Code:
Alles auswählen Aufklappen ATTFilter
2016-08-26 02:12 - 2014-10-29 03:58 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsied.dll
2016-08-26 02:12 - 2014-10-29 03:58 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapiperf.dll
2016-08-26 02:12 - 2014-10-29 03:58 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2016-08-26 02:12 - 2014-10-29 03:58 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TimeDateMUICallback.dll
2016-08-26 02:12 - 2014-10-29 03:58 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acledit.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSTIFF.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmintf.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcacli.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpupdate.exe
2016-08-26 02:12 - 2014-10-29 03:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcmsetup.exe
2016-08-26 02:12 - 2014-10-29 03:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syssetup.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\muifontsetup.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\panmap.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ifsutilx.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usbperf.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshirda.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSaPs.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcico.dll
2016-08-26 02:12 - 2014-10-29 03:57 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spnet.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx5.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncInfrastructureps.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\irclass.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dispex.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSChannel.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx6.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx7.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx3.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncHostps.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx4.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmcodecdspps.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcji32.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odtext32.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odpdx32.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odfox32.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oddbse32.dll
2016-08-26 02:12 - 2014-10-29 03:56 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odexl32.dll
2016-08-26 02:12 - 2014-10-29 03:55 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfime.ime
2016-08-26 02:12 - 2014-10-29 03:54 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secinit.exe
2016-08-26 02:12 - 2014-10-29 03:54 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VscMgrPS.dll
2016-08-26 02:12 - 2014-10-29 03:53 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ktmutil.exe
2016-08-26 02:12 - 2014-10-29 03:53 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx2.dll
2016-08-26 02:12 - 2014-10-29 03:53 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\verclsid.exe
2016-08-26 02:12 - 2014-10-29 03:52 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hdwwiz.exe
2016-08-26 02:12 - 2014-10-29 03:52 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxproxy.dll
2016-08-26 02:12 - 2014-10-29 03:52 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2016-08-26 02:12 - 2014-10-29 03:52 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmdext.dll
2016-08-26 02:12 - 2014-10-29 03:52 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TapiSysprep.dll
2016-08-26 02:12 - 2014-10-29 03:51 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndadmin.exe
2016-08-26 02:12 - 2014-10-29 03:51 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\runas.exe
2016-08-26 02:12 - 2014-10-29 03:51 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2016-08-26 02:12 - 2014-10-29 03:51 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdial.exe
2016-08-26 02:12 - 2014-10-29 03:51 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasautou.exe
2016-08-26 02:12 - 2014-10-29 03:51 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcmonitor.dll
2016-08-26 02:12 - 2014-10-29 03:51 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InfDefaultInstall.exe
2016-08-26 02:12 - 2014-10-29 03:49 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairingProxy.dll
2016-08-26 02:12 - 2014-10-29 03:48 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RmClient.exe
2016-08-26 02:12 - 2014-10-29 03:47 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-08-26 02:12 - 2014-10-29 03:46 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\serialui.dll
2016-08-26 02:12 - 2014-10-29 03:44 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountControlSettings.exe
2016-08-26 02:12 - 2014-10-29 03:44 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Narrator.exe
2016-08-26 02:12 - 2014-10-29 03:43 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NcaApi.dll
2016-08-26 02:12 - 2014-10-29 03:43 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wowreg32.exe
2016-08-26 02:12 - 2014-10-29 03:42 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.exe
2016-08-26 02:12 - 2014-10-29 03:42 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdmps.dll
2016-08-26 02:12 - 2014-10-29 03:42 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndproxystub.dll
2016-08-26 02:12 - 2014-10-29 03:40 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2016-08-26 02:12 - 2014-10-29 03:40 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairingWizard.exe
2016-08-26 02:12 - 2014-10-29 03:40 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Netplwiz.exe
2016-08-26 02:12 - 2014-10-29 03:39 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartScreenSettings.exe
2016-08-26 02:12 - 2014-10-29 03:39 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\control.exe
2016-08-26 02:12 - 2014-10-29 03:39 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Fondue.exe
2016-08-26 02:12 - 2014-10-29 03:38 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbctrac.dll
2016-08-26 02:12 - 2014-10-29 03:38 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mobsync.exe
2016-08-26 02:12 - 2014-10-29 03:38 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\grpconv.exe
2016-08-26 02:12 - 2014-10-29 03:38 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DDACLSys.dll
2016-08-26 02:12 - 2014-10-29 03:38 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoveDeviceElevated.dll
2016-08-26 02:12 - 2014-10-29 03:34 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsui.exe
2016-08-26 02:12 - 2014-10-29 03:29 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2016-08-26 02:12 - 2014-10-29 03:29 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmiclnt.dll
2016-08-26 02:12 - 2014-10-29 03:29 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gptext.dll
2016-08-26 02:12 - 2014-10-29 03:29 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapi.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprmsg.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\reg.exe
2016-08-26 02:12 - 2014-10-29 03:28 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sc.exe
2016-08-26 02:12 - 2014-10-29 03:28 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\icacls.exe
2016-08-26 02:12 - 2014-10-29 03:28 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdhcinst.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmpapi.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\userinit.exe
2016-08-26 02:12 - 2014-10-29 03:28 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltLib.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\PATHPING.EXE
2016-08-26 02:12 - 2014-10-29 03:28 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasadhlp.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmsgapi.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\nrpsrv.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-08-26 02:12 - 2014-10-29 03:28 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winrssrv.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\whhelper.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBthProxy.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscoreext.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\msidle.dll
2016-08-26 02:12 - 2014-10-29 03:28 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\nslookup.exe
2016-08-26 02:12 - 2014-10-29 03:27 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentprf.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\setx.exe
2016-08-26 02:12 - 2014-10-29 03:27 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2016-08-26 02:12 - 2014-10-29 03:27 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspatcha.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecEdit.exe
2016-08-26 02:12 - 2014-10-29 03:27 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecerts.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedcli.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhapi.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\PING.EXE
2016-08-26 02:12 - 2014-10-29 03:27 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Register-CimProvider.exe
2016-08-26 02:12 - 2014-10-29 03:27 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-08-26 02:12 - 2014-10-29 03:27 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringIeProvider.dll
2016-08-26 02:12 - 2014-10-29 03:26 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2016-08-26 02:12 - 2014-10-29 03:26 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\pots.dll
2016-08-26 02:12 - 2014-10-29 03:26 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapPeerProxy.dll
2016-08-26 02:12 - 2014-10-29 03:26 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityRtapiPal.dll
2016-08-26 02:12 - 2014-10-29 03:25 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogonext.dll
2016-08-26 02:12 - 2014-10-29 03:25 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tpmcompc.dll
2016-08-26 02:12 - 2014-10-29 03:25 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncuprov.dll
2016-08-26 02:12 - 2014-10-29 03:25 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll
2016-08-26 02:12 - 2014-10-29 03:25 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsext.dll
2016-08-26 02:12 - 2014-10-29 03:23 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-08-26 02:12 - 2014-10-29 03:23 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Background.ps.dll
2016-08-26 02:12 - 2014-10-29 03:22 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2016-08-26 02:12 - 2014-10-29 03:22 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskSchdPS.dll
2016-08-26 02:12 - 2014-10-29 03:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2016-08-26 02:12 - 2014-10-29 03:21 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2016-08-26 02:12 - 2014-10-29 03:21 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipconfig.exe
2016-08-26 02:12 - 2014-10-29 03:21 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2016-08-26 02:12 - 2014-10-29 03:21 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragproxy.dll
2016-08-26 02:12 - 2014-10-29 03:21 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHostProxy.dll
2016-08-26 02:12 - 2014-10-29 03:21 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsExt.dll
2016-08-26 02:12 - 2014-10-29 03:21 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfmifsproxy.dll
2016-08-26 02:12 - 2014-10-29 03:20 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpapimig.exe
2016-08-26 02:12 - 2014-10-29 03:20 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\NETSTAT.EXE
2016-08-26 02:12 - 2014-10-29 03:20 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2016-08-26 02:12 - 2014-10-29 03:19 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2016-08-26 02:12 - 2014-10-29 03:16 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetmib1.dll
2016-08-26 02:12 - 2014-10-29 03:14 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\nci.dll
2016-08-26 02:12 - 2014-10-29 03:12 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwaninst.dll
2016-08-26 02:12 - 2014-10-29 03:11 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2016-08-26 02:12 - 2014-10-29 03:08 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\winrs.exe
2016-08-26 02:12 - 2014-10-29 03:06 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpapi.dll
2016-08-26 02:12 - 2014-10-29 03:06 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprext.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-08-26 02:12 - 2014-10-29 03:05 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprmsg.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unlodctr.exe
2016-08-26 02:12 - 2014-10-29 03:05 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vpnikeapi.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PING.EXE
2016-08-26 02:12 - 2014-10-29 03:05 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TimeBrokerClient.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PATHPING.EXE
2016-08-26 02:12 - 2014-10-29 03:05 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mountvol.exe
2016-08-26 02:12 - 2014-10-29 03:05 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TRACERT.EXE
2016-08-26 02:12 - 2014-10-29 03:05 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmsgapi.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\finger.exe
2016-08-26 02:12 - 2014-10-29 03:05 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasadhlp.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\whhelper.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-08-26 02:12 - 2014-10-29 03:05 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winrssrv.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBthProxy.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msidle.dll
2016-08-26 02:12 - 2014-10-29 03:05 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2016-08-26 02:12 - 2014-10-29 03:04 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2016-08-26 02:12 - 2014-10-29 03:04 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2016-08-26 02:12 - 2014-10-29 03:04 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fltMC.exe
2016-08-26 02:12 - 2014-10-29 03:04 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Register-CimProvider.exe
2016-08-26 02:12 - 2014-10-29 03:04 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-08-26 02:12 - 2014-10-29 03:04 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HOSTNAME.EXE
2016-08-26 02:12 - 2014-10-29 03:04 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpcsvc.dll
2016-08-26 02:12 - 2014-10-29 03:03 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MRINFO.EXE
2016-08-26 02:12 - 2014-10-29 03:03 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityRtapiPal.dll
2016-08-26 02:12 - 2014-10-29 03:02 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipsec.dll
2016-08-26 02:12 - 2014-10-29 03:02 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininitext.dll
2016-08-26 02:12 - 2014-10-29 03:01 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TaskSchdPS.dll
2016-08-26 02:12 - 2014-10-29 03:01 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vss_ps.dll
2016-08-26 02:12 - 2014-10-29 03:01 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\slpts.dll
2016-08-26 02:12 - 2014-10-29 03:00 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvps.dll
2016-08-26 02:12 - 2014-10-29 03:00 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ROUTE.EXE
2016-08-26 02:12 - 2014-10-29 03:00 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2016-08-26 02:12 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfmifsproxy.dll
2016-08-26 02:12 - 2014-10-29 02:59 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschapext.dll
2016-08-26 02:12 - 2014-10-29 02:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2016-08-26 02:12 - 2014-10-29 02:58 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Startupscan.dll
2016-08-26 02:12 - 2014-10-29 02:55 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\CheckNetIsolation.exe
2016-08-26 02:12 - 2014-10-29 02:46 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Startupscan.dll
2016-08-26 02:12 - 2014-10-29 02:45 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2016-08-26 02:11 - 2016-08-26 02:11 - 01610560 _____ (Malwarebytes) C:\Users\conchitta\Downloads\JRT.exe
2016-08-26 02:11 - 2014-10-29 05:54 - 05120000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthFWSnapin.dll
2016-08-26 02:11 - 2014-10-29 05:54 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthFWWizFwk.dll
2016-08-26 02:11 - 2014-10-29 05:07 - 05120000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthFWSnapin.dll
2016-08-26 02:11 - 2014-10-29 05:07 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthFWWizFwk.dll
2016-08-26 02:11 - 2014-10-29 04:51 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2016-08-26 02:11 - 2014-10-29 04:50 - 02628608 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2016-08-26 02:11 - 2014-10-29 04:49 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUxRes.dll
2016-08-26 02:11 - 2014-10-29 04:49 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-08-26 02:11 - 2014-10-29 04:49 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Firewall.cpl
2016-08-26 02:11 - 2014-10-29 04:49 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2help.dll
2016-08-26 02:11 - 2014-10-29 04:49 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rnr20.dll
2016-08-26 02:11 - 2014-10-29 04:48 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2016-08-26 02:11 - 2014-10-29 04:48 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ktmw32.dll
2016-08-26 02:11 - 2014-10-29 04:48 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys
2016-08-26 02:11 - 2014-10-29 04:48 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSHTCPIP.DLL
2016-08-26 02:11 - 2014-10-29 04:48 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wship6.dll
2016-08-26 02:11 - 2014-10-29 04:48 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
2016-08-26 02:11 - 2014-10-29 04:48 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Locator.exe
2016-08-26 02:11 - 2014-10-29 04:48 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmi.dll
2016-08-26 02:11 - 2014-10-29 04:47 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys
2016-08-26 02:11 - 2014-10-29 04:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\qwavedrv.sys
2016-08-26 02:11 - 2014-10-29 04:47 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-08-26 02:11 - 2014-10-29 04:46 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-08-26 02:11 - 2014-10-29 04:46 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2016-08-26 02:11 - 2014-10-29 04:46 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-08-26 02:11 - 2014-10-29 04:46 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiscap.sys
2016-08-26 02:11 - 2014-10-29 04:46 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2016-08-26 02:11 - 2014-10-29 04:46 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbGD.sys
2016-08-26 02:11 - 2014-10-29 04:45 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OobeFldr.dll
2016-08-26 02:11 - 2014-10-29 04:45 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\miguiresource.dll
2016-08-26 02:11 - 2014-10-29 04:45 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
2016-08-26 02:11 - 2014-10-29 04:45 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mslldp.sys
2016-08-26 02:11 - 2014-10-29 04:45 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciwave.dll
2016-08-26 02:11 - 2014-10-29 04:45 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciseq.dll
2016-08-26 02:11 - 2014-10-29 04:45 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2016-08-26 02:11 - 2014-10-29 04:45 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\normaliz.dll
2016-08-26 02:11 - 2014-10-29 04:44 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSchedExe.exe
2016-08-26 02:11 - 2014-10-29 04:44 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\regini.exe
2016-08-26 02:11 - 2014-10-29 04:44 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\msidcrl40.dll
2016-08-26 02:11 - 2014-10-29 04:44 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscat32.dll
2016-08-26 02:11 - 2014-10-29 04:44 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\softpub.dll
2016-08-26 02:11 - 2014-10-29 04:44 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\getuname.dll
2016-08-26 02:11 - 2014-10-29 04:44 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssip32.dll
2016-08-26 02:11 - 2014-10-29 04:43 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2016-08-26 02:11 - 2014-10-29 04:43 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzutil.exe
2016-08-26 02:11 - 2014-10-29 04:43 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\hh.exe
2016-08-26 02:11 - 2014-10-29 04:43 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmdkey.exe
2016-08-26 02:11 - 2014-10-29 04:43 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2016-08-26 02:11 - 2014-10-29 04:43 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2016-08-26 02:11 - 2014-10-29 04:43 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwinsat.dll
2016-08-26 02:11 - 2014-10-29 04:43 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dvdplay.exe
2016-08-26 02:11 - 2014-10-29 04:43 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\help.exe
2016-08-26 02:11 - 2014-10-29 04:43 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spmpm.dll
2016-08-26 02:11 - 2014-10-29 04:43 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\plasrv.exe
2016-08-26 02:11 - 2014-10-29 04:42 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\colorcpl.exe
2016-08-26 02:11 - 2014-10-29 04:42 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cliconfg.exe
2016-08-26 02:11 - 2014-10-29 04:42 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
2016-08-26 02:11 - 2014-10-29 04:42 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\TapiUnattend.exe
2016-08-26 02:11 - 2014-10-29 04:42 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonUI.exe
2016-08-26 02:11 - 2014-10-29 04:42 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomcnfg.exe
2016-08-26 02:11 - 2014-10-29 04:42 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcNs4.dll
2016-08-26 02:11 - 2014-10-29 04:41 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpnotify.exe
2016-08-26 02:11 - 2014-10-29 04:41 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcmsetup.exe
2016-08-26 02:11 - 2014-10-29 04:41 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\panmap.dll
2016-08-26 02:11 - 2014-10-29 04:41 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrnsave.scr
2016-08-26 02:11 - 2014-10-29 04:41 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\spnet.dll
2016-08-26 02:11 - 2014-10-29 04:41 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CIRCoInst.dll
2016-08-26 02:11 - 2014-10-29 04:41 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2016-08-26 02:11 - 2014-10-29 04:40 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.proxystub.dll
2016-08-26 02:11 - 2014-10-29 04:40 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-08-26 02:11 - 2014-10-29 04:38 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pstorec.dll
2016-08-26 02:11 - 2014-10-29 04:37 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\secinit.exe
2016-08-26 02:11 - 2014-10-29 04:37 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ctfmon.exe
2016-08-26 02:11 - 2014-10-29 04:36 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\acproxy.dll
2016-08-26 02:11 - 2014-10-29 04:35 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\PnPutil.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsicpl.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventvwr.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\winver.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdrleakdiag.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialer.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\cofire.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdial.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsavailux.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\write.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\write.exe
2016-08-26 02:11 - 2014-10-29 04:34 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\systray.exe
2016-08-26 02:11 - 2014-10-29 04:33 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\runas.exe
2016-08-26 02:11 - 2014-10-29 04:33 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\InfDefaultInstall.exe
2016-08-26 02:11 - 2014-10-29 04:30 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\sigverif.exe
2016-08-26 02:11 - 2014-10-29 04:30 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\RmClient.exe
2016-08-26 02:11 - 2014-10-29 04:29 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsicli.exe
2016-08-26 02:11 - 2014-10-29 04:28 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcad32.exe
2016-08-26 02:11 - 2014-10-29 04:25 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\resmon.exe
2016-08-26 02:11 - 2014-10-29 04:25 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2016-08-26 02:11 - 2014-10-29 04:24 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationNotifications.exe
2016-08-26 02:11 - 2014-10-29 04:23 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizardElev.exe
2016-08-26 02:11 - 2014-10-29 04:23 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wowreg32.exe
2016-08-26 02:11 - 2014-10-29 04:20 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\proquota.exe
2016-08-26 02:11 - 2014-10-29 04:20 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WallpaperHost.exe
2016-08-26 02:11 - 2014-10-29 04:19 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceProperties.exe
2016-08-26 02:11 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesRemote.exe
2016-08-26 02:11 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesProtection.exe
2016-08-26 02:11 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesPerformance.exe
2016-08-26 02:11 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesHardware.exe
2016-08-26 02:11 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesDataExecutionPrevention.exe
2016-08-26 02:11 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesComputerName.exe
2016-08-26 02:11 - 2014-10-29 04:19 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemPropertiesAdvanced.exe
2016-08-26 02:11 - 2014-10-29 04:19 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Netplwiz.exe
2016-08-26 02:11 - 2014-10-29 04:18 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartScreenSettings.exe
2016-08-26 02:11 - 2014-10-29 04:18 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OptionalFeatures.exe
2016-08-26 02:11 - 2014-10-29 04:18 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Fondue.exe
2016-08-26 02:11 - 2014-10-29 04:18 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DpiScaling.exe
2016-08-26 02:11 - 2014-10-29 04:18 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RunLegacyCPLElevated.exe
2016-08-26 02:11 - 2014-10-29 04:18 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe
2016-08-26 02:11 - 2014-10-29 04:17 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSUNATD.exe
2016-08-26 02:11 - 2014-10-29 04:12 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsui.exe
2016-08-26 02:11 - 2014-10-29 04:09 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthudtask.exe
2016-08-26 02:11 - 2014-10-29 04:08 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\credwiz.exe
2016-08-26 02:11 - 2014-10-29 04:06 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2016-08-26 02:11 - 2014-10-29 04:05 - 02628608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2016-08-26 02:11 - 2014-10-29 04:04 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-08-26 02:11 - 2014-10-29 04:04 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceUxRes.dll
2016-08-26 02:11 - 2014-10-29 04:04 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-08-26 02:11 - 2014-10-29 04:04 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2help.dll
2016-08-26 02:11 - 2014-10-29 04:04 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rnr20.dll
2016-08-26 02:11 - 2014-10-29 04:03 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2016-08-26 02:11 - 2014-10-29 04:03 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ktmw32.dll
2016-08-26 02:11 - 2014-10-29 04:03 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wship6.dll
2016-08-26 02:11 - 2014-10-29 04:03 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSHTCPIP.DLL
2016-08-26 02:11 - 2014-10-29 04:03 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmi.dll
2016-08-26 02:11 - 2014-10-29 04:00 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OobeFldr.dll
2016-08-26 02:11 - 2014-10-29 04:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mciseq.dll
2016-08-26 02:11 - 2014-10-29 04:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shimeng.dll
2016-08-26 02:11 - 2014-10-29 04:00 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\normaliz.dll
2016-08-26 02:11 - 2014-10-29 04:00 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprop.dll
2016-08-26 02:11 - 2014-10-29 03:59 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\help.exe
2016-08-26 02:11 - 2014-10-29 03:58 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\colorcpl.exe
2016-08-26 02:11 - 2014-10-29 03:58 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cliconfg.exe
2016-08-26 02:11 - 2014-10-29 03:58 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hh.exe
2016-08-26 02:11 - 2014-10-29 03:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmdkey.exe
2016-08-26 02:11 - 2014-10-29 03:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TapiUnattend.exe
2016-08-26 02:11 - 2014-10-29 03:58 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dvdplay.exe
2016-08-26 02:11 - 2014-10-29 03:58 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomcnfg.exe
2016-08-26 02:11 - 2014-10-29 03:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DDOIProxy.dll
2016-08-26 02:11 - 2014-10-29 03:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrnsave.scr
2016-08-26 02:11 - 2014-10-29 03:57 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcNs4.dll
2016-08-26 02:11 - 2014-10-29 03:56 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pstorec.dll
2016-08-26 02:11 - 2014-10-29 03:54 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ctfmon.exe
2016-08-26 02:11 - 2014-10-29 03:53 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapimig.exe
2016-08-26 02:11 - 2014-10-29 03:53 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\winhlp32.exe
2016-08-26 02:11 - 2014-10-29 03:52 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsicpl.exe
2016-08-26 02:11 - 2014-10-29 03:52 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msra.exe
2016-08-26 02:11 - 2014-10-29 03:52 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winver.exe
2016-08-26 02:11 - 2014-10-29 03:52 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedt32.exe
2016-08-26 02:11 - 2014-10-29 03:52 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\write.exe
2016-08-26 02:11 - 2014-10-29 03:51 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systray.exe
2016-08-26 02:11 - 2014-10-29 03:46 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcad32.exe
2016-08-26 02:11 - 2014-10-29 03:45 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resmon.exe
2016-08-26 02:11 - 2014-10-29 03:45 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2016-08-26 02:11 - 2014-10-29 03:44 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationNotifications.exe
2016-08-26 02:11 - 2014-10-29 03:39 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceProperties.exe
2016-08-26 02:11 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesRemote.exe
2016-08-26 02:11 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesProtection.exe
2016-08-26 02:11 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe
2016-08-26 02:11 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesHardware.exe
2016-08-26 02:11 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesDataExecutionPrevention.exe
2016-08-26 02:11 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesComputerName.exe
2016-08-26 02:11 - 2014-10-29 03:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesAdvanced.exe
2016-08-26 02:11 - 2014-10-29 03:39 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DpiScaling.exe
2016-08-26 02:11 - 2014-10-29 03:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RunLegacyCPLElevated.exe
2016-08-26 02:11 - 2014-10-29 03:39 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe
2016-08-26 02:11 - 2014-10-29 03:32 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthudtask.exe
2016-08-26 02:11 - 2014-10-29 03:29 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprext.dll
2016-08-26 02:11 - 2014-10-29 03:29 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dabapi.dll
2016-08-26 02:11 - 2014-10-29 03:29 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_ISCII.DLL
2016-08-26 02:11 - 2014-10-29 03:28 - 00224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-08-26 02:11 - 2014-10-29 03:28 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mountvol.exe
2016-08-26 02:11 - 2014-10-29 03:28 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TCPSVCS.EXE
2016-08-26 02:11 - 2014-10-29 03:28 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TcpipSetup.dll
2016-08-26 02:11 - 2014-10-29 03:28 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\backgroundTaskHost.exe
2016-08-26 02:11 - 2014-10-29 03:27 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\lodctr.exe
2016-08-26 02:11 - 2014-10-29 03:27 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\unlodctr.exe
2016-08-26 02:11 - 2014-10-29 03:27 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cacls.exe
2016-08-26 02:11 - 2014-10-29 03:27 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltMC.exe
2016-08-26 02:11 - 2014-10-29 03:27 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TRACERT.EXE
2016-08-26 02:11 - 2014-10-29 03:27 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\finger.exe
2016-08-26 02:11 - 2014-10-29 03:27 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\HOSTNAME.EXE
2016-08-26 02:11 - 2014-10-29 03:26 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VaultCmd.exe
2016-08-26 02:11 - 2014-10-29 03:26 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRINFO.EXE
2016-08-26 02:11 - 2014-10-29 03:26 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpcsvc.dll
2016-08-26 02:11 - 2014-10-29 03:24 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\procinst.dll
2016-08-26 02:11 - 2014-10-29 03:23 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll
2016-08-26 02:11 - 2014-10-29 03:23 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxStreamingDataSourcePS.dll
2016-08-26 02:11 - 2014-10-29 03:21 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallButtons.ProxyStub.dll
2016-08-26 02:11 - 2014-10-29 03:21 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ROUTE.EXE
2016-08-26 02:11 - 2014-10-29 03:21 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllhst3g.exe
2016-08-26 02:11 - 2014-10-29 03:19 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschapext.dll
2016-08-26 02:11 - 2014-10-29 03:12 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DsmUserTask.exe
2016-08-26 02:11 - 2014-10-29 03:06 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_ISCII.DLL
2016-08-26 02:11 - 2014-10-29 03:06 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dabapi.dll
2016-08-26 02:11 - 2014-10-29 03:05 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TCPSVCS.EXE
2016-08-26 02:11 - 2014-10-29 03:05 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\backgroundTaskHost.exe
2016-08-26 02:11 - 2014-10-29 03:03 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe
2016-08-26 02:11 - 2014-10-29 03:01 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdProxy.dll
2016-08-26 02:11 - 2014-10-29 03:01 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.ps.dll
2016-08-26 02:11 - 2014-10-29 03:01 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll
2016-08-26 02:11 - 2014-10-29 03:01 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Background.ps.dll
2016-08-26 02:11 - 2014-10-29 03:00 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallButtons.ProxyStub.dll
2016-08-26 02:11 - 2014-10-29 02:58 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootim.exe
2016-08-26 02:11 - 2014-10-29 02:50 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe
2016-08-26 02:11 - 2014-10-07 05:30 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2016-08-26 02:11 - 2014-10-07 05:29 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2016-08-26 02:11 - 2014-10-07 05:29 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-08-26 02:11 - 2014-10-07 05:29 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2016-08-26 02:11 - 2014-07-24 13:51 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRUM.DLL
2016-08-26 02:11 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDYAK.DLL
2016-08-26 02:11 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTT102.DLL
2016-08-26 02:11 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTAT.DLL
2016-08-26 02:11 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU1.DLL
2016-08-26 02:11 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDBASH.DLL
2016-08-26 02:11 - 2014-07-24 13:51 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU.DLL
2016-08-26 02:11 - 2014-07-24 12:52 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDYAK.DLL
2016-08-26 02:11 - 2014-07-24 12:52 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTT102.DLL
2016-08-26 02:11 - 2014-07-24 12:52 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTAT.DLL
2016-08-26 02:11 - 2014-07-24 12:51 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRUM.DLL
2016-08-26 02:11 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU1.DLL
2016-08-26 02:11 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDBASH.DLL
2016-08-26 02:11 - 2014-07-24 12:51 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU.DLL
2016-08-26 02:11 - 2014-05-03 01:26 - 00050745 _____ C:\WINDOWS\system32\srms.dat
2016-08-26 02:05 - 2015-03-14 10:54 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-26 02:05 - 2015-03-14 02:22 - 03678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-26 02:05 - 2015-03-14 02:08 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-08-26 02:05 - 2015-03-14 02:06 - 02373632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-08-26 02:05 - 2015-03-14 02:06 - 00891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-26 02:05 - 2015-03-14 01:59 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-08-26 02:04 - 2015-03-14 03:56 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-08-26 02:04 - 2015-03-14 03:56 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-08-26 02:04 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2016-08-26 02:04 - 2015-03-14 03:37 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2016-08-26 02:04 - 2015-03-14 03:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-08-26 02:04 - 2015-03-14 02:12 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-08-26 02:04 - 2015-03-14 02:12 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-08-26 02:04 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-08-26 02:04 - 2015-03-14 02:08 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-08-26 02:04 - 2015-03-14 02:02 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-08-26 02:04 - 2015-03-14 02:02 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-08-26 02:04 - 2015-03-14 01:59 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-08-26 02:04 - 2014-10-18 08:50 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2016-08-26 02:04 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-08-26 02:04 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-08-26 02:01 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2016-08-26 02:01 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2016-08-26 02:01 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2016-08-26 02:01 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2016-08-26 02:01 - 2015-03-20 04:40 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-08-26 02:01 - 2015-03-20 04:16 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-08-26 02:01 - 2014-10-29 04:43 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskperf.exe
2016-08-26 02:01 - 2014-10-29 04:17 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\logman.exe
2016-08-26 02:01 - 2014-10-29 03:58 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskperf.exe
2016-08-26 02:01 - 2014-10-29 03:38 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logman.exe
2016-08-26 02:01 - 2014-10-29 03:26 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\typeperf.exe
2016-08-26 02:01 - 2014-10-29 03:26 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\relog.exe
2016-08-26 02:01 - 2014-10-29 03:04 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\typeperf.exe
2016-08-26 02:01 - 2014-10-29 03:04 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\relog.exe
2016-08-26 02:00 - 2016-01-19 21:13 - 02175008 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-08-26 02:00 - 2016-01-19 21:13 - 01063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-08-26 02:00 - 2016-01-19 21:12 - 01133744 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-08-26 02:00 - 2016-01-19 20:23 - 01564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-08-26 02:00 - 2016-01-19 20:23 - 00548024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-08-26 02:00 - 2016-01-19 19:30 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-08-26 02:00 - 2016-01-19 18:37 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-08-26 02:00 - 2015-11-09 02:41 - 01540728 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-08-26 02:00 - 2015-11-08 23:23 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-08-26 02:00 - 2015-11-08 23:13 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-08-26 02:00 - 2015-11-08 22:52 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-08-26 02:00 - 2015-11-08 22:48 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-08-26 02:00 - 2015-07-02 00:19 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-08-26 02:00 - 2015-07-02 00:16 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-08-26 02:00 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-08-26 02:00 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-08-26 02:00 - 2014-10-29 03:24 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-08-26 01:59 - 2016-08-27 07:34 - 00076025 _____ C:\Users\conchitta\Desktop\mbam.txt
2016-08-26 01:59 - 2015-09-24 18:42 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-08-26 01:59 - 2015-09-24 18:40 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-08-26 01:59 - 2014-10-29 04:13 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2016-08-26 01:59 - 2014-10-29 03:26 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-08-26 01:59 - 2014-10-29 03:16 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-08-26 01:58 - 2016-05-14 22:01 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-08-26 01:58 - 2016-05-14 22:01 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-08-26 01:58 - 2016-05-14 01:07 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-08-26 01:58 - 2016-05-13 23:58 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-08-26 01:58 - 2016-05-13 23:45 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-08-26 01:58 - 2016-05-13 23:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-08-26 01:58 - 2016-05-13 23:26 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-08-26 01:58 - 2016-01-06 20:25 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-08-26 01:58 - 2015-10-08 18:08 - 01083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-08-26 01:58 - 2015-08-10 20:15 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-08-26 01:58 - 2015-08-10 20:06 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-08-26 01:58 - 2015-08-10 19:49 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-08-26 01:58 - 2015-08-10 18:56 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-08-26 01:58 - 2015-08-10 18:46 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-08-26 01:58 - 2015-07-14 05:22 - 02529880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-08-26 01:58 - 2015-07-14 05:21 - 01901776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-08-26 01:58 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-08-26 01:58 - 2014-11-10 20:06 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2016-08-26 01:42 - 2016-08-29 15:44 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-26 01:42 - 2016-08-26 01:42 - 00001089 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-08-26 01:42 - 2016-08-26 01:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-08-26 01:42 - 2016-08-26 01:42 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-08-26 01:42 - 2016-05-18 07:31 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-08-26 01:42 - 2016-05-18 07:31 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-08-26 01:42 - 2016-05-14 01:04 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-08-26 01:42 - 2016-05-14 00:19 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-08-26 01:42 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-08-26 01:42 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-08-26 01:42 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-08-26 01:42 - 2015-07-10 20:19 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-08-26 01:42 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-08-26 01:42 - 2015-07-10 19:13 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-26 01:42 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-26 01:42 - 2014-12-08 21:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-08-26 01:42 - 2014-10-29 04:24 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2016-08-26 01:42 - 2014-10-29 03:43 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2016-08-26 01:37 - 2016-08-26 01:40 - 22851472 _____ (Malwarebytes ) C:\Users\conchitta\Downloads\mbam-setup-2.2.1.1043 (2).exe
2016-08-26 01:36 - 2016-05-18 22:35 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-08-26 01:35 - 2016-07-12 16:08 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-26 01:35 - 2016-05-19 01:15 - 01379040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-08-26 01:35 - 2016-04-10 09:48 - 00738096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-08-26 01:35 - 2016-04-10 09:48 - 00613624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-08-26 01:35 - 2016-04-10 07:37 - 01549144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-26 01:35 - 2016-02-06 20:08 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-08-26 01:35 - 2015-12-28 23:42 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2016-08-26 01:35 - 2015-12-28 22:31 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll
2016-08-26 01:35 - 2015-12-08 21:08 - 00685432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-08-26 01:35 - 2015-12-08 21:07 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-08-26 01:35 - 2015-10-28 17:49 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-08-26 01:35 - 2015-10-28 17:29 - 02462720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-08-26 01:35 - 2015-09-12 15:47 - 00414559 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-08-26 01:35 - 2015-08-01 05:47 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-08-26 01:35 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2016-08-26 01:35 - 2015-08-01 05:38 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-08-26 01:35 - 2015-08-01 05:37 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-08-26 01:35 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2016-08-26 01:35 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-08-26 01:35 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2016-08-26 01:35 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2016-08-26 01:35 - 2014-10-29 05:57 - 00389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-26 01:35 - 2014-10-29 05:51 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-26 01:34 - 2015-12-17 20:29 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-08-26 01:34 - 2015-12-17 18:17 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-26 01:34 - 2015-07-30 19:18 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2016-08-26 01:34 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2016-08-26 01:34 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-08-26 01:34 - 2015-01-28 03:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-08-26 01:34 - 2015-01-28 03:11 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-08-26 01:34 - 2014-10-29 05:56 - 00027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2016-08-26 01:34 - 2014-10-29 04:42 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\jnwmon.dll
2016-08-26 01:34 - 2014-10-29 04:37 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2016-08-26 01:33 - 2016-02-03 17:09 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-08-26 01:33 - 2016-02-03 17:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-08-26 01:33 - 2016-02-03 17:00 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-08-26 01:33 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-08-26 01:33 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2016-08-26 01:33 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-08-26 01:33 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-08-26 01:33 - 2015-01-21 07:54 - 01384712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-08-26 01:33 - 2015-01-21 07:15 - 01123848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-08-26 01:33 - 2014-10-29 04:49 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2016-08-26 01:33 - 2014-10-29 04:48 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\workerdd.dll
2016-08-26 01:33 - 2014-10-29 04:44 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-08-26 01:33 - 2014-10-29 04:44 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2016-08-26 01:33 - 2014-10-29 04:04 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2016-08-26 01:33 - 2014-10-29 04:00 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-08-26 01:33 - 2014-10-29 04:00 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2016-08-26 01:32 - 2016-08-26 01:34 - 04725940 _____ (Malwarebytes ) C:\Users\conchitta\Downloads\mbam-setup-2.2.1.1043 (1).exe
2016-08-26 01:32 - 2014-06-02 04:10 - 00423768 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-08-26 01:32 - 2014-05-31 12:07 - 00440664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-08-26 01:32 - 2014-05-31 12:07 - 00089944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-08-26 01:32 - 2014-05-31 12:07 - 00027480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-08-26 01:32 - 2014-05-31 08:30 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-08-26 01:31 - 2016-04-11 08:21 - 00074584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2016-08-26 01:30 - 2015-11-21 19:50 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2016-08-26 01:30 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-08-26 01:30 - 2014-10-29 03:15 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2016-08-26 01:30 - 2014-10-29 03:14 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2016-08-26 01:30 - 2014-10-29 03:13 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2016-08-26 01:30 - 2014-10-29 03:13 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2016-08-26 01:29 - 2016-03-03 18:13 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-08-26 01:29 - 2015-11-21 20:32 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2016-08-26 01:29 - 2015-07-22 16:33 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-08-26 01:29 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-08-26 01:29 - 2015-07-18 20:31 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-08-26 01:29 - 2015-07-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-08-26 01:29 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-08-26 01:29 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-08-26 01:29 - 2015-07-13 21:46 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-08-26 01:29 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2016-08-26 01:29 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2016-08-26 01:29 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2016-08-26 01:29 - 2014-10-29 04:43 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2016-08-26 01:29 - 2014-10-29 04:04 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2016-08-26 01:29 - 2014-10-29 03:58 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2016-08-26 01:29 - 2014-10-29 03:52 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2016-08-26 01:29 - 2014-10-29 03:45 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2016-08-26 01:29 - 2014-10-29 03:28 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2016-08-26 01:29 - 2014-10-29 03:15 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2016-08-26 01:28 - 2016-02-05 21:07 - 00292696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-08-26 01:28 - 2016-02-05 21:07 - 00243032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-08-26 01:28 - 2016-02-05 17:03 - 15432704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-26 01:28 - 2016-02-05 17:00 - 13318144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-26 01:28 - 2014-10-29 04:45 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-08-26 01:28 - 2014-10-29 04:45 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-08-26 01:28 - 2014-10-29 04:33 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LAPRXY.DLL
2016-08-26 01:28 - 2014-10-29 04:08 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-08-26 01:28 - 2014-10-29 04:00 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-08-26 01:28 - 2014-10-29 04:00 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-08-26 01:28 - 2014-10-29 03:51 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LAPRXY.DLL
2016-08-26 01:28 - 2014-10-29 03:32 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-08-26 01:27 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-08-26 01:26 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-08-26 01:25 - 2016-02-04 19:24 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-08-26 01:25 - 2016-02-04 19:02 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-08-26 01:25 - 2016-01-31 21:16 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-08-26 01:25 - 2014-12-06 05:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-08-26 01:25 - 2014-12-06 03:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-08-26 01:25 - 2014-10-29 03:24 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2016-08-26 01:25 - 2014-10-29 03:01 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2016-08-26 01:24 - 2016-08-26 01:27 - 09761476 _____ (Malwarebytes ) C:\Users\conchitta\Downloads\mbam-setup-2.2.1.1043.exe
2016-08-26 01:24 - 2015-07-14 05:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2016-08-26 01:23 - 2015-08-03 23:15 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2016-08-26 01:23 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2016-08-26 01:23 - 2015-08-01 16:22 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2016-08-26 01:23 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2016-08-26 01:23 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2016-08-26 01:23 - 2014-10-29 04:46 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-08-26 01:23 - 2014-10-29 04:41 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2016-08-26 01:23 - 2014-10-29 04:28 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2016-08-26 01:23 - 2014-10-13 04:43 - 00238912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-08-26 01:23 - 2014-10-13 04:43 - 00153920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-08-26 01:23 - 2014-10-13 04:43 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-26 01:23 - 2014-10-13 04:43 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-08-26 01:06 - 2016-08-26 01:13 - 00000000 ____D C:\AdwCleaner
2016-08-26 01:03 - 2016-08-26 01:03 - 03826240 _____ C:\Users\conchitta\Downloads\AdwCleaner_6.010.exe
2016-08-25 00:32 - 2016-06-21 20:32 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-08-25 00:32 - 2016-06-21 16:12 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2016-08-24 03:04 - 2016-08-24 06:07 - 01010956 _____ C:\TDSSKiller.3.1.0.11_24.08.2016_03.04.25_log.txt
2016-08-24 01:01 - 2016-08-24 01:25 - 00783264 _____ C:\TDSSKiller.3.1.0.11_24.08.2016_01.01.59_log.txt
2016-08-24 00:57 - 2016-08-24 01:00 - 00220988 _____ C:\TDSSKiller.3.1.0.11_24.08.2016_00.57.39_log.txt
2016-08-24 00:57 - 2016-08-24 00:57 - 04747704 _____ (AO Kaspersky Lab) C:\Users\conchitta\Downloads\tdsskiller.exe
2016-08-24 00:28 - 2014-03-13 14:35 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-08-24 00:27 - 2014-03-06 11:24 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-08-24 00:27 - 2014-03-06 11:24 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-08-24 00:27 - 2014-03-06 11:22 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-08-24 00:27 - 2014-03-06 11:19 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2016-08-24 00:20 - 2014-02-08 03:08 - 00139600 _____ C:\WINDOWS\system32\systemsf.ebd
2016-08-23 23:51 - 2014-02-22 17:55 - 01435304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-23 23:50 - 2014-02-22 18:00 - 00249688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2016-08-23 23:50 - 2014-02-22 17:55 - 00244848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-23 23:50 - 2014-02-22 13:57 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-08-23 23:50 - 2014-02-22 13:06 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-08-23 23:50 - 2014-02-22 11:36 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2016-08-23 23:50 - 2014-02-22 11:33 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2016-08-23 23:50 - 2014-02-22 11:12 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2016-08-23 23:50 - 2014-02-22 06:33 - 00262335 _____ C:\WINDOWS\system32\dfpinc.dat
2016-08-23 23:49 - 2014-02-22 18:00 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2016-08-23 23:49 - 2014-02-22 17:49 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2016-08-23 23:49 - 2014-02-22 17:43 - 00142576 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2016-08-23 23:49 - 2014-02-22 14:20 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2016-08-23 23:49 - 2014-02-22 14:14 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2016-08-23 23:49 - 2014-02-22 14:14 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2016-08-23 23:49 - 2014-02-22 14:09 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2016-08-23 23:49 - 2014-02-22 13:54 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-08-23 23:49 - 2014-02-22 13:05 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-08-23 23:49 - 2014-02-22 12:18 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2016-08-23 23:49 - 2014-02-22 11:15 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2016-08-23 23:49 - 2014-01-27 21:53 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2016-08-23 23:49 - 2013-12-04 20:41 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-08-23 23:48 - 2014-02-22 18:15 - 00071888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2016-08-23 23:48 - 2014-02-22 14:17 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2016-08-23 23:48 - 2014-02-22 14:17 - 00874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2016-08-23 23:48 - 2014-02-22 14:14 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\watchdog.sys
2016-08-23 23:48 - 2014-02-22 14:07 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\clrhost.dll
2016-08-23 23:48 - 2014-02-22 14:01 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2016-08-23 23:48 - 2014-02-22 13:59 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2016-08-23 23:48 - 2014-02-22 13:24 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2016-08-23 23:48 - 2014-02-22 13:24 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2016-08-23 23:48 - 2014-02-22 13:16 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clrhost.dll
2016-08-23 23:48 - 2014-02-22 12:47 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2016-08-23 23:48 - 2014-02-22 12:34 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2016-08-23 23:48 - 2014-01-27 21:48 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-08-23 23:48 - 2013-10-05 17:25 - 00057176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-08-23 23:47 - 2014-02-22 14:17 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\f3ahvoas.dll
2016-08-23 23:47 - 2014-02-22 12:09 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2016-08-23 23:47 - 2014-02-01 08:00 - 00002255 _____ C:\WINDOWS\SysWOW64\WimBootCompress.ini
2016-08-23 23:47 - 2014-02-01 08:00 - 00002255 _____ C:\WINDOWS\system32\WimBootCompress.ini
2016-08-23 23:47 - 2013-12-20 09:17 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismp6.sys
2016-08-23 23:46 - 2014-02-22 14:17 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2016-08-23 23:46 - 2014-02-22 14:17 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2016-08-23 23:46 - 2014-02-22 14:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2016-08-23 23:46 - 2014-02-22 14:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2016-08-23 23:46 - 2014-02-22 13:25 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\f3ahvoas.dll
2016-08-23 23:46 - 2014-02-22 13:25 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2016-08-23 23:46 - 2014-02-22 13:25 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2016-08-23 23:46 - 2014-02-22 13:24 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2016-08-23 23:46 - 2014-02-22 13:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2016-08-23 23:46 - 2014-02-22 13:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2016-08-23 23:46 - 2014-02-22 06:37 - 00000369 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-08-23 23:46 - 2014-02-22 06:37 - 00000369 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-08-23 23:46 - 2014-02-22 06:37 - 00000369 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-08-23 23:46 - 2014-02-22 06:37 - 00000369 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-08-23 23:46 - 2014-02-08 03:08 - 00100197 _____ C:\WINDOWS\SysWOW64\RacRules.xml
2016-08-23 23:46 - 2014-02-08 03:08 - 00100197 _____ C:\WINDOWS\system32\RacRules.xml
2016-08-23 23:46 - 2014-02-01 08:00 - 00011109 _____ C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2016-08-23 23:46 - 2014-02-01 08:00 - 00011109 _____ C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2016-08-23 23:46 - 2014-02-01 08:00 - 00007762 _____ C:\WINDOWS\SysWOW64\connectedsearch-suggestions.searchconnector-ms
2016-08-23 23:46 - 2014-02-01 08:00 - 00007762 _____ C:\WINDOWS\system32\connectedsearch-suggestions.searchconnector-ms
2016-08-23 23:46 - 2014-02-01 08:00 - 00007130 _____ C:\WINDOWS\SysWOW64\connectedsearch-zeroinput.searchconnector-ms
2016-08-23 23:46 - 2014-02-01 08:00 - 00007130 _____ C:\WINDOWS\system32\connectedsearch-zeroinput.searchconnector-ms
2016-08-23 23:45 - 2014-02-22 06:43 - 00002440 ___RS C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk
2016-08-23 22:33 - 2016-08-23 22:33 - 00023286 _____ C:\Users\conchitta\Downloads\Addition.txt
2016-08-23 22:32 - 2016-08-29 15:51 - 00000000 ____D C:\FRST
2016-08-23 22:32 - 2016-08-23 22:33 - 00069732 _____ C:\Users\conchitta\Downloads\FRST.txt
2016-08-23 22:27 - 2016-08-23 22:29 - 00628392 _____ C:\Users\conchitta\Downloads\FRST64.exe
2016-08-23 06:43 - 2016-08-23 06:43 - 00000000 ____D C:\Program Files\Synaptics
2016-08-23 06:25 - 2016-08-23 06:25 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2016-08-23 06:11 - 2016-08-23 06:11 - 00000000 ____D C:\Users\conchitta\Downloads\RevoUninstaller_Portable_2.0 (1)
2016-08-23 06:08 - 2016-08-23 06:09 - 09256439 _____ C:\Users\conchitta\Downloads\RevoUninstaller_Portable_2.0 (1).zip
2016-08-23 06:07 - 2013-11-27 14:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2016-08-23 06:07 - 2013-11-23 09:13 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2016-08-23 06:04 - 2013-10-26 03:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2016-08-23 06:00 - 2013-12-17 09:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-23 05:38 - 2016-08-23 05:38 - 00000000 _____ C:\Recovery.txt
2016-08-23 05:09 - 2014-04-16 01:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-08-23 05:09 - 2014-04-16 01:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-08-23 05:01 - 2013-12-21 16:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-08-23 05:01 - 2013-12-21 10:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2016-08-23 04:59 - 2016-08-23 04:59 - 00000000 ____D C:\ProgramData\Synaptics
2016-08-23 04:58 - 2013-09-14 16:06 - 00175960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys
2016-08-23 04:58 - 2013-09-14 16:06 - 00066904 _____ (Microsoft Corporation) C:\WINDOWS\system32\PSHED.DLL
2016-08-23 04:57 - 2013-09-19 09:19 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersRes.dll
2016-08-23 04:57 - 2013-09-19 08:23 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WorkFoldersRes.dll
2016-08-23 04:42 - 2016-08-22 20:11 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-23 04:41 - 2016-08-23 04:44 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-23 04:41 - 2016-08-23 04:41 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-23 04:40 - 2016-07-27 21:25 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-08-23 04:26 - 2016-08-23 04:26 - 02449376 _____ (Megaify Software ) C:\Users\conchitta\Downloads\DriverToolkitInstaller (6).exe
2016-08-23 04:01 - 2016-08-26 16:06 - 00338048 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-23 03:50 - 2016-08-23 03:59 - 130076618 _____ C:\Users\conchitta\Downloads\Intel_hd_graphics_win64_153332.zip
2016-08-23 03:45 - 2016-08-23 03:45 - 01225680 _____ (Copyright © 2015 eSupport.com, Inc • All Rights Reserved ) C:\Users\conchitta\Downloads\driveragent-setup-1278 (1).exe
2016-08-23 03:44 - 2016-08-23 03:44 - 00022200 _____ (Phoenix Technologies) C:\WINDOWS\SysWOW64\Drivers\DrvAgent64.SYS
2016-08-22 23:46 - 2016-08-22 23:46 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-22 20:52 - 2016-08-22 20:52 - 00000000 ____D C:\Users\conchitta\AppData\Roaming\Macromedia
2016-08-22 20:46 - 2016-08-22 20:48 - 00002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-22 20:46 - 2016-08-22 20:48 - 00002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-22 20:43 - 2016-08-29 15:53 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-22 20:43 - 2016-08-29 15:44 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-22 20:43 - 2016-08-23 06:14 - 00000000 ____D C:\Users\conchitta\AppData\Local\Google
2016-08-22 20:43 - 2016-08-22 20:48 - 00004104 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-22 20:43 - 2016-08-22 20:48 - 00003868 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-22 20:43 - 2016-08-22 20:46 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-22 20:41 - 2016-08-29 15:33 - 00003938 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{25A66E3A-C779-4BFF-A644-D698B6E080FA}
2016-08-22 20:17 - 2016-08-29 15:44 - 00000000 ___DO C:\Users\conchitta\SkyDrive
2016-08-22 20:16 - 2016-08-27 09:07 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2751898029-2148813506-1804420663-1001
2016-08-22 20:16 - 2016-08-22 20:16 - 00000000 ____D C:\ProgramData\ToshibaEurope
2016-08-22 20:11 - 2016-08-22 20:12 - 00000000 ____D C:\Users\conchitta\AppData\Local\PackageStaging
2016-08-22 20:11 - 2016-08-22 20:11 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2016-08-22 20:11 - 2016-08-22 20:11 - 00000000 ____D C:\Users\conchitta\AppData\Local\TOSHIBA
2016-08-22 20:10 - 2016-08-26 22:26 - 00000000 ____D C:\Users\conchitta\AppData\Local\Packages
2016-08-22 20:10 - 2016-08-22 20:10 - 00000000 ____D C:\Users\conchitta\AppData\Roaming\Adobe
2016-08-22 20:10 - 2016-08-22 20:10 - 00000000 ____D C:\Users\conchitta\AppData\Local\VirtualStore
2016-08-22 20:08 - 2016-08-29 15:45 - 00000000 ____D C:\Users\conchitta
2016-08-22 20:08 - 2016-08-22 20:08 - 00000020 ___SH C:\Users\conchitta\ntuser.ini
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\Vorlagen
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\Startmenü
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\Netzwerkumgebung
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\Lokale Einstellungen
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\Eigene Dateien
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\Druckumgebung
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\Documents\Eigene Videos
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\Documents\Eigene Musik
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\Documents\Eigene Bilder
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\AppData\Local\Verlauf
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\AppData\Local\Anwendungsdaten
2016-08-22 20:08 - 2016-08-22 20:08 - 00000000 _SHDL C:\Users\conchitta\Anwendungsdaten
2016-08-22 20:06 - 2016-08-22 20:06 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-08-29 15:43 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-29 15:42 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-08-28 01:15 - 2013-09-06 23:25 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-28 01:15 - 2013-08-28 11:59 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2016-08-28 01:15 - 2013-08-28 11:59 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2016-08-28 01:15 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2016-08-27 09:27 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-08-27 07:05 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2016-08-27 03:18 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-27 02:09 - 2013-08-22 21:11 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-27 02:09 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\WinStore
2016-08-27 02:09 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-08-27 02:09 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2016-08-27 02:09 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2016-08-27 02:09 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-08-27 02:09 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-08-27 02:09 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\servicing
2016-08-27 02:08 - 2013-08-28 11:58 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-08-27 02:08 - 2013-08-22 21:09 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-08-27 02:08 - 2013-08-22 21:09 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-08-27 02:08 - 2013-08-22 21:09 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-08-27 02:08 - 2013-08-22 21:09 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-08-27 02:08 - 2013-08-22 21:09 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-08-27 02:08 - 2013-08-22 21:09 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-08-27 02:08 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-27 02:08 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-08-27 02:08 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2016-08-27 02:08 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-08-27 02:08 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-08-27 02:08 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\IME
2016-08-27 02:08 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-08-27 02:08 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-08-27 02:08 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-08-27 02:08 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-08-27 02:07 - 2013-08-22 21:09 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-08-27 02:07 - 2013-08-22 21:09 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-08-27 02:07 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-08-27 02:07 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-08-27 02:07 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Com
2016-08-27 02:07 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Help
2016-08-27 02:07 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-08-27 02:05 - 2013-08-22 17:36 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-08-26 22:31 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-26 08:31 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-08-26 08:30 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2016-08-26 08:30 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\FileManager
2016-08-26 08:30 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Camera
2016-08-26 08:29 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-08-26 08:29 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-08-26 08:29 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-08-26 08:29 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-08-26 08:28 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-08-26 08:28 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\setup
2016-08-26 08:27 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2016-08-26 08:27 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-26 08:27 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-08-26 08:27 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-08-26 08:26 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-26 06:40 - 2013-08-22 17:36 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2016-08-26 06:40 - 2013-08-22 17:36 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2016-08-26 04:05 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-08-26 01:28 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-26 01:13 - 2013-10-09 01:46 - 00000000 ____D C:\Program Files (x86)\Amazon
2016-08-24 22:53 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\tracing
2016-08-24 06:25 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-08-24 06:25 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-08-24 06:24 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-08-24 06:24 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-08-23 23:14 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-08-23 05:37 - 2013-08-22 17:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2016-08-23 05:14 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-22 21:02 - 2013-10-09 01:38 - 00000000 ____D C:\ProgramData\McAfee
2016-08-22 21:02 - 2013-10-09 01:38 - 00000000 ____D C:\Program Files\Common Files\mcafee
2016-08-22 21:02 - 2013-10-09 01:38 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-08-22 20:51 - 2013-10-09 01:47 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-08-22 20:51 - 2013-09-08 00:56 - 00000000 ____D C:\WINDOWS\Panther
2016-08-22 20:46 - 2013-10-09 01:55 - 00000000 ____D C:\Program Files (x86)\TOSHIBA Games
2016-08-22 20:16 - 2013-10-09 01:29 - 00000000 ____D C:\WINDOWS\System32\Tasks\TOSHIBA
2016-08-22 20:16 - 2013-09-06 23:26 - 00000000 ____D C:\ProgramData\Toshiba
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2013-09-07 08:13
==================== Ende von FRST.txt ============================
Code:
Alles auswählen Aufklappen ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-08-2016
durchgeführt von conchitta (29-08-2016 15:53:19)
Gestartet von C:\Users\conchitta\Desktop
Windows 8.1 (Update) (X64) (2016-08-22 18:09:52)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2751898029-2148813506-1804420663-500 - Administrator - Disabled)
conchitta (S-1-5-21-2751898029-2148813506-1804420663-1001 - Administrator - Enabled) => C:\Users\conchitta
Gast (S-1-5-21-2751898029-2148813506-1804420663-501 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 4.8.1245.73583 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 4.8.1245.73583 - Alcor Micro Corp.) Hidden
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Atheros)
DTS Sound (HKLM-x32\...\{2DFA9084-CEB3-4A48-B9F7-9038FEF1B8F4}) (Version: 1.01.2700 - DTS, Inc.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
IDT Audio Driver (HKLM\...\{588A747E-CFF6-46B3-9207-CD754F9473AF}) (Version: 6.10.6491.0 - IDT)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3282 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Preview Redistributable (x64) - 12.0.20617 (HKLM-x32\...\{448652c1-f5f3-4230-98c6-68c10c88b1fb}) (Version: 12.0.20617.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Preview Redistributable (x86) - 12.0.20617 (HKLM-x32\...\{1f407217-9aec-4146-8504-e64ac959c534}) (Version: 12.0.20617.1 - Microsoft Corporation)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.300 - Qualcomm Atheros)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.10.51 - Synaptics Incorporated)
TOSHIBA Addendum (HKLM-x32\...\{CE0374A6-B204-4336-8293-63FBB1DADBF4}) (Version: 1.00 - TOSHIBA)
TOSHIBA Desktop Assist (HKLM\...\{95CCACF0-010D-45F0-82BF-858643D8BC02}) (Version: 1.02.01.6407 - Toshiba Corporation)
TOSHIBA Display Utility (HKLM\...\{84FA4D2D-4273-4C66-BD3D-ADD3FE48DFA2}) (Version: 1.1.5.0 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{5944B9D4-3C2A-48DE-931E-26B31714A2F7}) (Version: 2.2.0.6404 - Toshiba Corporation)
TOSHIBA Function Key (HKLM\...\{16562A90-71BC-41A0-B890-D91B0C267120}) (Version: 1.1.0001.6403 - Toshiba Corporation)
TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.10 - TOSHIBA)
TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{78931270-BC9E-441A-A52B-73ECD4ACFAB5}) (Version: 3.00.344 - Toshiba Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.9.09.6400 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.1.02.55065006 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{FBFCEEA5-96EA-4C8E-9262-43CBBEBAE413}) (Version: 2.6.8 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0030 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{05A55927-DB9B-4E26-BA44-828EBFF829F0}) (Version: 1.1.2.32001 - Toshiba Corporation)
Toshiba TEMPRO (HKLM-x32\...\{F76F5214-83A8-4030-80C9-1EF57391D72A}) (Version: 4.5.0 - Toshiba Europe GmbH)
TOSHIBA VIDEO PLAYER (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 5.3.27.102 - Toshiba Corporation)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.21.465 - Zemana Ltd.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {1C5CCB11-FD46-4373-BB51-CE2E249A62C0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-22] (Google Inc.)
Task: {26FB73B8-F896-4EDC-AE6A-A0195E4346BE} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2013-07-31] (TOSHIBA Corporation)
Task: {3EA1E73D-45AA-4FBD-9942-F2680B32ED08} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
Task: {6D20924F-588B-4B45-95B9-3553C6D2AF56} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2013-07-19] (Toshiba Europe GmbH)
Task: {7FE0925E-4178-4642-BBCF-C35A6437B449} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-22] (Google Inc.)
Task: {CCF7B886-2C21-4511-80C6-29978FB47A87} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe [2013-08-28] (TODO: <Company name>)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\conchitta\AppData\Local\Microsoft\Windows\ConnectedSearch\History\site_3039282507_de-de.lnk -> hxxp://www.windowssearch.com:80/suggestions?qry=eset&cc=DE&setlang=de-DE&inlang=de-DE&adlt=moderate&scale=100&contrast=none&hw=768%2C1366&CVID=243470A702EB417289FD522C5D5B577E
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-03-27 21:53 - 2013-03-27 21:53 - 00163168 _____ () C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
2013-09-10 21:54 - 2013-09-10 21:54 - 00019792 _____ () C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
2013-09-06 23:53 - 2013-08-12 19:52 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-07-19 03:38 - 2012-07-19 03:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2013-08-22 09:19 - 2013-08-22 08:54 - 00050176 _____ () C:\WINDOWS\system32\WinMetadata\Windows.Data.winmd
2016-08-26 23:16 - 2016-08-26 23:16 - 01459712 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.UI\5062f8f84e45fee3a39c25e1f72b3461\Windows.UI.ni.dll
2016-08-28 04:26 - 2016-08-28 04:26 - 00363520 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\e2e1cd64b91b7395a96ebcde35a63a1c\Windows.Foundation.ni.dll
2013-10-09 01:15 - 2013-09-04 01:52 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-08-22 20:46 - 2016-08-03 02:24 - 01771336 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libglesv2.dll
2016-08-22 20:46 - 2016-08-03 02:23 - 00094024 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\43803640.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\43803640.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2751898029-2148813506-1804420663-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\conchitta\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{97185104-0EDA-4C8C-ABF3-112C92FD4EF3}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{A5465BAB-3068-45DA-85D3-A7E1B9D9C807}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{EEF7AD55-2628-45B1-B168-9008AEA3BAFB}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{CEFA1628-04CD-4855-BB91-0521F13EAB44}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{72DEC956-00CD-4506-9E72-84AAD746DEFD}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{C1820B97-7FD2-4D7D-8D59-8D33179C1F88}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{6B1719A8-7D86-4EFA-953F-953A12A7A4D2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
23-08-2016 03:58:32 Windows Modules Installer
26-08-2016 02:11:52 JRT Pre-Junkware Removal
27-08-2016 03:17:27 Windows Modules Installer
29-08-2016 15:40:45 Restore Point Created by FRST
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (08/29/2016 03:40:45 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert
.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {91291f82-8178-4670-ae05-fedeaa64300c}
Error: (08/29/2016 03:32:55 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP)
Description: Bei der Aktivierung der App „Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (08/29/2016 06:28:49 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP)
Description: Bei der Aktivierung der App „Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (08/29/2016 04:28:57 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP)
Description: Bei der Aktivierung der App „Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (08/29/2016 02:28:49 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP)
Description: Bei der Aktivierung der App „Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (08/29/2016 02:09:51 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.
Error: (08/29/2016 12:29:14 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.
Error: (08/29/2016 12:21:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP)
Description: Bei der Aktivierung der App „Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (08/29/2016 12:13:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP)
Description: Bei der Aktivierung der App „Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (08/28/2016 08:56:50 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.
Systemfehler:
=============
Error: (08/29/2016 03:42:27 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "McAfee Firewall Core Service" ist vom Dienst "McAfee Validation Trust Protection Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Die Pipe wurde beendet.
Error: (08/29/2016 03:42:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee Validation Trust Protection Service" wurde aufgrund folgenden Fehlers nicht gestartet:
The pipe has been ended.
Error: (08/29/2016 03:41:56 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
%%1056 = Es wird bereits eine Instanz des Dienstes ausgeführt.
Error: (08/29/2016 03:41:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "MBAMScheduler" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (08/29/2016 03:41:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "McAfee Validation Trust Protection Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (08/29/2016 03:41:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/29/2016 03:41:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "TPCH Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (08/29/2016 03:41:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/29/2016 03:41:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "DTS APO Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (08/29/2016 03:41:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz
Prozentuale Nutzung des RAM: 45%
Installierter physikalischer RAM: 3971.27 MB
Verfügbarer physikalischer RAM: 2165.19 MB
Summe virtueller Speicher: 5379.27 MB
Verfügbarer virtueller Speicher: 3427.91 MB
==================== Laufwerke ================================
Drive c: (TI31204300A) (Fixed) (Total:454.91 GB) (Free:419.82 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
Inzwischen ist es so, dass der Browser & zwar nur noch bei einer Seite (youtoube.de) auf Glücksspiele umspringt (aber nur noch selten), oder er unendlich sucht , oder er kommt: "Dieser Inhalt kann nicht in einen Frame angezeigt werden.". Die letzte Variante ist zurzeit die Häufigste.
Danke & have a nice day!
29.08.2016, 15:16
Baum-Darstellung