Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 12.06.2015, 12:48   #1
momdel
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



Hallo,

ich habe mir leider aus Unachtsamkeit durch Herunterladen eines PDF Converter Programmes (PDFCreator24) irgendetwas eingefangen. Plötzlich bekomme ich die Suchmaschine Bing, die ich nie installiert habe, bei jedem neu geöffneten Tab zu sehen.
Zunächst habe ich Spybot durchlaufen lassen und einige Einträge entfernt. Die Suchmaschine ist aber geblieben. In den Einstellungen des Firefox ist unter Suchmaschinen nur Google aufgelistet.
Nun glaube ich, dass mein System immer noch nicht sauber ist. Könntet ihr mir helfen?
Das wäre super nett von euch

Liebe Grüße
mombel


PS: Die Logfiles sind alle zu groß. Darf ich sie als zip-Datei anhängen?

Alt 12.06.2015, 12:57   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



Du weißt schon, dass Bing ein legitimer Service von Microsoft ist?

Und Logs bitte nicht anhängen.

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 12.06.2015, 13:28   #3
momdel
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



Hi cosinus,

ja, das weiß ich. Die Suchmaschine habe ich aber nie installiert. Ahja, Avira funktioniert seitdem auch nicht mehr richtig. Ich kann es weder schließen noch öffnen.
Danke, dass du dir das Ganze anschaust

Wenn ich den FRST Log posten möchte, wird folgende Fehlermeldung ausgegeben: "Der Text, den Sie eingegeben haben, besteht aus 538062 Zeichen und ist damit zu lang. Bitte die Logs auf mehrere Beiträge aufspalten mit maximaler Länge von 120000 Zeichen. "
Soll ich den log in mehrere Teile aufspalten oder doch als zip anhängen?


Addition:
[CODE]Additional
FRST Logfile:
Code:
ATTFilter
scan result of Farbar Recovery Scan Tool (x64) Version:08-06-2015
Ran by ***** at 2015-06-12 13:01:10
Running from C:\Users\*****\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4118197852-1386457393-492245417-500 - Administrator - Disabled)
***** (S-1-5-21-4118197852-1386457393-492245417-1001 - Administrator - Enabled) => C:\Users\*****
Gast (S-1-5-21-4118197852-1386457393-492245417-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Ad-Aware Web Companion (x32 Version: 2.0.1025.2130 - Lavasoft) Hidden
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Arbortext IsoView 7.3 (HKLM-x32\...\{DE52A69A-978A-480A-82F7-E17C50F98EC6}) (Version: 7.3.10.22 - PTC)
Avira (HKLM-x32\...\{0696cc37-db90-4000-be99-4a173ca7c8af}) (Version: 1.1.39.17987 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.39.17987 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.11.574 - Avira Operations GmbH & Co. KG)
Cisco AnyConnect Secure Mobility Client  (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.07021 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.07021 - Cisco Systems, Inc.) Hidden
Creo Direct Version 2.0 Datecode [M120] (HKLM-x32\...\Creo Direct Version 2.0 Datecode [M120]) (Version: 2.0 - PTC)
Creo Layout Version 2.0 Datecode [M120] (HKLM-x32\...\Creo Layout Version 2.0 Datecode [M120]) (Version: 2.0 - PTC)
Creo Parametric Version 2.0 Datecode [M120] (HKLM-x32\...\Creo Parametric Version 2.0 Datecode [M120]) (Version: 2.0 - PTC)
Creo Platform 2.36 (HKLM-x32\...\{BB175478-4D65-42E7-AC13-60F8389E243B}) (Version: 2.36.0 - PTC)
Creo Simulate Version 2.0 Datecode [M120] (HKLM-x32\...\Creo Simulate Version 2.0 Datecode [M120]) (Version: 2.0 - PTC)
Creo Thumbnail Viewer 2.0 (HKLM\...\{F22311A6-0C71-46EE-A501-4C5503CFEFCC}) (Version: 30.14.200 - PTC)
Creo View Express 2.0 (HKLM\...\{03F6002E-A32B-4C68-818F-DEE386463FBC}) (Version: 10.1.40.15 - PTC)
Dropbox (HKU\S-1-5-21-4118197852-1386457393-492245417-1001\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Dropbox (HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.15 - Lenovo)
Energy Manager (x32 Version: 1.5.0.15 - Lenovo) Hidden
Intel(R) Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3383 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.2.4.1000 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
Intel® PROSet/Wireless Software (HKLM-x32\...\{b9007812-6a61-4dfc-8a0c-4c726c7dc43f}) (Version: 17.0.1 - Intel Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Juniper Networks Setup Client (HKU\S-1-5-21-4118197852-1386457393-492245417-1001\...\Juniper_Setup_Client) (Version: 8.0.7.50111 - Juniper Networks)
Juniper Networks Setup Client (HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Juniper_Setup_Client) (Version: 8.0.7.50111 - Juniper Networks)
KeePass Password Safe 1.29 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.29 - Dominik Reichl)
LavasoftTcpService (x32 Version: 2.3.4.7 - Lavasoft) Hidden
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10260 - Realtek Semiconductor Corp.)
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
MKS Platform Components 9.x (HKLM\...\{30276636-0000-0905-9ABB-000BDB5CF35D}) (Version: 9.5.0000 - Mortice Kern Systems)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
NVIDIA 3D Vision Treiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OpenVPN 2.3.6-I003  (HKLM\...\OpenVPN) (Version: 2.3.6-I003 - )
Opera Stable 30.0.1835.59 (HKLM-x32\...\Opera 30.0.1835.59) (Version: 30.0.1835.59 - Opera Software)
PDF Split And Merge Basic (HKLM-x32\...\{9A40D2F8-9458-458B-95E3-B57797C574E1}) (Version: 2.2.4 - Andrea Vacondio)
PTC Portmapper Version 2.0 Datecode [M120] (HKLM-x32\...\PTC Portmapper Version 2.0 Datecode [M120]) (Version: 2.0 - PTC)
PTC Quality Agent (HKLM-x32\...\{CE7DF7C9-82FC-4E33-9E1E-D5C024A0EECE}) (Version: 2.0.0.0 - PTC)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.7.87 - Synaptics Incorporated)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Web Companion (HKLM-x32\...\{88B10E3E-8911-4FAC-8663-CCF6E33C58B3}_WebCompanion) (Version: 2.0.1025.2130 - Lavasoft)
Windows-Treiberpaket - Lenovo (ACPIVPC) System  (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid  (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4118197852-1386457393-492245417-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\*****\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4118197852-1386457393-492245417-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\*****\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4118197852-1386457393-492245417-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*****\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4118197852-1386457393-492245417-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*****\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4118197852-1386457393-492245417-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*****\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4118197852-1386457393-492245417-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*****\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4118197852-1386457393-492245417-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*****\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4118197852-1386457393-492245417-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*****\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4118197852-1386457393-492245417-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*****\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4118197852-1386457393-492245417-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*****\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points =========================

30-05-2015 21:51:30 Geplanter Prüfpunkt
01-06-2015 14:08:09 Intel® Driver Update Utility
07-06-2015 14:13:03 Windows Update
12-06-2015 09:15:58 Installed PDF Split And Merge Basic

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C33E6B6-0048-4B61-951F-BFC32751A5C5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {2758E58B-3D9D-41AC-B413-B33017F744E2} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-04-30] (Microsoft Corporation)
Task: {4051EF7F-410B-40E6-8C24-A31CAFF12687} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {40B2DA2F-D3CB-4E9C-B23A-A48B380E6FD9} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {6F331FE1-282E-4088-94C7-72AD1B696D5B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07] (Adobe Systems Incorporated)
Task: {78AE1B74-6DC0-48BE-94B2-60885F707833} - System32\Tasks\Opera scheduled Autoupdate 1433258263 => C:\Program Files (x86)\Opera\launcher.exe [2015-06-10] (Opera Software)
Task: {79964C47-A848-444C-8B02-D00566A94464} - System32\Tasks\{7BE646C0-41CF-449F-AF59-4C6239EE5437} => pcalua.exe -a C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_188_Plugin.exe -c -maintain plugin
Task: {9A0BB2AF-682D-4242-AE21-F3D2FC3B94EE} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {C8712A00-616B-45D1-9DA7-F3512999D8CA} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {C9546CA3-6139-4799-8F24-569E7CC1871E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {CA7734DC-F635-4007-9199-26AAA0A6CBEF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-02] (Adobe Systems Incorporated)
Task: {D4FEFA71-9A22-4EBF-9A0C-12B4A0FDB3AF} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattel\DiagTrackRunner.exe [2015-03-16] (Microsoft Corporation)
Task: {D67BA1AB-AEA3-414F-84AC-0765E8EAE409} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {E96329EE-6603-4C4B-8D6D-74A0E4ECDD37} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (Whitelisted) ==============

2015-05-21 11:13 - 2015-02-05 21:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-12-23 10:08 - 2015-05-21 10:24 - 00058352 _____ () C:\Program Files (x86)\Lenovo\Energy Manager\kbdhook.dll
2015-06-08 14:12 - 2015-06-08 14:12 - 00019816 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
2015-06-08 14:12 - 2015-06-08 14:12 - 00012144 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Service.Logger.dll
2015-06-08 14:12 - 2015-06-08 14:12 - 00034664 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WcfService.dll
2015-02-19 23:37 - 2015-02-19 23:37 - 00063376 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2015-06-02 18:55 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-06-02 18:55 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-06-02 18:55 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-06-02 18:55 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-06-02 18:55 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 00010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\de_de\acrotray.deu
2015-05-21 09:31 - 2013-09-04 07:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7868 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4118197852-1386457393-492245417-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\*****\Desktop\58101_165449703467178_5120002_n.jpg
HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\*****\Desktop\58101_165449703467178_5120002_n.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKU\S-1-5-21-4118197852-1386457393-492245417-1001\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-4118197852-1386457393-492245417-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{C8332D0E-2DB9-4CA8-BABB-F0E4D4367948}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{6ACFC850-7C8B-442A-9FC4-6B30680DF9C6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{FAE105DA-337F-4089-8031-5B6BA40B22C6}C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\nms\nmsd.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\nms\nmsd.exe
FirewallRules: [UDP Query User{7AA562F1-050B-439F-BBC3-136C8CA3DCEF}C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\nms\nmsd.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\nms\nmsd.exe
FirewallRules: [TCP Query User{D046758B-A723-42E5-9212-F1434267C09A}C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\obj\xtop.exe] => (Block) C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\obj\xtop.exe
FirewallRules: [UDP Query User{8667B40F-5D5F-4355-B383-708ADB747D36}C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\obj\xtop.exe] => (Block) C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\obj\xtop.exe
FirewallRules: [TCP Query User{8BC6CC3E-644C-43B7-A88E-A22A56F370E1}C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\obj\pro_comm_msg.exe] => (Block) C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [UDP Query User{E1B566D8-CF70-4527-990C-C87D9E05B592}C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\obj\pro_comm_msg.exe] => (Block) C:\program files\ptc\creo 2.0\common files\m120\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [{E293C84E-751A-4871-ABFA-6A550DA5B48B}] => (Allow) C:\Program Files\PTC\Creo 2.0\View Express\i486_nt\obj\productview.exe
FirewallRules: [{0F2F9C0E-DE9F-400A-A88D-FF16083E6D32}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{34FFE060-3B54-40FC-BB17-93566D6A7232}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Faulty Device Manager Devices =============

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/12/2015 00:39:20 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.

Error: (06/12/2015 00:28:27 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.

Error: (06/12/2015 00:27:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Lavasoft.SearchProtect.WinService.exe, Version: 1.0.0.0, Zeitstempel: 0x5575d81f
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17415, Zeitstempel: 0x54505737
Ausnahmecode: 0xe0434352
Fehleroffset: 0x0000000000008b9c
ID des fehlerhaften Prozesses: 0xb58
Startzeit der fehlerhaften Anwendung: 0xLavasoft.SearchProtect.WinService.exe0
Pfad der fehlerhaften Anwendung: Lavasoft.SearchProtect.WinService.exe1
Pfad des fehlerhaften Moduls: Lavasoft.SearchProtect.WinService.exe2
Berichtskennung: Lavasoft.SearchProtect.WinService.exe3
Vollständiger Name des fehlerhaften Pakets: Lavasoft.SearchProtect.WinService.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Lavasoft.SearchProtect.WinService.exe5

Error: (06/12/2015 00:27:04 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Lavasoft.SearchProtect.WinService.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.IO.IOException
Stapel:
   bei Microsoft.Win32.RegistryKey.Win32Error(Int32, System.String)
   bei Microsoft.Win32.RegistryKey.CreateSubKeyInternal(System.String, Microsoft.Win32.RegistryKeyPermissionCheck, System.Object, Microsoft.Win32.RegistryOptions)
   bei Microsoft.Win32.RegistryKey.CreateSubKey(System.String, Microsoft.Win32.RegistryKeyPermissionCheck)
   bei Microsoft.Win32.Registry.SetValue(System.String, System.String, System.Object, Microsoft.Win32.RegistryValueKind)
   bei Lavasoft.SearchProtect.WinService.SearchProtectService.SetTrustedSites()
   bei Lavasoft.SearchProtect.WinService.SearchProtectService.<OnStart>b__0()
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   bei System.Threading.ThreadHelper.ThreadStart()

Error: (06/12/2015 00:25:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: rundll32.exe, Version: 6.3.9600.17415, Zeitstempel: 0x545045a2
Name des fehlerhaften Moduls: MSI268B.tmp, Version: 1.1.37.30000, Zeitstempel: 0x52974d21
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002cd5
ID des fehlerhaften Prozesses: 0x914
Startzeit der fehlerhaften Anwendung: 0xrundll32.exe0
Pfad der fehlerhaften Anwendung: rundll32.exe1
Pfad des fehlerhaften Moduls: rundll32.exe2
Berichtskennung: rundll32.exe3
Vollständiger Name des fehlerhaften Pakets: rundll32.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: rundll32.exe5

Error: (06/12/2015 00:25:47 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: rundll32.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: Ausnahmecode c0000005, Ausnahmeadresse 73C02CD5
Stapel:

Error: (06/12/2015 00:25:11 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.

Error: (06/12/2015 00:20:14 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.

Error: (06/12/2015 11:59:15 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.

Error: (06/12/2015 11:53:22 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.


System errors:
=============
Error: (06/12/2015 00:27:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "IE Search Set" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/12/2015 00:26:00 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%1062

Error: (06/12/2015 00:18:22 PM) (Source: Ntfs) (EventID: 137) (User: )
Description: Auf dem Volume "V:" konnte der Transaktionsressourcen-Manager aufgrund eines nicht wiederholbaren Fehlers nicht gestartet werden. Der Fehlercode ist in den Daten enthalten.

Error: (06/11/2015 09:09:14 PM) (Source: DCOM) (EventID: 10010) (User: *****-PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (06/11/2015 09:08:38 PM) (Source: DCOM) (EventID: 10010) (User: *****-PC)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (06/11/2015 03:00:41 PM) (Source: DCOM) (EventID: 10010) (User: *****-PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (06/11/2015 03:00:08 PM) (Source: DCOM) (EventID: 10010) (User: *****-PC)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (06/11/2015 02:51:31 PM) (Source: DCOM) (EventID: 10010) (User: *****-PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (06/11/2015 02:51:01 PM) (Source: DCOM) (EventID: 10010) (User: *****-PC)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (06/11/2015 02:39:47 PM) (Source: DCOM) (EventID: 10010) (User: *****-PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}


Microsoft Office:
=========================
Error: (06/12/2015 00:39:20 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe

Error: (06/12/2015 00:28:27 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe

Error: (06/12/2015 00:27:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Lavasoft.SearchProtect.WinService.exe1.0.0.05575d81fKERNELBASE.dll6.3.9600.1741554505737e04343520000000000008b9cb5801d0a4fa4ecb40f1C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exeC:\Windows\system32\KERNELBASE.dll9797a0f8-10ed-11e5-9c12-f4066970d2a2

Error: (06/12/2015 00:27:04 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Lavasoft.SearchProtect.WinService.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.IO.IOException
Stapel:
   bei Microsoft.Win32.RegistryKey.Win32Error(Int32, System.String)
   bei Microsoft.Win32.RegistryKey.CreateSubKeyInternal(System.String, Microsoft.Win32.RegistryKeyPermissionCheck, System.Object, Microsoft.Win32.RegistryOptions)
   bei Microsoft.Win32.RegistryKey.CreateSubKey(System.String, Microsoft.Win32.RegistryKeyPermissionCheck)
   bei Microsoft.Win32.Registry.SetValue(System.String, System.String, System.Object, Microsoft.Win32.RegistryValueKind)
   bei Lavasoft.SearchProtect.WinService.SearchProtectService.SetTrustedSites()
   bei Lavasoft.SearchProtect.WinService.SearchProtectService.<OnStart>b__0()
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   bei System.Threading.ThreadHelper.ThreadStart()

Error: (06/12/2015 00:25:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: rundll32.exe6.3.9600.17415545045a2MSI268B.tmp1.1.37.3000052974d21c000000500002cd591401d0a4fa25901c82C:\Windows\SysWOW64\rundll32.exeC:\Windows\Installer\MSI268B.tmp63cbb5f8-10ed-11e5-9c11-f4066970d2a2

Error: (06/12/2015 00:25:47 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: rundll32.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: Ausnahmecode c0000005, Ausnahmeadresse 73C02CD5
Stapel:

Error: (06/12/2015 00:25:11 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe

Error: (06/12/2015 00:20:14 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe

Error: (06/12/2015 11:59:15 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe

Error: (06/12/2015 11:53:22 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Percentage of memory in use: 27%
Total physical RAM: 8100.01 MB
Available physical RAM: 5841 MB
Total Pagefile: 16292.01 MB
Available Pagefile: 13541.08 MB
Total Virtual: 131072 MB
Available Virtual: 131071.76 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.82 GB) (Free:406.16 GB) NTFS
Drive g: (Daten) (Fixed) (Total:464.72 GB) (Free:306.21 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D9FA2484)
Partition 1: (Active) - (Size=1000 MB) - (Type=0B)
Partition 2: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=464.7 GB) - (Type=07 NTFS)

==================== End of log ============================
         
--- --- ---


Defogger:
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 12:58 on 12/06/2015 (*****)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
         
GMER:
Code:
ATTFilter
GMER Logfile:
Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-06-12 13:24:02
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\00000030 WDC_WD10S21X-24R1BT0-SSHD-8GB rev.03.01A02 931,51GB
Running: Gmer-19357.exe; Driver: C:\Users\Daisy\AppData\Local\Temp\fglcapoc.sys


---- User code sections - GMER 2.1 ----

.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                           00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                  00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                    00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                   00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                    00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                           00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                             00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                     00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                              00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                  00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                            00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\USER32.dll!CreateWindowExW                                                     00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\USER32.dll!CreateWindowExW + 2                                                 00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                 00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                          00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\USER32.dll!ChangeDisplaySettingsExW                                            00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                 00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                             00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2                                         00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\Windows\system32\dwm.exe[872] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                               00007ff83b9f1750 8 bytes JMP 00007ff9392904c8
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation              00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                     00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                       00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                      00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                       00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx              00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                        00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                   00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                 00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                     00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW               00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                      00007ff83965d050 7 bytes JMP 00007ff939290500
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                     00007ff83968b170 5 bytes JMP 00007ff939290538
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\USER32.dll!CreateWindowExW                        00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\USER32.dll!CreateWindowExW + 2                    00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                    00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo             00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\USER32.dll!ChangeDisplaySettingsExW               00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                    00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2            00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[924] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                  00007ff83b9f1750 8 bytes JMP 00007ff9392904c8
.text   C:\Windows\system32\dashost.exe[1808] C:\Windows\system32\KERNEL32.DLL!SetFileCompletionNotificationModes                           00007ff839fdfc50 14 bytes {JMP QWORD [RIP+0x0]}
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                   00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                          00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                            00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                           00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                            00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                   00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                     00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                             00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                        00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                      00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                          00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                    00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\SYSTEM32\user32.dll!CreateWindowExW                                             00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\SYSTEM32\user32.dll!CreateWindowExW + 2                                         00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\SYSTEM32\user32.dll!EnumDisplayDevicesW                                         00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\SYSTEM32\user32.dll!DisplayConfigGetDeviceInfo                                  00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\SYSTEM32\user32.dll!ChangeDisplaySettingsExW                                    00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\SYSTEM32\user32.dll!EnumDisplayDevicesA                                         00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                     00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2                                 00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\Windows\system32\taskhostex.exe[3716] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                       00007ff83b9f1750 8 bytes JMP 00007ff9392904c8
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                        00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                               00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                 00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                 00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                        00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                          00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                  00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                             00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                           00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                               00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                         00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\USER32.dll!CreateWindowExW                                  00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\USER32.dll!CreateWindowExW + 2                              00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                              00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                       00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\USER32.dll!ChangeDisplaySettingsExW                         00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                              00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                          00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2                      00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                            00007ff83b9f1750 8 bytes JMP 00007ff9392904c8
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                                00007ff83965d050 7 bytes JMP 00007ff939290500
.text   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[3844] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                               00007ff83968b170 5 bytes JMP 00007ff939290538
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                     00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                            00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                              00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                             00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                              00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                     00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                       00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                               00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                          00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                        00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                            00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                      00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\USER32.dll!CreateWindowExW                               00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\USER32.dll!CreateWindowExW + 2                           00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                           00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                    00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\USER32.dll!ChangeDisplaySettingsExW                      00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                           00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                       00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2                   00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE[2016] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                         00007ff83b9f1750 8 bytes JMP 00007ff9392904c8
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation        00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW               00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                 00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                 00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx        00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW          00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                  00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW             00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW           00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW               00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW         00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\USER32.dll!CreateWindowExW                  00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\USER32.dll!CreateWindowExW + 2              00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW              00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo       00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\USER32.dll!ChangeDisplaySettingsExW         00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA              00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList          00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2      00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe[4344] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo            00007ff83b9f1750 8 bytes JMP 00007ff9392904c8
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation               00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                      00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNEL32.DLL!SetFileCompletionNotificationModes    00007ff839fdfc50 14 bytes {JMP QWORD [RIP+0x0]}
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                        00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                       00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                        00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx               00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                 00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                         00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                    00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                  00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                      00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\USER32.dll!CreateWindowExW                         00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\USER32.dll!CreateWindowExW + 2                     00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                     00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo              00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\USER32.dll!ChangeDisplaySettingsExW                00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                     00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                 00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2             00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                   00007ff83b9f1750 8 bytes JMP 00007ff9392904c8
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                       00007ff83965d050 7 bytes JMP 00007ff939290500
.text   C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4496] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                      00007ff83968b170 5 bytes JMP 00007ff939290538
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                              00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                                     00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                                       00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                                      00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                                       00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                              00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                                00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                        00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                   00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                 00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                     00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                               00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\USER32.dll!CreateWindowExW                                                        00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\USER32.dll!CreateWindowExW + 2                                                    00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                                    00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                             00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\USER32.dll!ChangeDisplaySettingsExW                                               00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                                    00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2                                            00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                  00007ff83b9f1750 8 bytes JMP 00007ff9392904c8
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                                                      00007ff83965d050 7 bytes JMP 00007ff939290500
.text   C:\Windows\RTFTrack.exe[5004] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                                                     00007ff83968b170 5 bytes JMP 00007ff939290538
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation      00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW             00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW               00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW              00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA               00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx      00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW        00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW           00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW         00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW             00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW       00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\USER32.dll!CreateWindowExW                00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\USER32.dll!CreateWindowExW + 2            00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW            00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo     00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\USER32.dll!ChangeDisplaySettingsExW       00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA            00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList        00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2    00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo          00007ff83b9f1750 8 bytes JMP 00007ff9392904c8
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance              00007ff83965d050 7 bytes JMP 00007ff939290500
.text   C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe[5060] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket             00007ff83968b170 5 bytes JMP 00007ff939290538
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation             00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                    00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                      00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                     00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                      00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx             00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW               00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                       00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                  00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                    00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW              00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\USER32.dll!CreateWindowExW                       00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\USER32.dll!CreateWindowExW + 2                   00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                   00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo            00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\USER32.dll!ChangeDisplaySettingsExW              00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                   00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList               00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2           00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                 00007ff83b9f1750 8 bytes JMP 00007ff9392904c8
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                     00007ff83965d050 7 bytes JMP 00007ff939290500
.text   C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe[5068] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                    00007ff83968b170 5 bytes JMP 00007ff939290538
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                     00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                            00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                              00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                             00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                              00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                     00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                       00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                               00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                          00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                        00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                            00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                      00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\USER32.dll!CreateWindowExW                                               00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\USER32.dll!CreateWindowExW + 2                                           00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\USER32.dll!EnumDisplayDevicesW                                           00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\USER32.dll!DisplayConfigGetDeviceInfo                                    00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\USER32.dll!ChangeDisplaySettingsExW                                      00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\USER32.dll!EnumDisplayDevicesA                                           00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                       00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2                                   00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                         00007ff83b9f1750 8 bytes JMP 00007ff9392904c8
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\SYSTEM32\combase.dll!CoCreateInstance                                             00007ff83965d050 7 bytes JMP 00007ff939290500
.text   C:\Windows\System32\igfxpers.exe[3956] C:\Windows\SYSTEM32\combase.dll!CoSetProxyBlanket                                            00007ff83968b170 5 bytes JMP 00007ff939290538
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNEL32.DLL!K32GetModuleInformation                                      00007ff839fc3e10 7 bytes JMP 00007ff939290260
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNEL32.DLL!RegQueryValueExW                                             00007ff839fc3e20 7 bytes JMP 00007ff939290298
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNEL32.DLL!RegSetValueExW                                               00007ff83a0739b0 7 bytes JMP 00007ff939290340
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNEL32.DLL!RegDeleteValueW                                              00007ff83a073ef0 7 bytes JMP 00007ff9392902d0
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNEL32.DLL!RegSetValueExA                                               00007ff83a073fe0 7 bytes JMP 00007ff939290308
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNEL32.DLL!K32EnumProcessModulesEx                                      00007ff83a0a06c0 7 bytes JMP 00007ff9392901f0
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNEL32.DLL!K32GetMappedFileNameW                                        00007ff83a0a0730 7 bytes JMP 00007ff939290228
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                00007ff8392a21d0 5 bytes JMP 00007ff939290180
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                           00007ff8392a29d0 7 bytes JMP 00007ff9392900d8
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                         00007ff8392a4310 5 bytes JMP 00007ff939290110
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                             00007ff8392a8d80 5 bytes JMP 00007ff939290148
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\KERNELBASE.dll!GetModuleFileNameExW                                       00007ff83931f0b0 5 bytes JMP 00007ff9392901b8
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\SYSTEM32\user32.dll!CreateWindowExW                                                00007ff839b46d90 1 byte JMP 00007ff939290420
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\SYSTEM32\user32.dll!CreateWindowExW + 2                                            00007ff839b46d92 8 bytes {JMP 0xffffffffff749690}
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\SYSTEM32\user32.dll!EnumDisplayDevicesW                                            00007ff839b574a0 5 bytes JMP 00007ff9392903e8
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\SYSTEM32\user32.dll!DisplayConfigGetDeviceInfo                                     00007ff839b57560 9 bytes JMP 00007ff939290378
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\SYSTEM32\user32.dll!ChangeDisplaySettingsExW                                       00007ff839b57730 5 bytes JMP 00007ff939290458
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\SYSTEM32\user32.dll!EnumDisplayDevicesA                                            00007ff839b66b10 5 bytes JMP 00007ff9392903b0
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                        00007ff83b9f1500 1 byte JMP 00007ff939290490
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2                                    00007ff83b9f1502 6 bytes {JMP 0xfffffffffd89ef90}
.text   C:\Windows\system32\DllHost.exe[6724] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                          00007ff83b9f1750 8 bytes JMP 00007ff9392904c8

---- Threads - GMER 2.1 ----

Thread  C:\Windows\system32\csrss.exe [528:552]                                                                                             fffff960009972d0

---- Registry - GMER 2.1 ----

Reg     HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@SystemStartTime                                                                   0xAF 0x4E 0x82 0x3B ...
Reg     HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@SystemLastStartTime                                                               0xAB 0x51 0x4E 0xC3 ...
Reg     HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@CMFStartTime                                                                      0x0F 0xB1 0x84 0x3B ...
Reg     HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@CMFLastStartTime                                                                  0x0F 0xB4 0x50 0xC3 ...
Reg     HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData\BootLanguages@de-DE                                                               27
Reg     HKLM\SYSTEM\CurrentControlSet\Control\GraphicsDrivers\Configuration\LGD044F0_00_07DE_13^675D668B1431BA2633AE082B2D11E21C@Timestamp  0x7B 0x80 0x3A 0x3E ...
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Lsa@LsaPid                                                                                    640
Reg     HKLM\SYSTEM\CurrentControlSet\Control\MUI\StringCacheSettings@StringCacheGeneration                                                 317
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager@PendingFileRenameOperations                                                   \??\C:\ProgramData\Avira\Antivirus\TEMP\SELFUPDATE\CommonTextRc.dll??\??\C:\ProgramData\Avira\Antivirus\TEMP\SELFUPDATE\mfc120u.dll??\??\C:\ProgramData\Avira\Antivirus\TEMP\SELFUPDATE??\??\C:\ProgramData\Avira\Antivirus\TEMP\SELFUPDATE\CommonTextRc.dll??\??\C:\ProgramData\Avira\Antivirus\TEMP\SELFUPDATE\mfc120u.dll??\??\C:\ProgramData\Avira\Antivirus\TEMP\SELFUPDATE??\??\C:\ProgramData\Avira\Antivirus\TEMP??\??\C:\Program Files (x86)\Avira\Antivirus\150\product.config??\??\C:\Program Files (x86)\Avira\Antivirus\150??\??\C:\Program Files (x86)\Avira\Antivirus\207\Product.Config??\??\C:\Program Files (x86)\Avira\Antivirus\207??\??\C:\Program Files (x86)\Avira\Antivirus\208\product.config??\??\C:\Program Files (x86)\Avira\Antivirus\208??\??\C:\Program Files (x86)\Avira\Antivirus\210\Product.Config??\??\C:\Program Files (x86)\Avira\Antivirus\210??\??\C:\Program Files (x86)\Avira\Antivirus\57\product.config??\??\C:\Program Files (x86)\Avira\Antivirus\57??\??\C:\Program Files (x86)\Avira\Antivirus\avrestart.exe??\
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Executive@UuidSequenceNumber                                                  3873809
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\RNG@RNGAuxiliarySeed                                                   -1717277518
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters@BootId                                   32
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters@BaseTime                                 445114399
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@POSTTime                                                                6085
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@FwPOSTTime                                                              5643
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server@InstanceID                                                                    3f7778b7-6585-4f1f-a1c9-388e88c
Reg     HKLM\SYSTEM\CurrentControlSet\Control\WMI\Autologger\WdiContextLog@FileCounter                                                      2
Reg     HKLM\SYSTEM\CurrentControlSet\Services\avgntflt@Start                                                                               4
Reg     HKLM\SYSTEM\CurrentControlSet\Services\avgntflt@Tag                                                                                 2
Reg     HKLM\SYSTEM\CurrentControlSet\Services\avgntflt@DeleteFlag                                                                          1
Reg     HKLM\SYSTEM\CurrentControlSet\Services\avgntflt                                                                                     
Reg     HKLM\SYSTEM\CurrentControlSet\Services\avkmgr@Start                                                                                 4
Reg     HKLM\SYSTEM\CurrentControlSet\Services\avkmgr@DeleteFlag                                                                            1
Reg     HKLM\SYSTEM\CurrentControlSet\Services\avkmgr                                                                                       
Reg     HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\f4066970d2a2                                                         
Reg     HKLM\SYSTEM\CurrentControlSet\Services\bthserv\Parameters\BluetoothControlPanelTasks@State                                          0
Reg     HKLM\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\Probe\{5afaaaf6-21d1-43c3-8ce4-49c1d13d092f}@LastProbeTime               1434111640
Reg     HKLM\SYSTEM\CurrentControlSet\Services\IKEEXT@Start                                                                                 3
Reg     HKLM\SYSTEM\CurrentControlSet\Services\IKEEXT                                                                                       
Reg     HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{8BBAD164-BE84-4B6F-B589-A6728EA1DA17}@DefunctTimestamp           0x14 0xB3 0x7A 0x55 ...
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy                                                                                
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy@Type                                                                           2
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy@Start                                                                          3
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy@ErrorControl                                                                   1
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy@Tag                                                                            2
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy@ImagePath                                                                      \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy@DisplayName                                                                    MBAMSwissArmy
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy@Group                                                                          FSFilter Activity Monitor
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy@WOW64                                                                          1
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy\Instances                                                                      
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy\Instances@DefaultInstance                                                      MBAMSwissArmy Instance
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy\Instances\MBAMSwissArmy Instance                                               
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy\Instances\MBAMSwissArmy Instance@Flags                                         0
Reg     HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy                                                                                
Reg     HKLM\SYSTEM\CurrentControlSet\Services\rdyboost\Parameters@ReadyBootPlanAge                                                         1
Reg     HKLM\SYSTEM\CurrentControlSet\Services\rdyboost\Parameters@LastBootPlanUserTime                                                     ?Fr?, ?Jun ?12 ?15, 11:55:03??????(???????(???????????????(????
Reg     HKLM\SYSTEM\CurrentControlSet\Services\SDScannerService@ServiceWebPortFileScannerActive                                             0
Reg     HKLM\SYSTEM\CurrentControlSet\Services\SDScannerService@ServiceWebPortFirewallActive                                                0
Reg     HKLM\SYSTEM\CurrentControlSet\Services\SDUpdateService@ServiceWebPortActive                                                         0
Reg     HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch                                                                     3009
Reg     HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch2@Epoch                                                                    903
Reg     HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile@EnableFirewall                          1
Reg     HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile@EnableFirewall                        1
Reg     HKLM\SYSTEM\CurrentControlSet\Services\srvnet\Parameters@MajorSequence                                                              29
Reg     HKLM\SYSTEM\CurrentControlSet\Services\SynTP\Parameters@DetectTimeMS                                                                294
Reg     HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{4130637F-770C-4D9C-8D97-B772EFA02DA7}@LeaseObtainedTime         1434104386
Reg     HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{4130637F-770C-4D9C-8D97-B772EFA02DA7}@T1                        1434406786
Reg     HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{4130637F-770C-4D9C-8D97-B772EFA02DA7}@T2                        1434633586
Reg     HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{4130637F-770C-4D9C-8D97-B772EFA02DA7}@LeaseTerminatesTime       1434709186
Reg     HKLM\SYSTEM\CurrentControlSet\Services\Winmgmt\Parameters@ServiceDllUnloadOnStop                                                    0
Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shutdown@CleanShutdown                                                      1
Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Taskband@FavoritesRemovedChanges                                            4
Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE7CD045-E861-484F-8273-0445EE161910}\iexplore@Count                      2
Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\GWX\Usage@UsageTime                                                                  0x84 0x2E 0x95 0x1A ...
Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\ImmersiveShell\Grid@Logo100                                                          %USERPROFILE%\AppData\Local\Microsoft\Windows\Explorer\TileCacheLogo-85284718_100.dat
Reg     HKCU\Software\Microsoft\Windows\Windows Error Reporting@LastQueueNoPesterTime                                                       0xC5 0xEE 0x5D 0x68 ...
Reg     HKCU\Software\Microsoft\Windows\Windows Error Reporting\Debug@StoreLocation                                                         C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_Windows Installe_78ea319954c0f9d9f5a0af2422c161e5e83f9c38_3c3d17c0_cab_26f097e6
Reg     HKCU\Software\Microsoft\Windows\Windows Error Reporting\Debug\UIHandles@FirstLevelConsentDialog                                     0xE8 0x02 0x02 0x00 ...

---- EOF - GMER 2.1 ----
         
--- --- ---
SPYBOT:
Code:
ATTFilter
Search results from Spybot - Search & Destroy

12.06.2015 11:50:32
Scan took 00:25:24.
24 items found.

DownloadSponsor: [SBI $CC437C6B] Settings (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4118197852-1386457393-492245417-1001\Software\OCS\lastPID

DownloadSponsor: [SBI $980DE8E4] Settings (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4118197852-1386457393-492245417-1001\Software\OCS\PID

BurstMedia: [SBI $4E2AF2AC] Tracking cookie (Internet Explorer (Benutzer): *****) (Browser: Cookie, nothing done)
  

DoubleClick: [SBI $4E2AF2AC] Tracking cookie (Internet Explorer (Benutzer): *****) (Browser: Cookie, nothing done)
  

Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4118197852-1386457393-492245417-1001\Software\Microsoft\Internet Explorer\TypedURLs

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
  HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
  HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
  HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4118197852-1386457393-492245417-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
  HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent

MS Management Console: [SBI $ECD50EAD] Recent command list (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4118197852-1386457393-492245417-1001\Software\Microsoft\Microsoft Management Console\Recent File List

MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name

MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name

MS Wordpad: [SBI $4C02334D] Recent file list (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4118197852-1386457393-492245417-1001\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Recent File List

Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources

Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources

Windows.OpenWith: [SBI $F7204896] Open with list - .AVI extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4118197852-1386457393-492245417-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList

Windows Explorer: [SBI $7308A845] Run history (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4118197852-1386457393-492245417-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU

Windows Explorer: [SBI $AA0766B5] Stream history (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4118197852-1386457393-492245417-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU

Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4118197852-1386457393-492245417-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs

Cookie: [SBI $49804B54] Browser: Cookie (70) (Browser: Cookie, nothing done)
  

Cache: [SBI $49804B54] Browser: Cache (383) (Browser: Cache, nothing done)
  

Verlauf: [SBI $49804B54] Browser: History (254) (Browser: History, nothing done)
  

Cookie: [SBI $49804B54] Browser: Cookie (1) (Browser: Cookie, nothing done)
  


--- Spybot - Search & Destroy version: 2.4.40.131  DLL (build: 20140425) ---

2014-06-24 blindman.exe (2.4.40.151)
2014-06-24 explorer.exe (2.4.40.181)
2014-06-24 SDBootCD.exe (2.4.40.109)
2014-06-24 SDCleaner.exe (2.4.40.110)
2014-06-24 SDDelFile.exe (2.4.40.94)
2013-06-18 SDDisableProxy.exe
2014-06-24 SDFiles.exe (2.4.40.135)
2014-06-24 SDFileScanHelper.exe (2.4.40.1)
2014-06-24 SDFSSvc.exe (2.4.40.217)
2014-06-24 SDHelp.exe (2.4.40.1)
2014-04-25 SDHookHelper.exe (2.3.39.2)
2014-04-25 SDHookInst32.exe (2.3.39.2)
2014-04-25 SDHookInst64.exe (2.3.39.2)
2014-06-24 SDImmunize.exe (2.4.40.130)
2014-06-24 SDLogReport.exe (2.4.40.107)
2014-06-24 SDOnAccess.exe (2.4.40.11)
2014-06-24 SDPESetup.exe (2.4.40.3)
2014-06-24 SDPEStart.exe (2.4.40.86)
2014-06-24 SDPhoneScan.exe (2.4.40.28)
2014-06-24 SDPRE.exe (2.4.40.22)
2014-06-24 SDPrepPos.exe (2.4.40.15)
2014-06-24 SDQuarantine.exe (2.4.40.103)
2014-06-24 SDRootAlyzer.exe (2.4.40.116)
2014-06-24 SDSBIEdit.exe (2.4.40.39)
2014-06-24 SDScan.exe (2.4.40.181)
2014-06-24 SDScript.exe (2.4.40.54)
2014-06-24 SDSettings.exe (2.4.40.139)
2014-06-24 SDShell.exe (2.4.40.2)
2014-06-24 SDShred.exe (2.4.40.108)
2014-06-24 SDSysRepair.exe (2.4.40.102)
2014-06-24 SDTools.exe (2.4.40.157)
2014-06-24 SDTray.exe (2.4.40.129)
2014-06-27 SDUpdate.exe (2.4.40.94)
2014-06-27 SDUpdSvc.exe (2.4.40.77)
2014-06-24 SDWelcome.exe (2.4.40.130)
2014-04-25 SDWSCSvc.exe (2.3.39.2)
2015-03-25 spybotsd2-install-av-update.exe (2.4.40.0)
2014-05-20 spybotsd2-install-bdcore-update.exe (2.3.39.0)
2014-07-31 spybotsd2-translation-esx.exe
2013-06-19 spybotsd2-translation-frx.exe
2015-03-25 spybotsd2-translation-hrx.exe
2014-08-25 spybotsd2-translation-hux2.exe
2014-10-01 spybotsd2-translation-nlx2.exe
2014-11-05 spybotsd2-translation-ukx.exe
2015-06-02 unins000.exe (51.1052.0.0)
1999-12-02 xcacls.exe
2012-08-23 borlndmm.dll (10.0.2288.42451)
2012-09-05 DelZip190.dll (1.9.0.107)
2012-09-10 libeay32.dll (1.0.0.4)
2012-09-10 libssl32.dll (1.0.0.4)
2014-04-25 NotificationSpreader.dll
2014-06-24 SDAdvancedCheckLibrary.dll (2.4.40.98)
2015-03-25 SDAV.dll
2014-06-24 SDECon32.dll (2.4.40.114)
2014-06-24 SDECon64.dll (2.3.39.113)
2014-06-24 SDEvents.dll (2.4.40.2)
2014-06-24 SDFileScanLibrary.dll (2.4.40.14)
2014-04-25 SDHook32.dll (2.3.39.2)
2014-04-25 SDHook64.dll (2.3.39.2)
2014-06-24 SDImmunizeLibrary.dll (2.4.40.2)
2014-06-24 SDLicense.dll (2.4.40.0)
2014-06-24 SDLists.dll (2.4.40.4)
2014-06-24 SDResources.dll (2.4.40.7)
2014-06-24 SDScanLibrary.dll (2.4.40.131)
2014-06-24 SDTasks.dll (2.4.40.15)
2014-06-24 SDWinLogon.dll (2.4.40.0)
2012-08-23 sqlite3.dll
2012-09-10 ssleay32.dll (1.0.0.4)
2014-06-24 Tools.dll (2.4.40.36)
2015-04-22 Includes\Adware-000.sbi (*)
2015-02-27 Includes\Adware-001.sbi (*)
2015-06-10 Includes\Adware-C.sbi (*)
2014-01-13 Includes\Adware.sbi (*)
2014-01-13 Includes\AdwareC.sbi (*)
2010-08-13 Includes\Cookies.sbi (*)
2014-11-14 Includes\Dialer-000.sbi (*)
2014-11-14 Includes\Dialer-001.sbi (*)
2014-01-08 Includes\Dialer-C.sbi (*)
2014-01-13 Includes\Dialer.sbi (*)
2014-01-13 Includes\DialerC.sbi (*)
2014-01-09 Includes\Fraud-000.sbi (*)
2014-01-09 Includes\Fraud-001.sbi (*)
2014-03-31 Includes\Fraud-002.sbi (*)
2014-01-09 Includes\Fraud-003.sbi (*)
2012-11-14 Includes\HeavyDuty.sbi (*)
2014-11-14 Includes\Hijackers-000.sbi (*)
2014-11-14 Includes\Hijackers-001.sbi (*)
2014-01-08 Includes\Hijackers-C.sbi (*)
2014-01-13 Includes\Hijackers.sbi (*)
2014-01-13 Includes\HijackersC.sbi (*)
2014-01-08 Includes\iPhone-000.sbi (*)
2014-01-08 Includes\iPhone.sbi (*)
2014-11-14 Includes\Keyloggers-000.sbi (*)
2014-09-24 Includes\Keyloggers-C.sbi (*)
2014-01-13 Includes\Keyloggers.sbi (*)
2014-01-13 Includes\KeyloggersC.sbi (*)
2014-11-14 Includes\Malware-000.sbi (*)
2014-11-14 Includes\Malware-001.sbi (*)
2014-11-14 Includes\Malware-002.sbi (*)
2014-11-14 Includes\Malware-003.sbi (*)
2014-11-14 Includes\Malware-004.sbi (*)
2014-11-14 Includes\Malware-005.sbi (*)
2014-02-26 Includes\Malware-006.sbi (*)
2014-01-09 Includes\Malware-007.sbi (*)
2015-06-10 Includes\Malware-C.sbi (*)
2014-01-13 Includes\Malware.sbi (*)
2013-12-23 Includes\MalwareC.sbi (*)
2014-11-14 Includes\PUPS-000.sbi (*)
2014-01-15 Includes\PUPS-001.sbi (*)
2014-01-15 Includes\PUPS-002.sbi (*)
2015-06-10 Includes\PUPS-C.sbi (*)
2012-11-14 Includes\PUPS.sbi (*)
2014-01-07 Includes\PUPSC.sbi (*)
2014-01-08 Includes\Security-000.sbi (*)
2014-01-08 Includes\Security-C.sbi (*)
2014-01-21 Includes\Security.sbi (*)
2014-01-21 Includes\SecurityC.sbi (*)
2014-11-14 Includes\Spyware-000.sbi (*)
2015-05-06 Includes\Spyware-001.sbi (*)
2015-05-27 Includes\Spyware-C.sbi (*)
2014-01-21 Includes\Spyware.sbi (*)
2014-01-21 Includes\SpywareC.sbi (*)
2011-06-07 Includes\Tracks.sbi (*)
2012-11-19 Includes\Tracks.uti (*)
2014-01-15 Includes\Trojans-000.sbi (*)
2014-01-15 Includes\Trojans-001.sbi (*)
2014-11-14 Includes\Trojans-002.sbi (*)
2014-01-15 Includes\Trojans-003.sbi (*)
2014-01-15 Includes\Trojans-004.sbi (*)
2014-03-19 Includes\Trojans-005.sbi (*)
2015-03-31 Includes\Trojans-006.sbi (*)
2014-01-15 Includes\Trojans-007.sbi (*)
2014-07-09 Includes\Trojans-008.sbi (*)
2014-07-09 Includes\Trojans-009.sbi (*)
2015-05-27 Includes\Trojans-C.sbi (*)
2014-01-15 Includes\Trojans-OG-000.sbi (*)
2014-01-15 Includes\Trojans-TD-000.sbi (*)
2014-01-15 Includes\Trojans-VM-000.sbi (*)
2014-01-15 Includes\Trojans-VM-001.sbi (*)
2014-01-15 Includes\Trojans-VM-002.sbi (*)
2014-01-15 Includes\Trojans-VM-003.sbi (*)
2014-01-15 Includes\Trojans-VM-004.sbi (*)
2014-01-15 Includes\Trojans-VM-005.sbi (*)
2014-01-15 Includes\Trojans-VM-006.sbi (*)
2014-01-15 Includes\Trojans-VM-007.sbi (*)
2014-01-15 Includes\Trojans-VM-008.sbi (*)
2014-01-15 Includes\Trojans-VM-009.sbi (*)
2014-01-15 Includes\Trojans-VM-010.sbi (*)
2014-01-15 Includes\Trojans-VM-011.sbi (*)
2014-01-15 Includes\Trojans-VM-012.sbi (*)
2014-01-15 Includes\Trojans-VM-013.sbi (*)
2014-01-15 Includes\Trojans-VM-014.sbi (*)
2014-01-15 Includes\Trojans-VM-015.sbi (*)
2014-01-15 Includes\Trojans-VM-016.sbi (*)
2014-01-15 Includes\Trojans-VM-017.sbi (*)
2014-01-15 Includes\Trojans-VM-018.sbi (*)
2014-01-15 Includes\Trojans-VM-019.sbi (*)
2014-01-15 Includes\Trojans-VM-020.sbi (*)
2014-01-15 Includes\Trojans-VM-021.sbi (*)
2014-01-15 Includes\Trojans-VM-022.sbi (*)
2014-01-15 Includes\Trojans-VM-023.sbi (*)
2014-01-15 Includes\Trojans-VM-024.sbi (*)
2014-01-15 Includes\Trojans-ZB-000.sbi (*)
2014-01-15 Includes\Trojans-ZL-000.sbi (*)
2014-01-09 Includes\Trojans.sbi (*)
2014-01-16 Includes\TrojansC-01.sbi (*)
2014-01-16 Includes\TrojansC-02.sbi (*)
2014-01-16 Includes\TrojansC-03.sbi (*)
2014-01-16 Includes\TrojansC-04.sbi (*)
2014-01-16 Includes\TrojansC-05.sbi (*)
2014-01-09 Includes\TrojansC.sbi (*)
         
__________________

Geändert von momdel (12.06.2015 um 13:38 Uhr)

Alt 12.06.2015, 13:36   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



Zitat:
ja, das weiß ich. Die Suchmaschine habe ich aber nie installiert.
Ich weiß nicht was du dir unter "Suchmaschine installieren" vorstellst. Eine Suchmaschine kann man sich nicht installieren, das ist kein Stück Software, dass du lokal auf deinen Rechner installierst. Eine Suchmaschine ist ein Service, den man nutzen kann. Und man kann den Browser so einstellen, dass er bestimmte Suchmaschinen nutzt. Aber "installieren" ist hier der völlig falsche Begriff.

In den Logs seh ich nix bin Bing. Und auch keine Warnungen von FRST.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 12.06.2015, 13:48   #5
momdel
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



FRST Teil 1:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:08-06-2015
Ran by ***** (administrator) on *****-PC on 12-06-2015 12:59:24
Running from C:\Users\*****\Desktop
Loaded Profiles: ***** &  (Available Profiles: *****)
Platform: Windows 8.1 Pro N (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Lavasoft Limited) C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
(MKS Software Inc.) C:\Windows\System32\nutsrv4.exe
(PTC Inc.) C:\Program Files\PTC\PTC Portmapper\i486_nt\obj\portmap.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
() C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320360 2014-08-04] (Intel Corporation)
HKLM\...\Run: [RtsFT] => C:\Windows\RTFTrack.exe [6340312 2014-01-21] (Realtek semiconductor)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2015-05-21] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10973168 2015-05-21] (Lenovo(beijing) Limited)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1794704 2015-02-20] (NVIDIA Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2808560 2014-08-08] (Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2015-02-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [708496 2015-02-19] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [NuTCSetupEnviron] => C:\Program Files\PTC\MKS Toolkit\bin\ncoeenv.exe [37248 2012-10-12] (MKS Software Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1851040 2015-03-17] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [130864 2015-05-21] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [730416 2015-05-27] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-4118197852-1386457393-492245417-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31283328 2015-04-17] (Skype Technologies S.A.)
HKU\S-1-5-21-4118197852-1386457393-492245417-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [1381648 2015-06-08] (Lavasoft)
HKU\S-1-5-21-4118197852-1386457393-492245417-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [867488 2015-03-17] (Adobe Systems Incorporated)
HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31283328 2015-04-17] (Skype Technologies S.A.)
HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [1381648 2015-06-08] (Lavasoft)
HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [867488 2015-03-17] (Adobe Systems Incorporated)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [177624 2015-02-20] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [164752 2015-02-20] (NVIDIA Corporation)
Startup: C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-05-24]
ShortcutTarget: Dropbox.lnk -> C:\Users\*****\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-4118197852-1386457393-492245417-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=COSP&ptag=D061215-A510D0E105D5B4CC49CF&form=CONMHP&conlogo=CT3330941
HKU\S-1-5-21-4118197852-1386457393-492245417-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=COSP&ptag=D061215-A510D0E105D5B4CC49CF&form=CONMHP&conlogo=CT3330941
HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
SearchScopes: HKU\S-1-5-21-4118197852-1386457393-492245417-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D061215-A510D0E105D5B4CC49CF&form=CONBDF&conlogo=CT3330941&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4118197852-1386457393-492245417-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D061215-A510D0E105D5B4CC49CF&form=CONBDF&conlogo=CT3330941&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D061215-A510D0E105D5B4CC49CF&form=CONBDF&conlogo=CT3330941&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4118197852-1386457393-492245417-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D061215-A510D0E105D5B4CC49CF&form=CONBDF&conlogo=CT3330941&q={searchTerms}
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-03-17] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-03-17] (Adobe Systems Incorporated)
BHO-x32: WebCGMHlprObj Class -> {56B38F40-4E70-11d4-A076-0080AD86BA2F} -> C:\Windows\SysWow64\cgmopenbho.dll [2005-06-09] (CGM Open Consortium, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-12] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-03-17] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-12] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-03-17] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-03-17] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-03-17] (Adobe Systems Incorporated)
Winsock: Catalog9 01 C:\Windows\SysWOW64\LavasoftTcpService.dll [348488 2015-06-12] (Lavasoft Limited)
Winsock: Catalog9 02 C:\Windows\SysWOW64\LavasoftTcpService.dll [348488 2015-06-12] (Lavasoft Limited)
Winsock: Catalog9 03 C:\Windows\SysWOW64\LavasoftTcpService.dll [348488 2015-06-12] (Lavasoft Limited)
Winsock: Catalog9 04 C:\Windows\SysWOW64\LavasoftTcpService.dll [348488 2015-06-12] (Lavasoft Limited)
Winsock: Catalog9 15 C:\Windows\SysWOW64\nutafun4.dll [164232 2012-10-12] (MKS Software Inc.)
Winsock: Catalog9 16 C:\Windows\SysWOW64\nutafun4.dll [164232 2012-10-12] (MKS Software Inc.)
Winsock: Catalog9 18 C:\Windows\SysWOW64\LavasoftTcpService.dll [348488 2015-06-12] (Lavasoft Limited)
Winsock: Catalog9-x64 01 C:\Windows\system32\LavasoftTcpService64.dll [428880 2015-06-12] (Lavasoft Limited)
Winsock: Catalog9-x64 02 C:\Windows\system32\LavasoftTcpService64.dll [428880 2015-06-12] (Lavasoft Limited)
Winsock: Catalog9-x64 03 C:\Windows\system32\LavasoftTcpService64.dll [428880 2015-06-12] (Lavasoft Limited)
Winsock: Catalog9-x64 04 C:\Windows\system32\LavasoftTcpService64.dll [428880 2015-06-12] (Lavasoft Limited)
Winsock: Catalog9-x64 15 C:\Windows\system32\nutafun4.dll [205624 2012-10-12] (MKS Software Inc.)
Winsock: Catalog9-x64 16 C:\Windows\system32\nutafun4.dll [205624 2012-10-12] (MKS Software Inc.)
Winsock: Catalog9-x64 18 C:\Windows\system32\LavasoftTcpService64.dll [428880 2015-06-12] (Lavasoft Limited)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\8bfbh11i.default
FF NewTab: hxxp://www.bing.com/?pc=COSP&ptag=D061215-A510D0E105D5B4CC49CF&form=CONMHP&conlogo=CT3330941
FF DefaultSearchEngine: Google Default
FF SelectedSearchEngine: Bing
FF Homepage: google.de
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-06-02] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-06-02] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @ptc.com/ProductViewLite -> C:\Program Files (x86)\Common Files\PTC\np6_pvapplite9.dll [2013-04-04] (PTC)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems)
FF SearchPlugin: C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\8bfbh11i.default\searchplugins\google-default.xml [2015-06-12]
FF Extension: WOT - C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\8bfbh11i.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-05-29]
FF Extension: Ghostery - C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\8bfbh11i.default\Extensions\firefox@ghostery.com.xpi [2015-05-21]
FF Extension: Video DownloadHelper - C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\8bfbh11i.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-05-21]
FF Extension: Adblock Plus - C:\Users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\8bfbh11i.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-21]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat DC - Create PDF - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2015-06-12]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - https://clients2.google.com/service/update2/crx

Opera: 
=======
OPR Extension: (Adblock Plus) - C:\Users\*****\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-06-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [827184 2015-05-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [450808 2015-05-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [450808 2015-05-27] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1188360 2015-05-27] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [208632 2015-05-21] (Avira Operations GmbH & Co. KG)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-08-04] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-04] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 LavasoftTcpService; C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2751792 2015-06-08] (Lavasoft Limited)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-01-17] ()
R2 NuTCRACKERService; C:\Windows\system32\nutsrv4.exe [574776 2012-10-12] (MKS Software Inc.)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [38200 2015-03-19] (The OpenVPN Project)
R2 PortmapperService; C:\Program Files\PTC/PTC Portmapper/i486_nt/obj/portmap.exe [499712 2015-05-23] (PTC Inc.) [File not signed]
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 SearchProtectionService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe [19816 2015-06-08] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [190704 2014-08-08] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-01-17] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [153256 2015-05-27] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [132656 2015-05-27] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-05-27] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-05-27] (Avira Operations GmbH & Co. KG)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3434464 2014-03-13] (Intel Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [9105624 2014-01-21] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-08-08] (Synaptics Incorporated)
S3 vpnva; C:\Windows\system32\DRIVERS\vpnva64-6.sys [52592 2014-10-16] (Cisco Systems, Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 TDKLIB; \??\C:\Users\*****\AppData\Local\Temp\TdkLib64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-12 12:59 - 2015-06-12 12:59 - 00023632 _____ C:\Users\*****\Desktop\FRST.txt
2015-06-12 12:59 - 2015-06-12 12:59 - 00000000 ____D C:\FRST
2015-06-12 12:58 - 2015-06-12 12:58 - 00000472 _____ C:\Users\*****\Desktop\defogger_disable.log
2015-06-12 12:58 - 2015-06-12 12:58 - 00000000 _____ C:\Users\*****\defogger_reenable
2015-06-12 12:57 - 2015-06-12 12:57 - 00380416 _____ C:\Users\*****\Desktop\Gmer-19357.exe
2015-06-12 12:56 - 2015-06-12 12:57 - 00000000 ____D C:\Users\*****\Desktop\Neuer Ordner
2015-06-12 12:56 - 2015-06-12 12:56 - 02108928 _____ (Farbar) C:\Users\*****\Desktop\FRST64.exe
2015-06-12 12:56 - 2015-06-12 12:56 - 00050477 _____ C:\Users\*****\Desktop\Defogger.exe
2015-06-12 12:39 - 2015-06-12 12:39 - 00000000 ____D C:\Users\*****\AppData\Roaming\Avira
2015-06-12 12:38 - 2015-05-27 13:11 - 00153256 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-06-12 12:38 - 2015-05-27 13:11 - 00132656 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2015-06-12 12:38 - 2015-05-27 13:11 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2015-06-12 12:38 - 2015-05-27 13:11 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2015-06-12 12:28 - 2015-06-12 12:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-06-12 12:28 - 2015-06-12 12:28 - 00001208 _____ C:\Users\Public\Desktop\Avira.lnk
2015-06-12 12:22 - 2015-06-12 12:22 - 04683232 _____ (Avira Operations GmbH & Co. KG) C:\Users\*****\Desktop\avira_de_av_557ab2e265603__ws.exe
2015-06-12 12:17 - 2015-06-12 12:17 - 00000000 ____D C:\Users\*****\.pdfsam
2015-06-12 12:13 - 2013-08-22 15:25 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts.20150612-121330.backup
2015-06-12 11:58 - 2013-08-22 15:25 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts.20150612-115859.backup
2015-06-12 11:52 - 2015-06-12 11:52 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2015-06-12 11:52 - 2015-06-12 11:52 - 00002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2015-06-12 11:52 - 2015-06-12 11:52 - 00002034 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2015-06-12 11:52 - 2015-06-12 11:52 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-06-12 11:40 - 2015-06-12 12:31 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-12 11:33 - 2015-06-12 11:35 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\*****\Downloads\mbam-setup-2.1.6.1022(1).exe
2015-06-12 11:32 - 2015-06-12 11:32 - 02066496 _____ (Adobe) C:\Users\*****\Downloads\acrobatproDC_00000000000000000000000407.exe
2015-06-12 11:21 - 2015-06-12 12:19 - 00002960 _____ C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini
2015-06-12 11:21 - 2015-06-12 12:19 - 00002960 _____ C:\Windows\system32\LavasoftTcpServiceOff.ini
2015-06-12 11:21 - 2015-06-12 11:21 - 00000000 ____D C:\Users\*****\AppData\Local\Lavasoft
2015-06-12 11:21 - 2015-06-12 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2015-06-12 11:21 - 2015-06-12 11:21 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2015-06-12 11:21 - 2015-06-08 14:13 - 00428880 _____ (Lavasoft Limited) C:\Windows\system32\LavasoftTcpService64.dll
2015-06-12 11:21 - 2015-06-08 14:13 - 00348488 _____ (Lavasoft Limited) C:\Windows\SysWOW64\LavasoftTcpService.dll
2015-06-12 11:20 - 2015-06-12 11:20 - 00000000 ____D C:\Users\*****\AppData\Roaming\Lavasoft
2015-06-12 11:20 - 2015-06-12 11:20 - 00000000 ____D C:\ProgramData\Lavasoft
2015-06-12 11:15 - 2015-06-12 11:17 - 28754952 _____ (pdfforge GmbH) C:\Users\*****\Downloads\PDFCreator-2_1_2-setup.exe
2015-06-12 11:07 - 2015-06-12 12:10 - 00000000 ____D C:\Users\*****\Desktop\Doris Bewerbung
2015-06-12 10:38 - 2015-06-12 10:39 - 00282537 _____ C:\Users\*****\Downloads\abschluss_bestanden8b4b09ee-47fa-41c0-af5c-c574de9c564f.pdf.htm
2015-06-12 10:38 - 2015-06-12 10:39 - 00000000 ____D C:\Users\*****\Downloads\abschluss_bestanden8b4b09ee-47fa-41c0-af5c-c574de9c564f.pdf-Dateien
2015-06-12 09:16 - 2015-06-12 09:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Split And Merge Basic
2015-06-12 09:16 - 2015-06-12 09:16 - 00000000 ____D C:\Program Files (x86)\PDF Split And Merge Basic
2015-06-12 09:15 - 2015-06-12 09:15 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-06-12 09:15 - 2015-06-12 09:15 - 00000000 ____D C:\ProgramData\Sun
2015-06-12 09:15 - 2015-06-12 09:15 - 00000000 ____D C:\ProgramData\Oracle
2015-06-12 09:15 - 2015-06-12 09:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-06-12 09:15 - 2015-06-12 09:15 - 00000000 ____D C:\Program Files (x86)\Java
2015-06-12 09:11 - 2015-06-12 09:11 - 00561248 _____ (Oracle Corporation) C:\Users\*****\Downloads\jxpiinstall.exe
2015-06-12 09:09 - 2015-06-12 09:10 - 16407552 _____ C:\Users\*****\Downloads\pdfsam-v2_2_4.msi
2015-06-10 22:05 - 2015-06-10 22:05 - 00041711 _____ C:\Users\*****\Downloads\Reisekostenformular.xlsx
2015-06-10 20:33 - 2015-06-10 20:33 - 00059893 _____ C:\Users\*****\Downloads\kurbelwelle.stp
2015-06-09 21:11 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-09 21:11 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-06-09 21:10 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-09 21:10 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-09 21:10 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-09 21:10 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-09 21:10 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-09 21:10 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-09 21:10 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-06-09 21:10 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-09 21:10 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-09 21:10 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-09 21:10 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-06-09 21:10 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-06-09 21:10 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-09 21:10 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-09 21:10 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-09 21:10 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-09 21:10 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-06-09 21:10 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-09 21:10 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-09 21:10 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-06-09 21:10 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-09 21:10 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-09 21:10 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-09 21:10 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-09 21:10 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-09 21:10 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-09 21:10 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-09 21:10 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-09 21:10 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-06-09 21:10 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-09 21:10 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-06-09 21:10 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-06-09 21:10 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-09 21:10 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-09 21:10 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-09 21:10 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-09 21:10 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-09 21:10 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-06-09 21:10 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-09 21:10 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-09 21:09 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-06 18:05 - 2015-05-22 15:08 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-06 18:05 - 2015-05-21 15:08 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-06 18:05 - 2015-05-21 15:08 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-06 18:05 - 2015-05-21 15:08 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-06 18:05 - 2015-05-21 15:08 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-06 18:05 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-06 18:05 - 2015-05-21 15:08 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-06 18:05 - 2015-04-17 00:07 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-03 03:11 - 2015-06-03 03:11 - 00000000 ____D C:\Users\*****\Documents\ProcAlyzer Dumps
2015-06-02 18:56 - 2015-06-03 03:07 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-06-02 18:56 - 2015-06-02 18:56 - 00001403 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-06-02 18:56 - 2015-06-02 18:56 - 00001391 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-06-02 18:56 - 2015-06-02 18:56 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2015-06-02 18:56 - 2015-06-02 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-06-02 18:56 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2015-06-02 18:55 - 2015-06-02 19:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-06-02 18:53 - 2015-06-12 11:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-06-02 18:53 - 2015-06-12 11:40 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-06-02 18:53 - 2015-06-02 18:53 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-06-02 18:53 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-06-02 18:53 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-06-02 18:53 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-06-02 18:51 - 2015-06-02 18:53 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\*****\Downloads\spybot-2.4.exe
2015-06-02 18:49 - 2015-06-02 18:49 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\*****\Downloads\mbam-setup-2.1.6.1022.exe
2015-06-02 17:20 - 2015-06-10 20:06 - 00003852 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1433258263
2015-06-02 17:20 - 2015-06-02 17:20 - 00000000 ____D C:\Users\*****\AppData\Roaming\Opera Software
2015-06-02 17:20 - 2015-06-02 17:20 - 00000000 ____D C:\Users\*****\AppData\Local\Opera Software
2015-06-02 17:17 - 2015-06-10 20:06 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-06-02 17:17 - 2015-06-02 17:17 - 00001147 _____ C:\Users\Public\Desktop\Opera.lnk
2015-06-02 17:16 - 2015-06-10 20:06 - 00000000 ____D C:\Program Files (x86)\Opera
2015-06-02 17:16 - 2015-06-02 17:16 - 00684168 _____ (Opera Software) C:\Users\*****\Downloads\Opera_NI_stable.exe
2015-06-02 16:55 - 2015-06-02 16:55 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-06-02 16:55 - 2015-06-02 16:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-02 16:50 - 2015-06-02 16:51 - 40140720 _____ C:\Users\*****\Downloads\Firefox Setup 38.0.5.exe
2015-06-02 16:47 - 2015-06-12 12:10 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-02 16:47 - 2015-06-02 17:07 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-02 16:44 - 2015-06-02 16:44 - 00003170 _____ C:\Windows\System32\Tasks\{7BE646C0-41CF-449F-AF59-4C6239EE5437}
2015-06-01 21:25 - 2015-06-01 21:25 - 00000000 ____D C:\Users\*****\AppData\Local\Intel_Corporation
2015-06-01 19:18 - 2015-06-01 19:18 - 00000000 ____D C:\Users\*****\Tracing
2015-06-01 14:24 - 2015-06-01 14:24 - 00313408 _____ C:\Windows\Minidump\060115-74671-01.dmp
2015-06-01 14:18 - 2015-06-01 14:18 - 00000000 ____D C:\ProgramData\IntelDLM
2015-06-01 14:14 - 2015-06-01 14:14 - 00000165 ____H C:\Users\*****\Desktop\~$*****Gebhardt_Presentation_FutureMD.pptx
2015-06-01 14:09 - 2015-06-01 14:09 - 00000000 ____D C:\Users\*****\AppData\Local\Intel
2015-06-01 14:08 - 2015-06-01 14:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2015-06-01 14:08 - 2015-06-01 14:08 - 00000000 ____D C:\Program Files (x86)\Intel Driver Update Utility
2015-06-01 14:07 - 2015-06-01 14:07 - 02333416 _____ (Intel) C:\Users\*****\Downloads\Intel Driver Update Utility Installer.exe
2015-06-01 04:02 - 2015-06-01 04:02 - 00000000 ____D C:\Users\*****\AppData\Local\GWX
2015-05-29 04:51 - 2015-05-29 04:51 - 01240704 _____ C:\Windows\Minidump\052915-18734-01.dmp
2015-05-27 20:28 - 2015-05-27 20:28 - 00000000 __SHD C:\Users\*****\AppData\Local\EmieBrowserModeList
2015-05-27 20:14 - 2015-05-27 20:14 - 01197344 _____ C:\Users\*****\Downloads\Free M4a to MP3 Converter - CHIP-Installer.exe
2015-05-27 19:51 - 2015-05-27 19:51 - 00000000 ____D C:\Users\*****\dwhelper
2015-05-27 14:22 - 2015-05-27 14:22 - 27756464 _____ C:\Users\*****\Downloads\SpiderOakSetup-5.2.0-x64.exe
2015-05-27 12:16 - 2015-05-27 12:16 - 19435520 _____ C:\Users\*****\Downloads\Boxcryptor_v2.1.409.104_Setup(1).msi
2015-05-27 11:55 - 2015-05-27 11:57 - 56864584 _____ (Lenovo Group Limited ) C:\Users\*****\Downloads\2ame00ww.exe
2015-05-27 11:42 - 2015-06-02 10:39 - 00000000 ___RD C:\Users\*****\Desktop\Cubed Nordbayern
2015-05-27 11:12 - 2015-05-27 11:12 - 01252248 _____ C:\Windows\Minidump\052715-13484-01.dmp
2015-05-27 06:50 - 2015-05-27 06:50 - 01303096 _____ C:\Windows\Minidump\052715-30671-01.dmp
2015-05-26 19:54 - 2015-05-26 19:54 - 01304776 _____ C:\Windows\Minidump\052615-15421-01.dmp
2015-05-26 14:56 - 2015-05-26 14:56 - 01375392 _____ C:\Windows\Minidump\052615-17984-01.dmp
2015-05-26 11:24 - 2015-05-26 11:24 - 01197344 _____ C:\Users\*****\Downloads\TrueCrypt - CHIP-Installer(1).exe
2015-05-26 11:21 - 2015-05-26 11:21 - 01578574 _____ C:\Users\*****\Downloads\KeePass-1.29.zip
2015-05-26 11:17 - 2015-05-26 11:17 - 00000000 ____D C:\Users\*****\AppData\Roaming\KeePass
2015-05-26 11:14 - 2015-05-26 11:14 - 00001115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass.lnk
2015-05-26 11:14 - 2015-05-26 11:14 - 00000000 ____D C:\Program Files (x86)\KeePass Password Safe
2015-05-26 11:11 - 2015-05-26 11:11 - 01952568 _____ (Dominik Reichl ) C:\Users\*****\Downloads\KeePass-1.29-Setup.exe
2015-05-26 03:54 - 2015-06-01 14:24 - 00000000 ____D C:\Windows\Minidump
2015-05-26 03:54 - 2015-06-01 14:23 - 818709214 _____ C:\Windows\MEMORY.DMP
2015-05-26 03:54 - 2015-05-26 03:55 - 01512984 _____ C:\Windows\Minidump\052615-39531-01.dmp
2015-05-25 14:06 - 2015-05-25 14:06 - 00000165 ____H C:\Users\*****\Desktop\~$Filme.xlsx
2015-05-25 03:17 - 2015-05-25 03:17 - 03128961 _____ C:\Users\*****\Downloads\Sciencedirect_articles_24May2015_21-16-57.252.zip
2015-05-25 03:05 - 2015-05-25 03:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
2015-05-25 03:05 - 2015-05-25 03:06 - 00000000 ____D C:\Program Files\TAP-Windows
2015-05-25 03:05 - 2015-05-25 03:06 - 00000000 ____D C:\Program Files\OpenVPN
2015-05-25 03:05 - 2015-05-25 03:05 - 01813624 _____ C:\Users\*****\Downloads\openvpn-install-2.3.6-I003-x86_64.exe
2015-05-25 03:05 - 2015-05-25 03:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2015-05-25 03:04 - 2015-05-25 03:04 - 01791800 _____ (Juniper Networks, Inc.) C:\Users\*****\Downloads\JuniperSetupClientInstaller(2).exe
2015-05-25 03:02 - 2015-05-25 03:02 - 01791800 _____ (Juniper Networks, Inc.) C:\Users\*****\Downloads\JuniperSetupClientInstaller(1).exe
2015-05-25 03:02 - 2015-05-25 03:02 - 00000000 ____D C:\Users\*****\AppData\Roaming\Juniper Networks
2015-05-25 03:02 - 2015-05-25 03:02 - 00000000 ____D C:\Users\*****\AppData\Local\Juniper Networks
2015-05-25 03:00 - 2015-05-25 03:00 - 01791800 _____ (Juniper Networks, Inc.) C:\Users\*****\Downloads\JuniperSetupClientInstaller.exe
2015-05-24 19:49 - 2015-05-24 19:49 - 00001154 _____ C:\Users\*****\Desktop\!Vorlesungsunterlagen Master - Verknüpfung.lnk
2015-05-24 12:26 - 2015-06-02 16:12 - 00000000 ___RD C:\Users\*****\Dropbox
2015-05-24 12:19 - 2015-05-24 12:19 - 00000000 ____D C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-05-24 12:14 - 2015-06-02 16:11 - 00000000 ____D C:\Users\*****\AppData\Roaming\Dropbox
2015-05-24 12:14 - 2015-05-24 12:14 - 00356272 _____ (Dropbox, Inc.) C:\Users\*****\Downloads\DropboxInstaller.exe
2015-05-23 22:58 - 2015-05-24 12:38 - 00000000 ____D C:\Users\*****\AppData\Roaming\TrueCrypt
2015-05-23 22:58 - 2015-05-23 22:58 - 00231376 _____ (TrueCrypt Foundation) C:\Windows\system32\Drivers\truecrypt.sys
2015-05-23 22:58 - 2015-05-23 22:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueCrypt
2015-05-23 22:58 - 2015-05-23 22:58 - 00000000 ____D C:\Program Files\TrueCrypt
2015-05-23 22:56 - 2015-05-23 22:56 - 01196832 _____ C:\Users\*****\Downloads\TrueCrypt - CHIP-Installer.exe
2015-05-23 22:01 - 2015-05-23 22:01 - 00000000 ____D C:\Users\*****\AppData\Local\Macromedia
2015-05-23 21:53 - 2015-06-12 11:02 - 00000000 ____D C:\Users\*****\AppData\Roaming\vlc
2015-05-23 21:45 - 2013-11-15 14:45 - 00009000 _____ (EldoS Corporation) C:\Windows\system32\elevtmsg.dll
2015-05-23 21:41 - 2015-05-23 21:41 - 19435520 _____ C:\Users\*****\Downloads\Boxcryptor_v2.1.409.104_Setup.msi
2015-05-23 19:54 - 2015-05-23 20:03 - 00000000 ___SD C:\Windows\system32\GWX
2015-05-23 19:54 - 2015-05-23 19:54 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-05-23 19:53 - 2015-06-08 17:48 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-05-23 19:53 - 2015-06-08 17:48 - 00000000 ____D C:\Windows\system32\appraiser
2015-05-23 19:48 - 2015-05-23 19:50 - 00000000 ____D C:\Windows\system32\MRT
2015-05-23 19:48 - 2015-04-30 10:07 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-23 19:18 - 2015-05-23 19:18 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-05-23 19:18 - 2015-05-23 19:18 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-05-23 17:36 - 2015-02-04 01:58 - 00264000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-05-23 17:36 - 2015-02-04 01:58 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-05-23 17:36 - 2015-02-04 01:58 - 00044024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-05-23 17:36 - 2015-02-03 01:53 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2015-05-23 17:36 - 2015-02-03 01:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2015-05-23 17:36 - 2015-01-27 05:44 - 00933888 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2015-05-23 17:36 - 2015-01-24 03:51 - 00816128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe
2015-05-23 17:24 - 2015-03-17 19:26 - 00467776 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-05-23 17:24 - 2015-01-23 09:17 - 00723072 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2015-05-23 17:24 - 2015-01-23 07:02 - 00560392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2015-05-23 17:24 - 2014-11-10 04:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupStatusProvider.dll
2015-05-23 17:24 - 2014-11-10 03:51 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceSetupStatusProvider.dll
2015-05-23 17:24 - 2014-10-31 01:39 - 01970432 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-05-23 17:24 - 2014-10-31 01:38 - 01612992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-05-23 17:23 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-05-23 17:23 - 2015-01-30 02:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-05-23 17:23 - 2014-12-09 05:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-05-23 17:23 - 2014-12-09 03:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-05-23 17:23 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsDatabase.dll
2015-05-23 17:23 - 2014-10-31 06:50 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2015-05-23 17:23 - 2014-10-31 05:30 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2015-05-23 17:23 - 2014-10-31 05:23 - 00733696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2015-05-23 17:23 - 2014-10-31 05:22 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2015-05-23 17:23 - 2014-10-31 05:18 - 04840960 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2015-05-23 17:23 - 2014-10-31 05:09 - 01154048 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2015-05-23 17:23 - 2014-10-31 04:12 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2015-05-23 17:23 - 2014-10-31 00:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-05-23 17:23 - 2014-10-31 00:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-05-23 17:23 - 2014-03-06 11:24 - 00111616 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-05-23 17:23 - 2014-03-06 11:24 - 00033280 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2015-05-23 17:23 - 2014-03-06 11:22 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2015-05-23 17:23 - 2014-03-06 11:19 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-05-23 17:23 - 2014-03-06 11:19 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-05-23 17:22 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-23 17:22 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-23 17:22 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-23 17:22 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-23 17:22 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-23 17:22 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-23 17:22 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-23 17:22 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-05-23 17:22 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-05-23 17:22 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-05-23 17:22 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-05-23 17:22 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-05-23 17:22 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-05-23 17:22 - 2015-03-14 10:20 - 01385256 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-05-23 17:22 - 2015-03-14 10:13 - 01124352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-05-23 17:22 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-05-23 17:22 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-05-23 17:22 - 2015-03-09 04:02 - 00057856 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-05-23 17:22 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-05-23 17:22 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-23 17:22 - 2015-02-20 05:03 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-05-23 17:22 - 2015-02-20 04:58 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-05-23 17:22 - 2015-02-20 04:20 - 00301056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-05-23 17:22 - 2015-02-20 04:15 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-05-23 17:22 - 2015-02-05 22:24 - 01113920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-05-23 17:22 - 2015-01-31 01:42 - 03097600 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-05-23 17:22 - 2015-01-31 01:29 - 02484224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-05-23 17:22 - 2015-01-30 05:01 - 00097792 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2015-05-23 17:22 - 2015-01-30 05:00 - 00167424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2015-05-23 17:22 - 2015-01-29 03:58 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2015-05-23 17:22 - 2015-01-29 03:29 - 00290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\photowiz.dll
2015-05-23 17:22 - 2015-01-29 03:04 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-05-23 17:22 - 2015-01-29 03:04 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-05-23 17:22 - 2014-12-19 10:57 - 00788680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-05-23 17:22 - 2014-12-19 10:25 - 00602776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-05-23 17:22 - 2014-12-13 23:28 - 00513488 _____ C:\Windows\SysWOW64\locale.nls
2015-05-23 17:22 - 2014-12-13 23:28 - 00513488 _____ C:\Windows\system32\locale.nls
2015-05-23 17:22 - 2014-12-12 04:04 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-05-23 17:22 - 2014-12-09 03:50 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-05-23 17:22 - 2014-10-29 04:46 - 00053248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2015-05-23 17:21 - 2014-10-29 06:00 - 02314952 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-05-23 17:21 - 2014-10-29 06:00 - 02229168 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-05-23 17:21 - 2014-10-29 06:00 - 01385216 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-05-23 17:21 - 2014-10-29 06:00 - 00544408 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-05-23 17:21 - 2014-10-29 06:00 - 00125504 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-05-23 17:21 - 2014-10-29 05:59 - 03460472 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2015-05-23 17:21 - 2014-10-29 05:59 - 02529856 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-05-23 17:21 - 2014-10-29 05:59 - 00415040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2015-05-23 17:21 - 2014-10-29 05:59 - 00136512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-05-23 17:21 - 2014-10-29 05:59 - 00014144 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys
2015-05-23 17:21 - 2014-10-29 05:58 - 00014528 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2015-05-23 17:21 - 2014-10-29 05:57 - 03118096 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2015-05-23 17:21 - 2014-10-29 05:57 - 01576312 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2015-05-23 17:21 - 2014-10-29 05:57 - 01552704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-05-23 17:21 - 2014-10-29 05:57 - 00643064 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2015-05-23 17:21 - 2014-10-29 05:57 - 00389952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-05-23 17:21 - 2014-10-29 05:55 - 02174976 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2015-05-23 17:21 - 2014-10-29 05:55 - 01133200 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-05-23 17:21 - 2014-10-29 05:52 - 02485056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-05-23 17:21 - 2014-10-29 05:51 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-05-23 17:21 - 2014-10-29 05:18 - 00016504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psapi.dll
2015-05-23 17:21 - 2014-10-29 05:13 - 01901240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-05-23 17:21 - 2014-10-29 05:12 - 01946144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-05-23 17:21 - 2014-10-29 05:12 - 01907384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2015-05-23 17:21 - 2014-10-29 05:12 - 00430176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-05-23 17:21 - 2014-10-29 05:12 - 00102728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-05-23 17:21 - 2014-10-29 05:10 - 01287112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2015-05-23 17:21 - 2014-10-29 05:10 - 00492232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2015-05-23 17:21 - 2014-10-29 04:59 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-05-23 17:21 - 2014-10-29 04:45 - 01198080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-05-23 17:21 - 2014-10-29 04:45 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2015-05-23 17:21 - 2014-10-29 04:29 - 04483072 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2015-05-23 17:21 - 2014-10-29 04:19 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-05-23 17:21 - 2014-10-29 04:10 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-05-23 17:21 - 2014-10-29 04:08 - 18822656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-05-23 17:21 - 2014-10-29 04:03 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-05-23 17:21 - 2014-10-29 04:00 - 01861632 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2015-05-23 17:21 - 2014-10-29 03:57 - 02924032 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2015-05-23 17:21 - 2014-10-29 03:56 - 03754496 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2015-05-23 17:21 - 2014-10-29 03:51 - 00941056 _____ (Microsoft Corporation) C:\Windows\system32\XpsFilt.dll
2015-05-23 17:21 - 2014-10-29 03:45 - 03607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-05-23 17:21 - 2014-10-29 03:45 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\rdpinput.exe
2015-05-23 17:21 - 2014-10-29 03:43 - 07075328 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2015-05-23 17:21 - 2014-10-29 03:40 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2015-05-23 17:21 - 2014-10-29 03:39 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-05-23 17:21 - 2014-10-29 03:38 - 04690432 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2015-05-23 17:21 - 2014-10-29 03:35 - 04709888 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-05-23 17:21 - 2014-10-29 03:35 - 03256320 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-05-23 17:21 - 2014-10-29 03:33 - 15157760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-05-23 17:21 - 2014-10-29 03:31 - 02941952 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2015-05-23 17:21 - 2014-10-29 03:28 - 03820544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-05-23 17:21 - 2014-10-29 03:26 - 03561984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2015-05-23 17:21 - 2014-10-29 03:24 - 02464768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-05-23 17:21 - 2014-10-29 03:24 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-05-23 17:21 - 2014-10-29 03:23 - 01826304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2015-05-23 17:21 - 2014-10-29 03:23 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2015-05-23 17:21 - 2014-10-29 03:22 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-05-23 17:21 - 2014-10-29 03:22 - 01084416 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-05-23 17:21 - 2014-10-29 03:17 - 01360896 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2015-05-23 17:21 - 2014-10-29 03:16 - 05267968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2015-05-23 17:21 - 2014-10-29 03:12 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-05-23 17:21 - 2014-10-29 03:12 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2015-05-23 17:21 - 2014-10-29 03:10 - 02469888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2015-05-23 17:21 - 2014-10-29 03:10 - 02344960 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-05-23 17:21 - 2014-10-29 03:10 - 00302080 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2015-05-23 17:21 - 2014-10-29 03:08 - 02542080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-05-23 17:21 - 2014-10-29 03:08 - 02174976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-05-23 17:21 - 2014-10-29 03:05 - 03273216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2015-05-23 17:21 - 2014-10-29 03:03 - 04067840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-05-23 17:21 - 2014-10-29 03:03 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-05-23 17:21 - 2014-10-29 03:03 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2015-05-23 17:21 - 2014-10-29 03:02 - 14354944 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-05-23 17:21 - 2014-10-29 03:01 - 00843776 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2015-05-23 17:21 - 2014-10-29 02:58 - 00926208 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-05-23 17:21 - 2014-10-29 02:56 - 00512512 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2015-05-23 17:21 - 2014-10-29 02:54 - 07784960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-05-23 17:21 - 2014-10-29 02:52 - 02554880 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-05-23 17:21 - 2014-10-29 02:52 - 01275904 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2015-05-23 17:21 - 2014-10-29 02:51 - 01554432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-05-23 17:21 - 2014-10-29 02:50 - 12749824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-05-23 17:21 - 2014-10-29 02:48 - 03056128 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2015-05-23 17:21 - 2014-10-29 02:46 - 09530368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2015-05-23 17:21 - 2014-10-29 02:45 - 00397824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2015-05-23 17:21 - 2014-10-29 02:43 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-05-23 17:21 - 2014-10-29 02:42 - 01922560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-05-23 17:21 - 2014-10-29 02:42 - 01221120 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2015-05-23 17:21 - 2014-10-29 02:39 - 01000448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2015-05-23 17:21 - 2014-10-29 02:38 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-05-23 17:21 - 2014-10-29 02:37 - 06386176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2015-05-23 17:21 - 2014-10-29 02:36 - 00954880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2015-05-23 17:21 - 2014-10-29 02:35 - 01668096 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2015-05-23 17:21 - 2014-10-29 02:33 - 06213632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-05-23 17:21 - 2014-10-15 10:32 - 02025792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-05-23 17:21 - 2014-10-08 09:33 - 00678400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-05-23 17:21 - 2014-10-08 09:32 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-05-23 17:21 - 2014-09-25 05:42 - 00373568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-05-23 17:21 - 2014-06-27 08:22 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-05-23 17:20 - 2014-10-29 06:10 - 01816008 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2015-05-23 17:20 - 2014-10-29 06:10 - 00430728 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2015-05-23 17:20 - 2014-10-29 06:09 - 01950280 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2015-05-23 17:20 - 2014-10-29 06:09 - 01309744 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-05-23 17:20 - 2014-10-29 06:09 - 01239576 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2015-05-23 17:20 - 2014-10-29 06:04 - 00324864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-05-23 17:20 - 2014-10-29 06:03 - 00435008 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-05-23 17:20 - 2014-10-29 06:00 - 01540696 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-05-23 17:20 - 2014-10-29 06:00 - 00740664 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-05-23 17:20 - 2014-10-29 06:00 - 00379568 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2015-05-23 17:20 - 2014-10-29 05:59 - 00498496 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-05-23 17:20 - 2014-10-29 05:57 - 00271152 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2015-05-23 17:20 - 2014-10-29 05:57 - 00027360 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsRemoveDevice.exe
2015-05-23 17:20 - 2014-10-29 05:55 - 01660528 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-05-23 17:20 - 2014-10-29 05:55 - 01543768 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2015-05-23 17:20 - 2014-10-29 05:55 - 01063432 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2015-05-23 17:20 - 2014-10-29 05:55 - 00730824 _____ (Microsoft Corporation) C:\Windows\system32\clbcatq.dll
2015-05-23 17:20 - 2014-10-29 05:55 - 00426120 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2015-05-23 17:20 - 2014-10-29 05:55 - 00019264 _____ (Microsoft Corporation) C:\Windows\system32\dllhost.exe
2015-05-23 17:20 - 2014-10-29 05:54 - 00685408 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-05-23 17:20 - 2014-10-29 05:52 - 00444728 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2015-05-23 17:20 - 2014-10-29 05:52 - 00020160 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll
2015-05-23 17:20 - 2014-10-29 05:51 - 01310912 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-05-23 17:20 - 2014-10-29 05:18 - 01782912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2015-05-23 17:20 - 2014-10-29 05:18 - 01103768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2015-05-23 17:20 - 2014-10-29 05:18 - 00848568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2015-05-23 17:20 - 2014-10-29 05:15 - 00340288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-05-23 17:20 - 2014-10-29 05:12 - 00616704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-05-23 17:20 - 2014-10-29 05:12 - 00403776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-05-23 17:20 - 2014-10-29 05:10 - 01564464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2015-05-23 17:20 - 2014-10-29 05:10 - 01209624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-05-23 17:20 - 2014-10-29 05:10 - 01178104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2015-05-23 17:20 - 2014-10-29 05:10 - 00569128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clbcatq.dll
2015-05-23 17:20 - 2014-10-29 05:10 - 00547992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2015-05-23 17:20 - 2014-10-29 05:10 - 00367248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2015-05-23 17:20 - 2014-10-29 05:07 - 00331048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2015-05-23 17:20 - 2014-10-29 05:06 - 00507152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-05-23 17:20 - 2014-10-29 04:50 - 01192960 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-05-23 17:20 - 2014-10-29 04:49 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2015-05-23 17:20 - 2014-10-29 04:48 - 00925696 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2015-05-23 17:20 - 2014-10-29 04:48 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2015-05-23 17:20 - 2014-10-29 04:45 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-05-23 17:20 - 2014-10-29 04:45 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2015-05-23 17:20 - 2014-10-29 04:44 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-05-23 17:20 - 2014-10-29 04:43 - 00685056 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2015-05-23 17:20 - 2014-10-29 04:42 - 01091584 _____ (Microsoft Corporation) C:\Windows\system32\opengl32.dll
         


Alt 12.06.2015, 13:50   #6
momdel
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



FRST Teil 2:
Code:
ATTFilter
2015-05-23 17:20 - 2014-10-29 04:40 - 00610816 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
2015-05-23 17:20 - 2014-10-29 04:37 - 02329088 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data0404.dll
2015-05-23 17:20 - 2014-10-29 04:36 - 00546304 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese40.dll
2015-05-23 17:20 - 2014-10-29 04:33 - 07558144 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data0011.dll
2015-05-23 17:20 - 2014-10-29 04:33 - 00799744 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2015-05-23 17:20 - 2014-10-29 04:31 - 00971264 _____ (Microsoft Corporation) C:\Windows\system32\sqlceqp40.dll
2015-05-23 17:20 - 2014-10-29 04:31 - 00590848 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2015-05-23 17:20 - 2014-10-29 04:31 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-05-23 17:20 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70804.dll
2015-05-23 17:20 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70404.dll
2015-05-23 17:20 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB7001E.dll
2015-05-23 17:20 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70011.dll
2015-05-23 17:20 - 2014-10-29 04:29 - 01246720 _____ (Microsoft Corporation) C:\Windows\system32\ogldrv.dll
2015-05-23 17:20 - 2014-10-29 04:29 - 00620544 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2015-05-23 17:20 - 2014-10-29 04:28 - 01502208 _____ (Microsoft Corporation) C:\Windows\system32\xpssvcs.dll
2015-05-23 17:20 - 2014-10-29 04:27 - 00899584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-05-23 17:20 - 2014-10-29 04:27 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-05-23 17:20 - 2014-10-29 04:26 - 00771584 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2015-05-23 17:20 - 2014-10-29 04:26 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\SmartCardSimulator.dll
2015-05-23 17:20 - 2014-10-29 04:25 - 00995328 _____ (Microsoft Corporation) C:\Windows\system32\tapi3.dll
2015-05-23 17:20 - 2014-10-29 04:25 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\sdohlp.dll
2015-05-23 17:20 - 2014-10-29 04:25 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2015-05-23 17:20 - 2014-10-29 04:24 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2015-05-23 17:20 - 2014-10-29 04:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-05-23 17:20 - 2014-10-29 04:23 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\offfilt.dll
2015-05-23 17:20 - 2014-10-29 04:22 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-05-23 17:20 - 2014-10-29 04:20 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll
2015-05-23 17:20 - 2014-10-29 04:20 - 00397312 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2015-05-23 17:20 - 2014-10-29 04:19 - 09732096 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000a.dll
2015-05-23 17:20 - 2014-10-29 04:18 - 06259712 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0009.dll
2015-05-23 17:20 - 2014-10-29 04:18 - 04616704 _____ (Microsoft Corporation) C:\Windows\system32\NlsData001d.dll
2015-05-23 17:20 - 2014-10-29 04:18 - 02403328 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000c.dll
2015-05-23 17:20 - 2014-10-29 04:18 - 02140672 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0007.dll
2015-05-23 17:20 - 2014-10-29 04:18 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2015-05-23 17:20 - 2014-10-29 04:17 - 04621312 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0414.dll
2015-05-23 17:20 - 2014-10-29 04:17 - 04620288 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0816.dll
2015-05-23 17:20 - 2014-10-29 04:17 - 02480128 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000d.dll
2015-05-23 17:20 - 2014-10-29 04:17 - 02003456 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2015-05-23 17:20 - 2014-10-29 04:16 - 04621312 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0010.dll
2015-05-23 17:20 - 2014-10-29 04:16 - 04616704 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0416.dll
2015-05-23 17:20 - 2014-10-29 04:16 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2015-05-23 17:20 - 2014-10-29 04:11 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2015-05-23 17:20 - 2014-10-29 04:11 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2015-05-23 17:20 - 2014-10-29 04:09 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-05-23 17:20 - 2014-10-29 04:08 - 01540096 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2015-05-23 17:20 - 2014-10-29 04:08 - 00920064 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2015-05-23 17:20 - 2014-10-29 04:08 - 00858624 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2015-05-23 17:20 - 2014-10-29 04:08 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-05-23 17:20 - 2014-10-29 04:08 - 00390656 _____ (Microsoft Corporation) C:\Windows\system32\difxapi.dll
2015-05-23 17:20 - 2014-10-29 04:07 - 06692352 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2015-05-23 17:20 - 2014-10-29 04:07 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-05-23 17:20 - 2014-10-29 04:06 - 02902016 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2015-05-23 17:20 - 2014-10-29 04:06 - 01313792 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2015-05-23 17:20 - 2014-10-29 04:06 - 00980480 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2015-05-23 17:20 - 2014-10-29 04:05 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2015-05-23 17:20 - 2014-10-29 04:04 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll
2015-05-23 17:20 - 2014-10-29 04:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2015-05-23 17:20 - 2014-10-29 04:03 - 02334720 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2015-05-23 17:20 - 2014-10-29 04:03 - 00832000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2015-05-23 17:20 - 2014-10-29 04:01 - 00687616 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2015-05-23 17:20 - 2014-10-29 04:00 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2015-05-23 17:20 - 2014-10-29 04:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2015-05-23 17:20 - 2014-10-29 03:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2015-05-23 17:20 - 2014-10-29 03:59 - 00670720 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2015-05-23 17:20 - 2014-10-29 03:59 - 00564224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched20.dll
2015-05-23 17:20 - 2014-10-29 03:59 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\SyncInfrastructure.dll
2015-05-23 17:20 - 2014-10-29 03:58 - 01040384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-05-23 17:20 - 2014-10-29 03:57 - 02592256 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2015-05-23 17:20 - 2014-10-29 03:57 - 01479168 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2015-05-23 17:20 - 2014-10-29 03:57 - 01038336 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2015-05-23 17:20 - 2014-10-29 03:57 - 00777728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\opengl32.dll
2015-05-23 17:20 - 2014-10-29 03:56 - 01526784 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2015-05-23 17:20 - 2014-10-29 03:56 - 00589312 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2015-05-23 17:20 - 2014-10-29 03:56 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxs.dll
2015-05-23 17:20 - 2014-10-29 03:55 - 01697280 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-05-23 17:20 - 2014-10-29 03:54 - 00833536 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-05-23 17:20 - 2014-10-29 03:53 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-05-23 17:20 - 2014-10-29 03:53 - 01065984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8.dll
2015-05-23 17:20 - 2014-10-29 03:53 - 00881152 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2015-05-23 17:20 - 2014-10-29 03:53 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-05-23 17:20 - 2014-10-29 03:53 - 00433152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlcese40.dll
2015-05-23 17:20 - 2014-10-29 03:52 - 02829312 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2015-05-23 17:20 - 2014-10-29 03:52 - 00809984 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2015-05-23 17:20 - 2014-10-29 03:52 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-05-23 17:20 - 2014-10-29 03:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2015-05-23 17:20 - 2014-10-29 03:52 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\rdvvmtransport.dll
2015-05-23 17:20 - 2014-10-29 03:51 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-05-23 17:20 - 2014-10-29 03:50 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlsrv32.dll
2015-05-23 17:20 - 2014-10-29 03:50 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2015-05-23 17:20 - 2014-10-29 03:49 - 02236416 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2015-05-23 17:20 - 2014-10-29 03:49 - 01358336 _____ (Microsoft Corporation) C:\Windows\system32\srmclient.dll
2015-05-23 17:20 - 2014-10-29 03:49 - 00742400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlceqp40.dll
2015-05-23 17:20 - 2014-10-29 03:49 - 00479744 _____ (Microsoft Corporation) C:\Windows\system32\StikyNot.exe
2015-05-23 17:20 - 2014-10-29 03:48 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-05-23 17:20 - 2014-10-29 03:48 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2015-05-23 17:20 - 2014-10-29 03:48 - 00557056 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2015-05-23 17:20 - 2014-10-29 03:48 - 00524800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB70804.dll
2015-05-23 17:20 - 2014-10-29 03:48 - 00524800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB70404.dll
2015-05-23 17:20 - 2014-10-29 03:48 - 00524800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB7001E.dll
2015-05-23 17:20 - 2014-10-29 03:48 - 00524800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB70011.dll
2015-05-23 17:20 - 2014-10-29 03:47 - 02072064 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2015-05-23 17:20 - 2014-10-29 03:47 - 01096192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ogldrv.dll
2015-05-23 17:20 - 2014-10-29 03:47 - 00982016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpssvcs.dll
2015-05-23 17:20 - 2014-10-29 03:47 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2015-05-23 17:20 - 2014-10-29 03:47 - 00517120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsound.dll
2015-05-23 17:20 - 2014-10-29 03:46 - 01497600 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2015-05-23 17:20 - 2014-10-29 03:46 - 01001472 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2015-05-23 17:20 - 2014-10-29 03:46 - 00148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2015-05-23 17:20 - 2014-10-29 03:45 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2015-05-23 17:20 - 2014-10-29 03:45 - 00672768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2015-05-23 17:20 - 2014-10-29 03:45 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-05-23 17:20 - 2014-10-29 03:44 - 00872960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi3.dll
2015-05-23 17:20 - 2014-10-29 03:43 - 01092608 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-05-23 17:20 - 2014-10-29 03:43 - 00960000 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-05-23 17:20 - 2014-10-29 03:43 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2015-05-23 17:20 - 2014-10-29 03:43 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-05-23 17:20 - 2014-10-29 03:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-05-23 17:20 - 2014-10-29 03:42 - 03724800 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2015-05-23 17:20 - 2014-10-29 03:42 - 00852480 _____ (Microsoft Corporation) C:\Windows\system32\PurchaseWindowsLicense.dll
2015-05-23 17:20 - 2014-10-29 03:42 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll
2015-05-23 17:20 - 2014-10-29 03:42 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-05-23 17:20 - 2014-10-29 03:41 - 00459264 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2015-05-23 17:20 - 2014-10-29 03:41 - 00327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnp.dll
2015-05-23 17:20 - 2014-10-29 03:39 - 01571328 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2015-05-23 17:20 - 2014-10-29 03:39 - 00898048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-05-23 17:20 - 2014-10-29 03:37 - 01563136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2015-05-23 17:20 - 2014-10-29 03:37 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2015-05-23 17:20 - 2014-10-29 03:36 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-05-23 17:20 - 2014-10-29 03:36 - 01252864 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2015-05-23 17:20 - 2014-10-29 03:36 - 00943616 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe
2015-05-23 17:20 - 2014-10-29 03:36 - 00787456 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2015-05-23 17:20 - 2014-10-29 03:36 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2015-05-23 17:20 - 2014-10-29 03:35 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-05-23 17:20 - 2014-10-29 03:34 - 01114624 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-05-23 17:20 - 2014-10-29 03:34 - 01037824 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-05-23 17:20 - 2014-10-29 03:34 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2015-05-23 17:20 - 2014-10-29 03:33 - 01291776 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-05-23 17:20 - 2014-10-29 03:32 - 00654848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comuid.dll
2015-05-23 17:20 - 2014-10-29 03:32 - 00512512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2015-05-23 17:20 - 2014-10-29 03:31 - 01278464 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-05-23 17:20 - 2014-10-29 03:31 - 00761344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll
2015-05-23 17:20 - 2014-10-29 03:31 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-05-23 17:20 - 2014-10-29 03:31 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-05-23 17:20 - 2014-10-29 03:30 - 06465536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2015-05-23 17:20 - 2014-10-29 03:30 - 01171456 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-05-23 17:20 - 2014-10-29 03:30 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-05-23 17:20 - 2014-10-29 03:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2015-05-23 17:20 - 2014-10-29 03:30 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2015-05-23 17:20 - 2014-10-29 03:30 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2015-05-23 17:20 - 2014-10-29 03:29 - 02848768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2015-05-23 17:20 - 2014-10-29 03:29 - 00833536 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2015-05-23 17:20 - 2014-10-29 03:29 - 00365056 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2015-05-23 17:20 - 2014-10-29 03:29 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-05-23 17:20 - 2014-10-29 03:28 - 02213888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncCenter.dll
2015-05-23 17:20 - 2014-10-29 03:27 - 01200128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2015-05-23 17:20 - 2014-10-29 03:27 - 00557568 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-05-23 17:20 - 2014-10-29 03:27 - 00397312 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2015-05-23 17:20 - 2014-10-29 03:26 - 00838656 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2015-05-23 17:20 - 2014-10-29 03:26 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2015-05-23 17:20 - 2014-10-29 03:26 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-05-23 17:20 - 2014-10-29 03:26 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2015-05-23 17:20 - 2014-10-29 03:25 - 01534464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2015-05-23 17:20 - 2014-10-29 03:25 - 01058816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2015-05-23 17:20 - 2014-10-29 03:24 - 02364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2015-05-23 17:20 - 2014-10-29 03:24 - 01335296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2015-05-23 17:20 - 2014-10-29 03:24 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-05-23 17:20 - 2014-10-29 03:24 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2015-05-23 17:20 - 2014-10-29 03:23 - 01500672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-05-23 17:20 - 2014-10-29 03:23 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\livessp.dll
2015-05-23 17:20 - 2014-10-29 03:22 - 02551808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2015-05-23 17:20 - 2014-10-29 03:22 - 02410496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2015-05-23 17:20 - 2014-10-29 03:22 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistCacheProvider.dll
2015-05-23 17:20 - 2014-10-29 03:22 - 00536576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2015-05-23 17:20 - 2014-10-29 03:22 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2015-05-23 17:20 - 2014-10-29 03:21 - 01250816 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-05-23 17:20 - 2014-10-29 03:21 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-05-23 17:20 - 2014-10-29 03:21 - 00755712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-05-23 17:20 - 2014-10-29 03:21 - 00482304 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2015-05-23 17:20 - 2014-10-29 03:21 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-05-23 17:20 - 2014-10-29 03:20 - 00524800 _____ (Microsoft Corporation) C:\Windows\system32\AppxApplicabilityEngine.dll
2015-05-23 17:20 - 2014-10-29 03:20 - 00517120 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2015-05-23 17:20 - 2014-10-29 03:20 - 00510464 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-05-23 17:20 - 2014-10-29 03:20 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-05-23 17:20 - 2014-10-29 03:19 - 02714624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2015-05-23 17:20 - 2014-10-29 03:19 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2015-05-23 17:20 - 2014-10-29 03:19 - 00754176 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2015-05-23 17:20 - 2014-10-29 03:19 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\WinSync.dll
2015-05-23 17:20 - 2014-10-29 03:19 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2015-05-23 17:20 - 2014-10-29 03:18 - 01984000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certmgr.dll
2015-05-23 17:20 - 2014-10-29 03:18 - 01753600 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-05-23 17:20 - 2014-10-29 03:18 - 00967680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmclient.dll
2015-05-23 17:20 - 2014-10-29 03:17 - 01402368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2015-05-23 17:20 - 2014-10-29 03:17 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2015-05-23 17:20 - 2014-10-29 03:17 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2015-05-23 17:20 - 2014-10-29 03:16 - 01242112 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-05-23 17:20 - 2014-10-29 03:16 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-05-23 17:20 - 2014-10-29 03:16 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-05-23 17:20 - 2014-10-29 03:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-05-23 17:20 - 2014-10-29 03:16 - 00348672 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2015-05-23 17:20 - 2014-10-29 03:16 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-05-23 17:20 - 2014-10-29 03:15 - 00809472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2015-05-23 17:20 - 2014-10-29 03:15 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-05-23 17:20 - 2014-10-29 03:15 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Proximity.dll
2015-05-23 17:20 - 2014-10-29 03:14 - 03553280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2015-05-23 17:20 - 2014-10-29 03:14 - 00854528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2015-05-23 17:20 - 2014-10-29 03:14 - 00802816 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2015-05-23 17:20 - 2014-10-29 03:14 - 00737280 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-05-23 17:20 - 2014-10-29 03:14 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2015-05-23 17:20 - 2014-10-29 03:12 - 00702976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2015-05-23 17:20 - 2014-10-29 03:12 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\msTextPrediction.dll
2015-05-23 17:20 - 2014-10-29 03:12 - 00516608 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2015-05-23 17:20 - 2014-10-29 03:12 - 00393728 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll
2015-05-23 17:20 - 2014-10-29 03:11 - 02597376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2015-05-23 17:20 - 2014-10-29 03:11 - 01639424 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-05-23 17:20 - 2014-10-29 03:11 - 01323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2015-05-23 17:20 - 2014-10-29 03:10 - 01096704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-05-23 17:20 - 2014-10-29 03:10 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2015-05-23 17:20 - 2014-10-29 03:09 - 01335296 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2015-05-23 17:20 - 2014-10-29 03:09 - 00873984 _____ (Microsoft Corporation) C:\Windows\system32\provcore.dll
2015-05-23 17:20 - 2014-10-29 03:09 - 00809984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2015-05-23 17:20 - 2014-10-29 03:09 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-05-23 17:20 - 2014-10-29 03:09 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2015-05-23 17:20 - 2014-10-29 03:09 - 00633344 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2015-05-23 17:20 - 2014-10-29 03:09 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2015-05-23 17:20 - 2014-10-29 03:08 - 02608640 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-05-23 17:20 - 2014-10-29 03:08 - 01822720 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2015-05-23 17:20 - 2014-10-29 03:07 - 01396736 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-05-23 17:20 - 2014-10-29 03:07 - 01247232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2015-05-23 17:20 - 2014-10-29 03:07 - 01197056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2015-05-23 17:20 - 2014-10-29 03:07 - 01060352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-05-23 17:20 - 2014-10-29 03:07 - 00747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-05-23 17:20 - 2014-10-29 03:07 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-05-23 17:20 - 2014-10-29 03:07 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\ddraw.dll
2015-05-23 17:20 - 2014-10-29 03:07 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2015-05-23 17:20 - 2014-10-29 03:07 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-05-23 17:20 - 2014-10-29 03:06 - 01086976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-05-23 17:20 - 2014-10-29 03:06 - 00747520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2015-05-23 17:20 - 2014-10-29 03:06 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2015-05-23 17:20 - 2014-10-29 03:06 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-05-23 17:20 - 2014-10-29 03:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2015-05-23 17:20 - 2014-10-29 03:06 - 00286208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2015-05-23 17:20 - 2014-10-29 03:05 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2015-05-23 17:20 - 2014-10-29 03:05 - 00534016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2015-05-23 17:20 - 2014-10-29 03:04 - 01376256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-05-23 17:20 - 2014-10-29 03:04 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2015-05-23 17:20 - 2014-10-29 03:04 - 00868352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2015-05-23 17:20 - 2014-10-29 03:04 - 00640000 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2015-05-23 17:20 - 2014-10-29 03:04 - 00506880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-05-23 17:20 - 2014-10-29 03:04 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2015-05-23 17:20 - 2014-10-29 03:03 - 02635264 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2015-05-23 17:20 - 2014-10-29 03:03 - 02487296 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2015-05-23 17:20 - 2014-10-29 03:03 - 00781824 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2015-05-23 17:20 - 2014-10-29 03:03 - 00740352 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2015-05-23 17:20 - 2014-10-29 03:03 - 00474112 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-05-23 17:20 - 2014-10-29 03:03 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2015-05-23 17:20 - 2014-10-29 03:03 - 00174592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2015-05-23 17:20 - 2014-10-29 03:02 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-05-23 17:20 - 2014-10-29 03:02 - 00695296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2015-05-23 17:20 - 2014-10-29 03:01 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2015-05-23 17:20 - 2014-10-29 03:01 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-05-23 17:20 - 2014-10-29 03:01 - 00657408 _____ (Microsoft Corporation) C:\Windows\system32\srmscan.dll
2015-05-23 17:20 - 2014-10-29 03:01 - 00573952 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-05-23 17:20 - 2014-10-29 03:00 - 01705984 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-05-23 17:20 - 2014-10-29 03:00 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2015-05-23 17:20 - 2014-10-29 03:00 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2015-05-23 17:20 - 2014-10-29 03:00 - 00401408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn.dll
2015-05-23 17:20 - 2014-10-29 02:59 - 02252800 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSvc.dll
2015-05-23 17:20 - 2014-10-29 02:59 - 01636864 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2015-05-23 17:20 - 2014-10-29 02:59 - 01490944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-05-23 17:20 - 2014-10-29 02:59 - 01454080 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-05-23 17:20 - 2014-10-29 02:59 - 01021440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-05-23 17:20 - 2014-10-29 02:59 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2015-05-23 17:20 - 2014-10-29 02:59 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2015-05-23 17:20 - 2014-10-29 02:59 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-05-23 17:20 - 2014-10-29 02:59 - 00578048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSync.dll
2015-05-23 17:20 - 2014-10-29 02:59 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxApplicabilityEngine.dll
2015-05-23 17:20 - 2014-10-29 02:59 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2015-05-23 17:20 - 2014-10-29 02:58 - 00746496 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-05-23 17:20 - 2014-10-29 02:58 - 00543232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2015-05-23 17:20 - 2014-10-29 02:58 - 00306688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2015-05-23 17:20 - 2014-10-29 02:57 - 01065472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2015-05-23 17:20 - 2014-10-29 02:57 - 00562688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2015-05-23 17:20 - 2014-10-29 02:57 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2015-05-23 17:20 - 2014-10-29 02:57 - 00346624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2015-05-23 17:20 - 2014-10-29 02:57 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2015-05-23 17:20 - 2014-10-29 02:56 - 01248256 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2015-05-23 17:20 - 2014-10-29 02:56 - 01001984 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2015-05-23 17:20 - 2014-10-29 02:56 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2015-05-23 17:20 - 2014-10-29 02:56 - 00653312 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2015-05-23 17:20 - 2014-10-29 02:56 - 00631808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2015-05-23 17:20 - 2014-10-29 02:56 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2015-05-23 17:20 - 2014-10-29 02:55 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2015-05-23 17:20 - 2014-10-29 02:55 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\es.dll
2015-05-23 17:20 - 2014-10-29 02:55 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2015-05-23 17:20 - 2014-10-29 02:54 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-05-23 17:20 - 2014-10-29 02:54 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2015-05-23 17:20 - 2014-10-29 02:53 - 01063424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2015-05-23 17:20 - 2014-10-29 02:53 - 00612352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provcore.dll
2015-05-23 17:20 - 2014-10-29 02:53 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2015-05-23 17:20 - 2014-10-29 02:53 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2015-05-23 17:20 - 2014-10-29 02:53 - 00238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2015-05-23 17:20 - 2014-10-29 02:52 - 02170368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-05-23 17:20 - 2014-10-29 02:52 - 01461248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2015-05-23 17:20 - 2014-10-29 02:52 - 01265152 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-05-23 17:20 - 2014-10-29 02:52 - 01054208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2015-05-23 17:20 - 2014-10-29 02:52 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-05-23 17:20 - 2014-10-29 02:52 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2015-05-23 17:20 - 2014-10-29 02:52 - 00827392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2015-05-23 17:20 - 2014-10-29 02:52 - 00801792 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2015-05-23 17:20 - 2014-10-29 02:52 - 00555008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2015-05-23 17:20 - 2014-10-29 02:52 - 00544256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddraw.dll
2015-05-23 17:20 - 2014-10-29 02:51 - 00569856 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2015-05-23 17:20 - 2014-10-29 02:51 - 00506880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2015-05-23 17:20 - 2014-10-29 02:51 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2015-05-23 17:20 - 2014-10-29 02:51 - 00457728 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2015-05-23 17:20 - 2014-10-29 02:51 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll
2015-05-23 17:20 - 2014-10-29 02:51 - 00375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2015-05-23 17:20 - 2014-10-29 02:50 - 02317824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2015-05-23 17:20 - 2014-10-29 02:50 - 01482752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2015-05-23 17:20 - 2014-10-29 02:50 - 00624128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2015-05-23 17:20 - 2014-10-29 02:50 - 00589824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-05-23 17:20 - 2014-10-29 02:50 - 00430592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2015-05-23 17:20 - 2014-10-29 02:49 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2015-05-23 17:20 - 2014-10-29 02:48 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2015-05-23 17:20 - 2014-10-29 02:48 - 01142272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2015-05-23 17:20 - 2014-10-29 02:48 - 00949760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2015-05-23 17:20 - 2014-10-29 02:48 - 00562688 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2015-05-23 17:20 - 2014-10-29 02:48 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\hnetcfg.dll
2015-05-23 17:20 - 2014-10-29 02:48 - 00454144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2015-05-23 17:20 - 2014-10-29 02:47 - 02090496 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2015-05-23 17:20 - 2014-10-29 02:47 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2015-05-23 17:20 - 2014-10-29 02:47 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2015-05-23 17:20 - 2014-10-29 02:47 - 00527872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-05-23 17:20 - 2014-10-29 02:47 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\catsrv.dll
2015-05-23 17:20 - 2014-10-29 02:47 - 00470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2015-05-23 17:20 - 2014-10-29 02:47 - 00451584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2015-05-23 17:20 - 2014-10-29 02:46 - 01919488 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-05-23 17:20 - 2014-10-29 02:46 - 01348096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-05-23 17:20 - 2014-10-29 02:46 - 01265152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll
2015-05-23 17:20 - 2014-10-29 02:45 - 01725952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2015-05-23 17:20 - 2014-10-29 02:45 - 00918016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2015-05-23 17:20 - 2014-10-29 02:45 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2015-05-23 17:20 - 2014-10-29 02:45 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2015-05-23 17:20 - 2014-10-29 02:44 - 00677376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2015-05-23 17:20 - 2014-10-29 02:44 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-05-23 17:20 - 2014-10-29 02:43 - 00720896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcprx.dll
2015-05-23 17:20 - 2014-10-29 02:43 - 00624640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2015-05-23 17:20 - 2014-10-29 02:42 - 01207808 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2015-05-23 17:20 - 2014-10-29 02:42 - 00841728 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2015-05-23 17:20 - 2014-10-29 02:42 - 00654848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2015-05-23 17:20 - 2014-10-29 02:42 - 00608256 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2015-05-23 17:20 - 2014-10-29 02:42 - 00539648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2015-05-23 17:20 - 2014-10-29 02:42 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2015-05-23 17:20 - 2014-10-29 02:42 - 00366080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provsvc.dll
2015-05-23 17:20 - 2014-10-29 02:42 - 00331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2015-05-23 17:20 - 2014-10-29 02:41 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2015-05-23 17:20 - 2014-10-29 02:41 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-05-23 17:20 - 2014-10-29 02:40 - 02104832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2015-05-23 17:20 - 2014-10-29 02:40 - 00651264 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-05-23 17:20 - 2014-10-29 02:39 - 00565248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2015-05-23 17:20 - 2014-10-29 02:39 - 00454144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hnetcfg.dll
2015-05-23 17:20 - 2014-10-29 02:39 - 00401408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrv.dll
2015-05-23 17:20 - 2014-10-29 02:38 - 01262080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2015-05-23 17:20 - 2014-10-29 02:37 - 00724480 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2015-05-23 17:20 - 2014-10-29 02:37 - 00414208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2015-05-23 17:20 - 2014-10-29 02:36 - 00955392 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-05-23 17:20 - 2014-10-29 02:35 - 01085952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2015-05-23 17:20 - 2014-10-29 02:35 - 00772096 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2015-05-23 17:20 - 2014-10-29 02:35 - 00667648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2015-05-23 17:20 - 2014-10-29 02:35 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2015-05-23 17:20 - 2014-10-29 02:35 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-05-23 17:20 - 2014-10-29 02:34 - 01544192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2015-05-23 17:20 - 2014-10-29 02:32 - 00515584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-05-23 17:20 - 2014-10-29 02:31 - 00626176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2015-05-23 17:20 - 2014-10-29 02:30 - 00602624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2015-05-23 17:20 - 2014-10-07 08:44 - 00533824 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2015-05-23 17:20 - 2014-09-27 06:59 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-05-23 17:20 - 2014-09-10 08:25 - 00474432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-05-23 17:20 - 2014-07-24 17:28 - 00419648 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-05-23 17:20 - 2014-07-24 17:05 - 01660048 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-05-23 17:20 - 2014-07-24 17:05 - 01519560 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-05-23 17:20 - 2014-07-24 17:05 - 01488008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-05-23 17:20 - 2014-07-24 17:05 - 01356840 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-05-23 17:20 - 2014-07-24 13:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-05-23 17:20 - 2014-07-04 23:29 - 00478528 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-05-23 17:19 - 2014-10-29 06:11 - 00038792 _____ (Microsoft Corporation) C:\Windows\system32\svchost.exe
2015-05-23 17:19 - 2014-10-29 06:10 - 00177688 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2015-05-23 17:19 - 2014-10-29 06:10 - 00089344 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-05-23 17:19 - 2014-10-29 06:10 - 00084184 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2015-05-23 17:19 - 2014-10-29 06:09 - 00371304 _____ (Microsoft Corporation) C:\Windows\system32\verifier.dll
2015-05-23 17:19 - 2014-10-29 06:09 - 00315576 _____ (Microsoft Corporation) C:\Windows\system32\cfgmgr32.dll
2015-05-23 17:19 - 2014-10-29 06:09 - 00294880 _____ (Microsoft Corporation) C:\Windows\system32\bdeunlock.exe
2015-05-23 17:19 - 2014-10-29 06:09 - 00277368 _____ (Microsoft Corporation) C:\Windows\system32\powrprof.dll
2015-05-23 17:19 - 2014-10-29 06:09 - 00233448 _____ (Microsoft Corporation) C:\Windows\system32\ProximityUxHost.exe
2015-05-23 17:19 - 2014-10-29 06:09 - 00214360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2015-05-23 17:19 - 2014-10-29 06:09 - 00191032 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2015-05-23 17:19 - 2014-10-29 06:09 - 00155456 _____ (Microsoft Corporation) C:\Windows\system32\devobj.dll
2015-05-23 17:19 - 2014-10-29 06:09 - 00145144 _____ (Microsoft Corporation) C:\Windows\system32\cabinet.dll
2015-05-23 17:19 - 2014-10-29 06:09 - 00103744 _____ (Microsoft Corporation) C:\Windows\system32\embeddedapplauncher.exe
2015-05-23 17:19 - 2014-10-29 06:09 - 00092992 _____ (Microsoft Corporation) C:\Windows\system32\KeyboardFilterSvc.dll
2015-05-23 17:19 - 2014-10-29 06:09 - 00044912 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2015-05-23 17:19 - 2014-10-29 06:09 - 00041280 _____ (Microsoft Corporation) C:\Windows\system32\KeyboardFilterCore.dll
2015-05-23 17:19 - 2014-10-29 06:09 - 00040256 _____ (Microsoft Corporation) C:\Windows\system32\EmbeddedAppLauncherConfig.dll
2015-05-23 17:19 - 2014-10-29 06:09 - 00033088 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll
2015-05-23 17:19 - 2014-10-29 06:09 - 00028480 _____ (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
2015-05-23 17:19 - 2014-10-29 06:09 - 00017560 _____ (Microsoft Corporation) C:\Windows\system32\psapi.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00397192 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00224600 _____ (Microsoft Corporation) C:\Windows\system32\ntasn1.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00217912 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00197832 _____ (Microsoft Corporation) C:\Windows\system32\dssenh.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00196264 _____ (Microsoft Corporation) C:\Windows\system32\ntmarta.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00181816 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2015-05-23 17:19 - 2014-10-29 06:04 - 00153336 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00149240 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00136912 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00135304 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00131648 _____ (Microsoft Corporation) C:\Windows\system32\easinvoker.exe
2015-05-23 17:19 - 2014-10-29 06:04 - 00124992 _____ (Microsoft Corporation) C:\Windows\system32\cryptxml.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00122912 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00120384 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00105872 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00097608 _____ (Microsoft Corporation) C:\Windows\system32\cryptdll.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00093000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00086744 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00080056 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00073872 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2015-05-23 17:19 - 2014-10-29 06:04 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\wlrmdr.exe
2015-05-23 17:19 - 2014-10-29 06:04 - 00044368 _____ (Microsoft Corporation) C:\Windows\system32\netutils.dll
2015-05-23 17:19 - 2014-10-29 06:03 - 00196928 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2015-05-23 17:19 - 2014-10-29 06:03 - 00116032 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-05-23 17:19 - 2014-10-29 06:00 - 00297512 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2015-05-23 17:19 - 2014-10-29 06:00 - 00210744 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2015-05-23 17:19 - 2014-10-29 06:00 - 00142000 _____ (Microsoft Corporation) C:\Windows\system32\dxva2.dll
2015-05-23 17:19 - 2014-10-29 06:00 - 00030472 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogHost.exe
2015-05-23 17:19 - 2014-10-29 05:59 - 00520536 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2015-05-23 17:19 - 2014-10-29 05:59 - 00230816 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2015-05-23 17:19 - 2014-10-29 05:59 - 00105944 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2015-05-23 17:19 - 2014-10-29 05:59 - 00063528 _____ (Microsoft Corporation) C:\Windows\system32\wwapi.dll
2015-05-23 17:19 - 2014-10-29 05:58 - 01797944 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2015-05-23 17:19 - 2014-10-29 05:57 - 01913128 _____ (Microsoft Corporation) C:\Windows\system32\DisplaySwitch.exe
2015-05-23 17:19 - 2014-10-29 05:57 - 00767504 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2015-05-23 17:19 - 2014-10-29 05:57 - 00339312 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2015-05-23 17:19 - 2014-10-29 05:57 - 00256744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2015-05-23 17:19 - 2014-10-29 05:57 - 00216920 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2015-05-23 17:19 - 2014-10-29 05:57 - 00111024 _____ (Microsoft Corporation) C:\Windows\system32\RestoreOptIn.exe
2015-05-23 17:19 - 2014-10-29 05:57 - 00098664 _____ (Microsoft Corporation) C:\Windows\system32\OpenWith.exe
2015-05-23 17:19 - 2014-10-29 05:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2015-05-23 17:19 - 2014-10-29 05:57 - 00045464 _____ (Microsoft Corporation) C:\Windows\system32\CloudNotifications.exe
2015-05-23 17:19 - 2014-10-29 05:57 - 00038736 _____ (Microsoft Corporation) C:\Windows\system32\CredentialUIBroker.exe
2015-05-23 17:19 - 2014-10-29 05:57 - 00035664 _____ (Microsoft Corporation) C:\Windows\system32\avrt.dll
2015-05-23 17:19 - 2014-10-29 05:57 - 00034568 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountBroker.exe
2015-05-23 17:19 - 2014-10-29 05:57 - 00031968 _____ (Microsoft Corporation) C:\Windows\system32\PasswordOnWakeSettingFlyout.exe
2015-05-23 17:19 - 2014-10-29 05:57 - 00029960 _____ (Microsoft Corporation) C:\Windows\system32\version.dll
2015-05-23 17:19 - 2014-10-29 05:57 - 00029408 _____ (Microsoft Corporation) C:\Windows\system32\PickerHost.exe
2015-05-23 17:19 - 2014-10-29 05:57 - 00027872 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll
2015-05-23 17:19 - 2014-10-29 05:57 - 00022208 _____ (Microsoft Corporation) C:\Windows\system32\PurchaseWindowsLicense.exe
2015-05-23 17:19 - 2014-10-29 05:57 - 00018584 _____ (Microsoft Corporation) C:\Windows\system32\SlideToShutDown.exe
2015-05-23 17:19 - 2014-10-29 05:56 - 00097048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2015-05-23 17:19 - 2014-10-29 05:56 - 00089368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmcl.sys
2015-05-23 17:19 - 2014-10-29 05:56 - 00061208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys
2015-05-23 17:19 - 2014-10-29 05:56 - 00049944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmstorfl.sys
2015-05-23 17:19 - 2014-10-29 05:55 - 00359496 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-05-23 17:19 - 2014-10-29 05:55 - 00305192 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2015-05-23 17:19 - 2014-10-29 05:55 - 00278392 _____ (Microsoft Corporation) C:\Windows\system32\wkspbroker.exe
2015-05-23 17:19 - 2014-10-29 05:55 - 00076432 _____ (Microsoft Corporation) C:\Windows\system32\sessionmsg.exe
2015-05-23 17:19 - 2014-10-29 05:55 - 00067656 _____ (Microsoft Corporation) C:\Windows\system32\RpcRtRemote.dll
2015-05-23 17:19 - 2014-10-29 05:55 - 00064040 _____ (Microsoft Corporation) C:\Windows\system32\wtsapi32.dll
2015-05-23 17:19 - 2014-10-29 05:55 - 00043888 _____ (Microsoft Corporation) C:\Windows\system32\utildll.dll
2015-05-23 17:19 - 2014-10-29 05:55 - 00033576 _____ (Microsoft Corporation) C:\Windows\system32\RuntimeBroker.exe
2015-05-23 17:19 - 2014-10-29 05:53 - 00687496 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-05-23 17:19 - 2014-10-29 05:53 - 00095048 _____ (Microsoft Corporation) C:\Windows\system32\bcd.dll
2015-05-23 17:19 - 2014-10-29 05:53 - 00080528 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-05-23 17:19 - 2014-10-29 05:52 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-05-23 17:19 - 2014-10-29 05:52 - 00161120 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2015-05-23 17:19 - 2014-10-29 05:52 - 00132232 _____ (Microsoft Corporation) C:\Windows\system32\RTWorkQ.dll
2015-05-23 17:19 - 2014-10-29 05:52 - 00126056 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2015-05-23 17:19 - 2014-10-29 05:52 - 00106384 _____ (Microsoft Corporation) C:\Windows\system32\msacm32.dll
2015-05-23 17:19 - 2014-10-29 05:52 - 00100672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-05-23 17:19 - 2014-10-29 05:52 - 00090880 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2015-05-23 17:19 - 2014-10-29 05:52 - 00041880 _____ (Microsoft Corporation) C:\Windows\system32\msgsm32.acm
2015-05-23 17:19 - 2014-10-29 05:52 - 00035664 _____ (Microsoft Corporation) C:\Windows\system32\imaadp32.acm
2015-05-23 17:19 - 2014-10-29 05:52 - 00022208 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2015-05-23 17:19 - 2014-10-29 05:51 - 00363080 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2015-05-23 17:19 - 2014-10-29 05:51 - 00179736 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-05-23 17:19 - 2014-10-29 05:51 - 00159112 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2015-05-23 17:19 - 2014-10-29 05:51 - 00070288 _____ (Microsoft Corporation) C:\Windows\system32\profapi.dll
2015-05-23 17:19 - 2014-10-29 05:51 - 00047024 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-05-23 17:19 - 2014-10-29 05:51 - 00033032 _____ (Microsoft Corporation) C:\Windows\system32\winnsi.dll
2015-05-23 17:19 - 2014-10-29 05:51 - 00031528 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-05-23 17:19 - 2014-10-29 05:18 - 00348048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\verifier.dll
2015-05-23 17:19 - 2014-10-29 05:18 - 00320736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtapi.dll
2015-05-23 17:19 - 2014-10-29 05:18 - 00255136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powrprof.dll
2015-05-23 17:19 - 2014-10-29 05:18 - 00241168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2015-05-23 17:19 - 2014-10-29 05:18 - 00164264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2015-05-23 17:19 - 2014-10-29 05:18 - 00148728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2015-05-23 17:19 - 2014-10-29 05:18 - 00127552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2015-05-23 17:19 - 2014-10-29 05:18 - 00120352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabinet.dll
2015-05-23 17:19 - 2014-10-29 05:18 - 00034112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KeyboardFilterCore.dll
2015-05-23 17:19 - 2014-10-29 05:17 - 00033088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
2015-05-23 17:19 - 2014-10-29 05:15 - 00340848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00245296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00192096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00168256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00165728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntasn1.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00156992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dssenh.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00154392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntmarta.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00119800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00115672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00110512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srvcli.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00099104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptxml.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00098152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00096032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00089856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00074352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdll.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00073840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00068168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00064552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkscli.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00051608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msasn1.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00035592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netutils.dll
2015-05-23 17:19 - 2014-10-29 05:15 - 00021696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsrole.dll
2015-05-23 17:19 - 2014-10-29 05:13 - 00185880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2015-05-23 17:19 - 2014-10-29 05:12 - 00416760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2015-05-23 17:19 - 2014-10-29 05:12 - 00241680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqmapi.dll
2015-05-23 17:19 - 2014-10-29 05:12 - 00116696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxva2.dll
2015-05-23 17:19 - 2014-10-29 05:12 - 00087224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpr.dll
2015-05-23 17:19 - 2014-10-29 05:12 - 00051096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wwapi.dll
2015-05-23 17:19 - 2014-10-29 05:11 - 00191104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2015-05-23 17:19 - 2014-10-29 05:11 - 00190048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVol.exe
2015-05-23 17:19 - 2014-10-29 05:11 - 00031496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avrt.dll
2015-05-23 17:19 - 2014-10-29 05:10 - 01906872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplaySwitch.exe
2015-05-23 17:19 - 2014-10-29 05:10 - 00278352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shlwapi.dll
2015-05-23 17:19 - 2014-10-29 05:10 - 00276816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2015-05-23 17:19 - 2014-10-29 05:10 - 00272648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp.dll
2015-05-23 17:19 - 2014-10-29 05:10 - 00094464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RestoreOptIn.exe
2015-05-23 17:19 - 2014-10-29 05:10 - 00091936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpenWith.exe
2015-05-23 17:19 - 2014-10-29 05:10 - 00052664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wtsapi32.dll
2015-05-23 17:19 - 2014-10-29 05:10 - 00052664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcRtRemote.dll
2015-05-23 17:19 - 2014-10-29 05:10 - 00040816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudNotifications.exe
2015-05-23 17:19 - 2014-10-29 05:10 - 00038184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\utildll.dll
2015-05-23 17:19 - 2014-10-29 05:10 - 00034016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialUIBroker.exe
2015-05-23 17:19 - 2014-10-29 05:10 - 00030944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountBroker.exe
2015-05-23 17:19 - 2014-10-29 05:10 - 00029888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PasswordOnWakeSettingFlyout.exe
2015-05-23 17:19 - 2014-10-29 05:10 - 00026304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\version.dll
2015-05-23 17:19 - 2014-10-29 05:10 - 00026304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PickerHost.exe
2015-05-23 17:19 - 2014-10-29 05:09 - 00017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
2015-05-23 17:19 - 2014-10-29 05:07 - 00136840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2015-05-23 17:19 - 2014-10-29 05:07 - 00134280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2015-05-23 17:19 - 2014-10-29 05:07 - 00089816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msacm32.dll
2015-05-23 17:19 - 2014-10-29 05:07 - 00081008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2015-05-23 17:19 - 2014-10-29 05:07 - 00039720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdmo.dll
2015-05-23 17:19 - 2014-10-29 05:07 - 00036136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msgsm32.acm
2015-05-23 17:19 - 2014-10-29 05:07 - 00029960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imaadp32.acm
2015-05-23 17:19 - 2014-10-29 05:07 - 00028896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msadp32.acm
2015-05-23 17:19 - 2014-10-29 05:07 - 00019096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2015-05-23 17:19 - 2014-10-29 05:07 - 00018040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CompPkgSup.dll
2015-05-23 17:19 - 2014-10-29 05:06 - 00800008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2015-05-23 17:19 - 2014-10-29 05:06 - 00111064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTWorkQ.dll
2015-05-23 17:19 - 2014-10-29 05:06 - 00080016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcd.dll
2015-05-23 17:19 - 2014-10-29 05:06 - 00074824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2015-05-23 17:19 - 2014-10-29 05:05 - 00321248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2015-05-23 17:19 - 2014-10-29 05:05 - 00120864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2015-05-23 17:19 - 2014-10-29 05:05 - 00052152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profapi.dll
2015-05-23 17:19 - 2014-10-29 05:05 - 00020120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nsi.dll
2015-05-23 17:19 - 2014-10-29 04:49 - 00604672 _____ (Microsoft Corporation) C:\Windows\system32\msvcp60.dll
2015-05-23 17:19 - 2014-10-29 04:49 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\msvcirt.dll
2015-05-23 17:19 - 2014-10-29 04:48 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\SSShim.dll
2015-05-23 17:19 - 2014-10-29 04:48 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-05-23 17:19 - 2014-10-29 04:47 - 00089088 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-05-23 17:19 - 2014-10-29 04:46 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys
2015-05-23 17:19 - 2014-10-29 04:46 - 00272384 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-05-23 17:19 - 2014-10-29 04:46 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-05-23 17:19 - 2014-10-29 04:46 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-05-23 17:19 - 2014-10-29 04:46 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2015-05-23 17:19 - 2014-10-29 04:45 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\glmf32.dll
2015-05-23 17:19 - 2014-10-29 04:45 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-05-23 17:19 - 2014-10-29 04:45 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2015-05-23 17:19 - 2014-10-29 04:45 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll
2015-05-23 17:19 - 2014-10-29 04:45 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2015-05-23 17:19 - 2014-10-29 04:45 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NdisImPlatform.sys
2015-05-23 17:19 - 2014-10-29 04:45 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-05-23 17:19 - 2014-10-29 04:45 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2015-05-23 17:19 - 2014-10-29 04:45 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2015-05-23 17:19 - 2014-10-29 04:45 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys
2015-05-23 17:19 - 2014-10-29 04:45 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-05-23 17:19 - 2014-10-29 04:45 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2015-05-23 17:19 - 2014-10-29 04:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\sfc_os.dll
2015-05-23 17:19 - 2014-10-29 04:45 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2015-05-23 17:19 - 2014-10-29 04:44 - 02022912 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2015-05-23 17:19 - 2014-10-29 04:44 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\glu32.dll
2015-05-23 17:19 - 2014-10-29 04:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\msdadiag.dll
2015-05-23 17:19 - 2014-10-29 04:44 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\spfileq.dll
2015-05-23 17:19 - 2014-10-29 04:44 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\SPInf.dll
2015-05-23 17:19 - 2014-10-29 04:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mciavi32.dll
2015-05-23 17:19 - 2014-10-29 04:44 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-05-23 17:19 - 2014-10-29 04:44 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\spoolss.dll
2015-05-23 17:19 - 2014-10-29 04:44 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\bderepair.dll
2015-05-23 17:19 - 2014-10-29 04:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\cnvfat.dll
2015-05-23 17:19 - 2014-10-29 04:43 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe
2015-05-23 17:19 - 2014-10-29 04:43 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\radardt.dll
2015-05-23 17:19 - 2014-10-29 04:43 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\fmapi.dll
2015-05-23 17:19 - 2014-10-29 04:43 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2015-05-23 17:19 - 2014-10-29 04:42 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2015-05-23 17:19 - 2014-10-29 04:42 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-05-23 17:19 - 2014-10-29 04:42 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\uudf.dll
2015-05-23 17:19 - 2014-10-29 04:42 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2015-05-23 17:19 - 2014-10-29 04:42 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2015-05-23 17:19 - 2014-10-29 04:42 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\iscsiwmiv2.dll
2015-05-23 17:19 - 2014-10-29 04:42 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\dbnetlib.dll
2015-05-23 17:19 - 2014-10-29 04:42 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\makecab.exe
2015-05-23 17:19 - 2014-10-29 04:42 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\unimdmat.dll
2015-05-23 17:19 - 2014-10-29 04:42 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\NapiNSP.dll
2015-05-23 17:19 - 2014-10-29 04:42 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\odbcbcp.dll
2015-05-23 17:19 - 2014-10-29 04:41 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\drt.dll
         

Alt 12.06.2015, 13:51   #7
momdel
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



FRST Teil 3:
Code:
ATTFilter
2015-05-23 17:19 - 2014-10-29 04:41 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2015-05-23 17:19 - 2014-10-29 04:41 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\adsldpc.dll
2015-05-23 17:19 - 2014-10-29 04:41 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2015-05-23 17:19 - 2014-10-29 04:41 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2015-05-23 17:19 - 2014-10-29 04:41 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2015-05-23 17:19 - 2014-10-29 04:41 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\dispdiag.exe
2015-05-23 17:19 - 2014-10-29 04:41 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll
2015-05-23 17:19 - 2014-10-29 04:40 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\dinput8.dll
2015-05-23 17:19 - 2014-10-29 04:40 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2015-05-23 17:19 - 2014-10-29 04:39 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2015-05-23 17:19 - 2014-10-29 04:39 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\wevtfwd.dll
2015-05-23 17:19 - 2014-10-29 04:39 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2015-05-23 17:19 - 2014-10-29 04:37 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2015-05-23 17:19 - 2014-10-29 04:37 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\dinput.dll
2015-05-23 17:19 - 2014-10-29 04:37 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\msctfui.dll
2015-05-23 17:19 - 2014-10-29 04:37 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\avicap32.dll
2015-05-23 17:19 - 2014-10-29 04:37 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2015-05-23 17:19 - 2014-10-29 04:36 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2015-05-23 17:19 - 2014-10-29 04:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\msctfp.dll
2015-05-23 17:19 - 2014-10-29 04:36 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\cic.dll
2015-05-23 17:19 - 2014-10-29 04:36 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\prncache.dll
2015-05-23 17:19 - 2014-10-29 04:36 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\chartv.dll
2015-05-23 17:19 - 2014-10-29 04:36 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\mmcshext.dll
2015-05-23 17:19 - 2014-10-29 04:36 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2015-05-23 17:19 - 2014-10-29 04:36 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2015-05-23 17:19 - 2014-10-29 04:36 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\PlaySndSrv.dll
2015-05-23 17:19 - 2014-10-29 04:36 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\AzSqlExt.dll
2015-05-23 17:19 - 2014-10-29 04:35 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\adsldp.dll
2015-05-23 17:19 - 2014-10-29 04:35 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\MSWB7.dll
2015-05-23 17:19 - 2014-10-29 04:35 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
2015-05-23 17:19 - 2014-10-29 04:35 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\CertPolEng.dll
2015-05-23 17:19 - 2014-10-29 04:35 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-05-23 17:19 - 2014-10-29 04:35 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\dot3dlg.dll
2015-05-23 17:19 - 2014-10-29 04:35 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\PlayToStatusProvider.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 03438592 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data0804.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\vdsdyn.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\rgb9rast.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\fms.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\rasauto.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\iasdatastore.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\netprovisionsp.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\bitsigd.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\dmloader.dll
2015-05-23 17:19 - 2014-10-29 04:34 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistAD.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00860672 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data001E.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\dsdmo.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\usbceip.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\msvfw32.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\oledlg.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\dmsynth.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\atl.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\KMSVC.DLL
2015-05-23 17:19 - 2014-10-29 04:33 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\fhevents.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\cttunesvr.exe
2015-05-23 17:19 - 2014-10-29 04:33 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\sxsstore.dll
2015-05-23 17:19 - 2014-10-29 04:33 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\dswave.dll
2015-05-23 17:19 - 2014-10-29 04:32 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\migflt.dll
2015-05-23 17:19 - 2014-10-29 04:32 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\sqlceoledb40.dll
2015-05-23 17:19 - 2014-10-29 04:32 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\SCardSvr.dll
2015-05-23 17:19 - 2014-10-29 04:32 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\sqlcecompact40.dll
2015-05-23 17:19 - 2014-10-29 04:32 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
2015-05-23 17:19 - 2014-10-29 04:32 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\amstream.dll
2015-05-23 17:19 - 2014-10-29 04:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax
2015-05-23 17:19 - 2014-10-29 04:32 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\sdiagschd.dll
2015-05-23 17:19 - 2014-10-29 04:32 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDisplayStatusManager.dll
2015-05-23 17:19 - 2014-10-29 04:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\WinSyncMetastore.dll
2015-05-23 17:19 - 2014-10-29 04:31 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2015-05-23 17:19 - 2014-10-29 04:31 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\fveprompt.exe
2015-05-23 17:19 - 2014-10-29 04:31 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\dmview.ocx
2015-05-23 17:19 - 2014-10-29 04:31 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WSTPager.ax
2015-05-23 17:19 - 2014-10-29 04:31 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\cca.dll
2015-05-23 17:19 - 2014-10-29 04:31 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchph.dll
2015-05-23 17:19 - 2014-10-29 04:31 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\gacinstall.dll
2015-05-23 17:19 - 2014-10-29 04:31 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\fhcleanup.dll
2015-05-23 17:19 - 2014-10-29 04:31 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\MsCtfMonitor.dll
2015-05-23 17:19 - 2014-10-29 04:30 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\appmgmts.dll
2015-05-23 17:19 - 2014-10-29 04:30 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msaatext.dll
2015-05-23 17:19 - 2014-10-29 04:30 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SensorsClassExtension.dll
2015-05-23 17:19 - 2014-10-29 04:30 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Syncreg.dll
2015-05-23 17:19 - 2014-10-29 04:30 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\AuditPolicyGPInterop.dll
2015-05-23 17:19 - 2014-10-29 04:30 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\WwanRadioManager.dll
2015-05-23 17:19 - 2014-10-29 04:30 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\mciqtz32.dll
2015-05-23 17:19 - 2014-10-29 04:29 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\mmcbase.dll
2015-05-23 17:19 - 2014-10-29 04:29 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2015-05-23 17:19 - 2014-10-29 04:29 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\verifier.exe
2015-05-23 17:19 - 2014-10-29 04:29 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2015-05-23 17:19 - 2014-10-29 04:29 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\iassvcs.dll
2015-05-23 17:19 - 2014-10-29 04:29 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\dmusic.dll
2015-05-23 17:19 - 2014-10-29 04:29 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\fhsvc.dll
2015-05-23 17:19 - 2014-10-29 04:29 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchapi.dll
2015-05-23 17:19 - 2014-10-29 04:29 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\WWanHC.dll
2015-05-23 17:19 - 2014-10-29 04:29 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\sdchange.exe
2015-05-23 17:19 - 2014-10-29 04:29 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\TSTheme.exe
2015-05-23 17:19 - 2014-10-29 04:28 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\cscobj.dll
2015-05-23 17:19 - 2014-10-29 04:28 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll
2015-05-23 17:19 - 2014-10-29 04:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-05-23 17:19 - 2014-10-29 04:28 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll
2015-05-23 17:19 - 2014-10-29 04:28 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\gcdef.dll
2015-05-23 17:19 - 2014-10-29 04:28 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-05-23 17:19 - 2014-10-29 04:28 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\adsnt.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2015-05-23 17:19 - 2014-10-29 04:27 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\NAPSTAT.EXE
2015-05-23 17:19 - 2014-10-29 04:27 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dmdskmgr.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\mycomput.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\qdv.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\mssha.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\sdiageng.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\tpmvscmgr.exe
2015-05-23 17:19 - 2014-10-29 04:27 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2015-05-23 17:19 - 2014-10-29 04:27 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe
2015-05-23 17:19 - 2014-10-29 04:27 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\loghours.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TabbtnEx.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\SCardDlg.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\vdsvd.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\dssec.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\dtsh.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Dot3Conn.dll
2015-05-23 17:19 - 2014-10-29 04:27 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Workplace.WorkplaceSettings.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00431104 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\gpresult.exe
2015-05-23 17:19 - 2014-10-29 04:26 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\NdisImPlatform.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2015-05-23 17:19 - 2014-10-29 04:26 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\QUTIL.DLL
2015-05-23 17:19 - 2014-10-29 04:26 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\nlahc.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\usbui.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2015-05-23 17:19 - 2014-10-29 04:26 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\ksxbar.ax
2015-05-23 17:19 - 2014-10-29 04:26 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2015-05-23 17:19 - 2014-10-29 04:26 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax
2015-05-23 17:19 - 2014-10-29 04:26 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\netcfg.exe
2015-05-23 17:19 - 2014-10-29 04:25 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\rasplap.dll
2015-05-23 17:19 - 2014-10-29 04:25 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2015-05-23 17:19 - 2014-10-29 04:25 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\fvenotify.exe
2015-05-23 17:19 - 2014-10-29 04:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2015-05-23 17:19 - 2014-10-29 04:25 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr
2015-05-23 17:19 - 2014-10-29 04:25 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2015-05-23 17:19 - 2014-10-29 04:25 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\iashlpr.dll
2015-05-23 17:19 - 2014-10-29 04:25 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\QCLIPROV.DLL
2015-05-23 17:19 - 2014-10-29 04:25 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2015-05-23 17:19 - 2014-10-29 04:25 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2015-05-23 17:19 - 2014-10-29 04:25 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\bidispl.dll
2015-05-23 17:19 - 2014-10-29 04:24 - 00788480 _____ (Microsoft Corporation) C:\Windows\system32\Bubbles.scr
2015-05-23 17:19 - 2014-10-29 04:24 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr
2015-05-23 17:19 - 2014-10-29 04:24 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll
2015-05-23 17:19 - 2014-10-29 04:24 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2015-05-23 17:19 - 2014-10-29 04:24 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\bdaplgin.ax
2015-05-23 17:19 - 2014-10-29 04:24 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-05-23 17:19 - 2014-10-29 04:24 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\pwlauncher.exe
2015-05-23 17:19 - 2014-10-29 04:23 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\dot3gpui.dll
2015-05-23 17:19 - 2014-10-29 04:23 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-05-23 17:19 - 2014-10-29 04:23 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\tapi32.dll
2015-05-23 17:19 - 2014-10-29 04:23 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\ssText3d.scr
2015-05-23 17:19 - 2014-10-29 04:23 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Tabbtn.dll
2015-05-23 17:19 - 2014-10-29 04:23 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2015-05-23 17:19 - 2014-10-29 04:23 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\scripto.dll
2015-05-23 17:19 - 2014-10-29 04:23 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\AtBroker.exe
2015-05-23 17:19 - 2014-10-29 04:22 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\recimg.exe
2015-05-23 17:19 - 2014-10-29 04:22 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2015-05-23 17:19 - 2014-10-29 04:22 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2015-05-23 17:19 - 2014-10-29 04:22 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2015-05-23 17:19 - 2014-10-29 04:22 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2015-05-23 17:19 - 2014-10-29 04:22 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2015-05-23 17:19 - 2014-10-29 04:22 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2015-05-23 17:19 - 2014-10-29 04:22 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\igdDiag.dll
2015-05-23 17:19 - 2014-10-29 04:21 - 01086464 _____ (Microsoft Corporation) C:\Windows\system32\onexui.dll
2015-05-23 17:19 - 2014-10-29 04:21 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\iassdo.dll
2015-05-23 17:19 - 2014-10-29 04:21 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\iassam.dll
2015-05-23 17:19 - 2014-10-29 04:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\kstvtune.ax
2015-05-23 17:19 - 2014-10-29 04:21 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll
2015-05-23 17:19 - 2014-10-29 04:20 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2015-05-23 17:19 - 2014-10-29 04:20 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\nshipsec.dll
2015-05-23 17:19 - 2014-10-29 04:20 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2015-05-23 17:19 - 2014-10-29 04:20 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2015-05-23 17:19 - 2014-10-29 04:20 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl
2015-05-23 17:19 - 2014-10-29 04:20 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2015-05-23 17:19 - 2014-10-29 04:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2015-05-23 17:19 - 2014-10-29 04:19 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2015-05-23 17:19 - 2014-10-29 04:19 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll
2015-05-23 17:19 - 2014-10-29 04:19 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\dskquoui.dll
2015-05-23 17:19 - 2014-10-29 04:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\auditcse.dll
2015-05-23 17:19 - 2014-10-29 04:19 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\icsigd.dll
2015-05-23 17:19 - 2014-10-29 04:19 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll
2015-05-23 17:19 - 2014-10-29 04:19 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\softkbd.dll
2015-05-23 17:19 - 2014-10-29 04:19 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll
2015-05-23 17:19 - 2014-10-29 04:19 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\joy.cpl
2015-05-23 17:19 - 2014-10-29 04:19 - 00128512 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2015-05-23 17:19 - 2014-10-29 04:19 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2015-05-23 17:19 - 2014-10-29 04:19 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\WinMsoIrmProtector.dll
2015-05-23 17:19 - 2014-10-29 04:19 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\WinOpcIrmProtector.dll
2015-05-23 17:19 - 2014-10-29 04:19 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\fhautoplay.dll
2015-05-23 17:19 - 2014-10-29 04:19 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\ustprov.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 01609216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0000.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\mscandui.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 00272896 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\unattend.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe
2015-05-23 17:19 - 2014-10-29 04:18 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\isoburn.exe
2015-05-23 17:19 - 2014-10-29 04:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\cfgbkend.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\TapiMigPlugin.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\RegCtrl.dll
2015-05-23 17:19 - 2014-10-29 04:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\SyncHost.exe
2015-05-23 17:19 - 2014-10-29 04:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\ThumbnailExtractionHost.exe
2015-05-23 17:19 - 2014-10-29 04:17 - 03231232 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004b.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 01926144 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0022.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\SNTSearch.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\nlmgp.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2015-05-23 17:19 - 2014-10-29 04:17 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\fde.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-05-23 17:19 - 2014-10-29 04:17 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-05-23 17:19 - 2014-10-29 04:17 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\imapi.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\WinSyncProviders.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\fhmanagew.exe
2015-05-23 17:19 - 2014-10-29 04:17 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\msdart.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\ndfhcdiscovery.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\XPSSHHDR.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\cmstp.exe
2015-05-23 17:19 - 2014-10-29 04:17 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\correngine.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\dot3hc.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\DfsShlEx.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\playlistfolder.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\l2nacp.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\msident.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\fhtask.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\ucmhc.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanpref.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\hcproviders.dll
2015-05-23 17:19 - 2014-10-29 04:17 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\tvratings.dll
2015-05-23 17:19 - 2014-10-29 04:16 - 03235840 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0039.dll
2015-05-23 17:19 - 2014-10-29 04:16 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004a.dll
2015-05-23 17:19 - 2014-10-29 04:16 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2015-05-23 17:19 - 2014-10-29 04:16 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\comsnap.dll
2015-05-23 17:19 - 2014-10-29 04:16 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-05-23 17:19 - 2014-10-29 04:16 - 00221184 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-05-23 17:19 - 2014-10-29 04:16 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe
2015-05-23 17:19 - 2014-10-29 04:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2015-05-23 17:19 - 2014-10-29 04:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\lltdapi.dll
2015-05-23 17:19 - 2014-10-29 04:16 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\gpprnext.dll
2015-05-23 17:19 - 2014-10-29 04:16 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\ndfetw.dll
2015-05-23 17:19 - 2014-10-29 04:16 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\pwsso.dll
2015-05-23 17:19 - 2014-10-29 04:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004e.dll
2015-05-23 17:19 - 2014-10-29 04:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0049.dll
2015-05-23 17:19 - 2014-10-29 04:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0047.dll
2015-05-23 17:19 - 2014-10-29 04:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0046.dll
2015-05-23 17:19 - 2014-10-29 04:15 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0020.dll
2015-05-23 17:19 - 2014-10-29 04:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0026.dll
2015-05-23 17:19 - 2014-10-29 04:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0024.dll
2015-05-23 17:19 - 2014-10-29 04:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData001b.dll
2015-05-23 17:19 - 2014-10-29 04:15 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0002.dll
2015-05-23 17:19 - 2014-10-29 04:15 - 01904640 _____ (Microsoft Corporation) C:\Windows\system32\NlsData002a.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData004c.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0045.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 02075136 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0027.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0c1a.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData081a.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData001a.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0018.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData000f.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 02073600 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0003.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 01904640 _____ (Microsoft Corporation) C:\Windows\system32\NlsData003e.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 01904640 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0021.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 00378880 ____C (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2015-05-23 17:19 - 2014-10-29 04:14 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\PresentationSettings.exe
2015-05-23 17:19 - 2014-10-29 04:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\prnfldr.dll
2015-05-23 17:19 - 2014-10-29 04:13 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\SrpUxNativeSnapIn.dll
2015-05-23 17:19 - 2014-10-29 04:13 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2015-05-23 17:19 - 2014-10-29 04:13 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll
2015-05-23 17:19 - 2014-10-29 04:13 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll
2015-05-23 17:19 - 2014-10-29 04:13 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\PNPXAssoc.dll
2015-05-23 17:19 - 2014-10-29 04:13 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2015-05-23 17:19 - 2014-10-29 04:13 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\BdeUISrv.exe
2015-05-23 17:19 - 2014-10-29 04:13 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\ConnectedAccountState.dll
2015-05-23 17:19 - 2014-10-29 04:13 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\SetNetworkLocation.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00660480 _____ (Microsoft Corporation) C:\Windows\system32\dccw.exe
2015-05-23 17:19 - 2014-10-29 04:12 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\shrpubw.exe
2015-05-23 17:19 - 2014-10-29 04:12 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\fhcat.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ddpchunk.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00154624 _____ (Microsoft Corporation) C:\Windows\regedit.exe
2015-05-23 17:19 - 2014-10-29 04:12 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\fhshl.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\ddptrace.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\xwreg.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00096256 _____ C:\Windows\system32\BthpanContextHandler.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\iscsiwmi.dll
2015-05-23 17:19 - 2014-10-29 04:12 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\WABSyncProvider.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00475648 _____ (Microsoft Corporation) C:\Windows\system32\SnippingTool.exe
2015-05-23 17:19 - 2014-10-29 04:11 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\dmdlgs.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\ddputils.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\sensrsvc.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\hgprint.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\McxDriv.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\profprov.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\btpanui.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptext.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00053248 _____ C:\Windows\system32\BWContextHandler.dll
2015-05-23 17:19 - 2014-10-29 04:11 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\FdDevQuery.dll
2015-05-23 17:19 - 2014-10-29 04:10 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\RASMM.dll
2015-05-23 17:19 - 2014-10-29 04:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\dsprop.dll
2015-05-23 17:19 - 2014-10-29 04:10 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\pnpclean.dll
2015-05-23 17:19 - 2014-10-29 04:10 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\wshext.dll
2015-05-23 17:19 - 2014-10-29 04:10 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\winsockhc.dll
2015-05-23 17:19 - 2014-10-29 04:10 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\frprov.dll
2015-05-23 17:19 - 2014-10-29 04:10 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.dll
2015-05-23 17:19 - 2014-10-29 04:10 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentHost.dll
2015-05-23 17:19 - 2014-10-29 04:09 - 00601600 _____ (Microsoft Corporation) C:\Windows\system32\psr.exe
2015-05-23 17:19 - 2014-10-29 04:09 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2015-05-23 17:19 - 2014-10-29 04:09 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\cttune.exe
2015-05-23 17:19 - 2014-10-29 04:09 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\AppIdPolicyEngineApi.dll
2015-05-23 17:19 - 2014-10-29 04:09 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\lltdsvc.dll
2015-05-23 17:19 - 2014-10-29 04:09 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2015-05-23 17:19 - 2014-10-29 04:09 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll
2015-05-23 17:19 - 2014-10-29 04:09 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\RstrtMgr.dll
2015-05-23 17:19 - 2014-10-29 04:09 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceSyncProvider.dll
2015-05-23 17:19 - 2014-10-29 04:09 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\twext.dll
2015-05-23 17:19 - 2014-10-29 04:09 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\dskquota.dll
2015-05-23 17:19 - 2014-10-29 04:09 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-05-23 17:19 - 2014-10-29 04:09 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\remotesp.tsp
2015-05-23 17:19 - 2014-10-29 04:09 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\MbaeXmlParser.dll
2015-05-23 17:19 - 2014-10-29 04:09 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\RemoveDeviceContextHandler.dll
2015-05-23 17:19 - 2014-10-29 04:08 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\fdprint.dll
2015-05-23 17:19 - 2014-10-29 04:08 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2015-05-23 17:19 - 2014-10-29 04:08 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\sdiagprv.dll
2015-05-23 17:19 - 2014-10-29 04:08 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2015-05-23 17:19 - 2014-10-29 04:08 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContent.dll
2015-05-23 17:19 - 2014-10-29 04:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll
2015-05-23 17:19 - 2014-10-29 04:08 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDriverRetrievalClient.dll
2015-05-23 17:19 - 2014-10-29 04:07 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2015-05-23 17:19 - 2014-10-29 04:07 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2015-05-23 17:19 - 2014-10-29 04:07 - 00239104 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2015-05-23 17:19 - 2014-10-29 04:07 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\EhStorShell.dll
2015-05-23 17:19 - 2014-10-29 04:07 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\rshx32.dll
2015-05-23 17:19 - 2014-10-29 04:07 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\EhStorPwdMgr.dll
2015-05-23 17:19 - 2014-10-29 04:07 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\MaintenanceUI.dll
2015-05-23 17:19 - 2014-10-29 04:07 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2015-05-23 17:19 - 2014-10-29 04:06 - 02134528 _____ (Microsoft Corporation) C:\Windows\system32\SensorsCpl.dll
2015-05-23 17:19 - 2014-10-29 04:06 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\colorui.dll
2015-05-23 17:19 - 2014-10-29 04:06 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2015-05-23 17:19 - 2014-10-29 04:06 - 00517120 _____ (Microsoft Corporation) C:\Windows\system32\cmdial32.dll
2015-05-23 17:19 - 2014-10-29 04:06 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe
2015-05-23 17:19 - 2014-10-29 04:06 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2015-05-23 17:19 - 2014-10-29 04:06 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2015-05-23 17:19 - 2014-10-29 04:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\vssadmin.exe
2015-05-23 17:19 - 2014-10-29 04:06 - 00113664 _____ (Microsoft) C:\Windows\system32\SMBHelperClass.dll
2015-05-23 17:19 - 2014-10-29 04:06 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\ndishc.dll
2015-05-23 17:19 - 2014-10-29 04:06 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\fhlisten.dll
2015-05-23 17:19 - 2014-10-29 04:06 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\DAConn.dll
2015-05-23 17:19 - 2014-10-29 04:05 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2015-05-23 17:19 - 2014-10-29 04:05 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-05-23 17:19 - 2014-10-29 04:05 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\Dsui.dll
2015-05-23 17:19 - 2014-10-29 04:05 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\systeminfo.exe
2015-05-23 17:19 - 2014-10-29 04:05 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\wiascanprofiles.dll
2015-05-23 17:19 - 2014-10-29 04:05 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\getmac.exe
2015-05-23 17:19 - 2014-10-29 04:04 - 00612864 _____ (Microsoft Corporation) C:\Windows\system32\IasMigPlugin.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00587264 _____ (Microsoft Corporation) C:\Windows\system32\filemgmt.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00582656 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00546304 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\devmgr.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00471040 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00460288 _____ (Microsoft Corporation) C:\Windows\system32\wiadefui.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00445440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp60.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2015-05-23 17:19 - 2014-10-29 04:04 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingFolder.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\taskkill.exe
2015-05-23 17:19 - 2014-10-29 04:04 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\wiaacmgr.exe
2015-05-23 17:19 - 2014-10-29 04:04 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2015-05-23 17:19 - 2014-10-29 04:04 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\driverquery.exe
2015-05-23 17:19 - 2014-10-29 04:04 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\WSDScanProxy.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\SMSRouter.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcirt.dll
2015-05-23 17:19 - 2014-10-29 04:04 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2015-05-23 17:19 - 2014-10-29 04:03 - 00849408 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2015-05-23 17:19 - 2014-10-29 04:03 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\dsquery.dll
2015-05-23 17:19 - 2014-10-29 04:03 - 00263168 _____ (Microsoft Corporation) C:\Windows\system32\xwtpdui.dll
2015-05-23 17:19 - 2014-10-29 04:03 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2015-05-23 17:19 - 2014-10-29 04:03 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll
2015-05-23 17:19 - 2014-10-29 04:03 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\xwtpw32.dll
2015-05-23 17:19 - 2014-10-29 04:03 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\SoundRecorder.exe
2015-05-23 17:19 - 2014-10-29 04:03 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SSShim.dll
2015-05-23 17:19 - 2014-10-29 04:03 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\tasklist.exe
2015-05-23 17:19 - 2014-10-29 04:03 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\sendmail.dll
2015-05-23 17:19 - 2014-10-29 04:02 - 00520704 _____ (Microsoft Corporation) C:\Windows\system32\localsec.dll
2015-05-23 17:19 - 2014-10-29 04:02 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2015-05-23 17:19 - 2014-10-29 04:02 - 00476672 _____ (Microsoft Corporation) C:\Windows\system32\xwizards.dll
2015-05-23 17:19 - 2014-10-29 04:02 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2015-05-23 17:19 - 2014-10-29 04:02 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2015-05-23 17:19 - 2014-10-29 04:02 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\rasmontr.dll
2015-05-23 17:19 - 2014-10-29 04:02 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\EaseOfAccessDialog.exe
2015-05-23 17:19 - 2014-10-29 04:02 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\srmstormod.dll
2015-05-23 17:19 - 2014-10-29 04:02 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe
2015-05-23 17:19 - 2014-10-29 04:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2015-05-23 17:19 - 2014-10-29 04:02 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\signdrv.dll
2015-05-23 17:19 - 2014-10-29 04:02 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\RdpSa.exe
2015-05-23 17:19 - 2014-10-29 04:01 - 00819200 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2015-05-23 17:19 - 2014-10-29 04:01 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl
2015-05-23 17:19 - 2014-10-29 04:01 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2015-05-23 17:19 - 2014-10-29 04:01 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll
2015-05-23 17:19 - 2014-10-29 04:01 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2015-05-23 17:19 - 2014-10-29 04:01 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\p2pnetsh.dll
2015-05-23 17:19 - 2014-10-29 04:01 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\irftp.exe
2015-05-23 17:19 - 2014-10-29 04:01 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAuthn.exe
2015-05-23 17:19 - 2014-10-29 04:01 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\dnshc.dll
2015-05-23 17:19 - 2014-10-29 04:01 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOM.dll
2015-05-23 17:19 - 2014-10-29 04:01 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\HelpPaneProxy.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 03814400 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00435200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glmf32.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00371200 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2015-05-23 17:19 - 2014-10-29 04:00 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\fveui.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\nlhtml.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syncui.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\racpldlg.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spfileq.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SPInf.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SortWindows6Compat.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\uicom.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sfc_os.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SortServer2003Compat.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msisip.dll
2015-05-23 17:19 - 2014-10-29 04:00 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched32.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 02013696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\batmeter.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
2015-05-23 17:19 - 2014-10-29 03:59 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\wbadmin.exe
2015-05-23 17:19 - 2014-10-29 03:59 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\QAGENT.DLL
2015-05-23 17:19 - 2014-10-29 03:59 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdadiag.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imm32.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glu32.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2015-05-23 17:19 - 2014-10-29 03:59 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciavi32.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\networkitemfactory.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\feclient.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\htui.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cnvfat.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\rtffilt.dll
2015-05-23 17:19 - 2014-10-29 03:59 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fc.exe
2015-05-23 17:19 - 2014-10-29 03:58 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00846848 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2015-05-23 17:19 - 2014-10-29 03:58 - 00423424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
2015-05-23 17:19 - 2014-10-29 03:58 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\msrdc.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uudf.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
2015-05-23 17:19 - 2014-10-29 03:58 - 00113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbnetlib.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsiwmiv2.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\radardt.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00085504 _____ (Radius Inc.) C:\Windows\SysWOW64\iccvid.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\makecab.exe
2015-05-23 17:19 - 2014-10-29 03:58 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spbcd.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdmat.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\xmlfilter.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NapiNSP.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drttransport.dll
2015-05-23 17:19 - 2014-10-29 03:58 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmmon32.exe
2015-05-23 17:19 - 2014-10-29 03:58 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com
2015-05-23 17:19 - 2014-10-29 03:57 - 01431552 _____ (Microsoft Corporation) C:\Windows\system32\DxpTaskSync.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 01047040 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00354304 _____ (Microsoft Corporation) C:\Windows\system32\bdechangepin.exe
2015-05-23 17:19 - 2014-10-29 03:57 - 00329728 _____ (Microsoft Corporation) C:\Windows\system32\pwlauncher.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\BthHFSrv.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2015-05-23 17:19 - 2014-10-29 03:57 - 00248320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2015-05-23 17:19 - 2014-10-29 03:57 - 00228352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drt.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsldpc.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00169984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\raserver.exe
2015-05-23 17:19 - 2014-10-29 03:57 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\TpmInit.exe
2015-05-23 17:19 - 2014-10-29 03:57 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\recovery.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regapi.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cliconfg.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssdpapi.dll
2015-05-23 17:19 - 2014-10-29 03:57 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hidphone.tsp
2015-05-23 17:19 - 2014-10-29 03:56 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2015-05-23 17:19 - 2014-10-29 03:56 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\wiashext.dll
2015-05-23 17:19 - 2014-10-29 03:56 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-05-23 17:19 - 2014-10-29 03:56 - 00317440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2015-05-23 17:19 - 2014-10-29 03:56 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\wlandlg.dll
2015-05-23 17:19 - 2014-10-29 03:56 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll
2015-05-23 17:19 - 2014-10-29 03:56 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\wkspbrokerAx.dll
2015-05-23 17:19 - 2014-10-29 03:56 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2015-05-23 17:19 - 2014-10-29 03:56 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtfwd.dll
2015-05-23 17:19 - 2014-10-29 03:56 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll
2015-05-23 17:19 - 2014-10-29 03:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2015-05-23 17:19 - 2014-10-29 03:56 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2015-05-23 17:19 - 2014-10-29 03:55 - 00669184 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2015-05-23 17:19 - 2014-10-29 03:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2015-05-23 17:19 - 2014-10-29 03:55 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput8.dll
2015-05-23 17:19 - 2014-10-29 03:55 - 00142848 _____ C:\Windows\system32\OEMLicense.dll
2015-05-23 17:19 - 2014-10-29 03:55 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dinput.dll
2015-05-23 17:19 - 2014-10-29 03:55 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\pcwutl.dll
2015-05-23 17:19 - 2014-10-29 03:55 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\rekeywiz.exe
2015-05-23 17:19 - 2014-10-29 03:54 - 00408576 _____ (Microsoft Corporation) C:\Windows\system32\DfpCommon.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00401408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dim.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\WLanHC.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\FXSUTILITY.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpsapi.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\DeviceMetadataRetrievalClient.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00114688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcshext.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfui.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\PrintBrmUi.exe
2015-05-23 17:19 - 2014-10-29 03:54 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avicap32.dll
2015-05-23 17:19 - 2014-10-29 03:54 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsidsc.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 02238464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NL7Data0404.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 00924672 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2015-05-23 17:19 - 2014-10-29 03:53 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 00163328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cic.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 00134656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prncache.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 00113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2015-05-23 17:19 - 2014-10-29 03:53 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chartv.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\winethc.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlaySndSrv.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\traffic.dll
2015-05-23 17:19 - 2014-10-29 03:53 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzSqlExt.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 03355136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NL7Data0804.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00846848 _____ (Microsoft Corporation) C:\Windows\system32\ipsecsnp.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00514048 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\netdiagfx.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00289280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00224768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsldp.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\L2SecHC.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00181248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSWB7.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
2015-05-23 17:19 - 2014-10-29 03:52 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\msrahc.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fms.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\FXSROUTE.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertPolEng.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-05-23 17:19 - 2014-10-29 03:52 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3dlg.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdhui.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmutil.dll
2015-05-23 17:19 - 2014-10-29 03:52 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToStatusProvider.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 07331840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NL7Data0011.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00782848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NL7Data001E.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\IdListen.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsdmo.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rgb9rast.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvfw32.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00122368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmstyle.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usbceip.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00105984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oledlg.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmscript.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olecli32.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcompos.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3api.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasdatastore.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dxof.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprovisionsp.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\takeown.exe
2015-05-23 17:19 - 2014-10-29 03:51 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msports.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmloader.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\AuthExt.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmband.dll
2015-05-23 17:19 - 2014-10-29 03:51 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\where.exe
2015-05-23 17:19 - 2014-10-29 03:51 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olesvr32.dll
2015-05-23 17:19 - 2014-10-29 03:50 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll
2015-05-23 17:19 - 2014-10-29 03:50 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2015-05-23 17:19 - 2014-10-29 03:50 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2015-05-23 17:19 - 2014-10-29 03:50 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlceoledb40.dll
2015-05-23 17:19 - 2014-10-29 03:50 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlcecompact40.dll
2015-05-23 17:19 - 2014-10-29 03:50 - 00109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmsynth.dll
2015-05-23 17:19 - 2014-10-29 03:50 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscript.ocx
2015-05-23 17:19 - 2014-10-29 03:50 - 00096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avifil32.dll
2015-05-23 17:19 - 2014-10-29 03:50 - 00054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\g711codc.ax
2015-05-23 17:19 - 2014-10-29 03:50 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2015-05-23 17:19 - 2014-10-29 03:50 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cttunesvr.exe
2015-05-23 17:19 - 2014-10-29 03:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxsstore.dll
2015-05-23 17:19 - 2014-10-29 03:49 - 00771584 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2015-05-23 17:19 - 2014-10-29 03:49 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2015-05-23 17:19 - 2014-10-29 03:49 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
2015-05-23 17:19 - 2014-10-29 03:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-05-23 17:19 - 2014-10-29 03:49 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-05-23 17:19 - 2014-10-29 03:49 - 00233984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2015-05-23 17:19 - 2014-10-29 03:49 - 00207360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmime.dll
2015-05-23 17:19 - 2014-10-29 03:49 - 00189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSyncMetastore.dll
2015-05-23 17:19 - 2014-10-29 03:49 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\immersivetpmvscmgrsvr.exe
2015-05-23 17:19 - 2014-10-29 03:49 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\tpmvscmgrsvr.exe
2015-05-23 17:19 - 2014-10-29 03:49 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\rmttpmvscmgrsvr.exe
2015-05-23 17:19 - 2014-10-29 03:49 - 00113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmview.ocx
2015-05-23 17:19 - 2014-10-29 03:49 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSTPager.ax
2015-05-23 17:19 - 2014-10-29 03:49 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cca.dll
2015-05-23 17:19 - 2014-10-29 03:49 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\amstream.dll
2015-05-23 17:19 - 2014-10-29 03:49 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciqtz32.dll
2015-05-23 17:19 - 2014-10-29 03:49 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceDisplayStatusManager.dll
2015-05-23 17:19 - 2014-10-29 03:48 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\connect.dll
2015-05-23 17:19 - 2014-10-29 03:48 - 00466944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\main.cpl
         

Alt 12.06.2015, 13:54   #8
momdel
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



FRST Teil 4:

Code:
ATTFilter
2015-05-23 17:19 - 2014-10-29 03:48 - 00311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcbase.dll
2015-05-23 17:19 - 2014-10-29 03:48 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Dxpserver.exe
2015-05-23 17:19 - 2014-10-29 03:48 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\deviceregistration.dll
2015-05-23 17:19 - 2014-10-29 03:48 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\NcaSvc.dll
2015-05-23 17:19 - 2014-10-29 03:48 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgmts.dll
2015-05-23 17:19 - 2014-10-29 03:48 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsicli.exe
2015-05-23 17:19 - 2014-10-29 03:48 - 00144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prntvpt.dll
2015-05-23 17:19 - 2014-10-29 03:48 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\verifier.exe
2015-05-23 17:19 - 2014-10-29 03:48 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaatext.dll
2015-05-23 17:19 - 2014-10-29 03:48 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmusic.dll
2015-05-23 17:19 - 2014-10-29 03:48 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Syncreg.dll
2015-05-23 17:19 - 2014-10-29 03:48 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\whoami.exe
2015-05-23 17:19 - 2014-10-29 03:48 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuditPolicyGPInterop.dll
2015-05-23 17:19 - 2014-10-29 03:48 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmdl32.exe
2015-05-23 17:19 - 2014-10-29 03:48 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdchange.exe
2015-05-23 17:19 - 2014-10-29 03:48 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\forfiles.exe
2015-05-23 17:19 - 2014-10-29 03:48 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sfc.exe
2015-05-23 17:19 - 2014-10-29 03:48 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcreate.exe
2015-05-23 17:19 - 2014-10-29 03:47 - 01041920 _____ (Microsoft Corporation) C:\Windows\system32\msdt.exe
2015-05-23 17:19 - 2014-10-29 03:47 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wisp.dll
2015-05-23 17:19 - 2014-10-29 03:47 - 00215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscobj.dll
2015-05-23 17:19 - 2014-10-29 03:47 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2015-05-23 17:19 - 2014-10-29 03:47 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2015-05-23 17:19 - 2014-10-29 03:47 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskpart.exe
2015-05-23 17:19 - 2014-10-29 03:47 - 00135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iassvcs.dll
2015-05-23 17:19 - 2014-10-29 03:47 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gcdef.dll
2015-05-23 17:19 - 2014-10-29 03:47 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2015-05-23 17:19 - 2014-10-29 03:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bootcfg.exe
2015-05-23 17:19 - 2014-10-29 03:47 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\console.dll
2015-05-23 17:19 - 2014-10-29 03:47 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe
2015-05-23 17:19 - 2014-10-29 03:47 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSTheme.exe
2015-05-23 17:19 - 2014-10-29 03:46 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-05-23 17:19 - 2014-10-29 03:46 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdv.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00292352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsnt.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskraid.exe
2015-05-23 17:19 - 2014-10-29 03:46 - 00243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mycomput.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\msoeacct.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmdskmgr.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00203264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrad.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00188416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssha.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdiageng.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasnap.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Kswdmcap.ax
2015-05-23 17:19 - 2014-10-29 03:46 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupugc.exe
2015-05-23 17:19 - 2014-10-29 03:46 - 00088064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3msm.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasacct.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\loghours.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SCardDlg.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasads.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vfwwdm32.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dssec.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtsh.dll
2015-05-23 17:19 - 2014-10-29 03:46 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Management.Workplace.WorkplaceSettings.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 01678336 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\Vault.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\dsuiext.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe
2015-05-23 17:19 - 2014-10-29 03:45 - 00429568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdohlp.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00378880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\termmgr.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NAPSTAT.EXE
2015-05-23 17:19 - 2014-10-29 03:45 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00192512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpresult.exe
2015-05-23 17:19 - 2014-10-29 03:45 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iashlpr.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mpeg2Data.ax
2015-05-23 17:19 - 2014-10-29 03:45 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QUTIL.DLL
2015-05-23 17:19 - 2014-10-29 03:45 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usbui.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSDvbNP.ax
2015-05-23 17:19 - 2014-10-29 03:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksxbar.ax
2015-05-23 17:19 - 2014-10-29 03:45 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbisurf.ax
2015-05-23 17:19 - 2014-10-29 03:45 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bidispl.dll
2015-05-23 17:19 - 2014-10-29 03:45 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmiprop.dll
2015-05-23 17:19 - 2014-10-29 03:44 - 01152000 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2015-05-23 17:19 - 2014-10-29 03:44 - 00778752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Bubbles.scr
2015-05-23 17:19 - 2014-10-29 03:44 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll
2015-05-23 17:19 - 2014-10-29 03:44 - 00400384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasplap.dll
2015-05-23 17:19 - 2014-10-29 03:44 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2015-05-23 17:19 - 2014-10-29 03:44 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2015-05-23 17:19 - 2014-10-29 03:44 - 00121344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mystify.scr
2015-05-23 17:19 - 2014-10-29 03:44 - 00120832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Ribbons.scr
2015-05-23 17:19 - 2014-10-29 03:44 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-05-23 17:19 - 2014-10-29 03:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-05-23 17:19 - 2014-10-29 03:44 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QCLIPROV.DLL
2015-05-23 17:19 - 2014-10-29 03:44 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3cfg.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00524800 _____ (Microsoft Corporation) C:\Windows\system32\icsvc.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00242176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3gpui.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00228864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSNP.ax
2015-05-23 17:19 - 2014-10-29 03:43 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offfilt.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00196096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00191488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssText3d.scr
2015-05-23 17:19 - 2014-10-29 03:43 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\msoert2.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fphc.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bdaplgin.ax
2015-05-23 17:19 - 2014-10-29 03:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scripto.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2015-05-23 17:19 - 2014-10-29 03:43 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2015-05-23 17:19 - 2014-10-29 03:42 - 00712192 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2015-05-23 17:19 - 2014-10-29 03:42 - 00305664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2015-05-23 17:19 - 2014-10-29 03:42 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi32.dll
2015-05-23 17:19 - 2014-10-29 03:42 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrecst.dll
2015-05-23 17:19 - 2014-10-29 03:42 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2015-05-23 17:19 - 2014-10-29 03:42 - 00112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advpack.dll
2015-05-23 17:19 - 2014-10-29 03:42 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2015-05-23 17:19 - 2014-10-29 03:42 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll
2015-05-23 17:19 - 2014-10-29 03:42 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Storprop.dll
2015-05-23 17:19 - 2014-10-29 03:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2015-05-23 17:19 - 2014-10-29 03:41 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\onexui.dll
2015-05-23 17:19 - 2014-10-29 03:41 - 00381952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iassdo.dll
2015-05-23 17:19 - 2014-10-29 03:41 - 00287232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\modemui.dll
2015-05-23 17:19 - 2014-10-29 03:41 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\apds.dll
2015-05-23 17:19 - 2014-10-29 03:41 - 00222208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iassam.dll
2015-05-23 17:19 - 2014-10-29 03:41 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsicpl.dll
2015-05-23 17:19 - 2014-10-29 03:41 - 00147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2015-05-23 17:19 - 2014-10-29 03:41 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kstvtune.ax
2015-05-23 17:19 - 2014-10-29 03:40 - 02036224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0007.dll
2015-05-23 17:19 - 2014-10-29 03:40 - 00380928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshipsec.dll
2015-05-23 17:19 - 2014-10-29 03:40 - 00292352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3ui.dll
2015-05-23 17:19 - 2014-10-29 03:40 - 00288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxdiag.exe
2015-05-23 17:19 - 2014-10-29 03:40 - 00224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2015-05-23 17:19 - 2014-10-29 03:40 - 00184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dskquoui.dll
2015-05-23 17:19 - 2014-10-29 03:40 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\desk.cpl
2015-05-23 17:19 - 2014-10-29 03:40 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\softkbd.dll
2015-05-23 17:19 - 2014-10-29 03:40 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxlib.dll
2015-05-23 17:19 - 2014-10-29 03:40 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinMsoIrmProtector.dll
2015-05-23 17:19 - 2014-10-29 03:40 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2015-05-23 17:19 - 2014-10-29 03:40 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinOpcIrmProtector.dll
2015-05-23 17:19 - 2014-10-29 03:40 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olethk32.dll
2015-05-23 17:19 - 2014-10-29 03:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
2015-05-23 17:19 - 2014-10-29 03:40 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhsetup.dll
2015-05-23 17:19 - 2014-10-29 03:40 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\docprop.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 09604608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData000a.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 04531712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0416.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 04530688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData001d.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 00382976 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2015-05-23 17:19 - 2014-10-29 03:39 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscandui.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 00201728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icsigd.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsadmin.exe
2015-05-23 17:19 - 2014-10-29 03:39 - 00185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasppp.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 00147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mydocs.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\isoburn.exe
2015-05-23 17:19 - 2014-10-29 03:39 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgbkend.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 00046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TapiMigPlugin.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ustprov.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegCtrl.dll
2015-05-23 17:19 - 2014-10-29 03:39 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncHost.exe
2015-05-23 17:19 - 2014-10-29 03:39 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ThumbnailExtractionHost.exe
2015-05-23 17:19 - 2014-10-29 03:38 - 04945920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0009.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 04530688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0010.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 04530176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0414.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 04529664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0816.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 02387456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData000d.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 02307072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData000c.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 02012160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0026.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 02012160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData000f.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 01548800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0000.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00898048 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2015-05-23 17:19 - 2014-10-29 03:38 - 00430592 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMPOSE.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00404480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00363008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hdwwiz.cpl
2015-05-23 17:19 - 2014-10-29 03:38 - 00212480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cleanmgr.exe
2015-05-23 17:19 - 2014-10-29 03:38 - 00165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmgp.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00148992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2015-05-23 17:19 - 2014-10-29 03:38 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2015-05-23 17:19 - 2014-10-29 03:38 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fde.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00121344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2015-05-23 17:19 - 2014-10-29 03:38 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdart.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSyncProviders.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\efsadu.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndfhcdiscovery.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmstp.exe
2015-05-23 17:19 - 2014-10-29 03:38 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XPSSHHDR.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DfsShlEx.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2nacp.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3hc.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msident.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\playlistfolder.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucmhc.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hcproviders.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tvratings.dll
2015-05-23 17:19 - 2014-10-29 03:38 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndfetw.dll
2015-05-23 17:19 - 2014-10-29 03:37 - 03149824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0039.dll
2015-05-23 17:19 - 2014-10-29 03:37 - 01829376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData002a.dll
2015-05-23 17:19 - 2014-10-29 03:37 - 00304128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SrpUxNativeSnapIn.dll
2015-05-23 17:19 - 2014-10-29 03:37 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsnap.dll
2015-05-23 17:19 - 2014-10-29 03:37 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-05-23 17:19 - 2014-10-29 03:37 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabview.dll
2015-05-23 17:19 - 2014-10-29 03:37 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2015-05-23 17:19 - 2014-10-29 03:37 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprnext.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData004e.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData004c.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData004b.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData004a.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0049.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0047.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0046.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0045.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 03132928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0020.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01999360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0027.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0c1a.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData081a.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0024.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData001b.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData001a.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0018.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0003.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01997824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0002.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01829376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData003e.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01829376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0022.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01829376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0021.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 01008128 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll
2015-05-23 17:19 - 2014-10-29 03:36 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\sbeio.dll
2015-05-23 17:19 - 2014-10-29 03:35 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2015-05-23 17:19 - 2014-10-29 03:35 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scansetting.dll
2015-05-23 17:19 - 2014-10-29 03:35 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wavemsp.dll
2015-05-23 17:19 - 2014-10-29 03:35 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfmon.exe
2015-05-23 17:19 - 2014-10-29 03:35 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xwreg.dll
2015-05-23 17:19 - 2014-10-29 03:35 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2015-05-23 17:19 - 2014-10-29 03:35 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WABSyncProvider.dll
2015-05-23 17:19 - 2014-10-29 03:35 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConnectedAccountState.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00644608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dccw.exe
2015-05-23 17:19 - 2014-10-29 03:34 - 00473600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnfldr.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00414720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmdlgs.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shrpubw.exe
2015-05-23 17:19 - 2014-10-29 03:34 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\difxapi.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00321024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efscore.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eudcedit.exe
2015-05-23 17:19 - 2014-10-29 03:34 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00201728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdminst.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedit.exe
2015-05-23 17:19 - 2014-10-29 03:34 - 00120832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EhStorAPI.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsiwmi.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptext.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00054272 _____ (Twain Working Group) C:\Windows\twain_32.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00046080 _____ C:\Windows\SysWOW64\BWContextHandler.dll
2015-05-23 17:19 - 2014-10-29 03:34 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FdDevQuery.dll
2015-05-23 17:19 - 2014-10-29 03:33 - 00963072 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2015-05-23 17:19 - 2014-10-29 03:33 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2015-05-23 17:19 - 2014-10-29 03:33 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\WLanConn.dll
2015-05-23 17:19 - 2014-10-29 03:33 - 00165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uireng.dll
2015-05-23 17:19 - 2014-10-29 03:33 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remotesp.tsp
2015-05-23 17:19 - 2014-10-29 03:33 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshext.dll
2015-05-23 17:19 - 2014-10-29 03:33 - 00068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsockhc.dll
2015-05-23 17:19 - 2014-10-29 03:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountControlSettings.dll
2015-05-23 17:19 - 2014-10-29 03:33 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\btpanui.dll
2015-05-23 17:19 - 2014-10-29 03:33 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\frprov.dll
2015-05-23 17:19 - 2014-10-29 03:33 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2015-05-23 17:19 - 2014-10-29 03:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpmonui.dll
2015-05-23 17:19 - 2014-10-29 03:32 - 00794624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroles.dll
2015-05-23 17:19 - 2014-10-29 03:32 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psr.exe
2015-05-23 17:19 - 2014-10-29 03:32 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfrgui.exe
2015-05-23 17:19 - 2014-10-29 03:32 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cttune.exe
2015-05-23 17:19 - 2014-10-29 03:32 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppIdPolicyEngineApi.dll
2015-05-23 17:19 - 2014-10-29 03:32 - 00149504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RstrtMgr.dll
2015-05-23 17:19 - 2014-10-29 03:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsprop.dll
2015-05-23 17:19 - 2014-10-29 03:32 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceSyncProvider.dll
2015-05-23 17:19 - 2014-10-29 03:32 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twext.dll
2015-05-23 17:19 - 2014-10-29 03:32 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dskquota.dll
2015-05-23 17:19 - 2014-10-29 03:32 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2015-05-23 17:19 - 2014-10-29 03:32 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-05-23 17:19 - 2014-10-29 03:32 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\acppage.dll
2015-05-23 17:19 - 2014-10-29 03:32 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoveDeviceContextHandler.dll
2015-05-23 17:19 - 2014-10-29 03:31 - 00392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2015-05-23 17:19 - 2014-10-29 03:31 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll
2015-05-23 17:19 - 2014-10-29 03:31 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdprint.dll
2015-05-23 17:19 - 2014-10-29 03:31 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2015-05-23 17:19 - 2014-10-29 03:31 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2015-05-23 17:19 - 2014-10-29 03:31 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdiagprv.dll
2015-05-23 17:19 - 2014-10-29 03:31 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadss.dll
2015-05-23 17:19 - 2014-10-29 03:31 - 00113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rshx32.dll
2015-05-23 17:19 - 2014-10-29 03:31 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EhStorPwdMgr.dll
2015-05-23 17:19 - 2014-10-29 03:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mimefilt.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 02118144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsCpl.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 00605696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\colorui.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmdial32.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 00482304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrptadm.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 00184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoplay.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssadmin.exe
2015-05-23 17:19 - 2014-10-29 03:30 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiascanprofiles.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 00085504 _____ (Microsoft) C:\Windows\SysWOW64\SMBHelperClass.dll
2015-05-23 17:19 - 2014-10-29 03:30 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndishc.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00528896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenterCPL.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IasMigPlugin.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\filemgmt.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00465920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devmgr.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00464384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AdmTmpl.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00324608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srchadmin.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingFolder.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\keymgr.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00120832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Dsui.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaacmgr.exe
2015-05-23 17:19 - 2014-10-29 03:29 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systeminfo.exe
2015-05-23 17:19 - 2014-10-29 03:29 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Utilman.exe
2015-05-23 17:19 - 2014-10-29 03:29 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\driverquery.exe
2015-05-23 17:19 - 2014-10-29 03:29 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\getmac.exe
2015-05-23 17:19 - 2014-10-29 03:29 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2015-05-23 17:19 - 2014-10-29 03:29 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00812032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontext.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\localsec.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadefui.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00402944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsquery.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
2015-05-23 17:19 - 2014-10-29 03:28 - 00320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00258560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sethc.exe
2015-05-23 17:19 - 2014-10-29 03:28 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xwtpdui.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remotepg.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00201216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmstormod.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
2015-05-23 17:19 - 2014-10-29 03:28 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\ulib.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xwtpw32.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tasklist.exe
2015-05-23 17:19 - 2014-10-29 03:28 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\RpcEpMap.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskkill.exe
2015-05-23 17:19 - 2014-10-29 03:28 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\samcli.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sendmail.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00055808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\vidcap.ax
2015-05-23 17:19 - 2014-10-29 03:28 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\hid.dll
2015-05-23 17:19 - 2014-10-29 03:28 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSa.exe
2015-05-23 17:19 - 2014-10-29 03:27 - 00763392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2015-05-23 17:19 - 2014-10-29 03:27 - 00700928 _____ (Microsoft Corporation) C:\Windows\system32\elslad.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercpl.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00416768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\irprops.cpl
2015-05-23 17:19 - 2014-10-29 03:27 - 00397824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xwizards.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00380416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizeng.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00362496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptuiwizard.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00277504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EaseOfAccessDialog.exe
2015-05-23 17:19 - 2014-10-29 03:27 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00248320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmontr.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\regsvc.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\BrokerLib.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax
2015-05-23 17:19 - 2014-10-29 03:27 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\mi.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\CallButtons.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOM.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\devrtl.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-05-23 17:19 - 2014-10-29 03:27 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\net.exe
2015-05-23 17:19 - 2014-10-29 03:27 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2015-05-23 17:19 - 2014-10-29 03:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\xcopy.exe
2015-05-23 17:19 - 2014-10-29 03:27 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HelpPaneProxy.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\signdrv.dll
2015-05-23 17:19 - 2014-10-29 03:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\format.com
2015-05-23 17:19 - 2014-10-29 03:27 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\more.com
2015-05-23 17:19 - 2014-10-29 03:26 - 03788288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accessibilitycpl.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00330752 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\provthrd.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\esentutl.exe
2015-05-23 17:19 - 2014-10-29 03:26 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\PeerDist.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\p2pnetsh.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QAGENT.DLL
2015-05-23 17:19 - 2014-10-29 03:26 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\net1.exe
2015-05-23 17:19 - 2014-10-29 03:26 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\mimofcodec.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\ntdsapi.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\ufat.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EhStorAuthn.exe
2015-05-23 17:19 - 2014-10-29 03:26 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\racpldlg.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerDeviceEncryption.exe
2015-05-23 17:19 - 2014-10-29 03:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\uexfat.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.exe
2015-05-23 17:19 - 2014-10-29 03:26 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\wecapi.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2015-05-23 17:19 - 2014-10-29 03:26 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\fveskybackup.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.Fontgroups.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\fmifs.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSEXT32.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\MirrorDrvCompat.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uicom.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\winbrand.dll
2015-05-23 17:19 - 2014-10-29 03:26 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00336896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncInfrastructure.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe
2015-05-23 17:19 - 2014-10-29 03:25 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certreq.exe
2015-05-23 17:19 - 2014-10-29 03:25 - 00236544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrdc.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\mibincodec.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL
2015-05-23 17:19 - 2014-10-29 03:25 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe
2015-05-23 17:19 - 2014-10-29 03:25 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00136704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlhtml.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\negoexts.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\wecutil.exe
2015-05-23 17:19 - 2014-10-29 03:25 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\winbio.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\DevDispItemProvider.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL
2015-05-23 17:19 - 2014-10-29 03:25 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmlfilter.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\networkitemfactory.dll
2015-05-23 17:19 - 2014-10-29 03:25 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtffilt.dll
2015-05-23 17:19 - 2014-10-29 03:24 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DxpTaskSync.dll
2015-05-23 17:19 - 2014-10-29 03:24 - 00779776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2015-05-23 17:19 - 2014-10-29 03:24 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2015-05-23 17:19 - 2014-10-29 03:24 - 00487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll
2015-05-23 17:19 - 2014-10-29 03:24 - 00446976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiashext.dll
2015-05-23 17:19 - 2014-10-29 03:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2015-05-23 17:19 - 2014-10-29 03:24 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Geolocation.dll
2015-05-23 17:19 - 2014-10-29 03:24 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2015-05-23 17:19 - 2014-10-29 03:24 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2015-05-23 17:19 - 2014-10-29 03:24 - 00133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2015-05-23 17:19 - 2014-10-29 03:24 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\ScDeviceEnum.dll
2015-05-23 17:19 - 2014-10-29 03:24 - 00102912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raserver.exe
2015-05-23 17:19 - 2014-10-29 03:24 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguageProfileCallback.dll
2015-05-23 17:19 - 2014-10-29 03:23 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\winsku.dll
2015-05-23 17:19 - 2014-10-29 03:23 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2015-05-23 17:19 - 2014-10-29 03:23 - 00189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlandlg.dll
2015-05-23 17:19 - 2014-10-29 03:23 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2015-05-23 17:19 - 2014-10-29 03:23 - 00107008 _____ C:\Windows\SysWOW64\OEMLicense.dll
2015-05-23 17:19 - 2014-10-29 03:23 - 00097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netid.dll
2015-05-23 17:19 - 2014-10-29 03:23 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkspbrokerAx.dll
2015-05-23 17:19 - 2014-10-29 03:22 - 00839680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll
2015-05-23 17:19 - 2014-10-29 03:22 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-05-23 17:19 - 2014-10-29 03:22 - 00517120 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2015-05-23 17:19 - 2014-10-29 03:22 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\msdelta.dll
2015-05-23 17:19 - 2014-10-29 03:22 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2015-05-23 17:19 - 2014-10-29 03:22 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2015-05-23 17:19 - 2014-10-29 03:22 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-05-23 17:19 - 2014-10-29 03:22 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\sstpsvc.dll
2015-05-23 17:19 - 2014-10-29 03:22 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rekeywiz.exe
2015-05-23 17:19 - 2014-10-29 03:22 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\wlgpclnt.dll
2015-05-23 17:19 - 2014-10-29 03:22 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmInit.exe
2015-05-23 17:19 - 2014-10-29 03:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2015-05-23 17:19 - 2014-10-29 03:22 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\mmcss.dll
2015-05-23 17:19 - 2014-10-29 03:22 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\keyiso.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\Winlangdb.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00361472 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-05-23 17:19 - 2014-10-29 03:21 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-05-23 17:19 - 2014-10-29 03:21 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-05-23 17:19 - 2014-10-29 03:21 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00250368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.HostName.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\korwbrkr.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\dps.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Compression.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\trkwks.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\WinRtTracing.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\AppxSip.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\alg.exe
2015-05-23 17:19 - 2014-10-29 03:21 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\bcdprov.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\Sens.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\nduprov.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Background.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\threadpoolwinrt.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\ddrawex.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\luainstall.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Portable.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Printers.Extensions.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\mtxdm.dll
2015-05-23 17:19 - 2014-10-29 03:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\elsTrans.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00770048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ipsecsnp.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00558080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00425984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shwebsvc.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00272384 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxdiagn.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerServer.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00238592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00234496 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netdiagfx.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\wmidcom.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\ProximityCommon.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\globinputhost.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\L2SecHC.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\comrepl.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00104960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSXP32.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\srmtrace.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\prvdmofcomp.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\ELSCore.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvvmtransport.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\WlanRadioManager.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\msimtf.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\dimsjob.dll
2015-05-23 17:19 - 2014-10-29 03:20 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthExt.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2015-05-23 17:19 - 2014-10-29 03:19 - 00621568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsFilt.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00388608 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\wmitomi.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\smbwmiv2.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00181760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpipcfg.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\srumsvc.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\msched.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\msdtclog.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\txflog.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\dasHost.exe
2015-05-23 17:19 - 2014-10-29 03:19 - 00092672 _____ (Microsoft) C:\Windows\system32\VaultRoaming.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\colbact.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\stclient.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\pautoenr.dll
2015-05-23 17:19 - 2014-10-29 03:19 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\rasmbmgr.dll
2015-05-23 17:19 - 2014-10-29 03:18 - 00329216 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2015-05-23 17:19 - 2014-10-29 03:18 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-05-23 17:19 - 2014-10-29 03:18 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2015-05-23 17:19 - 2014-10-29 03:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systemcpl.dll
2015-05-23 17:19 - 2014-10-29 03:18 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2015-05-23 17:19 - 2014-10-29 03:18 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-05-23 17:19 - 2014-10-29 03:18 - 00184832 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2015-05-23 17:19 - 2014-10-29 03:18 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\fundisc.dll
2015-05-23 17:19 - 2014-10-29 03:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\IDStore.dll
2015-05-23 17:19 - 2014-10-29 03:18 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2015-05-23 17:19 - 2014-10-29 03:18 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\mbussdapi.dll
2015-05-23 17:19 - 2014-10-29 03:18 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\RoamingSecurity.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 01296896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\connect.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00981504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdt.exe
2015-05-23 17:19 - 2014-10-29 03:17 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\energy.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00439296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ipsmsnap.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\qwave.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00287232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysdm.cpl
2015-05-23 17:19 - 2014-10-29 03:17 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2015-05-23 17:19 - 2014-10-29 03:17 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
         

Alt 12.06.2015, 13:56   #9
momdel
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



FRST Teil 5:

Code:
ATTFilter
2015-05-23 17:19 - 2014-10-29 03:17 - 00114688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\EAPQEC.DLL
2015-05-23 17:19 - 2014-10-29 03:17 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\umpowmi.dll
2015-05-23 17:19 - 2014-10-29 03:17 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 01669632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\networkexplorer.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00795136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00675328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Vault.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\authfwcfg.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00238592 _____ (Microsoft Corporation) C:\Windows\system32\mlang.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00198144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msoeacct.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00173568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\mtstocom.exe
2015-05-23 17:19 - 2014-10-29 03:16 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\cmifw.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Pnrphc.dll
2015-05-23 17:19 - 2014-10-29 03:16 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\xolehlp.dll
2015-05-23 17:19 - 2014-10-29 03:15 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2015-05-23 17:19 - 2014-10-29 03:15 - 00671744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsuiext.dll
2015-05-23 17:19 - 2014-10-29 03:15 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2015-05-23 17:19 - 2014-10-29 03:15 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\SimAuth.dll
2015-05-23 17:19 - 2014-10-29 03:15 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManagerAPI.dll
2015-05-23 17:19 - 2014-10-29 03:14 - 00699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-05-23 17:19 - 2014-10-29 03:14 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-05-23 17:19 - 2014-10-29 03:14 - 00493568 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-05-23 17:19 - 2014-10-29 03:14 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-05-23 17:19 - 2014-10-29 03:14 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\certCredProvider.dll
2015-05-23 17:19 - 2014-10-29 03:14 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2015-05-23 17:19 - 2014-10-29 03:14 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2015-05-23 17:19 - 2014-10-29 03:14 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\eapsvc.dll
2015-05-23 17:19 - 2014-10-29 03:14 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msoert2.dll
2015-05-23 17:19 - 2014-10-29 03:14 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2015-05-23 17:19 - 2014-10-29 03:14 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\RDSPnf.exe
2015-05-23 17:19 - 2014-10-29 03:14 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\ProximityServicePal.dll
2015-05-23 17:19 - 2014-10-29 03:13 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2015-05-23 17:19 - 2014-10-29 03:13 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2015-05-23 17:19 - 2014-10-29 03:13 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apds.dll
2015-05-23 17:19 - 2014-10-29 03:13 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\fwcfg.dll
2015-05-23 17:19 - 2014-10-29 03:13 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll
2015-05-23 17:19 - 2014-10-29 03:13 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\fdPnp.dll
2015-05-23 17:19 - 2014-10-29 03:12 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2015-05-23 17:19 - 2014-10-29 03:12 - 00407040 _____ (Microsoft Corporation) C:\Windows\system32\das.dll
2015-05-23 17:19 - 2014-10-29 03:12 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll
2015-05-23 17:19 - 2014-10-29 03:12 - 00284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollUI.dll
2015-05-23 17:19 - 2014-10-29 03:12 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\hotspotauth.dll
2015-05-23 17:19 - 2014-10-29 03:12 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2015-05-23 17:19 - 2014-10-29 03:12 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-05-23 17:19 - 2014-10-29 03:12 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2015-05-23 17:19 - 2014-10-29 03:12 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\TtlsAuth.dll
2015-05-23 17:19 - 2014-10-29 03:12 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2015-05-23 17:19 - 2014-10-29 03:12 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2015-05-23 17:19 - 2014-10-29 03:11 - 00672768 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2015-05-23 17:19 - 2014-10-29 03:11 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2015-05-23 17:19 - 2014-10-29 03:11 - 00373248 _____ (Microsoft Corporation) C:\Windows\system32\msdtckrm.dll
2015-05-23 17:19 - 2014-10-29 03:11 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2015-05-23 17:19 - 2014-10-29 03:11 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2015-05-23 17:19 - 2014-10-29 03:11 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\DHCPQEC.DLL
2015-05-23 17:19 - 2014-10-29 03:11 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efsadu.dll
2015-05-23 17:19 - 2014-10-29 03:10 - 00516096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2015-05-23 17:19 - 2014-10-29 03:10 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2015-05-23 17:19 - 2014-10-29 03:10 - 00396288 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2015-05-23 17:19 - 2014-10-29 03:10 - 00361472 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2015-05-23 17:19 - 2014-10-29 03:10 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_8.dll
2015-05-23 17:19 - 2014-10-29 03:10 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2015-05-23 17:19 - 2014-10-29 03:10 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2015-05-23 17:19 - 2014-10-29 03:10 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2015-05-23 17:19 - 2014-10-29 03:10 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbeio.dll
2015-05-23 17:19 - 2014-10-29 03:10 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll
2015-05-23 17:19 - 2014-10-29 03:10 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2015-05-23 17:19 - 2014-10-29 03:09 - 00508416 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2015-05-23 17:19 - 2014-10-29 03:09 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2015-05-23 17:19 - 2014-10-29 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\dafupnp.dll
2015-05-23 17:19 - 2014-10-29 03:09 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2015-05-23 17:19 - 2014-10-29 03:08 - 00578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2015-05-23 17:19 - 2014-10-29 03:08 - 00412672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WLanConn.dll
2015-05-23 17:19 - 2014-10-29 03:08 - 00397312 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2015-05-23 17:19 - 2014-10-29 03:08 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\wecsvc.dll
2015-05-23 17:19 - 2014-10-29 03:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2015-05-23 17:19 - 2014-10-29 03:07 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2015-05-23 17:19 - 2014-10-29 03:07 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2015-05-23 17:19 - 2014-10-29 03:06 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2015-05-23 17:19 - 2014-10-29 03:06 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2015-05-23 17:19 - 2014-10-29 03:06 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2015-05-23 17:19 - 2014-10-29 03:06 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2015-05-23 17:19 - 2014-10-29 03:06 - 00104960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00589824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elslad.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
2015-05-23 17:19 - 2014-10-29 03:05 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\TtlsCfg.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00228864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ulib.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\winrscmd.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\loadperf.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hbaapi.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samcli.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\reg.exe
2015-05-23 17:19 - 2014-10-29 03:05 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\ndiscapCfg.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe
2015-05-23 17:19 - 2014-10-29 03:05 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mskeyprotect.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfos.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshhttp.dll
2015-05-23 17:19 - 2014-10-29 03:05 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vidcap.ax
2015-05-23 17:19 - 2014-10-29 03:04 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00364032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00279552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netjoin.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esentutl.exe
2015-05-23 17:19 - 2014-10-29 03:04 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00201216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutil.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\net1.exe
2015-05-23 17:19 - 2014-10-29 03:04 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ufat.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mi.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdsapi.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netsh.exe
2015-05-23 17:19 - 2014-10-29 03:04 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\eqossnap.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nslookup.exe
2015-05-23 17:19 - 2014-10-29 03:04 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallButtons.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uexfat.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pnrpnsp.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-05-23 17:19 - 2014-10-29 03:04 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setx.exe
2015-05-23 17:19 - 2014-10-29 03:04 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\net.exe
2015-05-23 17:19 - 2014-10-29 03:04 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xcopy.exe
2015-05-23 17:19 - 2014-10-29 03:04 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll
2015-05-23 17:19 - 2014-10-29 03:04 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\format.com
2015-05-23 17:19 - 2014-10-29 03:03 - 00968192 _____ (Microsoft Corporation) C:\Windows\system32\certca.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00608256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00263168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provthrd.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\TetheringStation.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00178688 _____ (Microsoft Corporation) C:\Windows\system32\SimCfg.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDist.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00120832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mimofcodec.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2015-05-23 17:19 - 2014-10-29 03:03 - 00108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\negoexts.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2015-05-23 17:19 - 2014-10-29 03:03 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.exe
2015-05-23 17:19 - 2014-10-29 03:03 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecapi.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fmifs.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.Fontgroups.dll
2015-05-23 17:19 - 2014-10-29 03:03 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpkinstall.exe
2015-05-23 17:19 - 2014-10-29 03:03 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winbrand.dll
2015-05-23 17:19 - 2014-10-29 03:02 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-05-23 17:19 - 2014-10-29 03:02 - 00267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2015-05-23 17:19 - 2014-10-29 03:02 - 00217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Geolocation.dll
2015-05-23 17:19 - 2014-10-29 03:02 - 00143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2015-05-23 17:19 - 2014-10-29 03:02 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mibincodec.dll
2015-05-23 17:19 - 2014-10-29 03:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2015-05-23 17:19 - 2014-10-29 03:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2015-05-23 17:19 - 2014-10-29 03:02 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecutil.exe
2015-05-23 17:19 - 2014-10-29 03:02 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanext.exe
2015-05-23 17:19 - 2014-10-29 03:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winbio.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 01241600 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSh.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 00706048 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 00397824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdelta.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 00383488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 00361472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 00278528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsku.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 00239104 _____ (Microsoft Corporation) C:\Windows\system32\windowslivelogin.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\DAFWSD.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 00096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlgpclnt.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\keyiso.dll
2015-05-23 17:19 - 2014-10-29 03:01 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguageProfileCallback.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 01207296 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-05-23 17:19 - 2014-10-29 03:00 - 00355328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Winlangdb.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00252416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdscore.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00200192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\DscCoreConfProv.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00166400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\korwbrkr.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Compression.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\globinputhost.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinRtTracing.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vaultcli.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmtrace.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ELSCore.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Background.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\threadpoolwinrt.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\luainstall.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddrawex.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfctrs.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Printers.Extensions.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Portable.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elsTrans.dll
2015-05-23 17:19 - 2014-10-29 03:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dllhst3g.exe
2015-05-23 17:19 - 2014-10-29 02:59 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00316928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00302080 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00286720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00188928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistWSDDiscoProv.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmitomi.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srumsvc.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidcom.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommon.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comrepl.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\colbact.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prvdmofcomp.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\dot3gpclnt.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pautoenr.dll
2015-05-23 17:19 - 2014-10-29 02:59 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stclient.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00246272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\srmshell.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fundisc.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IDStore.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\NetworkStatus.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\txflog.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingHost.exe
2015-05-23 17:19 - 2014-10-29 02:58 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EAPQEC.DLL
2015-05-23 17:19 - 2014-10-29 02:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbussdapi.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\PSModuleDiscoveryProvider.dll
2015-05-23 17:19 - 2014-10-29 02:58 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimtf.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00543744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2015-05-23 17:19 - 2014-10-29 02:57 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2PGraph.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00364032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authfwcfg.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Proximity.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\wlidcredprov.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\ndfapi.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qwave.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00203264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\onex.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00192512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mlang.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe
2015-05-23 17:19 - 2014-10-29 02:57 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DeviceEncryptionHandlers.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00124416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtstocom.exe
2015-05-23 17:19 - 2014-10-29 02:57 - 00120832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimAuth.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\wlidfdp.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdSSDP.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmifw.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\ConfigureExpandedStorage.dll
2015-05-23 17:19 - 2014-10-29 02:57 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2015-05-23 17:19 - 2014-10-29 02:56 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2015-05-23 17:19 - 2014-10-29 02:56 - 00483328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2015-05-23 17:19 - 2014-10-29 02:56 - 00482304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2015-05-23 17:19 - 2014-10-29 02:56 - 00337920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certCredProvider.dll
2015-05-23 17:19 - 2014-10-29 02:56 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\activeds.dll
2015-05-23 17:19 - 2014-10-29 02:56 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-05-23 17:19 - 2014-10-29 02:56 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\mstask.dll
2015-05-23 17:19 - 2014-10-29 02:56 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-05-23 17:19 - 2014-10-29 02:56 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2015-05-23 17:19 - 2014-10-29 02:56 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2015-05-23 17:19 - 2014-10-29 02:56 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwcfg.dll
2015-05-23 17:19 - 2014-10-29 02:56 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\RDSAppXHelper.dll
2015-05-23 17:19 - 2014-10-29 02:56 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\AepRoam.dll
2015-05-23 17:19 - 2014-10-29 02:56 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll
2015-05-23 17:19 - 2014-10-29 02:56 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xolehlp.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00887808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dim700.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00795648 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistCleaner.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsAuth.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\adrclient.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\profsvcext.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\ConsentUX.dll
2015-05-23 17:19 - 2014-10-29 02:55 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdPnp.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00560640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00348672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprapi.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00347648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxclu.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\BioCredProv.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\NAPMONTR.DLL
2015-05-23 17:19 - 2014-10-29 02:54 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.HardwareId.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\WfHC.dll
2015-05-23 17:19 - 2014-10-29 02:54 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DHCPQEC.DLL
2015-05-23 17:19 - 2014-10-29 02:53 - 01156608 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00550400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00425472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschap.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00347648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_8.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\msdtcuiu.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdmaud.drv
2015-05-23 17:19 - 2014-10-29 02:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\AltTab.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdBth.dll
2015-05-23 17:19 - 2014-10-29 02:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\WSDPrintProxy.DLL
2015-05-23 17:19 - 2014-10-29 02:53 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2015-05-23 17:19 - 2014-10-29 02:52 - 01024512 _____ (Microsoft Corporation) C:\Windows\system32\WlanMM.dll
2015-05-23 17:19 - 2014-10-29 02:52 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2015-05-23 17:19 - 2014-10-29 02:52 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2015-05-23 17:19 - 2014-10-29 02:52 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2015-05-23 17:19 - 2014-10-29 02:52 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2015-05-23 17:19 - 2014-10-29 02:52 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.SpeechSynthesis.dll
2015-05-23 17:19 - 2014-10-29 02:52 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll
2015-05-23 17:19 - 2014-10-29 02:51 - 03317248 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll
2015-05-23 17:19 - 2014-10-29 02:51 - 00518144 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2015-05-23 17:19 - 2014-10-29 02:51 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\netman.dll
2015-05-23 17:19 - 2014-10-29 02:51 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2015-05-23 17:19 - 2014-10-29 02:51 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2015-05-23 17:19 - 2014-10-29 02:51 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsCfg.dll
2015-05-23 17:19 - 2014-10-29 02:51 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\wlancfg.dll
2015-05-23 17:19 - 2014-10-29 02:51 - 00169472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll
2015-05-23 17:19 - 2014-10-29 02:51 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\DeviceElementSource.dll
2015-05-23 17:19 - 2014-10-29 02:51 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrscmd.dll
2015-05-23 17:19 - 2014-10-29 02:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\wpninprc.dll
2015-05-23 17:19 - 2014-10-29 02:51 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndiscapCfg.dll
2015-05-23 17:19 - 2014-10-29 02:50 - 00920064 _____ (Microsoft Corporation) C:\Windows\system32\FirewallControlPanel.dll
2015-05-23 17:19 - 2014-10-29 02:50 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2015-05-23 17:19 - 2014-10-29 02:50 - 00399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2015-05-23 17:19 - 2014-10-29 02:50 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2015-05-23 17:19 - 2014-10-29 02:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2015-05-23 17:19 - 2014-10-29 02:50 - 00071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eqossnap.dll
2015-05-23 17:19 - 2014-10-29 02:49 - 00831488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certca.dll
2015-05-23 17:19 - 2014-10-29 02:49 - 00576512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsvcs.dll
2015-05-23 17:19 - 2014-10-29 02:49 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2015-05-23 17:19 - 2014-10-29 02:49 - 00300032 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2015-05-23 17:19 - 2014-10-29 02:49 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2015-05-23 17:19 - 2014-10-29 02:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimCfg.dll
2015-05-23 17:19 - 2014-10-29 02:48 - 01170432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDistSh.dll
2015-05-23 17:19 - 2014-10-29 02:48 - 00481280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmscan.dll
2015-05-23 17:19 - 2014-10-29 02:48 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\InputSwitch.dll
2015-05-23 17:19 - 2014-10-29 02:48 - 00178176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windowslivelogin.dll
2015-05-23 17:19 - 2014-10-29 02:47 - 00628224 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2015-05-23 17:19 - 2014-10-29 02:47 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2015-05-23 17:19 - 2014-10-29 02:47 - 00177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2015-05-23 17:19 - 2014-10-29 02:47 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\SettingMonitor.dll
2015-05-23 17:19 - 2014-10-29 02:47 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2015-05-23 17:19 - 2014-10-29 02:46 - 01305088 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2015-05-23 17:19 - 2014-10-29 02:46 - 00605184 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-05-23 17:19 - 2014-10-29 02:46 - 00455680 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-05-23 17:19 - 2014-10-29 02:46 - 00306176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2015-05-23 17:19 - 2014-10-29 02:46 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2015-05-23 17:19 - 2014-10-29 02:46 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmshell.dll
2015-05-23 17:19 - 2014-10-29 02:46 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidfdp.dll
2015-05-23 17:19 - 2014-10-29 02:46 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2015-05-23 17:19 - 2014-10-29 02:46 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingHost.exe
2015-05-23 17:19 - 2014-10-29 02:46 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConfigureExpandedStorage.dll
2015-05-23 17:19 - 2014-10-29 02:46 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PSModuleDiscoveryProvider.dll
2015-05-23 17:19 - 2014-10-29 02:45 - 01197568 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2015-05-23 17:19 - 2014-10-29 02:45 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\activeds.dll
2015-05-23 17:19 - 2014-10-29 02:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndfapi.dll
2015-05-23 17:19 - 2014-10-29 02:45 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstask.dll
2015-05-23 17:19 - 2014-10-29 02:45 - 00196096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcredprov.dll
2015-05-23 17:19 - 2014-10-29 02:45 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2015-05-23 17:19 - 2014-10-29 02:45 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2015-05-23 17:19 - 2014-10-29 02:45 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dataclen.dll
2015-05-23 17:19 - 2014-10-29 02:44 - 00732672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanpref.dll
2015-05-23 17:19 - 2014-10-29 02:44 - 00561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-05-23 17:19 - 2014-10-29 02:44 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2015-05-23 17:19 - 2014-10-29 02:44 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll
2015-05-23 17:19 - 2014-10-29 02:44 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2015-05-23 17:19 - 2014-10-29 02:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2015-05-23 17:19 - 2014-10-29 02:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2015-05-23 17:19 - 2014-10-29 02:44 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2015-05-23 17:19 - 2014-10-29 02:44 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2015-05-23 17:19 - 2014-10-29 02:44 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdeploy.dll
2015-05-23 17:19 - 2014-10-29 02:44 - 00128512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2015-05-23 17:19 - 2014-10-29 02:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adrclient.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00957952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WlanMM.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00724480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00461312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00322048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSATAPI.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00264192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BioCredProv.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NAPMONTR.DLL
2015-05-23 17:19 - 2014-10-29 02:43 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcuiu.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00181248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.HardwareId.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00114688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WfHC.dll
2015-05-23 17:19 - 2014-10-29 02:43 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2015-05-23 17:19 - 2014-10-29 02:42 - 00865280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallControlPanel.dll
2015-05-23 17:19 - 2014-10-29 02:42 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2015-05-23 17:19 - 2014-10-29 02:42 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.SpeechSynthesis.dll
2015-05-23 17:19 - 2014-10-29 02:42 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlancfg.dll
2015-05-23 17:19 - 2014-10-29 02:42 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2015-05-23 17:19 - 2014-10-29 02:41 - 00472064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2015-05-23 17:19 - 2014-10-29 02:41 - 00359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2015-05-23 17:19 - 2014-10-29 02:41 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2015-05-23 17:19 - 2014-10-29 02:41 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2015-05-23 17:19 - 2014-10-29 02:40 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2015-05-23 17:19 - 2014-10-29 02:40 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2015-05-23 17:19 - 2014-10-29 02:39 - 00205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputSwitch.dll
2015-05-23 17:19 - 2014-10-29 02:39 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingMonitor.dll
2015-05-23 17:19 - 2014-10-29 02:38 - 01232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2015-05-23 17:19 - 2014-10-29 02:38 - 00565760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-05-23 17:19 - 2014-10-29 02:37 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2015-05-23 17:19 - 2014-10-29 02:37 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\CloudStorageWizard.exe
2015-05-23 17:19 - 2014-10-29 02:37 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2015-05-23 17:19 - 2014-10-29 02:35 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2015-05-23 17:19 - 2014-10-29 02:35 - 00234496 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2015-05-23 17:19 - 2014-10-29 02:35 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2015-05-23 17:19 - 2014-10-29 02:35 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2015-05-23 17:19 - 2014-10-29 02:35 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2015-05-23 17:19 - 2014-10-29 02:35 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-05-23 17:19 - 2014-10-29 02:34 - 00104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2015-05-23 17:19 - 2014-10-29 02:31 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudStorageWizard.exe
2015-05-23 17:19 - 2014-10-29 02:30 - 00221696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll
2015-05-23 17:19 - 2014-10-29 02:30 - 00215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2015-05-23 17:19 - 2014-10-15 10:32 - 00921920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2015-05-23 17:19 - 2014-10-15 10:32 - 00551232 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-05-23 17:19 - 2014-10-15 10:32 - 00337728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2015-05-23 17:19 - 2014-10-15 10:32 - 00088896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-05-23 17:19 - 2014-10-15 10:32 - 00061248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fsdepends.sys
2015-05-23 17:19 - 2014-10-12 10:53 - 00054592 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2015-05-23 17:19 - 2014-10-07 08:54 - 00059712 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys
2015-05-23 17:19 - 2014-10-07 08:44 - 00102208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-05-23 17:19 - 2014-10-07 08:44 - 00069952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpci.sys
2015-05-23 17:19 - 2014-08-31 02:17 - 00148800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-05-23 17:19 - 2014-08-26 05:30 - 00354112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2015-05-23 17:19 - 2014-08-08 18:55 - 00172344 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_8086.dll
2015-05-23 17:19 - 2014-07-24 17:28 - 00280384 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2015-05-23 17:19 - 2014-07-24 17:28 - 00143680 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-05-23 17:19 - 2014-07-24 13:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2015-05-23 17:19 - 2014-07-24 13:45 - 00076800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2015-05-23 17:19 - 2014-07-24 13:41 - 00118272 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2015-05-23 17:19 - 2014-07-04 14:59 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2015-05-23 17:19 - 2014-06-19 04:13 - 00310080 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2015-05-23 17:19 - 2014-05-30 05:03 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-05-23 17:19 - 2014-04-08 04:01 - 00589656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-05-23 17:19 - 2014-04-06 18:34 - 00275800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-05-23 17:18 - 2014-10-29 06:13 - 00021824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tbs.sys
2015-05-23 17:18 - 2014-10-29 06:09 - 00108864 _____ (Microsoft Corporation) C:\Windows\system32\bootsect.exe
2015-05-23 17:18 - 2014-10-29 06:09 - 00033600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wimmount.sys
2015-05-23 17:18 - 2014-10-29 06:09 - 00033064 _____ (Microsoft Corporation) C:\Windows\system32\kernel.appcore.dll
2015-05-23 17:18 - 2014-10-29 06:04 - 00025352 _____ (Microsoft Corporation) C:\Windows\system32\dsrole.dll
2015-05-23 17:18 - 2014-10-29 05:59 - 00025920 ____C (Microsoft Corporation) C:\Windows\system32\streamci.dll
2015-05-23 17:18 - 2014-10-29 05:54 - 05120000 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
2015-05-23 17:18 - 2014-10-29 05:54 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWWizFwk.dll
2015-05-23 17:18 - 2014-10-29 05:52 - 00043888 _____ (Microsoft Corporation) C:\Windows\system32\msdmo.dll
2015-05-23 17:18 - 2014-10-29 05:52 - 00034088 _____ (Microsoft Corporation) C:\Windows\system32\msadp32.acm
2015-05-23 17:18 - 2014-10-29 05:52 - 00025312 _____ (Microsoft Corporation) C:\Windows\system32\msg711.acm
2015-05-23 17:18 - 2014-10-29 05:51 - 00024800 _____ (Microsoft Corporation) C:\Windows\system32\nsi.dll
2015-05-23 17:18 - 2014-10-29 05:18 - 00029920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel.appcore.dll
2015-05-23 17:18 - 2014-10-29 05:07 - 05120000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWSnapin.dll
2015-05-23 17:18 - 2014-10-29 05:07 - 00114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWWizFwk.dll
2015-05-23 17:18 - 2014-10-29 05:07 - 00022720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msg711.acm
2015-05-23 17:18 - 2014-10-29 05:05 - 00030984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-05-23 17:18 - 2014-10-29 05:05 - 00026304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winnsi.dll
2015-05-23 17:18 - 2014-10-29 04:50 - 02628608 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2015-05-23 17:18 - 2014-10-29 04:49 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2015-05-23 17:18 - 2014-10-29 04:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\DeviceUxRes.dll
2015-05-23 17:18 - 2014-10-29 04:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Firewall.cpl
2015-05-23 17:18 - 2014-10-29 04:49 - 00004608 _____ (Microsoft Corporation) C:\Windows\system32\ws2help.dll
2015-05-23 17:18 - 2014-10-29 04:49 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-05-23 17:18 - 2014-10-29 04:49 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\rnr20.dll
2015-05-23 17:18 - 2014-10-29 04:48 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-05-23 17:18 - 2014-10-29 04:48 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll
2015-05-23 17:18 - 2014-10-29 04:48 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\lmhsvc.dll
2015-05-23 17:18 - 2014-10-29 04:48 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\ktmw32.dll
2015-05-23 17:18 - 2014-10-29 04:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\bi.dll
2015-05-23 17:18 - 2014-10-29 04:48 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys
2015-05-23 17:18 - 2014-10-29 04:48 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\WSHTCPIP.DLL
2015-05-23 17:18 - 2014-10-29 04:48 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wship6.dll
2015-05-23 17:18 - 2014-10-29 04:48 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\txfw32.dll
2015-05-23 17:18 - 2014-10-29 04:48 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys
2015-05-23 17:18 - 2014-10-29 04:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\Locator.exe
2015-05-23 17:18 - 2014-10-29 04:48 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-05-23 17:18 - 2014-10-29 04:47 - 00098304 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-05-23 17:18 - 2014-10-29 04:47 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys
2015-05-23 17:18 - 2014-10-29 04:47 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys
2015-05-23 17:18 - 2014-10-29 04:47 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2015-05-23 17:18 - 2014-10-29 04:47 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2015-05-23 17:18 - 2014-10-29 04:46 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netvsc63.sys
2015-05-23 17:18 - 2014-10-29 04:46 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-05-23 17:18 - 2014-10-29 04:46 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2015-05-23 17:18 - 2014-10-29 04:46 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2015-05-23 17:18 - 2014-10-29 04:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiscap.sys
2015-05-23 17:18 - 2014-10-29 04:46 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys
2015-05-23 17:18 - 2014-10-29 04:46 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys
2015-05-23 17:18 - 2014-10-29 04:46 - 00029696 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2015-05-23 17:18 - 2014-10-29 04:45 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\srm.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\miguiresource.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-05-23 17:18 - 2014-10-29 04:45 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Ndu.sys
2015-05-23 17:18 - 2014-10-29 04:45 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2015-05-23 17:18 - 2014-10-29 04:45 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\SortWindows6Compat.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mslldp.sys
2015-05-23 17:18 - 2014-10-29 04:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2015-05-23 17:18 - 2014-10-29 04:45 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\SortWindows61.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mciwave.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wiatrace.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\netbios.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\SensApi.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\regidle.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\oleacchooks.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\AutoWorkplaceN.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\osuninst.dll
2015-05-23 17:18 - 2014-10-29 04:45 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\normaliz.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\vds_ps.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\MSchedExe.exe
2015-05-23 17:18 - 2014-10-29 04:44 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\fthsvc.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\efslsaext.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\feclient.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\dmocx.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\lsmproxy.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\SortServer2003Compat.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\regini.exe
2015-05-23 17:18 - 2014-10-29 04:44 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\htui.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\efsutil.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\idndl.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\Nlsdl.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\hidserv.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\winrnr.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\blb_ps.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\cmpbk32.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\dmutil.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\davhlpr.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\irmon.dll
         

Alt 12.06.2015, 13:56   #10
momdel
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



FRST Teil 6:

Code:
ATTFilter
2015-05-23 17:18 - 2014-10-29 04:44 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\sisbkup.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\mgmtapi.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\WofUtil.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\clb.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wsock32.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\msidcrl40.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\d3d8thk.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\sas.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\WlS0WndH.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msiwer.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\mscat32.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\nddeapi.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\XInput9_1_0.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\softpub.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\OskSupport.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\getuname.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\mtxex.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\mssip32.dll
2015-05-23 17:18 - 2014-10-29 04:44 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\telephon.cpl
2015-05-23 17:18 - 2014-10-29 04:43 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\printui.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2015-05-23 17:18 - 2014-10-29 04:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\mode.com
2015-05-23 17:18 - 2014-10-29 04:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\ureg.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\osbaseln.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\comp.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\fc.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\sort.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dbnmpntw.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\chgusr.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\replace.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\msiltcfg.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\tree.com
2015-05-23 17:18 - 2014-10-29 04:43 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\rasctrs.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\doskey.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\hh.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\reset.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\find.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\cmdkey.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\change.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\query.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\print.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\label.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\subst.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\diskcomp.com
2015-05-23 17:18 - 2014-10-29 04:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\MUILanguageCleanup.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\LangCleanupSysprepAction.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\spwinsat.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\pnpts.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com
2015-05-23 17:18 - 2014-10-29 04:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\recover.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\diskcopy.com
2015-05-23 17:18 - 2014-10-29 04:43 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\tapiperf.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\dvdplay.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\TimeDateMUICallback.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iscsied.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\help.exe
2015-05-23 17:18 - 2014-10-29 04:43 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\spmpm.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\acledit.dll
2015-05-23 17:18 - 2014-10-29 04:43 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\colorcpl.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\drttransport.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\mcicda.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\cmmon32.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\hwrcomp.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\efssvc.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\klist.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\DDOIProxy.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\syskey.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\cliconfg.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\drprov.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\qprocess.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\wephostsvc.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\WINSRPC.DLL
2015-05-23 17:18 - 2014-10-29 04:42 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\msg.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\pcacli.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\quser.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\chgport.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\tskill.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\midimap.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\tsdiscon.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\tscon.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\rwinsta.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\umdmxfrm.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\logoff.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\convert.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\chkntfs.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\snmptrap.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TapiUnattend.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\ifsutilx.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\IconCodecService.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wshnetbs.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\usbperf.dll
2015-05-23 17:18 - 2014-10-29 04:42 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\dcomcnfg.exe
2015-05-23 17:18 - 2014-10-29 04:42 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\RpcNs4.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\cliconfg.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\expand.exe
2015-05-23 17:18 - 2014-10-29 04:41 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\dmintf.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\dxpps.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\hidphone.tsp
2015-05-23 17:18 - 2014-10-29 04:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\qwinsta.exe
2015-05-23 17:18 - 2014-10-29 04:41 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dispex.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2015-05-23 17:18 - 2014-10-29 04:41 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\serwvdrv.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\qappsrv.exe
2015-05-23 17:18 - 2014-10-29 04:41 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\xmlprovi.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\mpnotify.exe
2015-05-23 17:18 - 2014-10-29 04:41 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\gpupdate.exe
2015-05-23 17:18 - 2014-10-29 04:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\localui.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-05-23 17:18 - 2014-10-29 04:41 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\tcmsetup.exe
2015-05-23 17:18 - 2014-10-29 04:41 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\RdpSaPs.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\SyncHostps.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\mmcico.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\panmap.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\scrnsave.scr
2015-05-23 17:18 - 2014-10-29 04:41 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\spnet.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00010752 ____C (Microsoft Corporation) C:\Windows\system32\CIRCoInst.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\shfolder.dll
2015-05-23 17:18 - 2014-10-29 04:41 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\sccls.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe
2015-05-23 17:18 - 2014-10-29 04:40 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\SyncInfrastructureps.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx5.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\linkinfo.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\easinvoker.proxystub.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\chglogon.exe
2015-05-23 17:18 - 2014-10-29 04:40 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\irclass.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\TSChannel.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx7.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wscproxystub.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx6.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx3.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx4.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\VmApplicationHealthMonitorProxy.dll
2015-05-23 17:18 - 2014-10-29 04:40 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-05-23 17:18 - 2014-10-29 04:39 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\ddp_ps.dll
2015-05-23 17:18 - 2014-10-29 04:39 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\ksetup.exe
2015-05-23 17:18 - 2014-10-29 04:39 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\srm_ps.dll
2015-05-23 17:18 - 2014-10-29 04:39 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\icmui.dll
2015-05-23 17:18 - 2014-10-29 04:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\easconsent.dll
2015-05-23 17:18 - 2014-10-29 04:38 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2015-05-23 17:18 - 2014-10-29 04:38 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2015-05-23 17:18 - 2014-10-29 04:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\pid.dll
2015-05-23 17:18 - 2014-10-29 04:38 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\capisp.dll
2015-05-23 17:18 - 2014-10-29 04:38 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\nbtstat.exe
2015-05-23 17:18 - 2014-10-29 04:38 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\pstorec.dll
2015-05-23 17:18 - 2014-10-29 04:38 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\msctfime.ime
2015-05-23 17:18 - 2014-10-29 04:37 - 15789568 _____ (Microsoft Corporation) C:\Windows\system32\DDORes.dll
2015-05-23 17:18 - 2014-10-29 04:37 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\dhcpsapi.dll
2015-05-23 17:18 - 2014-10-29 04:37 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-05-23 17:18 - 2014-10-29 04:37 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\drtprov.dll
2015-05-23 17:18 - 2014-10-29 04:37 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\MsiCofire.dll
2015-05-23 17:18 - 2014-10-29 04:37 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll
2015-05-23 17:18 - 2014-10-29 04:37 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\dsauth.dll
2015-05-23 17:18 - 2014-10-29 04:37 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\sxstrace.exe
2015-05-23 17:18 - 2014-10-29 04:37 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\RpcPing.exe
2015-05-23 17:18 - 2014-10-29 04:37 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\LldpNotify.dll
2015-05-23 17:18 - 2014-10-29 04:37 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\msacm32.drv
2015-05-23 17:18 - 2014-10-29 04:37 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\VscMgrPS.dll
2015-05-23 17:18 - 2014-10-29 04:37 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\secinit.exe
2015-05-23 17:18 - 2014-10-29 04:37 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\ctfmon.exe
2015-05-23 17:18 - 2014-10-29 04:36 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\iscsidsc.dll
2015-05-23 17:18 - 2014-10-29 04:36 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\Magnification.dll
2015-05-23 17:18 - 2014-10-29 04:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\qmgrprxy.dll
2015-05-23 17:18 - 2014-10-29 04:36 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\traffic.dll
2015-05-23 17:18 - 2014-10-29 04:36 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\extrac32.exe
2015-05-23 17:18 - 2014-10-29 04:36 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll
2015-05-23 17:18 - 2014-10-29 04:36 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\rpcnsh.dll
2015-05-23 17:18 - 2014-10-29 04:36 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\bridgeunattend.exe
2015-05-23 17:18 - 2014-10-29 04:36 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\icsunattend.exe
2015-05-23 17:18 - 2014-10-29 04:36 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ktmutil.exe
2015-05-23 17:18 - 2014-10-29 04:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\bitsprx2.dll
2015-05-23 17:18 - 2014-10-29 04:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\verclsid.exe
2015-05-23 17:18 - 2014-10-29 04:36 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\acproxy.dll
2015-05-23 17:18 - 2014-10-29 04:35 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2015-05-23 17:18 - 2014-10-29 04:35 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll
2015-05-23 17:18 - 2014-10-29 04:35 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\tcpmib.dll
2015-05-23 17:18 - 2014-10-29 04:35 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\cofiredm.dll
2015-05-23 17:18 - 2014-10-29 04:35 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\wscisvif.dll
2015-05-23 17:18 - 2014-10-29 04:35 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\PnPutil.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2015-05-23 17:18 - 2014-10-29 04:34 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\iscsicpl.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\sxproxy.dll
2015-05-23 17:18 - 2014-10-29 04:34 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\eventvwr.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\hdwwiz.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\winver.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\cmutil.dll
2015-05-23 17:18 - 2014-10-29 04:34 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\rasphone.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UI0Detect.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\where.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\rdrleakdiag.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dialer.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\ias.dll
2015-05-23 17:18 - 2014-10-29 04:34 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\timeout.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\clip.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\at.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEject.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\cofire.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\uniplat.dll
2015-05-23 17:18 - 2014-10-29 04:34 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2015-05-23 17:18 - 2014-10-29 04:34 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll
2015-05-23 17:18 - 2014-10-29 04:34 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\regsvr32.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\compact.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\kernelceip.dll
2015-05-23 17:18 - 2014-10-29 04:34 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\rasdial.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\fsavailux.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcmonitor.dll
2015-05-23 17:18 - 2014-10-29 04:34 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TapiSysprep.dll
2015-05-23 17:18 - 2014-10-29 04:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\cmdext.dll
2015-05-23 17:18 - 2014-10-29 04:34 - 00011264 _____ (Microsoft Corporation) C:\Windows\write.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\write.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\regedt32.exe
2015-05-23 17:18 - 2014-10-29 04:34 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\systray.exe
2015-05-23 17:18 - 2014-10-29 04:33 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\ndadmin.exe
2015-05-23 17:18 - 2014-10-29 04:33 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\NetVscCoinstall.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\VmdCoinstall.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe
2015-05-23 17:18 - 2014-10-29 04:33 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\msports.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Apphlpdm.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\bthpanapi.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\MemoryDiagnostic.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\vdsldr.exe
2015-05-23 17:18 - 2014-10-29 04:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdiagnhost.exe
2015-05-23 17:18 - 2014-10-29 04:33 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\runas.exe
2015-05-23 17:18 - 2014-10-29 04:33 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\rasautou.exe
2015-05-23 17:18 - 2014-10-29 04:33 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\hnetmon.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\pstask.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\svsvc.dll
2015-05-23 17:18 - 2014-10-29 04:33 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\InfDefaultInstall.exe
2015-05-23 17:18 - 2014-10-29 04:32 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2015-05-23 17:18 - 2014-10-29 04:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\CHxReadingStringIME.dll
2015-05-23 17:18 - 2014-10-29 04:31 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\fsutilext.dll
2015-05-23 17:18 - 2014-10-29 04:31 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingProxy.dll
2015-05-23 17:18 - 2014-10-29 04:31 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\wlaninst.dll
2015-05-23 17:18 - 2014-10-29 04:31 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2015-05-23 17:18 - 2014-10-29 04:30 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\sigverif.exe
2015-05-23 17:18 - 2014-10-29 04:30 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2015-05-23 17:18 - 2014-10-29 04:30 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\cmdl32.exe
2015-05-23 17:18 - 2014-10-29 04:30 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\pnppolicy.dll
2015-05-23 17:18 - 2014-10-29 04:30 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\forfiles.exe
2015-05-23 17:18 - 2014-10-29 04:30 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\RotMgr.dll
2015-05-23 17:18 - 2014-10-29 04:30 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\dfdts.dll
2015-05-23 17:18 - 2014-10-29 04:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\sfc.exe
2015-05-23 17:18 - 2014-10-29 04:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\eventcreate.exe
2015-05-23 17:18 - 2014-10-29 04:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\choice.exe
2015-05-23 17:18 - 2014-10-29 04:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\bdeui.dll
2015-05-23 17:18 - 2014-10-29 04:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\RmClient.exe
2015-05-23 17:18 - 2014-10-29 04:29 - 01502720 _____ (Microsoft Corporation) C:\Windows\system32\diskcopy.dll
2015-05-23 17:18 - 2014-10-29 04:29 - 00475648 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl
2015-05-23 17:18 - 2014-10-29 04:29 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-05-23 17:18 - 2014-10-29 04:29 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe
2015-05-23 17:18 - 2014-10-29 04:29 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\console.dll
2015-05-23 17:18 - 2014-10-29 04:29 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe
2015-05-23 17:18 - 2014-10-29 04:29 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\whoami.exe
2015-05-23 17:18 - 2014-10-29 04:29 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\ddodiag.exe
2015-05-23 17:18 - 2014-10-29 04:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\waitfor.exe
2015-05-23 17:18 - 2014-10-29 04:29 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\tapilua.dll
2015-05-23 17:18 - 2014-10-29 04:29 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\setspn.exe
2015-05-23 17:18 - 2014-10-29 04:29 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2015-05-23 17:18 - 2014-10-29 04:29 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\wshelper.dll
2015-05-23 17:18 - 2014-10-29 04:28 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\bootcfg.exe
2015-05-23 17:18 - 2014-10-29 04:28 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\odbcad32.exe
2015-05-23 17:18 - 2014-10-29 04:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\iaspolcy.dll
2015-05-23 17:18 - 2014-10-29 04:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll
2015-05-23 17:18 - 2014-10-29 04:28 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll
2015-05-23 17:18 - 2014-10-29 04:27 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2015-05-23 17:18 - 2014-10-29 04:27 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\CompMgmtLauncher.exe
2015-05-23 17:18 - 2014-10-29 04:27 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mmci.dll
2015-05-23 17:18 - 2014-10-29 04:27 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\serialui.dll
2015-05-23 17:18 - 2014-10-29 04:26 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\iscsiexe.dll
2015-05-23 17:18 - 2014-10-29 04:26 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cipher.exe
2015-05-23 17:18 - 2014-10-29 04:26 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wmiprop.dll
2015-05-23 17:18 - 2014-10-29 04:26 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\BthSQM.dll
2015-05-23 17:18 - 2014-10-29 04:26 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\chkwudrv.dll
2015-05-23 17:18 - 2014-10-29 04:25 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\hwrreg.exe
2015-05-23 17:18 - 2014-10-29 04:25 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2015-05-23 17:18 - 2014-10-29 04:25 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe
2015-05-23 17:18 - 2014-10-29 04:25 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\fontview.exe
2015-05-23 17:18 - 2014-10-29 04:25 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\resmon.exe
2015-05-23 17:18 - 2014-10-29 04:25 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2015-05-23 17:18 - 2014-10-29 04:25 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\napipsec.dll
2015-05-23 17:18 - 2014-10-29 04:24 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.exe
2015-05-23 17:18 - 2014-10-29 04:24 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\baaupdate.exe
2015-05-23 17:18 - 2014-10-29 04:24 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2015-05-23 17:18 - 2014-10-29 04:24 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\LocationNotifications.exe
2015-05-23 17:18 - 2014-10-29 04:24 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\xwizard.exe
2015-05-23 17:18 - 2014-10-29 04:24 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cmcfg32.dll
2015-05-23 17:18 - 2014-10-29 04:24 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\NcaApi.dll
2015-05-23 17:18 - 2014-10-29 04:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\pcwrun.exe
2015-05-23 17:18 - 2014-10-29 04:23 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerWizardElev.exe
2015-05-23 17:18 - 2014-10-29 04:23 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerWizard.exe
2015-05-23 17:18 - 2014-10-29 04:23 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2015-05-23 17:18 - 2014-10-29 04:23 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2015-05-23 17:18 - 2014-10-29 04:23 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2015-05-23 17:18 - 2014-10-29 04:23 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\dispci.dll
2015-05-23 17:18 - 2014-10-29 04:23 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2015-05-23 17:18 - 2014-10-29 04:23 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\montr_ci.dll
2015-05-23 17:18 - 2014-10-29 04:23 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\wowreg32.exe
2015-05-23 17:18 - 2014-10-29 04:22 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2015-05-23 17:18 - 2014-10-29 04:22 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2015-05-23 17:18 - 2014-10-29 04:22 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\radarrs.dll
2015-05-23 17:18 - 2014-10-29 04:22 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Storprop.dll
2015-05-23 17:18 - 2014-10-29 04:22 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\PNPXAssocPrx.dll
2015-05-23 17:18 - 2014-10-29 04:22 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2015-05-23 17:18 - 2014-10-29 04:22 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-05-23 17:18 - 2014-10-29 04:22 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\ndproxystub.dll
2015-05-23 17:18 - 2014-10-29 04:22 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\dxgwdi.dll
2015-05-23 17:18 - 2014-10-29 04:20 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\modemui.dll
2015-05-23 17:18 - 2014-10-29 04:20 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\iscsicpl.dll
2015-05-23 17:18 - 2014-10-29 04:20 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\ncpa.cpl
2015-05-23 17:18 - 2014-10-29 04:20 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationHost.exe
2015-05-23 17:18 - 2014-10-29 04:20 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\deskadp.dll
2015-05-23 17:18 - 2014-10-29 04:20 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\docprop.dll
2015-05-23 17:18 - 2014-10-29 04:20 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\shutdown.exe
2015-05-23 17:18 - 2014-10-29 04:20 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe
2015-05-23 17:18 - 2014-10-29 04:20 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\WallpaperHost.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\control.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\DeviceProperties.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesRemote.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesProtection.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesPerformance.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesHardware.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesDataExecutionPrevention.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesComputerName.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\SystemPropertiesAdvanced.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingWizard.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\hhsetup.dll
2015-05-23 17:18 - 2014-10-29 04:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\rundll32.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\deskmon.dll
2015-05-23 17:18 - 2014-10-29 04:19 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Netplwiz.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Eap3Host.exe
2015-05-23 17:18 - 2014-10-29 04:19 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\DefaultDeviceManager.dll
2015-05-23 17:18 - 2014-10-29 04:18 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWGP.dll
2015-05-23 17:18 - 2014-10-29 04:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\AuditNativeSnapIn.dll
2015-05-23 17:18 - 2014-10-29 04:18 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\SmartScreenSettings.exe
2015-05-23 17:18 - 2014-10-29 04:18 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\OptionalFeatures.exe
2015-05-23 17:18 - 2014-10-29 04:18 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Fondue.exe
2015-05-23 17:18 - 2014-10-29 04:18 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\MdRes.exe
2015-05-23 17:18 - 2014-10-29 04:18 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\DpiScaling.exe
2015-05-23 17:18 - 2014-10-29 04:18 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\napdsnap.dll
2015-05-23 17:18 - 2014-10-29 04:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\RunLegacyCPLElevated.exe
2015-05-23 17:18 - 2014-10-29 04:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\ComputerDefaults.exe
2015-05-23 17:18 - 2014-10-29 04:18 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2015-05-23 17:18 - 2014-10-29 04:18 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\BthMtpContextHandler.dll
2015-05-23 17:18 - 2014-10-29 04:18 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\dvdupgrd.exe
2015-05-23 17:18 - 2014-10-29 04:18 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\NcdProp.dll
2015-05-23 17:18 - 2014-10-29 04:18 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\DefaultPrinterProvider.dll
2015-05-23 17:18 - 2014-10-29 04:18 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\grpconv.exe
2015-05-23 17:18 - 2014-10-29 04:17 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\hdwwiz.cpl
2015-05-23 17:18 - 2014-10-29 04:17 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe
2015-05-23 17:18 - 2014-10-29 04:17 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\mobsync.exe
2015-05-23 17:18 - 2014-10-29 04:17 - 00045056 ____C (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\cmlua.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe
2015-05-23 17:18 - 2014-10-29 04:17 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\aecache.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\witnesswmiv2provider.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\wsepno.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\SmsDeviceAccessRevocation.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\shpafact.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\cmstplua.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\FXSUNATD.exe
2015-05-23 17:18 - 2014-10-29 04:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\DDACLSys.dll
2015-05-23 17:18 - 2014-10-29 04:17 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RemoveDeviceElevated.dll
2015-05-23 17:18 - 2014-10-29 04:16 - 00217600 _____ (Microsoft Corporation) C:\Windows\system32\cleanmgr.exe
2015-05-23 17:18 - 2014-10-29 04:16 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2015-05-23 17:18 - 2014-10-29 04:16 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-05-23 17:18 - 2014-10-29 04:16 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\fdWNet.dll
2015-05-23 17:18 - 2014-10-29 04:12 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe
2015-05-23 17:18 - 2014-10-29 04:12 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\bthci.dll
2015-05-23 17:18 - 2014-10-29 04:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\efsui.exe
2015-05-23 17:18 - 2014-10-29 04:11 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\mdminst.dll
2015-05-23 17:18 - 2014-10-29 04:11 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\uireng.dll
2015-05-23 17:18 - 2014-10-29 04:11 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll
2015-05-23 17:18 - 2014-10-29 04:11 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistHttpTrans.dll
2015-05-23 17:18 - 2014-10-29 04:10 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\tcpmonui.dll
2015-05-23 17:18 - 2014-10-29 04:10 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\srwmi.dll
2015-05-23 17:18 - 2014-10-29 04:09 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-05-23 17:18 - 2014-10-29 04:09 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\hotplug.dll
2015-05-23 17:18 - 2014-10-29 04:09 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\bthudtask.exe
2015-05-23 17:18 - 2014-10-29 04:09 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\ntlanui2.dll
2015-05-23 17:18 - 2014-10-29 04:08 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2015-05-23 17:18 - 2014-10-29 04:08 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\DFDWiz.exe
2015-05-23 17:18 - 2014-10-29 04:08 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\MuiUnattend.exe
2015-05-23 17:18 - 2014-10-29 04:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\credwiz.exe
2015-05-23 17:18 - 2014-10-29 04:05 - 02628608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons0009.dll
2015-05-23 17:18 - 2014-10-29 04:05 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\keymgr.dll
2015-05-23 17:18 - 2014-10-29 04:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\gptext.dll
2015-05-23 17:18 - 2014-10-29 04:04 - 00638976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2015-05-23 17:18 - 2014-10-29 04:04 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\srhelper.dll
2015-05-23 17:18 - 2014-10-29 04:04 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\SrTasks.exe
2015-05-23 17:18 - 2014-10-29 04:04 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceUxRes.dll
2015-05-23 17:18 - 2014-10-29 04:04 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2help.dll
2015-05-23 17:18 - 2014-10-29 04:04 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-05-23 17:18 - 2014-10-29 04:04 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rnr20.dll
2015-05-23 17:18 - 2014-10-29 04:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2015-05-23 17:18 - 2014-10-29 04:03 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\SetProxyCredential.dll
2015-05-23 17:18 - 2014-10-29 04:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\brdgcfg.dll
2015-05-23 17:18 - 2014-10-29 04:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ktmw32.dll
2015-05-23 17:18 - 2014-10-29 04:03 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\txfw32.dll
2015-05-23 17:18 - 2014-10-29 04:03 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wship6.dll
2015-05-23 17:18 - 2014-10-29 04:03 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSHTCPIP.DLL
2015-05-23 17:18 - 2014-10-29 04:03 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2015-05-23 17:18 - 2014-10-29 04:02 - 00423424 _____ (Microsoft Corporation) C:\Windows\system32\irprops.cpl
2015-05-23 17:18 - 2014-10-29 04:02 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\FXST30.dll
2015-05-23 17:18 - 2014-10-29 04:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WinFax.dll
2015-05-23 17:18 - 2014-10-29 04:01 - 00380928 _____ (Microsoft Corporation) C:\Windows\system32\cryptuiwizard.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OobeFldr.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dramp.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00278528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srm.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miguiresource.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\tpmcompc.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SortWindows61.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\idndl.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Nlsdl.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciwave.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciseq.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shgina.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davhlpr.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmutil.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shunimpl.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscpxl32.dLL
2015-05-23 17:18 - 2014-10-29 04:00 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiatrace.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbios.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscat32.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browseui.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensApi.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\softpub.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacchooks.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nddeapi.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiwer.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssip32.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir50_32.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir41_32.ax
2015-05-23 17:18 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OskSupport.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir50_qcx.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir50_qc.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir41_qcx.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir41_qc.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ir32_32.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\getuname.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osuninst.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\normaliz.dll
2015-05-23 17:18 - 2014-10-29 04:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprop.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2015-05-23 17:18 - 2014-10-29 03:59 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vds_ps.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmocx.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regini.exe
2015-05-23 17:18 - 2014-10-29 03:59 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\pnpui.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\dfp.exe
2015-05-23 17:18 - 2014-10-29 03:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hidserv.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efsutil.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmpbk32.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrnr.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comp.exe
2015-05-23 17:18 - 2014-10-29 03:59 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lsmproxy.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sisbkup.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mgmtapi.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\replace.exe
2015-05-23 17:18 - 2014-10-29 03:59 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vdmdbg.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsock32.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\doskey.exe
2015-05-23 17:18 - 2014-10-29 03:59 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\find.exe
2015-05-23 17:18 - 2014-10-29 03:59 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clb.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\subst.exe
2015-05-23 17:18 - 2014-10-29 03:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\print.exe
2015-05-23 17:18 - 2014-10-29 03:59 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msidcrl40.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\help.exe
2015-05-23 17:18 - 2014-10-29 03:59 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WlS0WndH.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sas.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XInput9_1_0.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2015-05-23 17:18 - 2014-10-29 03:59 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxex.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00857088 _____ (Microsoft Corporation) C:\Windows\system32\FXSST.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\telephon.cpl
2015-05-23 17:18 - 2014-10-29 03:58 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\colorcpl.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iyuv_32.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzutil.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2015-05-23 17:18 - 2014-10-29 03:58 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcbcp.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcicda.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvidc32.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cliconfg.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ureg.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drprov.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sort.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osbaseln.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\umdmxfrm.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\midimap.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbnmpntw.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chkntfs.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\convert.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WINSRPC.DLL
2015-05-23 17:18 - 2014-10-29 03:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com
2015-05-23 17:18 - 2014-10-29 03:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiltcfg.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasctrs.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskcomp.com
2015-05-23 17:18 - 2014-10-29 03:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\label.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmdkey.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrle32.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsbyuv.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TapiUnattend.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwinsat.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\recover.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com
2015-05-23 17:18 - 2014-10-29 03:58 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskcopy.com
2015-05-23 17:18 - 2014-10-29 03:58 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dvdplay.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsied.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomcnfg.exe
2015-05-23 17:18 - 2014-10-29 03:58 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapiperf.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TimeDateMUICallback.dll
2015-05-23 17:18 - 2014-10-29 03:58 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\acledit.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\expand.exe
2015-05-23 17:18 - 2014-10-29 03:57 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syskey.exe
2015-05-23 17:18 - 2014-10-29 03:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe
2015-05-23 17:18 - 2014-10-29 03:57 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmintf.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2015-05-23 17:18 - 2014-10-29 03:57 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\serwvdrv.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcacli.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmlprovi.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpupdate.exe
2015-05-23 17:18 - 2014-10-29 03:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcmsetup.exe
2015-05-23 17:18 - 2014-10-29 03:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syssetup.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DDOIProxy.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\panmap.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutilx.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usbperf.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshirda.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaPs.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcico.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IconCodecService.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrnsave.scr
2015-05-23 17:18 - 2014-10-29 03:57 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spnet.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcNs4.dll
2015-05-23 17:18 - 2014-10-29 03:57 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shfolder.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\linkinfo.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icmui.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx5.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capisp.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncInfrastructureps.dll
         

Alt 12.06.2015, 13:57   #11
momdel
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



FRST Teil 7:

Code:
ATTFilter
2015-05-23 17:18 - 2014-10-29 03:56 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srm_ps.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\irclass.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dispex.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pstorec.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSChannel.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx6.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscproxystub.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx7.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx3.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncHostps.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx4.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcji32.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odtext32.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odpdx32.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odfox32.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oddbse32.dll
2015-05-23 17:18 - 2014-10-29 03:56 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odexl32.dll
2015-05-23 17:18 - 2014-10-29 03:55 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2015-05-23 17:18 - 2014-10-29 03:55 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pid.dll
2015-05-23 17:18 - 2014-10-29 03:55 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxstrace.exe
2015-05-23 17:18 - 2014-10-29 03:55 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfime.ime
2015-05-23 17:18 - 2014-10-29 03:54 - 15784448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DDORes.dll
2015-05-23 17:18 - 2014-10-29 03:54 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\SpaceAgent.exe
2015-05-23 17:18 - 2014-10-29 03:54 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfp.dll
2015-05-23 17:18 - 2014-10-29 03:54 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drtprov.dll
2015-05-23 17:18 - 2014-10-29 03:54 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsauth.dll
2015-05-23 17:18 - 2014-10-29 03:54 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\extrac32.exe
2015-05-23 17:18 - 2014-10-29 03:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcPing.exe
2015-05-23 17:18 - 2014-10-29 03:54 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msacm32.drv
2015-05-23 17:18 - 2014-10-29 03:54 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secinit.exe
2015-05-23 17:18 - 2014-10-29 03:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VscMgrPS.dll
2015-05-23 17:18 - 2014-10-29 03:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ctfmon.exe
2015-05-23 17:18 - 2014-10-29 03:53 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\dpapimig.exe
2015-05-23 17:18 - 2014-10-29 03:53 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnification.dll
2015-05-23 17:18 - 2014-10-29 03:53 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcnsh.dll
2015-05-23 17:18 - 2014-10-29 03:53 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsium.dll
2015-05-23 17:18 - 2014-10-29 03:53 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qmgrprxy.dll
2015-05-23 17:18 - 2014-10-29 03:53 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ktmutil.exe
2015-05-23 17:18 - 2014-10-29 03:53 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icsunattend.exe
2015-05-23 17:18 - 2014-10-29 03:53 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsprx2.dll
2015-05-23 17:18 - 2014-10-29 03:53 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\verclsid.exe
2015-05-23 17:18 - 2014-10-29 03:53 - 00009728 _____ (Microsoft Corporation) C:\Windows\winhlp32.exe
2015-05-23 17:18 - 2014-10-29 03:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ocsetapi.dll
2015-05-23 17:18 - 2014-10-29 03:52 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsicpl.exe
2015-05-23 17:18 - 2014-10-29 03:52 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msra.exe
2015-05-23 17:18 - 2014-10-29 03:52 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventvwr.exe
2015-05-23 17:18 - 2014-10-29 03:52 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hdwwiz.exe
2015-05-23 17:18 - 2014-10-29 03:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winver.exe
2015-05-23 17:18 - 2014-10-29 03:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxproxy.dll
2015-05-23 17:18 - 2014-10-29 03:52 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpmib.dll
2015-05-23 17:18 - 2014-10-29 03:52 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ias.dll
2015-05-23 17:18 - 2014-10-29 03:52 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscisvif.dll
2015-05-23 17:18 - 2014-10-29 03:52 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compact.exe
2015-05-23 17:18 - 2014-10-29 03:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spopk.dll
2015-05-23 17:18 - 2014-10-29 03:52 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regsvr32.exe
2015-05-23 17:18 - 2014-10-29 03:52 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedt32.exe
2015-05-23 17:18 - 2014-10-29 03:52 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmdext.dll
2015-05-23 17:18 - 2014-10-29 03:52 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\write.exe
2015-05-23 17:18 - 2014-10-29 03:52 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TapiSysprep.dll
2015-05-23 17:18 - 2014-10-29 03:51 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndadmin.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasphone.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdrleakdiag.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dialer.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timeout.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clip.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\at.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dswave.dll
2015-05-23 17:18 - 2014-10-29 03:51 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshcon.dll
2015-05-23 17:18 - 2014-10-29 03:51 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winusb.dll
2015-05-23 17:18 - 2014-10-29 03:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorSvc.dll
2015-05-23 17:18 - 2014-10-29 03:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\runas.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uniplat.dll
2015-05-23 17:18 - 2014-10-29 03:51 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdial.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasautou.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hnetmon.dll
2015-05-23 17:18 - 2014-10-29 03:51 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcmonitor.dll
2015-05-23 17:18 - 2014-10-29 03:51 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InfDefaultInstall.exe
2015-05-23 17:18 - 2014-10-29 03:51 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systray.exe
2015-05-23 17:18 - 2014-10-29 03:50 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Apphlpdm.dll
2015-05-23 17:18 - 2014-10-29 03:50 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdiagnhost.exe
2015-05-23 17:18 - 2014-10-29 03:49 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl
2015-05-23 17:18 - 2014-10-29 03:49 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PkgMgr.exe
2015-05-23 17:18 - 2014-10-29 03:49 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutilext.dll
2015-05-23 17:18 - 2014-10-29 03:49 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2015-05-23 17:18 - 2014-10-29 03:49 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingProxy.dll
2015-05-23 17:18 - 2014-10-29 03:49 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlaninst.dll
2015-05-23 17:18 - 2014-10-29 03:49 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2015-05-23 17:18 - 2014-10-29 03:49 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2015-05-23 17:18 - 2014-10-29 03:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CHxReadingStringIME.dll
2015-05-23 17:18 - 2014-10-29 03:48 - 01497600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskcopy.dll
2015-05-23 17:18 - 2014-10-29 03:48 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\waitfor.exe
2015-05-23 17:18 - 2014-10-29 03:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\choice.exe
2015-05-23 17:18 - 2014-10-29 03:48 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsCtfMonitor.dll
2015-05-23 17:18 - 2014-10-29 03:48 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshelper.dll
2015-05-23 17:18 - 2014-10-29 03:48 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RmClient.exe
2015-05-23 17:18 - 2014-10-29 03:47 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iaspolcy.dll
2015-05-23 17:18 - 2014-10-29 03:47 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddodiag.exe
2015-05-23 17:18 - 2014-10-29 03:47 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll
2015-05-23 17:18 - 2014-10-29 03:46 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcad32.exe
2015-05-23 17:18 - 2014-10-29 03:46 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmci.dll
2015-05-23 17:18 - 2014-10-29 03:46 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\serialui.dll
2015-05-23 17:18 - 2014-10-29 03:45 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resmon.exe
2015-05-23 17:18 - 2014-10-29 03:45 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2015-05-23 17:18 - 2014-10-29 03:45 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cipher.exe
2015-05-23 17:18 - 2014-10-29 03:45 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\napipsec.dll
2015-05-23 17:18 - 2014-10-29 03:44 - 00218112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountControlSettings.exe
2015-05-23 17:18 - 2014-10-29 03:44 - 00104960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontview.exe
2015-05-23 17:18 - 2014-10-29 03:44 - 00094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Narrator.exe
2015-05-23 17:18 - 2014-10-29 03:44 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationNotifications.exe
2015-05-23 17:18 - 2014-10-29 03:44 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmcfg32.dll
2015-05-23 17:18 - 2014-10-29 03:43 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2015-05-23 17:18 - 2014-10-29 03:43 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xwizard.exe
2015-05-23 17:18 - 2014-10-29 03:43 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AtBroker.exe
2015-05-23 17:18 - 2014-10-29 03:43 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NcaApi.dll
2015-05-23 17:18 - 2014-10-29 03:43 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wowreg32.exe
2015-05-23 17:18 - 2014-10-29 03:42 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.exe
2015-05-23 17:18 - 2014-10-29 03:42 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\radarrs.dll
2015-05-23 17:18 - 2014-10-29 03:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndproxystub.dll
2015-05-23 17:18 - 2014-10-29 03:40 - 00136704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\joy.cpl
2015-05-23 17:18 - 2014-10-29 03:40 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncpa.cpl
2015-05-23 17:18 - 2014-10-29 03:40 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingWizard.exe
2015-05-23 17:18 - 2014-10-29 03:40 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deskadp.dll
2015-05-23 17:18 - 2014-10-29 03:40 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shutdown.exe
2015-05-23 17:18 - 2014-10-29 03:40 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\proquota.exe
2015-05-23 17:18 - 2014-10-29 03:40 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Netplwiz.exe
2015-05-23 17:18 - 2014-10-29 03:40 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DefaultDeviceManager.dll
2015-05-23 17:18 - 2014-10-29 03:39 - 00299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWGP.dll
2015-05-23 17:18 - 2014-10-29 03:39 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuditNativeSnapIn.dll
2015-05-23 17:18 - 2014-10-29 03:39 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartScreenSettings.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\control.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Fondue.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceProperties.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesRemote.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesProtection.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesPerformance.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesHardware.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesDataExecutionPrevention.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesComputerName.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemPropertiesAdvanced.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DpiScaling.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\napdsnap.dll
2015-05-23 17:18 - 2014-10-29 03:39 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RunLegacyCPLElevated.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deskmon.dll
2015-05-23 17:18 - 2014-10-29 03:39 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ComputerDefaults.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dvdupgrd.exe
2015-05-23 17:18 - 2014-10-29 03:39 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NcdProp.dll
2015-05-23 17:18 - 2014-10-29 03:39 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DefaultPrinterProvider.dll
2015-05-23 17:18 - 2014-10-29 03:39 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2015-05-23 17:18 - 2014-10-29 03:38 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2015-05-23 17:18 - 2014-10-29 03:38 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mobsync.exe
2015-05-23 17:18 - 2014-10-29 03:38 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmlua.dll
2015-05-23 17:18 - 2014-10-29 03:38 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe
2015-05-23 17:18 - 2014-10-29 03:38 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcsPlugInService.dll
2015-05-23 17:18 - 2014-10-29 03:38 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shpafact.dll
2015-05-23 17:18 - 2014-10-29 03:38 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\grpconv.exe
2015-05-23 17:18 - 2014-10-29 03:38 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmstplua.dll
2015-05-23 17:18 - 2014-10-29 03:38 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DDACLSys.dll
2015-05-23 17:18 - 2014-10-29 03:38 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoveDeviceElevated.dll
2015-05-23 17:18 - 2014-10-29 03:37 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2015-05-23 17:18 - 2014-10-29 03:37 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2015-05-23 17:18 - 2014-10-29 03:36 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWNet.dll
2015-05-23 17:18 - 2014-10-29 03:34 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pwrshplugin.dll
2015-05-23 17:18 - 2014-10-29 03:34 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efsui.exe
2015-05-23 17:18 - 2014-10-29 03:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthudtask.exe
2015-05-23 17:18 - 2014-10-29 03:32 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanui2.dll
2015-05-23 17:18 - 2014-10-29 03:31 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credwiz.exe
2015-05-23 17:18 - 2014-10-29 03:30 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MuiUnattend.exe
2015-05-23 17:18 - 2014-10-29 03:29 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-05-23 17:18 - 2014-10-29 03:29 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\wmiclnt.dll
2015-05-23 17:18 - 2014-10-29 03:29 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\nsisvc.dll
2015-05-23 17:18 - 2014-10-29 03:29 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gptext.dll
2015-05-23 17:18 - 2014-10-29 03:29 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\FileAppxStreamingDataSource.dll
2015-05-23 17:18 - 2014-10-29 03:29 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\dpapi.dll
2015-05-23 17:18 - 2014-10-29 03:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mprext.dll
2015-05-23 17:18 - 2014-10-29 03:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\dabapi.dll
2015-05-23 17:18 - 2014-10-29 03:29 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL
2015-05-23 17:18 - 2014-10-29 03:28 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\C_G18030.DLL
2015-05-23 17:18 - 2014-10-29 03:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\mprmsg.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\mspatchc.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\KdsCli.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\reg.exe
2015-05-23 17:18 - 2014-10-29 03:28 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\sc.exe
2015-05-23 17:18 - 2014-10-29 03:28 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\dfscli.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\mskeyprotect.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\scext.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Websocket.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\perfproc.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\vpnikeapi.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\icacls.exe
2015-05-23 17:18 - 2014-10-29 03:28 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\mfcsubs.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\w32topl.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\sdhcinst.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\snmpapi.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinFax.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe
2015-05-23 17:18 - 2014-10-29 03:28 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\perfnet.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\bitsperf.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.TimeBroker.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerClient.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\attrib.exe
2015-05-23 17:18 - 2014-10-29 03:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\fltLib.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\mskeyprotcli.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wshqos.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\PATHPING.EXE
2015-05-23 17:18 - 2014-10-29 03:28 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\rasadhlp.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\mountvol.exe
2015-05-23 17:18 - 2014-10-29 03:28 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\wmsgapi.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\C_IS2022.DLL
2015-05-23 17:18 - 2014-10-29 03:28 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winrssrv.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\whhelper.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\fdBthProxy.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\sscoreext.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TCPSVCS.EXE
2015-05-23 17:18 - 2014-10-29 03:28 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msidle.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\TcpipSetup.dll
2015-05-23 17:18 - 2014-10-29 03:28 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\backgroundTaskHost.exe
2015-05-23 17:18 - 2014-10-29 03:28 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\loadperf.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\netsh.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\esentprf.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\setx.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\lodctr.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\mspatcha.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\unlodctr.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\perfos.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\SecEdit.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\perfdisk.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\virtdisk.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\deviceassociation.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wcmapi.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\OnDemandConnRouteHelper.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\cacls.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\EventAggregation.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\dsparse.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\fltMC.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\sysntfy.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\fvecerts.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\ARP.EXE
2015-05-23 17:18 - 2014-10-29 03:27 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\adhapi.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\PING.EXE
2015-05-23 17:18 - 2014-10-29 03:27 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\CSystemEventsBrokerClient.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerClient.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\TRACERT.EXE
2015-05-23 17:18 - 2014-10-29 03:27 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\finger.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Register-CimProvider.exe
2015-05-23 17:18 - 2014-10-29 03:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\smphost.dll
2015-05-23 17:18 - 2014-10-29 03:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\HOSTNAME.EXE
2015-05-23 17:18 - 2014-10-29 03:27 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TetheringIeProvider.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\pnrpnsp.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\wlidnsp.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\srumapi.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\NetEvtFwdr.exe
2015-05-23 17:18 - 2014-10-29 03:26 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\crypttpmeksvc.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\XInput1_4.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appsruprov.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\pots.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\eapprovp.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapPeerProxy.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapAuthProxy.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\VaultCmd.exe
2015-05-23 17:18 - 2014-10-29 03:26 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\chkdsk.exe
2015-05-23 17:18 - 2014-10-29 03:26 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\userinitext.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimgvw.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\MRINFO.EXE
2015-05-23 17:18 - 2014-10-29 03:26 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\ProximityRtapiPal.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wpcsvc.dll
2015-05-23 17:18 - 2014-10-29 03:26 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\BdeSysprep.dll
2015-05-23 17:18 - 2014-10-29 03:25 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2015-05-23 17:18 - 2014-10-29 03:25 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2015-05-23 17:18 - 2014-10-29 03:25 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\winlogonext.dll
2015-05-23 17:18 - 2014-10-29 03:25 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tpmcompc.dll
2015-05-23 17:18 - 2014-10-29 03:25 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2015-05-23 17:18 - 2014-10-29 03:25 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\ncuprov.dll
2015-05-23 17:18 - 2014-10-29 03:25 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\wininitext.dll
2015-05-23 17:18 - 2014-10-29 03:25 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll
2015-05-23 17:18 - 2014-10-29 03:25 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\dnsext.dll
2015-05-23 17:18 - 2014-10-29 03:24 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\wlanext.exe
2015-05-23 17:18 - 2014-10-29 03:24 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-05-23 17:18 - 2014-10-29 03:24 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\procinst.dll
2015-05-23 17:18 - 2014-10-29 03:23 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2015-05-23 17:18 - 2014-10-29 03:23 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.ps.dll
2015-05-23 17:18 - 2014-10-29 03:23 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.ps.dll
2015-05-23 17:18 - 2014-10-29 03:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Background.ps.dll
2015-05-23 17:18 - 2014-10-29 03:23 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\AppxStreamingDataSourcePS.dll
2015-05-23 17:18 - 2014-10-29 03:22 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\msauserext.dll
2015-05-23 17:18 - 2014-10-29 03:22 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2015-05-23 17:18 - 2014-10-29 03:22 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll
2015-05-23 17:18 - 2014-10-29 03:22 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\TaskSchdPS.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\cngcredui.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\catsrvps.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\perfctrs.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ipconfig.exe
2015-05-23 17:18 - 2014-10-29 03:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\cfmifs.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\BackgroundTransferHost.exe
2015-05-23 17:18 - 2014-10-29 03:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Display.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.SystemManufacturers.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\wpnsruprov.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\delegatorprovider.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi_passthru.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\CallButtons.ProxyStub.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\ROUTE.EXE
2015-05-23 17:18 - 2014-10-29 03:21 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.RemoteDesktop.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\defragproxy.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\AuthHostProxy.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\TtlsExt.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\TimeSyncTask.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\cfmifsproxy.dll
2015-05-23 17:18 - 2014-10-29 03:21 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dllhst3g.exe
2015-05-23 17:18 - 2014-10-29 03:20 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2015-05-23 17:18 - 2014-10-29 03:20 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapimig.exe
2015-05-23 17:18 - 2014-10-29 03:20 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\NETSTAT.EXE
2015-05-23 17:18 - 2014-10-29 03:20 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\encapi.dll
2015-05-23 17:18 - 2014-10-29 03:20 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\ProximityCommonPal.dll
2015-05-23 17:18 - 2014-10-29 03:20 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentTask.dll
2015-05-23 17:18 - 2014-10-29 03:20 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2015-05-23 17:18 - 2014-10-29 03:19 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
2015-05-23 17:18 - 2014-10-29 03:19 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\sxshared.dll
2015-05-23 17:18 - 2014-10-29 03:19 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\pnrpauto.dll
2015-05-23 17:18 - 2014-10-29 03:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\raschapext.dll
2015-05-23 17:18 - 2014-10-29 03:19 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\rastlsext.dll
2015-05-23 17:18 - 2014-10-29 03:18 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2015-05-23 17:18 - 2014-10-29 03:18 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2015-05-23 17:18 - 2014-10-29 03:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WofTasks.dll
2015-05-23 17:18 - 2014-10-29 03:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2015-05-23 17:18 - 2014-10-29 03:16 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2015-05-23 17:18 - 2014-10-29 03:16 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2015-05-23 17:18 - 2014-10-29 03:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll
2015-05-23 17:18 - 2014-10-29 03:15 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\FDResPub.dll
2015-05-23 17:18 - 2014-10-29 03:15 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\winrshost.exe
2015-05-23 17:18 - 2014-10-29 03:14 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\nci.dll
2015-05-23 17:18 - 2014-10-29 03:12 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\msdtc.exe
2015-05-23 17:18 - 2014-10-29 03:12 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\wwaninst.dll
2015-05-23 17:18 - 2014-10-29 03:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\DsmUserTask.exe
2015-05-23 17:18 - 2014-10-29 03:11 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\umpoext.dll
2015-05-23 17:18 - 2014-10-29 03:09 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\ifmon.dll
2015-05-23 17:18 - 2014-10-29 03:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\winrs.exe
2015-05-23 17:18 - 2014-10-29 03:06 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2015-05-23 17:18 - 2014-10-29 03:06 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmiclnt.dll
2015-05-23 17:18 - 2014-10-29 03:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\httpapi.dll
2015-05-23 17:18 - 2014-10-29 03:06 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-05-23 17:18 - 2014-10-29 03:06 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapi.dll
2015-05-23 17:18 - 2014-10-29 03:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprext.dll
2015-05-23 17:18 - 2014-10-29 03:06 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_ISCII.DLL
2015-05-23 17:18 - 2014-10-29 03:06 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dabapi.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00222720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_G18030.DLL
2015-05-23 17:18 - 2014-10-29 03:05 - 00113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprmsg.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspatchc.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sc.exe
2015-05-23 17:18 - 2014-10-29 03:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lodctr.exe
2015-05-23 17:18 - 2014-10-29 03:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfscli.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfproc.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspatcha.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Websocket.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unlodctr.exe
2015-05-23 17:18 - 2014-10-29 03:05 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfdisk.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\virtdisk.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icacls.exe
2015-05-23 17:18 - 2014-10-29 03:05 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32topl.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vpnikeapi.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OnDemandConnRouteHelper.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcsubs.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\snmpapi.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hid.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\more.com
2015-05-23 17:18 - 2014-10-29 03:05 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userinit.exe
2015-05-23 17:18 - 2014-10-29 03:05 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfnet.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsparse.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.TimeBroker.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsperf.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schedcli.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
2015-05-23 17:18 - 2014-10-29 03:05 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\attrib.exe
2015-05-23 17:18 - 2014-10-29 03:05 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mskeyprotcli.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fltLib.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TimeBrokerClient.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PATHPING.EXE
2015-05-23 17:18 - 2014-10-29 03:05 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshqos.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mountvol.exe
2015-05-23 17:18 - 2014-10-29 03:05 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TRACERT.EXE
2015-05-23 17:18 - 2014-10-29 03:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemEventsBrokerClient.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmsgapi.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\finger.exe
2015-05-23 17:18 - 2014-10-29 03:05 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasadhlp.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\whhelper.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_IS2022.DLL
2015-05-23 17:18 - 2014-10-29 03:05 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrssrv.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdBthProxy.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TCPSVCS.EXE
2015-05-23 17:18 - 2014-10-29 03:05 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msidle.dll
2015-05-23 17:18 - 2014-10-29 03:05 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe
2015-05-23 17:18 - 2014-10-29 03:05 - 00006144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esentprf.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollCtrl.exe
2015-05-23 17:18 - 2014-10-29 03:04 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SecEdit.exe
2015-05-23 17:18 - 2014-10-29 03:04 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srumapi.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceassociation.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2015-05-23 17:18 - 2014-10-29 03:04 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findstr.exe
2015-05-23 17:18 - 2014-10-29 03:04 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pots.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcmapi.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cacls.exe
2015-05-23 17:18 - 2014-10-29 03:04 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapprovp.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fltMC.exe
2015-05-23 17:18 - 2014-10-29 03:04 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ARP.EXE
2015-05-23 17:18 - 2014-10-29 03:04 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userinitext.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Register-CimProvider.exe
2015-05-23 17:18 - 2014-10-29 03:04 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smphost.dll
2015-05-23 17:18 - 2014-10-29 03:04 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HOSTNAME.EXE
2015-05-23 17:18 - 2014-10-29 03:04 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpcsvc.dll
2015-05-23 17:18 - 2014-10-29 03:03 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\LaunchTM.exe
2015-05-23 17:18 - 2014-10-29 03:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidnsp.dll
2015-05-23 17:18 - 2014-10-29 03:03 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MirrorDrvCompat.dll
2015-05-23 17:18 - 2014-10-29 03:03 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypttpmeksvc.dll
2015-05-23 17:18 - 2014-10-29 03:03 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XInput1_4.dll
2015-05-23 17:18 - 2014-10-29 03:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chkdsk.exe
2015-05-23 17:18 - 2014-10-29 03:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MRINFO.EXE
2015-05-23 17:18 - 2014-10-29 03:03 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityRtapiPal.dll
2015-05-23 17:18 - 2014-10-29 03:02 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2015-05-23 17:18 - 2014-10-29 03:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2015-05-23 17:18 - 2014-10-29 03:02 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2015-05-23 17:18 - 2014-10-29 03:02 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininitext.dll
2015-05-23 17:18 - 2014-10-29 03:01 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2015-05-23 17:18 - 2014-10-29 03:01 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TaskSchdPS.dll
2015-05-23 17:18 - 2014-10-29 03:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vss_ps.dll
2015-05-23 17:18 - 2014-10-29 03:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdProxy.dll
2015-05-23 17:18 - 2014-10-29 03:01 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.ps.dll
2015-05-23 17:18 - 2014-10-29 03:01 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\slpts.dll
2015-05-23 17:18 - 2014-10-29 03:01 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.ps.dll
2015-05-23 17:18 - 2014-10-29 03:01 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Background.ps.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngcredui.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NETSTAT.EXE
2015-05-23 17:18 - 2014-10-29 03:00 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ipconfig.exe
2015-05-23 17:18 - 2014-10-29 03:00 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsjob.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxlegih.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BackgroundTransferHost.exe
2015-05-23 17:18 - 2014-10-29 03:00 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfmifs.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxdm.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvps.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Display.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.SystemManufacturers.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\encapi.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\delegatorprovider.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi_passthru.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ROUTE.EXE
2015-05-23 17:18 - 2014-10-29 03:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.RemoteDesktop.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TtlsExt.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommonPal.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallButtons.ProxyStub.dll
2015-05-23 17:18 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfmifsproxy.dll
2015-05-23 17:18 - 2014-10-29 02:59 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2015-05-23 17:18 - 2014-10-29 02:59 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschapext.dll
2015-05-23 17:18 - 2014-10-29 02:59 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastlsext.dll
2015-05-23 17:18 - 2014-10-29 02:58 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsdchngr.dll
2015-05-23 17:18 - 2014-10-29 02:58 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2015-05-23 17:18 - 2014-10-29 02:58 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\fdPHost.dll
2015-05-23 17:18 - 2014-10-29 02:58 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxshared.dll
2015-05-23 17:18 - 2014-10-29 02:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Startupscan.dll
2015-05-23 17:18 - 2014-10-29 02:58 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\bootim.exe
2015-05-23 17:18 - 2014-10-29 02:57 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\NcdAutoSetup.dll
2015-05-23 17:18 - 2014-10-29 02:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetmib1.dll
2015-05-23 17:18 - 2014-10-29 02:57 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2015-05-23 17:18 - 2014-10-29 02:57 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\datusage.dll
2015-05-23 17:18 - 2014-10-29 02:57 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\ByteCodeGenerator.exe
2015-05-23 17:18 - 2014-10-29 02:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrshost.exe
2015-05-23 17:18 - 2014-10-29 02:57 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\energytask.dll
2015-05-23 17:18 - 2014-10-29 02:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2015-05-23 17:18 - 2014-10-29 02:56 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nci.dll
2015-05-23 17:18 - 2014-10-29 02:55 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\CheckNetIsolation.exe
2015-05-23 17:18 - 2014-10-29 02:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\RdpSaProxy.exe
2015-05-23 17:18 - 2014-10-29 02:54 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\RdpSaUacHelper.exe
2015-05-23 17:18 - 2014-10-29 02:53 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifmon.dll
2015-05-23 17:18 - 2014-10-29 02:52 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrs.exe
2015-05-23 17:18 - 2014-10-29 02:50 - 00182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchTM.exe
2015-05-23 17:18 - 2014-10-29 02:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollCtrl.exe
2015-05-23 17:18 - 2014-10-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2015-05-23 17:18 - 2014-10-29 02:48 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slpts.dll
2015-05-23 17:18 - 2014-10-29 02:47 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3gpclnt.dll
2015-05-23 17:18 - 2014-10-29 02:46 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2015-05-23 17:18 - 2014-10-29 02:46 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ByteCodeGenerator.exe
2015-05-23 17:18 - 2014-10-29 02:46 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Startupscan.dll
2015-05-23 17:18 - 2014-10-29 02:45 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2015-05-23 17:18 - 2014-10-29 02:44 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CheckNetIsolation.exe
2015-05-23 17:18 - 2014-10-29 02:44 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaUacHelper.exe
2015-05-23 17:18 - 2014-10-29 02:44 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaProxy.exe
2015-05-23 17:18 - 2014-10-29 02:42 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncPolicy.dll
2015-05-23 17:18 - 2014-10-29 02:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncPolicy.dll
2015-05-23 17:18 - 2014-10-29 01:16 - 00002412 _____ C:\Windows\system32\KeyboardFilterShim.sdb
2015-05-23 17:18 - 2014-10-07 08:54 - 00324928 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-05-23 17:18 - 2014-10-07 08:54 - 00189248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2015-05-23 17:18 - 2014-10-07 08:54 - 00051008 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys
2015-05-23 17:18 - 2014-10-07 05:30 - 00026112 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys
2015-05-23 17:18 - 2014-10-07 05:29 - 00107520 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys
2015-05-23 17:18 - 2014-10-07 05:29 - 00032256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2015-05-23 17:18 - 2014-10-07 05:29 - 00030208 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2015-05-23 17:18 - 2014-08-15 02:36 - 00146752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2015-05-23 17:18 - 2014-07-24 13:51 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDRUM.DLL
2015-05-23 17:18 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-05-23 17:18 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTT102.DLL
2015-05-23 17:18 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-05-23 17:18 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-05-23 17:18 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-05-23 17:18 - 2014-07-24 13:51 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-05-23 17:18 - 2014-07-24 12:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2015-05-23 17:18 - 2014-07-24 12:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTT102.DLL
2015-05-23 17:18 - 2014-07-24 12:52 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2015-05-23 17:18 - 2014-07-24 12:51 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRUM.DLL
2015-05-23 17:18 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2015-05-23 17:18 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2015-05-23 17:18 - 2014-07-24 12:51 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2015-05-23 17:18 - 2014-06-21 09:33 - 00212736 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2015-05-23 17:18 - 2014-05-03 01:26 - 00050745 _____ C:\Windows\system32\srms.dat
2015-05-23 17:18 - 2014-03-13 14:35 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2015-05-23 17:11 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-23 17:11 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-23 17:11 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-23 17:11 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-23 17:11 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-23 17:11 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-23 17:11 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-23 17:11 - 2015-03-23 23:59 - 07476032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-05-23 17:11 - 2015-03-23 23:59 - 01733952 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-05-23 17:11 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-05-23 17:11 - 2015-03-23 23:58 - 01498872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-05-23 17:11 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-05-23 17:11 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2015-05-23 17:11 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-05-23 17:11 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-05-23 17:11 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-05-23 17:11 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-05-23 17:11 - 2015-03-20 04:40 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-05-23 17:11 - 2015-03-20 04:16 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-05-23 17:11 - 2015-03-14 10:54 - 00133256 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-05-23 17:11 - 2015-03-14 03:56 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-05-23 17:11 - 2015-03-14 03:56 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-05-23 17:11 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-05-23 17:11 - 2015-03-14 03:37 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-05-23 17:11 - 2015-03-14 03:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-05-23 17:11 - 2015-03-14 02:22 - 03678720 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-05-23 17:11 - 2015-03-14 02:12 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-05-23 17:11 - 2015-03-14 02:12 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-05-23 17:11 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-05-23 17:11 - 2015-03-14 02:08 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
         

Alt 12.06.2015, 13:58   #12
momdel
 
Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine  - Virus? - Standard

Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?



FRST Teil 8:

Code:
ATTFilter
2015-05-23 17:11 - 2015-03-14 02:08 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-05-23 17:11 - 2015-03-14 02:06 - 02373632 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-05-23 17:11 - 2015-03-14 02:06 - 00891392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-05-23 17:11 - 2015-03-14 02:02 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-05-23 17:11 - 2015-03-14 02:02 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-05-23 17:11 - 2015-03-14 01:59 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-05-23 17:11 - 2015-03-14 01:59 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-05-23 17:11 - 2015-03-13 02:29 - 00410017 _____ C:\Windows\system32\ApnDatabase.xml
2015-05-23 17:11 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-23 17:11 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-23 17:11 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-05-23 17:11 - 2015-02-20 04:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-05-23 17:11 - 2015-02-20 04:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-05-23 17:11 - 2015-01-16 00:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-05-23 17:11 - 2015-01-12 04:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-05-23 17:11 - 2015-01-12 03:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-05-23 17:11 - 2014-11-10 01:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-05-23 17:11 - 2014-11-10 01:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-05-23 17:11 - 2014-10-31 07:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-05-23 17:11 - 2014-10-31 07:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-05-23 17:11 - 2014-10-31 07:10 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-05-23 17:11 - 2014-10-31 07:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-05-23 17:11 - 2014-10-31 07:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-05-23 17:11 - 2014-10-31 07:06 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-05-23 17:11 - 2014-10-31 07:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-05-23 17:11 - 2014-10-31 07:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-05-23 17:11 - 2014-10-31 06:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-05-23 17:11 - 2014-10-31 06:56 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-05-23 17:11 - 2014-10-31 06:54 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-05-23 17:11 - 2014-10-31 06:52 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2015-05-23 17:11 - 2014-10-31 06:51 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-05-23 17:11 - 2014-10-31 06:51 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-05-23 17:11 - 2014-10-31 06:40 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-05-23 17:11 - 2014-10-31 06:30 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-23 17:11 - 2014-10-31 06:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-05-23 17:11 - 2014-10-31 06:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-05-23 17:11 - 2014-10-31 06:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-05-23 17:11 - 2014-10-31 06:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-05-23 17:11 - 2014-10-31 06:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-05-23 17:11 - 2014-10-31 05:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-05-23 17:11 - 2014-10-31 05:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2015-05-23 17:11 - 2014-10-31 05:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-05-23 17:11 - 2014-10-31 05:27 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2015-05-23 17:11 - 2014-10-31 05:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2015-05-23 17:11 - 2014-10-31 05:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-05-23 17:11 - 2014-10-31 05:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-05-23 17:11 - 2014-10-31 05:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-05-23 17:11 - 2014-10-31 05:23 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-05-23 17:11 - 2014-10-31 05:16 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-05-23 17:11 - 2014-10-31 05:15 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-05-23 17:11 - 2014-10-31 05:14 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2015-05-23 17:11 - 2014-10-31 05:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-05-23 17:11 - 2014-10-31 05:13 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2015-05-23 17:11 - 2014-10-31 05:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-05-23 17:11 - 2014-10-31 05:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2015-05-23 17:11 - 2014-10-31 04:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-05-23 17:11 - 2014-10-31 04:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2015-05-23 17:11 - 2014-10-31 04:56 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-05-23 17:11 - 2014-10-31 04:56 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-05-23 17:11 - 2014-10-31 04:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-05-23 17:11 - 2014-10-31 04:53 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-05-23 17:11 - 2014-10-31 04:48 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-05-23 17:11 - 2014-10-31 04:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2015-05-23 17:11 - 2014-10-29 04:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-05-23 17:11 - 2014-10-29 04:50 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-05-23 17:11 - 2014-10-29 04:45 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-05-23 17:11 - 2014-10-29 04:44 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-05-23 17:11 - 2014-10-29 04:43 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-05-23 17:11 - 2014-10-29 04:17 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-05-23 17:11 - 2014-10-29 04:06 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-05-23 17:11 - 2014-10-29 04:06 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-05-23 17:11 - 2014-10-29 04:00 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-05-23 17:11 - 2014-10-29 04:00 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-05-23 17:11 - 2014-10-29 03:58 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-05-23 17:11 - 2014-10-29 03:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-05-23 17:11 - 2014-10-29 03:38 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-05-23 17:11 - 2014-10-29 03:26 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-05-23 17:11 - 2014-10-29 03:26 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-05-23 17:11 - 2014-10-29 03:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-05-23 17:11 - 2014-10-29 03:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-05-23 17:11 - 2014-10-29 03:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-05-23 17:11 - 2014-10-29 03:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-05-23 17:11 - 2014-10-29 03:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-05-23 17:11 - 2014-10-29 03:04 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-05-23 17:11 - 2014-10-29 03:04 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-05-23 17:11 - 2014-10-18 08:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2015-05-23 17:11 - 2014-02-06 13:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-05-23 17:11 - 2014-02-06 13:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-05-23 17:11 - 2014-02-06 12:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-05-23 17:09 - 2015-03-13 06:03 - 00239424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-05-23 17:09 - 2015-03-13 06:03 - 00154432 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-05-23 17:09 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-05-23 17:09 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2015-05-23 17:09 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-05-23 17:09 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-05-23 17:09 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-05-23 17:09 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-05-23 17:09 - 2015-01-28 03:31 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-05-23 17:09 - 2015-01-28 03:11 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-05-23 17:09 - 2015-01-27 06:22 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-05-23 17:09 - 2015-01-27 04:11 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-05-23 17:09 - 2014-10-29 05:56 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-05-23 17:09 - 2014-10-29 04:48 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2015-05-23 17:09 - 2014-10-29 04:42 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-05-23 17:09 - 2014-10-29 04:37 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2015-05-23 17:09 - 2014-10-29 03:19 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-05-23 17:09 - 2014-10-29 02:59 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-05-23 17:09 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-05-23 17:09 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-05-23 17:09 - 2014-06-02 04:10 - 00423768 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2015-05-23 17:09 - 2014-05-31 12:07 - 00440664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-05-23 17:09 - 2014-05-31 12:07 - 00089944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-05-23 17:09 - 2014-05-31 12:07 - 00027480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-05-23 17:09 - 2014-05-31 08:30 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-05-23 17:09 - 2014-04-09 00:46 - 00086688 _____ (Microsoft Corporation) C:\Windows\system32\mrt_map.dll
2015-05-23 17:09 - 2014-04-09 00:46 - 00028320 _____ (Microsoft Corporation) C:\Windows\system32\mrt100.dll
2015-05-23 17:09 - 2014-04-08 20:54 - 00080032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt_map.dll
2015-05-23 17:09 - 2014-04-08 20:54 - 00026784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mrt100.dll
2015-05-23 17:08 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-23 17:08 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-05-23 17:08 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-05-23 17:08 - 2015-02-12 19:40 - 22291584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-05-23 17:08 - 2015-02-12 19:34 - 19731824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-05-23 17:08 - 2015-01-29 20:45 - 01763352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-05-23 17:08 - 2015-01-29 20:34 - 01488040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-05-23 17:08 - 2015-01-28 04:24 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\StorageContextHandler.dll
2015-05-23 17:08 - 2015-01-28 03:47 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorageContextHandler.dll
2015-05-23 17:08 - 2015-01-28 01:47 - 02501368 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-05-23 17:08 - 2015-01-28 01:41 - 02207488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-05-23 17:08 - 2014-12-19 08:26 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-05-23 17:08 - 2014-12-08 21:42 - 00535640 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-05-23 17:08 - 2014-12-08 21:42 - 00531616 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-05-23 17:08 - 2014-12-08 21:42 - 00448792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-05-23 17:08 - 2014-12-08 21:42 - 00413248 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-05-23 17:08 - 2014-12-08 21:42 - 00372408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-05-23 17:08 - 2014-12-08 21:42 - 00108944 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-05-23 17:08 - 2014-12-08 21:42 - 00038264 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-05-23 17:08 - 2014-12-08 21:42 - 00033584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-05-23 17:08 - 2014-12-06 05:17 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-05-23 17:08 - 2014-12-06 03:41 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-05-23 17:08 - 2014-12-06 03:35 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-05-23 17:08 - 2014-10-29 06:00 - 00465320 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2015-05-23 17:08 - 2014-10-29 06:00 - 00139984 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2015-05-23 17:08 - 2014-10-29 05:52 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-05-23 17:08 - 2014-10-29 05:52 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-05-23 17:08 - 2014-10-29 05:52 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-05-23 17:08 - 2014-10-29 05:52 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-05-23 17:08 - 2014-10-29 05:12 - 00413136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2015-05-23 17:08 - 2014-10-29 05:12 - 00136296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2015-05-23 17:08 - 2014-10-29 05:07 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-05-23 17:08 - 2014-10-29 05:07 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-05-23 17:08 - 2014-10-29 05:07 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-05-23 17:08 - 2014-10-29 04:44 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2015-05-23 17:08 - 2014-10-29 03:59 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2015-05-23 17:08 - 2014-10-29 03:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-05-23 17:08 - 2014-10-29 03:02 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-05-23 17:08 - 2014-10-29 03:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-05-23 17:07 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-05-23 17:07 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-05-23 17:07 - 2015-02-08 01:57 - 01090048 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2015-05-23 17:07 - 2015-02-08 01:49 - 00791040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2015-05-23 17:07 - 2015-02-03 02:03 - 03551744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2015-05-23 17:07 - 2015-02-03 02:02 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2015-05-23 17:07 - 2015-01-30 04:03 - 01488896 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-05-23 17:07 - 2015-01-30 04:03 - 01464832 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-05-23 17:07 - 2015-01-30 04:02 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2015-05-23 17:07 - 2015-01-30 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2015-05-23 17:07 - 2015-01-30 03:42 - 01204224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2015-05-23 17:07 - 2015-01-30 03:40 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2015-05-23 17:07 - 2015-01-30 03:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2015-05-23 17:07 - 2015-01-30 03:29 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atlthunk.dll
2015-05-23 17:07 - 2015-01-30 03:24 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2015-05-23 17:07 - 2015-01-30 03:24 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2015-05-23 17:07 - 2015-01-30 03:16 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2015-05-23 17:07 - 2015-01-30 03:08 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2015-05-23 17:07 - 2015-01-30 03:06 - 00278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2015-05-23 17:07 - 2015-01-29 03:11 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-05-23 17:07 - 2015-01-29 03:00 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-05-23 17:07 - 2015-01-29 02:59 - 02773504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-05-23 17:07 - 2015-01-29 02:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-05-23 17:07 - 2015-01-29 02:50 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-05-23 17:07 - 2015-01-29 02:49 - 02459136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-05-23 17:07 - 2015-01-19 20:42 - 01487976 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-05-23 17:07 - 2014-12-11 07:36 - 00046456 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentServer.exe
2015-05-23 17:07 - 2014-10-29 04:34 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WSCollect.exe
2015-05-23 17:07 - 2014-10-29 04:34 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe
2015-05-23 17:07 - 2014-10-29 03:28 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\atlthunk.dll
2015-05-23 17:07 - 2014-10-29 03:19 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\eappprxy.dll
2015-05-23 17:07 - 2014-10-29 03:13 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-05-23 17:07 - 2014-10-29 02:59 - 00056320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappprxy.dll
2015-05-23 17:07 - 2014-10-29 02:55 - 00223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-05-23 17:07 - 2014-10-13 04:43 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-05-23 17:07 - 2014-10-13 04:43 - 00039744 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2015-05-23 16:17 - 2015-05-23 16:17 - 00000000 ____D C:\ProgramData\Brother
2015-05-23 15:59 - 2015-05-23 15:59 - 31027708 _____ C:\Users\*****\Downloads\Creo_Konfiguration_Stand_11_2014.zip
2015-05-23 15:47 - 2015-05-23 15:47 - 00000000 ____D C:\Users\*****\AppData\Roaming\Macromedia
2015-05-23 15:47 - 2015-05-23 15:47 - 00000000 ____D C:\Program Files\Common Files\PTC
2015-05-23 15:45 - 2015-05-23 16:02 - 00000112 _____ C:\Users\Public\Documents\std.err
2015-05-23 15:45 - 2015-05-23 15:47 - 00000000 ____D C:\Users\*****\AppData\Local\PTC
2015-05-23 15:45 - 2015-05-23 15:46 - 00000000 ____D C:\Users\*****\AppData\Roaming\PTC
2015-05-23 15:45 - 2015-05-23 15:45 - 00000000 ____D C:\Users\*****\AppData\Roaming\NVIDIA
2015-05-23 15:36 - 2015-05-23 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PTC
2015-05-23 15:35 - 2015-05-23 15:47 - 00000000 ____D C:\Program Files (x86)\PTC
2015-05-23 15:34 - 2015-05-23 15:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PTC Creo
2015-05-23 15:34 - 2015-05-23 15:41 - 00000000 ____D C:\Program Files\PTC
2015-05-23 15:33 - 2015-05-23 15:35 - 00000000 ____D C:\ProgramData\PTC
2015-05-23 15:31 - 2015-05-23 15:41 - 00035677 _____ C:\Users\*****\Documents\pim_installmgr.log
2015-05-23 15:01 - 2015-05-23 20:02 - 00000000 ____D C:\Windows\SysWOW64\NV
2015-05-23 15:01 - 2015-05-23 20:02 - 00000000 ____D C:\Windows\system32\NV
2015-05-23 13:09 - 2015-05-23 13:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco
2015-05-23 13:08 - 2015-05-23 13:09 - 00000000 ____D C:\ProgramData\Cisco
2015-05-23 13:08 - 2015-05-23 13:08 - 00000000 ____D C:\Users\*****\AppData\Local\Cisco
2015-05-23 13:08 - 2015-02-19 23:16 - 00112496 ____R (Cisco Systems, Inc.) C:\Windows\system32\Drivers\acsock64.sys
2015-05-23 12:24 - 2015-06-12 12:27 - 00000000 ____D C:\Users\*****\Documents\Outlook-Dateien
2015-05-21 19:07 - 2015-05-21 19:09 - 00000000 ____D C:\Treiber Setups
2015-05-21 14:29 - 2015-05-21 14:29 - 07140973 _____ C:\Users\*****\Downloads\Regionalsprechertreffen Mai 2015.pptx
2015-05-21 11:28 - 2015-05-21 11:28 - 00000000 ____D C:\Windows\PCHEALTH
2015-05-21 11:28 - 2015-05-21 11:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-05-21 11:27 - 2015-05-21 11:27 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2015-05-21 11:24 - 2015-05-21 11:24 - 00000000 ____D C:\Program Files\Microsoft Office
2015-05-21 11:23 - 2015-06-10 02:39 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-05-21 11:23 - 2015-05-21 11:28 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-05-21 11:23 - 2015-05-21 11:23 - 00000000 __RHD C:\MSOCache
2015-05-21 11:23 - 2015-05-21 11:23 - 00000000 ____D C:\Users\*****\AppData\Local\Microsoft Help
2015-05-21 11:23 - 2015-05-21 11:23 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2015-05-21 11:19 - 2015-05-21 11:19 - 00000000 ____D C:\Users\*****\AppData\Local\NVIDIA
2015-05-21 11:18 - 2015-05-21 11:18 - 00016324 _____ C:\Windows\system32\results.xml
2015-05-21 11:14 - 2015-06-12 12:26 - 00000000 ____D C:\ProgramData\NVIDIA
2015-05-21 11:14 - 2015-02-05 19:57 - 00621384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-05-21 11:13 - 2015-05-21 11:14 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-05-21 11:13 - 2015-05-21 11:14 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-05-21 11:13 - 2015-05-21 11:14 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-05-21 11:13 - 2015-02-05 21:07 - 06861128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-05-21 11:13 - 2015-02-05 21:07 - 03517584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-05-21 11:13 - 2015-02-05 21:07 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-05-21 11:13 - 2015-02-05 21:07 - 00935056 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-05-21 11:13 - 2015-02-05 21:07 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-05-21 11:13 - 2015-02-05 21:06 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-05-21 11:13 - 2015-02-05 14:50 - 04236870 _____ C:\Windows\system32\nvcoproc.bin
2015-05-21 11:11 - 2015-05-21 11:11 - 00000000 ____D C:\Users\*****\AppData\Roaming\Mozilla
2015-05-21 11:11 - 2015-05-21 11:11 - 00000000 ____D C:\Users\*****\AppData\Local\Mozilla
2015-05-21 11:01 - 2015-05-21 11:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-05-21 11:01 - 2015-05-21 11:01 - 00000000 ____D C:\Program Files\7-Zip
2015-05-21 10:58 - 2015-06-12 11:53 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-05-21 10:57 - 2015-06-12 11:56 - 00000000 ____D C:\ProgramData\Adobe
2015-05-21 10:57 - 2015-06-12 11:50 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-05-21 10:57 - 2015-05-21 10:57 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-05-21 10:55 - 2015-06-11 21:56 - 00000000 ____D C:\Users\*****\AppData\Roaming\Skype
2015-05-21 10:55 - 2015-05-21 10:55 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-05-21 10:55 - 2015-05-21 10:55 - 00000000 ____D C:\Users\*****\AppData\Local\Skype
2015-05-21 10:55 - 2015-05-21 10:55 - 00000000 ____D C:\ProgramData\Skype
2015-05-21 10:55 - 2015-05-21 10:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-05-21 10:53 - 2015-06-12 12:20 - 00000000 ____D C:\Users\*****\AppData\Local\Adobe
2015-05-21 10:51 - 2015-05-21 10:51 - 00000887 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-05-21 10:51 - 2015-05-21 10:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-05-21 10:51 - 2015-05-21 10:51 - 00000000 ____D C:\Program Files\VideoLAN
2015-05-21 10:49 - 2015-06-12 12:38 - 00000000 ____D C:\ProgramData\Avira
2015-05-21 10:49 - 2015-06-12 12:38 - 00000000 ____D C:\Program Files (x86)\Avira
2015-05-21 10:46 - 2015-05-21 10:46 - 00000000 ____D C:\ProgramData\Mozilla
2015-05-21 10:39 - 2015-05-21 10:39 - 00001436 _____ C:\Windows\Synaptics.log
2015-05-21 10:39 - 2015-05-21 10:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-05-21 10:39 - 2015-05-21 10:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-05-21 10:39 - 2015-05-21 10:39 - 00000000 ____D C:\Program Files\Synaptics
2015-05-21 10:39 - 2014-08-08 02:20 - 00549104 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2015-05-21 10:39 - 2014-08-08 02:20 - 00208112 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo20.dll
2015-05-21 10:39 - 2014-08-08 02:19 - 00254704 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2015-05-21 10:38 - 2015-05-21 10:38 - 00000748 _____ C:\Users\Public\Desktop\Intel(R) HD Graphics Control Panel.lnk
2015-05-21 10:38 - 2014-08-08 02:20 - 00031472 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
2015-05-21 10:38 - 2014-08-08 02:19 - 00745200 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2015-05-21 10:38 - 2014-08-08 02:19 - 00404720 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll
2015-05-21 10:38 - 2013-09-06 02:44 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2015-05-21 10:38 - 2013-09-06 02:44 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
2015-05-21 10:28 - 2014-01-08 10:56 - 07596528 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 02476976 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiVAD64.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00906224 _____ (Intel Corporation) C:\Windows\system32\igfxstarter.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00845296 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00771568 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00770544 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00755184 _____ (Intel Corporation) C:\Windows\system32\GfxUIHotKeyMenu.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00530928 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00416240 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUMS64.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00397808 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00396784 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00391152 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2015-05-21 10:28 - 2014-01-08 10:56 - 00153072 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2015-05-21 10:28 - 2013-12-31 05:06 - 00450520 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2015-05-21 10:28 - 2013-12-31 05:06 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3383.dll
2015-05-21 10:28 - 2013-12-31 05:03 - 00002940 _____ C:\Windows\system32\iglhxs64.vp
2015-05-21 10:28 - 2013-12-31 05:01 - 19202560 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2015-05-21 10:28 - 2013-12-31 05:01 - 06280704 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll
2015-05-21 10:28 - 2013-12-31 05:01 - 00280064 _____ C:\Windows\SysWOW64\igdmd32.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 21658624 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 21007360 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 19950592 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 09081856 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 07944704 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 04220416 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2015-05-21 10:28 - 2013-12-31 05:00 - 02384896 _____ C:\Windows\system32\GfxRes.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00729088 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00624640 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00548864 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00527872 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00527360 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00527360 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00527360 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00526848 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00526848 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00526336 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00526336 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00526336 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00525824 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00525312 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00525312 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00525312 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00524800 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00524800 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00524288 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00524288 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00523776 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00522240 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00521728 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00517632 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00516096 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00514048 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00513536 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00493056 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00371200 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2015-05-21 10:28 - 2013-12-31 05:00 - 00347648 _____ C:\Windows\system32\igdmd64.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00346624 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00279040 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2015-05-21 10:28 - 2013-12-31 05:00 - 00267407 _____ C:\Windows\system32\Gfxres.th-TH.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00253466 _____ C:\Windows\system32\Gfxres.el-GR.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00243712 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00235401 _____ C:\Windows\system32\Gfxres.ru-RU.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00224256 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00222208 _____ C:\Windows\system32\igdde64.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00201128 _____ C:\Windows\system32\Gfxres.ar-SA.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00198725 _____ C:\Windows\system32\Gfxres.ja-JP.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00194560 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00192758 _____ C:\Windows\system32\Gfxres.he-IL.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00182272 _____ C:\Windows\SysWOW64\igdde32.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00180936 _____ C:\Windows\system32\Gfxres.ko-KR.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00180850 _____ C:\Windows\system32\Gfxres.it-IT.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00178473 _____ C:\Windows\system32\Gfxres.es-ES.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00178290 _____ C:\Windows\system32\Gfxres.fr-FR.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00178123 _____ C:\Windows\system32\Gfxres.de-DE.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00176838 _____ C:\Windows\system32\Gfxres.ro-RO.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00175862 _____ C:\Windows\system32\Gfxres.hu-HU.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00175571 _____ C:\Windows\system32\Gfxres.tr-TR.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00175067 _____ C:\Windows\system32\Gfxres.nl-NL.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00174802 _____ C:\Windows\system32\Gfxres.pl-PL.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00174269 _____ C:\Windows\system32\Gfxres.pt-BR.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00173792 _____ C:\Windows\system32\Gfxres.fi-FI.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00173276 _____ C:\Windows\system32\Gfxres.sk-SK.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00173059 _____ C:\Windows\system32\Gfxres.sv-SE.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00172833 _____ C:\Windows\system32\Gfxres.pt-PT.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00172554 _____ C:\Windows\system32\Gfxres.cs-CZ.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00171691 _____ C:\Windows\system32\Gfxres.hr-HR.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00168215 _____ C:\Windows\system32\Gfxres.sl-SI.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00166833 _____ C:\Windows\system32\Gfxres.nb-NO.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00166220 _____ C:\Windows\system32\Gfxres.da-DK.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00161534 _____ C:\Windows\system32\Gfxres.en-US.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00160256 _____ C:\Windows\system32\igdail64.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00154805 _____ C:\Windows\system32\Gfxres.zh-TW.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00152993 _____ C:\Windows\system32\Gfxres.zh-CN.resources
2015-05-21 10:28 - 2013-12-31 05:00 - 00142848 _____ C:\Windows\SysWOW64\igdail32.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00066560 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00029696 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00025600 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2015-05-21 10:28 - 2013-12-31 05:00 - 00012288 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2015-05-21 10:28 - 2013-12-31 04:53 - 25971712 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2015-05-21 10:28 - 2013-12-31 04:53 - 20954112 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2015-05-21 10:28 - 2013-12-31 04:53 - 03207680 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2015-05-21 10:28 - 2013-12-31 04:53 - 02881536 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2015-05-21 10:28 - 2013-12-31 04:53 - 00329216 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2015-05-21 10:28 - 2013-12-31 04:53 - 00320512 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2015-05-21 10:28 - 2013-12-31 04:53 - 00290816 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2015-05-21 10:28 - 2013-12-31 04:53 - 00265216 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 04011168 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAAC64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 02065920 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 01815040 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 01450656 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSecureSourceFilter64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00785568 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiWinNextAgent64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00644768 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAudioFilter64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00602272 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMux64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00344736 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSilenceFilter64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00210592 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUtils64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00177824 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiDDEAgent64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00163328 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00155136 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00137728 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00133120 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00128672 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMCUMD64.dll
2015-05-21 10:28 - 2013-12-31 04:47 - 00094368 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiLogServer64.dll
2015-05-21 10:28 - 2013-12-31 04:46 - 04472320 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2015-05-21 10:28 - 2013-12-31 04:28 - 03556864 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2015-05-21 10:28 - 2013-09-06 02:44 - 02813952 _____ C:\Windows\system32\iglhxa64.cpa
2015-05-21 10:28 - 2013-09-06 02:44 - 01127424 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2015-05-21 10:28 - 2013-09-06 02:44 - 01123328 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2015-05-21 10:28 - 2013-09-06 02:44 - 00214528 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2015-05-21 10:28 - 2013-09-06 02:44 - 00179712 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2015-05-21 10:28 - 2013-09-06 02:44 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll
2015-05-21 10:28 - 2013-09-06 02:44 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll
2015-05-21 10:28 - 2013-09-06 02:44 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2015-05-21 10:28 - 2013-09-06 02:44 - 00044025 _____ C:\Windows\system32\iglhxo64.vp
2015-05-21 10:28 - 2013-09-06 02:44 - 00043816 _____ C:\Windows\system32\iglhxc64_dev.vp
2015-05-21 10:28 - 2013-09-06 02:44 - 00043494 _____ C:\Windows\system32\iglhxc64.vp
2015-05-21 10:28 - 2013-09-06 02:44 - 00043298 _____ C:\Windows\system32\iglhxg64_dev.vp
2015-05-21 10:28 - 2013-09-06 02:44 - 00043256 _____ C:\Windows\system32\iglhxg64.vp
2015-05-21 10:28 - 2013-09-06 02:44 - 00042079 _____ C:\Windows\system32\iglhxo64_dev.vp
2015-05-21 10:28 - 2013-09-06 02:44 - 00001125 _____ C:\Windows\system32\iglhxa64.vp
2015-05-21 10:27 - 2015-06-12 12:28 - 00000000 ____D C:\ProgramData\Package Cache
2015-05-21 10:27 - 2015-05-23 13:09 - 00000000 ____D C:\Program Files (x86)\Cisco
2015-05-21 10:27 - 2015-05-21 10:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2015-05-21 10:27 - 2015-05-21 10:27 - 00000000 ____D C:\Users\*****\Intel.sav
2015-05-21 10:27 - 2015-05-21 10:27 - 00000000 ____D C:\Users\*****\AppData\Roaming\Intel
2015-05-21 10:27 - 2015-05-21 10:27 - 00000000 ____D C:\ProgramData\Intel.sav
2015-05-21 10:27 - 2015-05-21 10:27 - 00000000 ____D C:\Program Files\Common Files\Intel
2015-05-21 10:25 - 2015-06-01 14:19 - 00027558 _____ C:\Windows\DPINST.LOG
2015-05-21 10:25 - 2015-05-21 10:25 - 00000000 ____D C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2015-05-21 10:25 - 2015-05-21 10:25 - 00000000 ____D C:\ProgramData\Energy Manager
2015-05-21 10:25 - 2015-05-21 10:25 - 00000000 ____D C:\Program Files\DIFX
2015-05-21 10:24 - 2015-05-21 10:24 - 00000000 ____D C:\ProgramData\Downloaded Installations
2015-05-21 10:24 - 2015-05-21 10:24 - 00000000 ____D C:\Program Files (x86)\Lenovo
2015-05-21 09:36 - 2015-05-21 10:24 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-05-21 09:36 - 2015-05-21 09:36 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-05-21 09:36 - 2014-01-21 19:10 - 09105624 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\rtsuvc.sys
2015-05-21 09:36 - 2014-01-21 19:10 - 06340312 _____ (Realtek semiconductor) C:\Windows\RTFTrack.exe
2015-05-21 09:36 - 2014-01-21 19:10 - 02628312 _____ (Realtek Semiconductor Corp.) C:\Windows\RtCamU64.exe
2015-05-21 09:36 - 2014-01-21 19:10 - 01157563 _____ C:\Windows\FTDataP.xml
2015-05-21 09:36 - 2014-01-21 19:10 - 00946032 _____ C:\Windows\FTData.xml
2015-05-21 09:36 - 2014-01-21 19:10 - 00817241 _____ C:\Windows\FTDataR1.xml
2015-05-21 09:36 - 2014-01-21 19:10 - 00817191 _____ C:\Windows\FTDataR0.xml
2015-05-21 09:36 - 2014-01-21 19:10 - 00472792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtCamX64.dll
2015-05-21 09:36 - 2014-01-21 19:10 - 00419032 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtCamX.dll
2015-05-21 09:35 - 2015-05-21 09:35 - 01715596 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-05-21 09:35 - 2015-05-21 09:35 - 00000000 ____D C:\Users\*****\AppData\Roaming\Intel Corporation
2015-05-21 09:34 - 2015-05-21 10:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-05-21 09:33 - 2015-05-21 09:33 - 00000000 ____D C:\Users\*****\Intel
2015-05-21 09:32 - 2015-05-21 10:38 - 00000000 ____D C:\Program Files\Intel
2015-05-21 09:32 - 2015-05-21 10:27 - 00000000 ____D C:\ProgramData\Intel
2015-05-21 09:32 - 2013-09-04 07:53 - 00016344 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
2015-05-21 09:31 - 2015-06-01 14:19 - 00000000 ____D C:\Program Files (x86)\Intel
2015-05-21 09:31 - 2015-05-21 10:37 - 00000000 ____D C:\Intel
2015-05-21 09:31 - 2015-05-21 09:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-05-21 09:31 - 2013-09-04 07:53 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2015-05-21 09:31 - 2013-09-04 07:53 - 00099288 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2015-05-21 09:30 - 2015-05-21 09:30 - 00000000 ____D C:\BIOS
2015-05-21 09:27 - 2015-05-21 09:27 - 00000000 __SHD C:\Users\*****\AppData\Local\EmieUserList
2015-05-21 09:27 - 2015-05-21 09:27 - 00000000 __SHD C:\Users\*****\AppData\Local\EmieSiteList
2015-05-21 08:50 - 2015-05-21 07:55 - 00000000 ____D C:\Windows\Panther
2015-05-21 08:00 - 2015-06-12 12:44 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4118197852-1386457393-492245417-1001
2015-05-21 07:55 - 2015-06-12 12:58 - 00000000 ____D C:\Users\*****
2015-05-21 07:55 - 2015-06-12 11:57 - 00000000 ____D C:\Users\*****\AppData\Roaming\Adobe
2015-05-21 07:55 - 2015-05-23 16:02 - 00000000 ____D C:\Users\*****\AppData\Local\VirtualStore
2015-05-21 07:55 - 2015-05-21 07:55 - 00001450 _____ C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-21 07:55 - 2015-05-21 07:55 - 00000020 ___SH C:\Users\*****\ntuser.ini
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\Vorlagen
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\Startmenü
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\Netzwerkumgebung
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\Lokale Einstellungen
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\Eigene Dateien
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\Druckumgebung
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\Documents\Eigene Musik
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\Documents\Eigene Bilder
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\AppData\Local\Verlauf
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\AppData\Local\Anwendungsdaten
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 _SHDL C:\Users\*****\Anwendungsdaten
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 ____D C:\Windows\CSC
2015-05-21 07:55 - 2015-05-21 07:55 - 00000000 ____D C:\Users\*****\AppData\Local\Packages
2015-05-21 07:55 - 2014-03-18 12:33 - 00000000 ___RD C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-21 07:55 - 2014-03-18 12:33 - 00000000 ___RD C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-05-21 07:55 - 2014-03-18 12:13 - 00000369 _____ C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-05-21 07:55 - 2014-03-18 12:13 - 00000369 _____ C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-05-21 07:55 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-21 07:55 - 2013-08-22 17:36 - 00000000 ____D C:\Users\*****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-05-21 07:54 - 2015-06-12 12:48 - 01860783 _____ C:\Windows\WindowsUpdate.log
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Programme
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\ProgramData\Vorlagen
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\ProgramData\Startmenü
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\ProgramData\Dokumente
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2015-05-21 07:53 - 2015-05-21 07:53 - 00000000 _SHDL C:\Dokumente und Einstellungen
2015-05-21 07:52 - 2015-05-21 07:52 - 00000000 __SHD C:\Recovery

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-12 13:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-06-12 12:47 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-06-12 12:34 - 2014-03-18 12:04 - 01689572 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-12 12:34 - 2014-03-18 11:29 - 00728968 _____ C:\Windows\system32\perfh007.dat
2015-06-12 12:34 - 2014-03-18 11:29 - 00152122 _____ C:\Windows\system32\perfc007.dat
2015-06-12 12:26 - 2014-03-18 03:53 - 00212162 _____ C:\Windows\PFRO.log
2015-06-12 12:26 - 2013-08-22 16:45 - 00015855 _____ C:\Windows\setupact.log
2015-06-12 12:26 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-12 12:19 - 2013-08-22 16:44 - 00555312 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-10 11:47 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-06-10 02:39 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-10 02:39 - 2013-08-22 15:25 - 00000167 _____ C:\Windows\win.ini
2015-06-10 00:17 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-06-08 17:48 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-06-06 18:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-06-03 18:18 - 2013-08-22 17:38 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-03 18:18 - 2013-08-22 17:38 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-31 17:25 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\FxsTmp
2015-05-24 04:50 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2015-05-24 04:50 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-24 04:50 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-24 04:50 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-24 04:50 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sr-Latn-RS
2015-05-24 04:50 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2015-05-24 04:50 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-05-24 04:50 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-05-24 00:52 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppCompat
2015-05-23 20:55 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-05-23 20:55 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-05-23 20:03 - 2013-08-22 17:37 - 00002988 _____ C:\Windows\DtcInstall.log
2015-05-23 19:56 - 2014-03-18 11:45 - 00000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\sppui
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\setup
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\MediaViewer
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\FileManager
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Camera
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-05-23 19:56 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-05-23 19:56 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-05-23 19:56 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-05-23 19:56 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\servicing
2015-05-23 19:55 - 2013-08-22 17:36 - 00000000 ___SD C:\Windows\system32\dsc
2015-05-23 19:55 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-05-23 19:55 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-05-23 19:55 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sppui
2015-05-23 19:55 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\setup
2015-05-23 19:55 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\SecureBootUpdates
2015-05-23 19:55 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\migwiz
2015-05-23 19:55 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Com
2015-05-23 19:55 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\IME
2015-05-23 19:55 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Sysprep
2015-05-23 19:55 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\oobe
2015-05-23 19:55 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Dism
2015-05-23 19:54 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2015-05-23 19:54 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\InputMethod
2015-05-23 19:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\WindowsPowerShell
2015-05-23 19:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-05-23 19:53 - 2014-03-18 11:45 - 00000000 ____D C:\Program Files\Windows Journal
2015-05-23 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-05-23 19:48 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-05-23 19:35 - 2013-08-22 17:36 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-05-23 19:35 - 2013-08-22 17:36 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2015-05-21 11:28 - 2014-03-18 11:45 - 00000000 ____D C:\Windows\ShellNew
2015-05-21 11:13 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Help
2015-05-21 10:27 - 2013-08-22 15:36 - 00000000 __RHD C:\Users\Default
2015-05-21 10:24 - 2013-09-24 15:40 - 00035576 _____ (Lenovo Corporation) C:\Windows\system32\Drivers\AcpiVpc.sys
2015-05-21 10:24 - 2012-02-21 05:48 - 02356592 _____ (Microsoft Corporation) C:\Windows\system32\WudfUpdate_01011.dll
2015-05-21 09:34 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\restore
2015-05-21 08:50 - 2013-08-22 17:36 - 00262144 _____ C:\Windows\system32\config\BCD-Template
2015-05-21 07:53 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows NT
2015-05-21 07:52 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Recovery

Some files in TEMP:
====================
C:\Users\*****\AppData\Local\Temp\avgnt.exe
C:\Users\*****\AppData\Local\Temp\ose00000.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-10 11:23

==================== End of log ============================
         

Antwort

Themen zu Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?
anhänge, anhängen, automatisch, converter, einstellungen, einträge, firefox, google, hängen, installiert, installierte, irgendetwas, logfiles, neu, pdf, plötzlich, sauber, spybot, suchmaschine, suchmaschinen, super, system, tab, virus, virus?, windows



Ähnliche Themen: Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?


  1. vlc installierte Startseite.de
    Plagegeister aller Art und deren Bekämpfung - 12.07.2014 (13)
  2. Windows 7: Allin1 Converter / Suchmaschine V9 statt Google / Updateports blockiert
    Log-Analyse und Auswertung - 29.05.2014 (11)
  3. Win 8.1 Startet automatisch den Standard Browser mit der Bing Suchmaschine
    Log-Analyse und Auswertung - 06.04.2014 (14)
  4. Google Suchergebnisse wewrden nicht mehr angezeigt, es öffnet sich teilweise automatisch die Suchmaschine ask
    Plagegeister aller Art und deren Bekämpfung - 15.03.2014 (12)
  5. VLC.de Suchmaschine Trojaner entfernen / Windows 8
    Plagegeister aller Art und deren Bekämpfung - 13.01.2014 (5)
  6. Millionenfach installierte Android-App schnüffelte Nutzerdaten aus
    Nachrichten - 06.12.2013 (0)
  7. Windows 7: Snap.do und Search-Gol wird je nach User unter Firefox als Suchmaschine vorgeschlagen
    Log-Analyse und Auswertung - 14.10.2013 (9)
  8. Windows 7: Suchmaschine en.v9.com aus firefox entfernen
    Log-Analyse und Auswertung - 13.09.2013 (9)
  9. Redirect Virus NB - Landete auf MyFilestore.com bei google Suche und installierte etwas Komisches
    Log-Analyse und Auswertung - 28.04.2013 (23)
  10. Windows 7 - Firefox andauernde Störung durch Babylon Suchmaschine
    Alles rund um Windows - 27.11.2012 (3)
  11. Security Shield installierte sich bei mir
    Log-Analyse und Auswertung - 18.07.2012 (3)
  12. Microsoft installierte ungefragt Skype
    Nachrichten - 28.06.2012 (0)
  13. Unnötig Installierte Programme ?
    Alles rund um Windows - 01.01.2011 (6)
  14. Batch - Installierte Programme Auslesen
    Alles rund um Windows - 30.03.2009 (9)
  15. Installierte Backdoor?
    Alles rund um Windows - 15.11.2007 (1)
  16. komischer Virenscanner installierte sich selber
    Log-Analyse und Auswertung - 16.04.2006 (1)
  17. Installierte Dienste nachhaltig konfigurieren?
    Alles rund um Windows - 04.03.2003 (1)

Zum Thema Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus? - Hallo, ich habe mir leider aus Unachtsamkeit durch Herunterladen eines PDF Converter Programmes (PDFCreator24) irgendetwas eingefangen. Plötzlich bekomme ich die Suchmaschine Bing, die ich nie installiert habe, bei jedem neu - Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?...
Archiv
Du betrachtest: Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.