - 2013-09-04 21:40 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Utilman.exe
2013-12-31 05:31 - 2013-09-03 23:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2013-12-31 05:31 - 2013-09-03 22:16 - 00358912 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll
2013-12-31 05:31 - 2013-09-03 21:47 - 00492032 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2013-12-31 05:31 - 2013-09-03 21:12 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\DscCoreConfProv.dll
2013-12-31 05:31 - 2013-09-03 20:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2013-12-31 05:31 - 2013-09-03 20:48 - 00326656 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2013-12-31 05:31 - 2013-09-03 20:35 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2013-12-31 05:31 - 2013-08-31 06:18 - 00205024 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2013-12-31 05:31 - 2013-08-31 04:15 - 00180232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2013-12-31 05:31 - 2013-08-31 04:04 - 00638464 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2013-12-31 05:31 - 2013-08-31 02:46 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched20.dll
2013-12-31 05:31 - 2013-08-31 02:00 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2013-12-31 05:31 - 2013-08-31 01:25 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2013-12-31 05:31 - 2013-08-29 23:31 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2013-12-31 05:31 - 2013-08-28 00:03 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2013-12-31 05:31 - 2013-08-27 23:55 - 00334336 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2013-12-31 05:31 - 2013-08-27 23:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2013-12-31 05:31 - 2013-08-27 23:09 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2013-12-31 05:31 - 2013-08-27 23:04 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2013-12-31 05:31 - 2013-08-26 23:44 - 00019456 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2013-12-31 05:31 - 2013-08-26 22:09 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2013-12-31 05:31 - 2013-08-26 21:24 - 00813568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2013-12-31 05:22 - 2013-10-10 03:26 - 02801664 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2013-12-31 05:20 - 2013-10-10 02:34 - 01085952 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2013-12-31 05:19 - 2013-10-10 03:05 - 01019392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2013-12-31 05:19 - 2013-10-10 02:27 - 00869888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2013-12-31 05:15 - 2013-11-05 12:21 - 21196664 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-31 05:14 - 2013-11-05 10:51 - 18642504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-12-31 05:14 - 2013-11-05 08:20 - 13925888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-12-31 05:14 - 2013-11-05 08:11 - 18577408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2013-12-31 05:13 - 2013-11-11 15:41 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-31 05:13 - 2013-11-11 15:40 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-31 05:13 - 2013-11-11 15:27 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2013-12-31 05:13 - 2013-11-11 15:24 - 00840704 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2013-12-31 05:13 - 2013-11-08 22:37 - 01756160 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2013-12-31 05:13 - 2013-11-08 02:26 - 00358896 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2013-12-31 05:13 - 2013-11-07 20:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2013-12-31 05:13 - 2013-11-07 20:28 - 13177344 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2013-12-31 05:13 - 2013-11-07 20:26 - 11674624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2013-12-31 05:13 - 2013-11-07 20:16 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2013-12-31 05:13 - 2013-11-07 20:15 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2013-12-31 05:13 - 2013-11-07 19:41 - 01302528 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2013-12-31 05:13 - 2013-11-05 06:19 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2013-12-31 05:13 - 2013-11-05 06:03 - 00637952 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2013-12-31 05:13 - 2013-11-05 05:57 - 00479744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2013-12-31 05:13 - 2013-11-05 05:33 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2013-12-31 05:13 - 2013-11-05 05:32 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2013-12-31 05:13 - 2013-11-04 09:13 - 01530200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-31 05:13 - 2013-11-04 09:13 - 00382808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-12-31 05:13 - 2013-11-04 03:50 - 02143744 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2013-12-31 05:13 - 2013-11-04 02:32 - 02570240 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2013-12-31 05:13 - 2013-11-03 17:30 - 01765376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2013-12-31 05:13 - 2013-10-31 22:08 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2013-12-31 05:13 - 2013-10-30 16:58 - 00372568 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2013-12-31 05:13 - 2013-10-30 16:42 - 07399256 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-31 05:13 - 2013-10-30 16:33 - 01642016 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-12-31 05:13 - 2013-10-30 16:33 - 01506680 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-12-31 05:13 - 2013-10-30 16:33 - 01476184 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-12-31 05:13 - 2013-10-30 16:33 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-12-31 05:13 - 2013-10-17 03:21 - 02896896 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2013-12-31 05:13 - 2013-10-17 02:36 - 02266624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2013-12-31 05:13 - 2013-10-10 03:53 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2013-12-31 05:13 - 2013-10-10 03:21 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2013-12-31 05:13 - 2013-10-05 06:21 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-12-31 05:13 - 2013-10-05 06:21 - 00516496 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-12-31 05:13 - 2013-10-05 04:05 - 01765384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-12-31 05:13 - 2013-10-05 04:05 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-12-31 05:12 - 2013-11-08 21:56 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2013-12-31 05:11 - 2013-11-10 18:48 - 00039768 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2013-12-31 05:11 - 2013-10-25 17:54 - 00146776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\SerCx2.sys
2013-12-31 05:10 - 2013-11-07 19:14 - 00922624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2013-12-31 05:08 - 2013-12-31 05:08 - 00000000 ____D C:\Users\Karin\AppData\Roaming\TeamViewer
2013-12-31 05:08 - 2013-11-09 03:55 - 00325464 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2013-12-31 05:08 - 2013-11-01 03:39 - 00086872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2013-12-31 05:07 - 2013-12-31 05:07 - 04571480 _____ (TeamViewer) C:\Users\Karin\Desktop\TeamViewerQS_de.exe
2013-12-31 05:07 - 2013-10-24 01:31 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2013-12-31 05:06 - 2013-11-04 05:07 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2013-12-31 05:06 - 2013-11-03 18:28 - 01816576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2013-12-31 05:06 - 2013-10-24 01:12 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2013-12-31 05:05 - 2013-10-31 21:57 - 00544768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2013-12-31 04:58 - 2013-11-07 20:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2013-12-31 04:55 - 2013-10-22 00:18 - 01287064 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-31 04:55 - 2013-10-21 23:55 - 02328872 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-12-31 04:55 - 2013-10-21 22:03 - 02065448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-12-31 04:55 - 2013-10-21 17:53 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2013-12-31 04:55 - 2013-10-10 08:23 - 03395920 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2013-12-31 04:55 - 2013-10-08 02:13 - 02551640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-31 04:55 - 2013-10-06 18:13 - 03532288 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-12-31 04:55 - 2013-10-04 23:39 - 06639616 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-12-31 04:55 - 2013-10-04 00:10 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2013-12-31 04:55 - 2013-09-17 01:06 - 01067080 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2013-12-31 04:55 - 2013-09-16 22:31 - 00883184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2013-12-31 04:55 - 2013-09-14 06:07 - 02134120 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2013-12-31 04:54 - 2013-10-23 03:29 - 00044936 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2013-12-31 04:54 - 2013-10-23 03:21 - 00155480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-31 04:54 - 2013-10-23 03:13 - 00171864 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_8086.dll
2013-12-31 04:54 - 2013-10-21 21:15 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2013-12-31 04:54 - 2013-10-21 20:04 - 00618496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2013-12-31 04:54 - 2013-10-21 20:02 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-12-31 04:54 - 2013-10-21 19:56 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2013-12-31 04:54 - 2013-10-21 19:44 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2013-12-31 04:54 - 2013-10-21 18:38 - 01362944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2013-12-31 04:54 - 2013-10-21 18:22 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2013-12-31 04:54 - 2013-10-21 18:07 - 02617344 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-31 04:54 - 2013-10-21 17:47 - 02295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-12-31 04:54 - 2013-10-19 00:51 - 00481392 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2013-12-31 04:54 - 2013-10-18 23:12 - 00380656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2013-12-31 04:54 - 2013-10-18 21:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-31 04:54 - 2013-10-18 20:48 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2013-12-31 04:54 - 2013-10-18 20:03 - 00531968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2013-12-31 04:54 - 2013-10-18 19:26 - 01231360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2013-12-31 04:54 - 2013-10-18 19:14 - 00888832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2013-12-31 04:54 - 2013-10-17 07:42 - 01399176 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2013-12-31 04:54 - 2013-10-17 07:42 - 01373872 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2013-12-31 04:54 - 2013-10-17 06:04 - 01204968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2013-12-31 04:54 - 2013-10-16 01:34 - 00518656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2013-12-31 04:54 - 2013-10-16 01:33 - 00631296 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2013-12-31 04:54 - 2013-10-12 19:06 - 00258904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2013-12-31 04:54 - 2013-10-12 18:43 - 00708616 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2013-12-31 04:54 - 2013-10-10 08:44 - 00031064 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll
2013-12-31 04:54 - 2013-10-10 08:26 - 00317616 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-31 04:54 - 2013-10-10 08:26 - 00104320 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2013-12-31 04:54 - 2013-10-10 06:53 - 00235960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-12-31 04:54 - 2013-10-10 06:53 - 00088272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2013-12-31 04:54 - 2013-10-10 03:38 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-12-31 04:54 - 2013-10-08 21:40 - 00385528 _____ C:\Windows\system32\ApnDatabase.xml
2013-12-31 04:54 - 2013-10-08 02:28 - 00523096 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2013-12-31 04:54 - 2013-10-07 22:46 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2013-12-31 04:54 - 2013-10-07 21:58 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2013-12-31 04:54 - 2013-10-07 21:50 - 00656384 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-12-31 04:54 - 2013-10-07 21:48 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-12-31 04:54 - 2013-10-07 21:15 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-12-31 04:54 - 2013-10-07 21:09 - 01160704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2013-12-31 04:54 - 2013-10-07 20:50 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-12-31 04:54 - 2013-10-07 20:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2013-12-31 04:54 - 2013-10-06 23:21 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-12-31 04:54 - 2013-10-05 07:25 - 00057176 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2013-12-31 04:54 - 2013-10-05 06:21 - 00699840 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-12-31 04:54 - 2013-10-05 04:05 - 00578952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-12-31 04:54 - 2013-10-05 03:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-12-31 04:54 - 2013-10-05 03:01 - 00081920 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-12-31 04:54 - 2013-10-05 03:00 - 01200640 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-12-31 04:54 - 2013-10-05 01:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-12-31 04:54 - 2013-10-05 01:18 - 01011712 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2013-12-31 04:54 - 2013-10-05 01:07 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2013-12-31 04:54 - 2013-10-05 00:56 - 01147904 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2013-12-31 04:54 - 2013-10-05 00:55 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2013-12-31 04:54 - 2013-10-05 00:40 - 00795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2013-12-31 04:54 - 2013-10-05 00:21 - 00920064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2013-12-31 04:54 - 2013-10-05 00:15 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2013-12-31 04:54 - 2013-10-04 23:43 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-31 04:54 - 2013-10-04 23:35 - 00411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-31 04:54 - 2013-10-04 23:32 - 05769728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-12-31 04:54 - 2013-09-18 21:04 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2013-12-31 04:54 - 2013-09-17 01:06 - 00465960 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2013-12-31 04:54 - 2013-09-16 22:31 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2013-12-31 04:54 - 2013-09-16 20:37 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll
2013-12-31 04:54 - 2013-09-14 06:00 - 00391512 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2013-12-31 04:54 - 2013-09-14 04:39 - 01799944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2013-12-31 04:54 - 2013-09-14 04:33 - 00345552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2013-12-31 04:54 - 2013-09-14 01:11 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2013-12-31 04:54 - 2013-09-12 00:08 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2013-12-31 04:54 - 2013-09-11 23:44 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2013-12-31 04:54 - 2013-09-11 23:37 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2013-12-31 04:54 - 2013-09-11 23:21 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2013-12-31 04:54 - 2013-09-11 23:16 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2013-12-31 04:54 - 2013-09-09 21:26 - 04599808 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-12-31 04:54 - 2013-09-09 20:52 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\msched.dll
2013-12-31 04:54 - 2013-09-09 20:34 - 03934208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-12-31 04:53 - 2013-10-21 18:13 - 01704448 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-12-31 04:53 - 2013-10-05 00:24 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2013-12-31 04:53 - 2013-09-14 02:05 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2013-12-31 04:53 - 2013-09-13 00:22 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2013-12-31 04:53 - 2013-09-12 23:47 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe
2013-12-31 04:53 - 2013-09-12 00:45 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2013-12-31 04:53 - 2013-09-12 00:08 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2013-12-31 04:53 - 2013-09-12 00:02 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2013-12-31 04:53 - 2013-09-11 23:37 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2013-12-31 04:53 - 2013-09-11 23:01 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2013-12-31 04:30 - 2013-12-31 04:30 - 00001993 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-31 04:30 - 2013-12-31 04:30 - 00000000 ____D C:\Users\Karin\AppData\Roaming\AVAST Software
2013-12-31 04:29 - 2014-01-01 09:16 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-31 04:29 - 2013-12-31 04:30 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-31 04:29 - 2013-12-31 04:29 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-12-31 04:28 - 2013-12-31 04:28 - 00000000 ____D C:\Program Files\AVAST Software
2013-12-31 04:26 - 2013-12-31 04:26 - 00000000 ____D C:\ProgramData\AVAST Software
2013-12-31 04:17 - 2013-12-31 04:17 - 00000000 ___RD C:\Windows\BrowserChoice
2013-12-29 11:58 - 2013-09-25 22:51 - 00669184 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2013-12-29 11:58 - 2013-09-25 22:34 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2013-12-29 11:58 - 2013-09-25 22:34 - 00515072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2013-12-29 11:52 - 2013-11-19 02:30 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-12-29 11:51 - 2013-10-19 00:53 - 00075360 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-29 11:51 - 2013-10-18 23:14 - 00070680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-29 11:51 - 2013-10-11 05:24 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2013-12-29 11:51 - 2013-10-11 05:03 - 00621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2013-12-29 11:51 - 2013-10-03 01:16 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2013-12-29 11:51 - 2013-10-03 01:02 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2013-12-29 11:51 - 2013-10-02 03:00 - 01286552 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2013-12-29 11:51 - 2013-10-02 01:47 - 01018960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2013-12-29 11:51 - 2013-09-30 19:42 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2013-12-29 11:51 - 2013-09-30 19:36 - 00977408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2013-12-29 11:50 - 2013-10-16 07:58 - 01943536 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-29 11:50 - 2013-10-16 05:54 - 01581968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-12-29 11:45 - 2013-11-07 23:21 - 04191744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-29 11:44 - 2013-10-23 03:01 - 00872840 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-12-29 11:44 - 2013-10-23 00:59 - 00698232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2013-12-29 11:42 - 2013-10-15 00:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-29 11:42 - 2013-10-15 00:03 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-29 11:42 - 2013-10-05 06:21 - 01341288 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-29 11:42 - 2013-10-05 00:39 - 01067008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-12-29 11:41 - 2013-11-26 03:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-29 11:41 - 2013-11-26 02:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-29 11:41 - 2013-11-26 01:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-29 11:41 - 2013-11-26 00:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-29 11:41 - 2013-11-26 00:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-29 11:41 - 2013-11-26 00:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-29 11:41 - 2013-11-25 23:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-29 11:41 - 2013-11-25 23:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-29 11:41 - 2013-11-25 23:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-29 11:41 - 2013-11-25 22:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-29 11:41 - 2013-11-25 22:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-29 11:41 - 2013-11-25 22:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-29 11:40 - 2013-11-26 00:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-29 11:40 - 2013-11-26 00:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-29 11:40 - 2013-11-25 23:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-29 11:40 - 2013-11-25 22:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-29 11:40 - 2013-11-25 22:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-28 17:11 - 2013-10-12 13:48 - 00828416 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2013-12-28 17:11 - 2013-10-12 13:34 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-28 17:10 - 2013-11-08 22:34 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2013-12-28 17:10 - 2013-11-08 22:34 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2013-12-28 17:10 - 2013-11-08 21:52 - 00240128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2013-12-28 17:10 - 2013-10-12 18:48 - 00136536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2013-12-28 17:09 - 2013-11-22 20:34 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-28 17:09 - 2013-11-22 20:13 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-28 11:06 - 2013-11-22 19:32 - 04105728 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2013-12-28 11:06 - 2013-11-22 19:10 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2013-12-28 11:03 - 2014-01-07 11:00 - 00000290 _____ C:\Windows\Tasks\SpeedUpMyPC Maintenance.job
2013-12-28 11:03 - 2014-01-07 10:31 - 00000284 _____ C:\Windows\Tasks\SpeedUpMyPC Startup.job
2013-12-28 11:03 - 2014-01-04 09:01 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Uniblue
2013-12-28 11:03 - 2014-01-04 09:01 - 00000000 ____D C:\Program Files (x86)\Uniblue
2013-12-28 11:03 - 2013-12-28 11:04 - 00003186 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance
2013-12-28 11:03 - 2013-12-28 11:04 - 00002490 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Startup
2013-12-28 10:59 - 2014-01-01 10:19 - 00000000 ____D C:\Windows\Minidump
2013-12-28 10:59 - 2013-12-28 10:59 - 741086122 _____ C:\Windows\MEMORY.DMP
2013-12-28 07:08 - 2013-12-28 11:03 - 00001056 _____ C:\Users\Public\Desktop\VideoPlayer.lnk
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\VideoPlayer
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.2
2013-12-27 13:18 - 2013-12-27 13:18 - 00000000 ____D C:\Users\Karin\AppData\Roaming\eCyber
2013-12-27 13:17 - 2013-12-27 13:17 - 00001803 _____ C:\Users\Public\Desktop\YAC.lnk
2013-12-27 13:17 - 2013-12-27 13:17 - 00000000 ____D C:\Windows\system32\log
2013-12-23 14:09 - 2013-12-23 14:09 - 00000000 ____D C:\Users\Karin\Documents\Fax
2013-12-22 14:19 - 2013-12-22 14:19 - 00000000 ____D C:\Users\Karin\AppData\Roaming\WildTangent
2013-12-21 15:20 - 2013-12-21 15:20 - 00000000 ____D C:\Users\Karin\AppData\Local\Amazon_Services_LLC
2013-12-21 03:13 - 2013-12-28 04:22 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Spotify
2013-12-21 03:13 - 2013-12-21 03:13 - 00000000 ____D C:\Users\Karin\AppData\Local\Spotify
2013-12-21 02:58 - 2013-12-21 02:58 - 00000000 ____D C:\Users\Karin\AppData\Roaming\sMedio
2013-12-21 02:16 - 2014-01-07 10:46 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4107547971-784288387-3362512993-1002
2013-12-21 02:16 - 2013-12-21 02:16 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Macromedia
2013-12-21 02:15 - 2013-12-21 02:15 - 00000000 ____D C:\ProgramData\ToshibaEurope
2013-12-21 02:14 - 2014-01-07 10:31 - 00000000 __RDO C:\Users\Karin\SkyDrive
2013-12-21 02:11 - 2013-12-21 02:49 - 00000000 ____D C:\Users\Karin\AppData\Local\TOSHIBA
2013-12-21 02:09 - 2013-12-31 06:59 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-21 02:09 - 2013-12-31 06:59 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-21 02:09 - 2013-12-31 04:17 - 00000000 ____D C:\Users\Karin\AppData\Local\Packages
2013-12-21 02:09 - 2013-12-28 11:03 - 00001679 _____ C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Adobe
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Local\VirtualStore
2013-12-21 02:07 - 2014-01-01 09:32 - 00000000 ____D C:\Users\Karin
2013-12-21 02:07 - 2013-12-21 02:07 - 00000020 ___SH C:\Users\Karin\ntuser.ini
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Vorlagen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Startmenü
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Netzwerkumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Lokale Einstellungen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Eigene Dateien
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Druckumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Musik
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Bilder
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Verlauf
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Anwendungsdaten
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Anwendungsdaten
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-21 02:07 - 2013-08-22 07:36 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

==================== One Month Modified Files and Folders =======

2014-01-07 11:48 - 2014-01-01 09:36 - 00011851 _____ C:\Users\Karin\Downloads\FRST.txt
2014-01-07 11:47 - 2014-01-04 09:18 - 00000000 ____D C:\Users\Karin\Downloads\FRST-OlderVersion
2014-01-07 11:47 - 2014-01-01 09:36 - 00000000 ____D C:\FRST
2014-01-07 11:47 - 2014-01-01 09:34 - 01931762 _____ (Farbar) C:\Users\Karin\Downloads\FRST64.exe
2014-01-07 11:43 - 2014-01-07 11:43 - 00987410 _____ C:\Users\Karin\Downloads\SecurityCheck.exe
2014-01-07 11:00 - 2013-12-28 11:03 - 00000290 _____ C:\Windows\Tasks\SpeedUpMyPC Maintenance.job
2014-01-07 11:00 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\sru
2014-01-07 10:51 - 2013-11-18 16:31 - 01299676 _____ C:\Windows\WindowsUpdate.log
2014-01-07 10:46 - 2013-12-21 02:16 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4107547971-784288387-3362512993-1002
2014-01-07 10:41 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\AppReadiness
2014-01-07 10:34 - 2014-01-07 10:34 - 02347384 _____ (ESET) C:\Users\Karin\Downloads\esetsmartinstaller_enu.exe
2014-01-07 10:31 - 2013-12-28 11:03 - 00000284 _____ C:\Windows\Tasks\SpeedUpMyPC Startup.job
2014-01-07 10:31 - 2013-12-21 02:14 - 00000000 __RDO C:\Users\Karin\SkyDrive
2014-01-04 09:16 - 2014-01-04 09:16 - 00001303 _____ C:\Users\Karin\Desktop\JRT.txt
2014-01-04 09:10 - 2014-01-04 09:10 - 00000000 ____D C:\Windows\ERUNT
2014-01-04 09:09 - 2013-09-06 13:25 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-04 09:09 - 2013-08-28 01:59 - 00765582 _____ C:\Windows\system32\perfh007.dat
2014-01-04 09:09 - 2013-08-28 01:59 - 00159366 _____ C:\Windows\system32\perfc007.dat
2014-01-04 09:08 - 2014-01-04 09:07 - 01036305 _____ (Thisisu) C:\Users\Karin\Downloads\JRT.exe
2014-01-04 09:02 - 2013-09-06 22:13 - 00003054 _____ C:\Windows\PFRO.log
2014-01-04 09:02 - 2013-08-22 06:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-04 09:02 - 2013-08-22 05:25 - 00524288 ___SH C:\Windows\system32\config\BBI
2014-01-04 09:01 - 2014-01-04 08:59 - 00000000 ____D C:\AdwCleaner
2014-01-04 09:01 - 2013-12-28 11:03 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Uniblue
2014-01-04 09:01 - 2013-12-28 11:03 - 00000000 ____D C:\Program Files (x86)\Uniblue
2014-01-04 08:59 - 2014-01-04 08:59 - 01233962 _____ C:\Users\Karin\Downloads\adwcleaner.exe
2014-01-01 10:20 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\rescache
2014-01-01 10:19 - 2013-12-28 10:59 - 00000000 ____D C:\Windows\Minidump
2014-01-01 09:37 - 2014-01-01 09:37 - 00023709 _____ C:\Users\Karin\Downloads\Addition.txt
2014-01-01 09:32 - 2014-01-01 09:32 - 00000472 _____ C:\Windows\SysWOW64\defogger_disable.log
2014-01-01 09:32 - 2014-01-01 09:32 - 00000000 _____ C:\Users\Karin\defogger_reenable
2014-01-01 09:32 - 2013-12-21 02:07 - 00000000 ____D C:\Users\Karin
2014-01-01 09:30 - 2014-01-01 09:30 - 00050477 _____ C:\Users\Karin\Downloads\Defogger.exe
2014-01-01 09:16 - 2013-12-31 04:29 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-31 06:59 - 2013-12-31 06:59 - 00003544 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2013-12-31 06:59 - 2013-12-21 02:09 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-31 06:59 - 2013-12-21 02:09 - 00000000 ___RD C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-31 06:57 - 2013-08-22 06:44 - 00336024 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-31 06:55 - 2013-11-18 16:52 - 00000000 ____D C:\ProgramData\McAfee
2013-12-31 06:55 - 2013-11-18 16:52 - 00000000 ____D C:\Program Files\Common Files\mcafee
2013-12-31 06:55 - 2013-11-18 16:52 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ___RD C:\Windows\ToastData
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\WinStore
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\migwiz
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\MediaViewer
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\FileManager
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\Camera
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Windows Defender
2013-12-31 06:54 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-12-31 06:53 - 2013-08-22 07:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2013-12-31 06:53 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-12-31 06:53 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\system32\oobe
2013-12-31 06:53 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\system32\Dism
2013-12-31 06:15 - 2013-12-31 06:14 - 00000000 ____D C:\Windows\system32\MRT
2013-12-31 05:08 - 2013-12-31 05:08 - 00000000 ____D C:\Users\Karin\AppData\Roaming\TeamViewer
2013-12-31 05:07 - 2013-12-31 05:07 - 04571480 _____ (TeamViewer) C:\Users\Karin\Desktop\TeamViewerQS_de.exe
2013-12-31 04:30 - 2013-12-31 04:30 - 00001993 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-31 04:30 - 2013-12-31 04:30 - 00000000 ____D C:\Users\Karin\AppData\Roaming\AVAST Software
2013-12-31 04:30 - 2013-12-31 04:29 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-31 04:29 - 2013-12-31 04:29 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-12-31 04:29 - 2013-12-31 04:29 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-12-31 04:28 - 2013-12-31 04:28 - 00000000 ____D C:\Program Files\AVAST Software
2013-12-31 04:26 - 2013-12-31 04:26 - 00000000 ____D C:\ProgramData\AVAST Software
2013-12-31 04:22 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\NDF
2013-12-31 04:17 - 2013-12-31 04:17 - 00000000 ___RD C:\Windows\BrowserChoice
2013-12-31 04:17 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Local\Packages
2013-12-28 11:04 - 2013-12-28 11:03 - 00003186 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance
2013-12-28 11:04 - 2013-12-28 11:03 - 00002490 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Startup
2013-12-28 11:03 - 2013-12-28 07:08 - 00001056 _____ C:\Users\Public\Desktop\VideoPlayer.lnk
2013-12-28 11:03 - 2013-12-21 02:09 - 00001679 _____ C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-28 10:59 - 2013-12-28 10:59 - 741086122 _____ C:\Windows\MEMORY.DMP
2013-12-28 10:59 - 2013-08-22 05:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\VideoPlayer
2013-12-28 07:08 - 2013-12-28 07:08 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.2
2013-12-28 04:22 - 2013-12-21 03:13 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Spotify
2013-12-27 13:18 - 2013-12-27 13:18 - 00000000 ____D C:\Users\Karin\AppData\Roaming\eCyber
2013-12-27 13:17 - 2013-12-27 13:17 - 00001803 _____ C:\Users\Public\Desktop\YAC.lnk
2013-12-27 13:17 - 2013-12-27 13:17 - 00000000 ____D C:\Windows\system32\log
2013-12-25 12:25 - 2013-08-28 01:58 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2013-12-25 12:25 - 2013-08-22 11:11 - 00000000 ____D C:\Program Files\Windows Journal
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\winrm
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\WCN
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\winrm
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\WCN
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\slmgr
2013-12-25 12:25 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\SysWOW64\MUI
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\MUI
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\Com
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\IME
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\Help
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Common Files\System
2013-12-25 12:25 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-12-25 12:25 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2013-12-25 12:25 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\system32\Sysprep
2013-12-25 12:25 - 2013-08-22 05:36 - 00000000 ____D C:\Windows\servicing
2013-12-25 12:23 - 2013-08-22 07:36 - 00000000 ___SD C:\Windows\system32\dsc
2013-12-24 16:50 - 2013-08-22 07:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-23 14:09 - 2013-12-23 14:09 - 00000000 ____D C:\Users\Karin\Documents\Fax
2013-12-22 14:19 - 2013-12-22 14:19 - 00000000 ____D C:\Users\Karin\AppData\Roaming\WildTangent
2013-12-22 14:19 - 2013-11-18 17:01 - 00000000 ____D C:\ProgramData\WildTangent
2013-12-21 16:57 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\LiveKernelReports
2013-12-21 15:20 - 2013-12-21 15:20 - 00000000 ____D C:\Users\Karin\AppData\Local\Amazon_Services_LLC
2013-12-21 03:13 - 2013-12-21 03:13 - 00000000 ____D C:\Users\Karin\AppData\Local\Spotify
2013-12-21 02:58 - 2013-12-21 02:58 - 00000000 ____D C:\Users\Karin\AppData\Roaming\sMedio
2013-12-21 02:49 - 2013-12-21 02:11 - 00000000 ____D C:\Users\Karin\AppData\Local\TOSHIBA
2013-12-21 02:16 - 2013-12-21 02:16 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Macromedia
2013-12-21 02:15 - 2013-12-21 02:15 - 00000000 ____D C:\ProgramData\ToshibaEurope
2013-12-21 02:15 - 2013-09-06 13:26 - 00000000 ____D C:\ProgramData\Toshiba
2013-12-21 02:14 - 2013-11-18 16:43 - 00000000 ____D C:\Windows\System32\Tasks\TOSHIBA
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Roaming\Adobe
2013-12-21 02:09 - 2013-12-21 02:09 - 00000000 ____D C:\Users\Karin\AppData\Local\VirtualStore
2013-12-21 02:09 - 2013-08-22 11:09 - 00000000 ____D C:\Windows\SysWOW64\sysprep
2013-12-21 02:07 - 2013-12-21 02:07 - 00000020 ___SH C:\Users\Karin\ntuser.ini
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Vorlagen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Startmenü
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Netzwerkumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Lokale Einstellungen
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Eigene Dateien
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Druckumgebung
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Musik
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Documents\Eigene Bilder
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Verlauf
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\AppData\Local\Anwendungsdaten
2013-12-21 02:07 - 2013-12-21 02:07 - 00000000 _SHDL C:\Users\Karin\Anwendungsdaten
2013-12-21 01:29 - 2013-08-22 07:36 - 00000000 ____D C:\Windows\system32\restore

Some content of TEMP:
====================
C:\Users\Karin\AppData\Local\Temp\BackupSetup.exe
C:\Users\Karin\AppData\Local\Temp\nsh5802.exe
C:\Users\Karin\AppData\Local\Temp\nsp6E3.exe
C:\Users\Karin\AppData\Local\Temp\Quarantine.exe
C:\Users\Karin\AppData\Local\Temp\vcredist_x64.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-04 10:17

==================== End Of Log ============================
         
--- --- ---

--- --- ---


Ansonsten aktuell keine weiteren Probleme, außer vielleicht das ein oder andere überflüssige Programm aber wie gesagt, ich weiss gar nicht was alles schon vorinstalliert war oder was erst (vielleicht unfreiwillig) im Nachhinein drauf gekommen ist.


Alt 08.01.2014, 10:54   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 8: Virenbefall/Popups/dubiose Programme - Standard

Windows 8: Virenbefall/Popups/dubiose Programme



Einfach deinstallieren was Du nicht brauchst oder kennst. Wenn Du bei was unsicher bist einfach hier nochmal fragen


Downloade Dir bitte TFC ( von Oldtimer ) und speichere die Datei auf dem Desktop.
Schließe nun alle offenen Programme und trenne Dich von dem Internet.
Doppelklick auf die TFC.exe und drücke auf Start.
Sollte TFC nicht alle Dateien löschen können wird es einen Neustart verlangen. Dies bitte zulassen.



Fertig

Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
    • Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    • Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    • Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix Download DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    • Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
    • Starte deinen Rechner abschließend neu.
  4. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.



Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun

Hier noch ein paar Tipps zur Absicherung deines Systems.


Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates
    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.


Anti- Viren Software
  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.


Zusätzlicher Schutz
  • MalwareBytes Anti Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
    Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du hier.
  • WinPatrol
    Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.


Sicheres Browsen
  • SpywareBlaster
    Eine kurze Einführung findest du Hier
  • MVPs hosts file
    Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
  • WOT (Web of trust)
    Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.


Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
  • Opera
  • Mozilla Firefox.
    • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript
      Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
    • AdblockPlus
      Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
      Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )



Don'ts
  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe
Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________
--> Windows 8: Virenbefall/Popups/dubiose Programme

Alt 19.01.2014, 18:01   #7
phenex
 
Windows 8: Virenbefall/Popups/dubiose Programme - Standard

Windows 8: Virenbefall/Popups/dubiose Programme



Sorry, dass ich mich erst jetzt melde - aus den Augen, aus dem Sinn, sozusagen. Alles funktioniert wieder einwandfrei. Großes Lob von mir und ich werd die Tage sicher noch einen kleinen Betrag spenden!

Alt 20.01.2014, 20:34   #8
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 8: Virenbefall/Popups/dubiose Programme - Standard

Windows 8: Virenbefall/Popups/dubiose Programme



Gern Geschehen
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Windows 8: Virenbefall/Popups/dubiose Programme
administrator, antivirus, computer, defender, device driver, einstellungen, explorer, home, installation, livecomm.exe, minidump, mobogenie, mobogenie entfernen, nationzoom, nationzoom entfernen, popups, programm, programme, re-markit, realtek, registry, services.exe, software, spotify web helper, svchost.exe, vcredist, wildtangent games, windows, winlogon.exe



Ähnliche Themen: Windows 8: Virenbefall/Popups/dubiose Programme


  1. Dubiose Probleme: LAN/WLAN und Firewall, installieren neuer Programme nicht möglich
    Log-Analyse und Auswertung - 09.09.2015 (6)
  2. Neuinstallation von Windows nach mehrfachen Virenbefall
    Plagegeister aller Art und deren Bekämpfung - 18.05.2015 (6)
  3. Windows 8, Virenbefall.
    Plagegeister aller Art und deren Bekämpfung - 19.01.2015 (13)
  4. Windows 7 - Browserverknüfpungen bearbeitet, WinPatrol meldet dubiose Programme uvw.
    Log-Analyse und Auswertung - 02.01.2015 (16)
  5. Windows Vista -64 Bit - Verdacht auf Virenbefall
    Log-Analyse und Auswertung - 20.08.2014 (15)
  6. Windows 7: neuer Computer, ungewollte Programme, im Fließtext Tabs mit Popups, Seiten, die sich ungewollt öffnen
    Log-Analyse und Auswertung - 18.06.2014 (39)
  7. Jede Menge Mist auf neuem (gebrauchten) Win8-Laptop (Werbe-PopUps, dubiose Systemverbesserer) bereinigen
    Log-Analyse und Auswertung - 21.05.2014 (7)
  8. Windows XP, SP 3 Virenbefall mit 'TR/Drop.Softomat.AN'
    Log-Analyse und Auswertung - 13.03.2014 (16)
  9. Windows 7 Virenbefall Lollipop
    Log-Analyse und Auswertung - 15.02.2014 (12)
  10. Windows 7: Werbung und Popups im Firefox, unterstrichene Wörter mit PopUps bei Mouse-Over EXP/JAVA.Rafold.A.Gen
    Log-Analyse und Auswertung - 03.02.2014 (5)
  11. windows 7 - programme schließen nicht, surfen unmöglich wegen ständigen Popups und Weiterleitungen, lange Ladezeiten der Programme -Virus?
    Plagegeister aller Art und deren Bekämpfung - 22.12.2013 (9)
  12. Virenbefall - Windows 7 neu installieren
    Plagegeister aller Art und deren Bekämpfung - 30.07.2012 (1)
  13. Pc ( windows 7 ) massiver Virenbefall
    Log-Analyse und Auswertung - 17.02.2012 (2)
  14. Virenbefall: Popups, Fakescanner, gesperrte Seiten usw...
    Log-Analyse und Auswertung - 06.12.2008 (8)
  15. Bei Hochfahren öffnet sich automatisch dubiose Seite (Windows Update)
    Plagegeister aller Art und deren Bekämpfung - 05.09.2008 (32)
  16. Unbekanne Programme,Trojaner+Popups:bitte helft mir
    Plagegeister aller Art und deren Bekämpfung - 11.08.2008 (9)
  17. Windows neu aufsetzen (Virenbefall)
    Alles rund um Windows - 25.01.2005 (2)

Zum Thema Windows 8: Virenbefall/Popups/dubiose Programme - Frohes neues Jahr und hallo, mein Schwiegervater hat sich einen neuen Laptop samt Windows 8 zugelegt und seit dem nur Probleme, also hab ichs mir mal angeschaut. Websiten werden umgeleitet, - Windows 8: Virenbefall/Popups/dubiose Programme...
Archiv
Du betrachtest: Windows 8: Virenbefall/Popups/dubiose Programme auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.